• Registrarse
  • Iniciar sesión


  • Página 1 de 2 12 ÚltimoÚltimo
    Resultados 1 al 10 de 17

    Variante de Win32/Yebot.AA Troyano

    Basicamente es eso lo que me dice el archivo de registro del Nod 32, ademas avisandome que no es posible su desinfeccion. Aparentemente ataca a la memoria operativa Isass.exe y me aparece el aviso cada ...

    1. #1
      Usuario Avatar de Dr.Brown
      Registrado
      dic 2009
      Ubicación
      Uruguay
      Mensajes
      10

      Variante de Win32/Yebot.AA Troyano

      Basicamente es eso lo que me dice el archivo de registro del Nod 32, ademas avisandome que no es posible su desinfeccion. Aparentemente ataca a la memoria operativa Isass.exe y me aparece el aviso cada vez que prendo la computadora. Lo extraño es que quise buscar un poco de informacion en la red y casi que no hay informacion ninguna. Si alguien me pudiera ayudar o guiar un poco.

      Gracias por adelantado.

    2. #2
      Ex-Colaborador Avatar de Superlucas
      Registrado
      sep 2011
      Ubicación
      Argentina
      Mensajes
      15.747

      Re: Variante de Win32/Yebot.AA Troyano

      Hola Dr..Brown:


      Descarga,actualiza y realiza un escaneo completo con el malwarebytes:Manual de Malwarebytes Anti-Malware 2

      -Instala el programa con idioma español.
      -Vete a la pestaña actualizar y actualizas a la ultima version
      -Vete a la pestaña Escáner y realizas un Ánalisis completo.
      -Una vez finalizado, pulsa sobre "Mostrar los Resultados " y "Eliminar Seleccionadas" como se demuestra en esta foto
      -En el caso de que te pida reiniciar,reinicia.
      -Peganos el reporte del escaneo del malwarebytes despues de reiniciar,esta en la pestaña Registros.

      Descarga Ccleaner:Manual de CCleaner

      Ejecutar CCleaner usando primero su opción de "Limpiador" para borrar cookies y temporales de Internet
      Usa su opción de "Registro" para limpiar todo el registro de Windows creando antes una copia de seguridad

      Descarga TDSSKiller.zip a tu escritorio.
      Desconecta tu ordenador de Internet (Desconecta el cable).
      • Descomprime el archivo tdsskiller.zip
      • Ejecuta el archivo TDSSKiller.exe Si usas Vista o 7 presiona clic derecho ejecutar como administrador.
      • Presiona clic sobre
      • Marca también las casillas:

      • Presiona clic sobre el botón

        .
      • TDSSKiller comenzara a analizar el equipo.
      • Si el equipo no está infectado:
      • Mostrara
      • No threats found.
      • Presiona clic sobre el botón "Close"
      • Si el equipo está infectado:
      • Mostrara:
      • Threats detected.
      • Select action for found objects:

      • Malware object, high risk. La acción predeterminada es "Cure" o "Delete".
      • Suspicious object, medium risk. Usa siempre la opción "Skip"
      • El programa selecciona de forma automática la acción a tomar.
      • Presiona clic sobre el botón "Continue"
      • Para desinfectar correctamente el Sistema, puede solicitarle reiniciar el equipo.
      • Presiona clic sobre el botón

      • Abre el reporte de TDSSKiller, ubicado en C:\TDSSKiller.x.xx.x_xx.xx.xxxx_xx.xx.xx_log.txt, donde "x.xx.x_xx.xx.xxxx_xx.xx.xx" son versión, fecha y hora.
      • Copia y pega su contenido en tu próxima respuesta.
      Vas a correr o vas a pelear?- Muahy Thai

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    3. #3
      Usuario Avatar de Dr.Brown
      Registrado
      dic 2009
      Ubicación
      Uruguay
      Mensajes
      10

      Re: Variante de Win32/Yebot.AA Troyano

      Aca va la respuesta, esto es como ir al medico, recorriendo un poco el foro ya me di cuenta de que tambien tengo el virus del doble tilde ´´, asi que ya me tendre que ir para los otros hilos Ya creo que estoy pensando en una formateada

      Aca los resultados:

      Malwarebytes Anti-Malware (Versión de Prueba) 1.65.0.1400
      www.malwarebytes.org

      Versión de la Base de Datos: v2012.09.10.07

      Windows XP Service Pack 3 x86 NTFS
      Internet Explorer 8.0.6001.18702
      Administrador :: EQUIPO [administrador]

      Protección: Habilitado

      10/09/2012 18:23:59
      mbam-log-2012-09-10 (18-23-59).txt

      Tipos de Análisis: Análisis Completo (C:\|D:\|)
      Opciones de análisis activado: Memoria | Inicio | Registro | Sistema de archivos | Heurística/Extra | Heurística/Shuriken | PUP | PUM
      Opciones de análisis desactivados: P2P
      Objetos examinados: 255324
      Tiempo transcurrido: 1 hora(s), 43 minuto(s), 37 segundo(s)

      Procesos en Memoria Detectados: 0
      (No se han detectado elementos maliciosos)

      Módulos de Memoria Detectados: 0
      (No se han detectado elementos maliciosos)

      Claves del Registro Detectados: 14
      HKCR\CrossriderApp0000498.BHO (PUP.CrossFire.Gen) -> En cuarentena y eliminado con éxito.
      HKCR\CrossriderApp0000498.BHO.1 (PUP.CrossFire.Gen) -> En cuarentena y eliminado con éxito.
      HKCR\CrossriderApp0000498.FBApi (PUP.CrossFire.Gen) -> En cuarentena y eliminado con éxito.
      HKCR\CrossriderApp0000498.FBApi.1 (PUP.CrossFire.Gen) -> En cuarentena y eliminado con éxito.
      HKCR\CrossriderApp0000498.Sandbox (PUP.CrossFire.Gen) -> En cuarentena y eliminado con éxito.
      HKCR\CrossriderApp0000498.Sandbox.1 (PUP.CrossFire.Gen) -> En cuarentena y eliminado con éxito.
      HKCU\SOFTWARE\CROSSRIDER (Adware.GamePlayLab) -> En cuarentena y eliminado con éxito.
      HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110011041198} (PUP.GamePlayLab) -> En cuarentena y eliminado con éxito.
      HKCR\CLSID\{11111111-1111-1111-1111-110011041198} (PUP.GamePlayLab) -> En cuarentena y eliminado con éxito.
      HKCR\TypeLib\{44444444-4444-4444-4444-440044044498} (PUP.GamePlayLab) -> En cuarentena y eliminado con éxito.
      HKCR\Interface\{55555555-5555-5555-5555-550055045598} (PUP.GamePlayLab) -> En cuarentena y eliminado con éxito.
      HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{11111111-1111-1111-1111-110011041198} (PUP.GamePlayLab) -> En cuarentena y eliminado con éxito.
      HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{11111111-1111-1111-1111-110011041198} (PUP.GamePlayLab) -> En cuarentena y eliminado con éxito.
      HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110011041198} (PUP.GamePlayLab) -> En cuarentena y eliminado con éxito.

      Valores del Registro Detectados: 1
      HKCU\Software\Crossrider|215AppVerifier (Adware.GamePlayLab) -> datos: c3a5e79040996c2efc02396633fc1e38 -> En cuarentena y eliminado con éxito.

      Elementos de Datos del Registro Detectados: 1
      HKLM\SOFTWARE\Microsoft\Security Center|UpdatesDisableNotify (PUM.Disabled.SecurityCenter) -> Malo: (1) Bueno: (0) -> En cuarentena y reparado con éxito.

      Carpetas Detectadas: 0
      (No se han detectado elementos maliciosos)

      Archivos Detectados: 5
      C:\Documents and Settings\Administrador\Configuración local\Temp\ndfan1x.exe (Trojan.Delf) -> En cuarentena y eliminado con éxito.
      D:\System Volume Information\_restore{381DD562-BDB0-4D53-B8E5-E4B9AC4ADA4D}\RP168\A0075489.exe (Trojan.Backdoor) -> En cuarentena y eliminado con éxito.
      D:\System Volume Information\_restore{381DD562-BDB0-4D53-B8E5-E4B9AC4ADA4D}\RP168\A0075448.dll (Malware.Packer.Gen) -> En cuarentena y eliminado con éxito.
      D:\System Volume Information\_restore{381DD562-BDB0-4D53-B8E5-E4B9AC4ADA4D}\RP168\A0075590.exe (Trojan.Dropper.PGen) -> En cuarentena y eliminado con éxito.
      D:\System Volume Information\_restore{381DD562-BDB0-4D53-B8E5-E4B9AC4ADA4D}\RP168\A0075596.exe (RiskWare.Tool.CK) -> En cuarentena y eliminado con éxito.

      fin)

    4. #4
      Usuario Avatar de Dr.Brown
      Registrado
      dic 2009
      Ubicación
      Uruguay
      Mensajes
      10

      Re: Variante de Win32/Yebot.AA Troyano

      21:52:50.0984 0524 TDSS rootkit removing tool 2.8.8.0 Aug 24 2012 13:27:48
      21:52:51.0031 0524 ============================================================
      21:52:51.0031 0524 Current date / time: 2012/09/10 21:52:51.0031
      21:52:51.0031 0524 SystemInfo:
      21:52:51.0031 0524
      21:52:51.0031 0524 OS Version: 5.1.2600 ServicePack: 3.0
      21:52:51.0031 0524 Product type: Workstation
      21:52:51.0031 0524 ComputerName: EQUIPO
      21:52:51.0031 0524 UserName: Administrador
      21:52:51.0031 0524 Windows directory: C:\WINDOWS
      21:52:51.0031 0524 System windows directory: C:\WINDOWS
      21:52:51.0031 0524 Processor architecture: Intel x86
      21:52:51.0031 0524 Number of processors: 2
      21:52:51.0031 0524 Page size: 0x1000
      21:52:51.0031 0524 Boot type: Normal boot
      21:52:51.0031 0524 ============================================================
      21:52:51.0921 0524 Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
      21:52:51.0921 0524 ============================================================
      21:52:51.0921 0524 \Device\Harddisk0\DR0:
      21:52:51.0921 0524 MBR partitions:
      21:52:51.0921 0524 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x8D2A63F
      21:52:51.0921 0524 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x8D2A67E, BlocksNum 0x9CEE443
      21:52:51.0921 0524 ============================================================
      21:52:51.0953 0524 C: <-> \Device\Harddisk0\DR0\Partition1
      21:52:52.0000 0524 D: <-> \Device\Harddisk0\DR0\Partition2
      21:52:52.0000 0524 ============================================================
      21:52:52.0000 0524 Initialize success
      21:52:52.0000 0524 ============================================================
      21:53:14.0640 2200 ============================================================
      21:53:14.0640 2200 Scan started
      21:53:14.0640 2200 Mode: Manual; SigCheck; TDLFS;
      21:53:14.0640 2200 ============================================================
      21:53:14.0859 2200 ================ Scan system memory ========================
      21:53:14.0859 2200 System memory - ok
      21:53:14.0859 2200 ================ Scan services =============================
      21:53:15.0734 2200 Abiosdsk - ok
      21:53:15.0750 2200 abp480n5 - ok
      21:53:15.0781 2200 [ CF2A07E1751A2D612D7E13AA431AB057 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
      21:53:17.0437 2200 ACPI - ok
      21:53:17.0453 2200 [ 1C905333C0B9F3D7C68DDF25E54B00F9 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
      21:53:17.0625 2200 ACPIEC - ok
      21:53:17.0671 2200 [ A9D3B95E8466BD58EEB8A1154654E162 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
      21:53:17.0718 2200 AdobeFlashPlayerUpdateSvc - ok
      21:53:17.0765 2200 adpu160m - ok
      21:53:17.0953 2200 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
      21:53:18.0109 2200 aec - ok
      21:53:18.0140 2200 [ F6B7B1ECD7B41736BDB6FF4B092BCB79 ] AFD C:\WINDOWS\System32\drivers\afd.sys
      21:53:18.0203 2200 AFD - ok
      21:53:18.0203 2200 Aha154x - ok
      21:53:18.0218 2200 aic78u2 - ok
      21:53:18.0218 2200 aic78xx - ok
      21:53:18.0250 2200 [ FEDCA791A089D4E15084DA10F38BCE45 ] Alerter C:\WINDOWS\system32\alrsvc.dll
      21:53:18.0375 2200 Alerter - ok
      21:53:18.0390 2200 [ 764B7A1E6AE2D70416A7932F3B97AC99 ] ALG C:\WINDOWS\System32\alg.exe
      21:53:18.0468 2200 ALG - ok
      21:53:18.0468 2200 AliIde - ok
      21:53:18.0546 2200 [ 267FC636801EDC5AB28E14036349E3BE ] Ambfilt C:\WINDOWS\system32\drivers\Ambfilt.sys
      21:53:18.0734 2200 Ambfilt - ok
      21:53:18.0828 2200 amsint - ok
      21:53:18.0953 2200 [ 30CD42BFCDAFEFE8567B9E527DD3AE08 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
      21:53:19.0031 2200 AppMgmt - ok
      21:53:19.0031 2200 asc - ok
      21:53:19.0046 2200 asc3350p - ok
      21:53:19.0046 2200 asc3550 - ok
      21:53:19.0234 2200 [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
      21:53:19.0250 2200 aspnet_state - ok
      21:53:19.0265 2200 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
      21:53:19.0406 2200 AsyncMac - ok
      21:53:19.0421 2200 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
      21:53:19.0531 2200 atapi - ok
      21:53:19.0546 2200 Atdisk - ok
      21:53:19.0578 2200 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
      21:53:19.0718 2200 Atmarpc - ok
      21:53:19.0750 2200 [ A37F6480B06C37DB69BBFF045CF9F55B ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
      21:53:19.0875 2200 AudioSrv - ok
      21:53:19.0890 2200 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
      21:53:20.0062 2200 audstub - ok
      21:53:20.0078 2200 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
      21:53:20.0234 2200 Beep - ok
      21:53:20.0250 2200 [ 62FE6631BB8699D7C3521C4D15D867D9 ] BITS C:\WINDOWS\system32\qmgr.dll
      21:53:20.0343 2200 BITS - ok
      21:53:20.0375 2200 [ 88F61096EDAF97F86128ED9007802709 ] Browser C:\WINDOWS\System32\browser.dll
      21:53:20.0437 2200 Browser - ok
      21:53:20.0453 2200 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
      21:53:20.0609 2200 cbidf2k - ok
      21:53:20.0609 2200 cd20xrnt - ok
      21:53:20.0625 2200 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
      21:53:20.0765 2200 Cdaudio - ok
      21:53:20.0796 2200 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
      21:53:20.0953 2200 Cdfs - ok
      21:53:20.0984 2200 [ 4B0A100EAF5C49EF3CCA8C641431EACC ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
      21:53:21.0046 2200 Cdrom - ok
      21:53:21.0062 2200 Changer - ok
      21:53:21.0093 2200 [ B0E3FEC4EE7B935A7387FD6EF31EA780 ] CiSvc C:\WINDOWS\system32\cisvc.exe
      21:53:21.0218 2200 CiSvc - ok
      21:53:21.0234 2200 [ 0C3BF68AB94CEFD64B333B326F84510E ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
      21:53:21.0359 2200 ClipSrv - ok
      21:53:21.0390 2200 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
      21:53:21.0421 2200 clr_optimization_v2.0.50727_32 - ok
      21:53:21.0421 2200 CmdIde - ok
      21:53:21.0437 2200 COMSysApp - ok
      21:53:21.0453 2200 Cpqarray - ok
      21:53:21.0484 2200 [ E423C9C1946C656E0E4840210A0A8681 ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
      21:53:21.0609 2200 CryptSvc - ok
      21:53:21.0609 2200 dac2w2k - ok
      21:53:21.0625 2200 dac960nt - ok
      21:53:21.0656 2200 [ AEF41FC6F108CC4F94F9B4E96AFA9C70 ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
      21:53:21.0718 2200 DcomLaunch - ok
      21:53:21.0765 2200 [ 8815D3712259D8BAA50240335488FEC3 ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
      21:53:21.0796 2200 Dhcp - ok
      21:53:21.0812 2200 [ 47B6AAEC570F2C11D8BAD80A064D8ED1 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
      21:53:21.0890 2200 Disk - ok
      21:53:21.0890 2200 dmadmin - ok
      21:53:21.0937 2200 [ C252A99C0A78B39FAA2E2D1D048B1050 ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
      21:53:22.0171 2200 dmboot - ok
      21:53:22.0203 2200 [ 33B4D4039CD2CB25351A7BF13B2988D9 ] dmio C:\WINDOWS\system32\drivers\dmio.sys
      21:53:22.0359 2200 dmio - ok
      21:53:22.0375 2200 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
      21:53:22.0515 2200 dmload - ok
      21:53:22.0546 2200 [ 40D0520DDAA9312C5DDDD8C7C99D8325 ] dmserver C:\WINDOWS\System32\dmserver.dll
      21:53:22.0671 2200 dmserver - ok
      21:53:22.0687 2200 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
      21:53:22.0828 2200 DMusic - ok
      21:53:22.0843 2200 [ 4F90AAADF4CA0D5D01FBCFDB10548FCC ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
      21:53:22.0937 2200 Dnscache - ok
      21:53:22.0968 2200 [ DFDDE88937B358EC11296C2AA1312AB7 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
      21:53:23.0015 2200 Dot3svc - ok
      21:53:23.0015 2200 dpti2o - ok
      21:53:23.0046 2200 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
      21:53:23.0187 2200 drmkaud - ok
      21:53:23.0203 2200 [ C5C63D78435A736C5B38D39DD8D6D8BC ] DumpDrv C:\WINDOWS\system32\drivers\DumpDrv.sys
      21:53:23.0296 2200 DumpDrv - ok
      21:53:23.0328 2200 [ 59D9E5DBCFEF1E0E3DBAC1B55C718F2D ] eamon C:\WINDOWS\system32\DRIVERS\eamon.sys
      21:53:23.0343 2200 eamon - ok
      21:53:23.0375 2200 [ FC3FE3654588E597FFF395C305062C46 ] EapHost C:\WINDOWS\System32\eapsvc.dll
      21:53:23.0500 2200 EapHost - ok
      21:53:23.0531 2200 [ 3BD67A869964BF57266CBBD1DCA38C6A ] ehdrv C:\WINDOWS\system32\DRIVERS\ehdrv.sys
      21:53:23.0578 2200 ehdrv - ok
      21:53:23.0687 2200 [ 96FC9AD2C1B008424093F5367CA1AE3E ] EhttpSrv C:\Archivos de programa\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
      21:53:23.0703 2200 EhttpSrv - ok
      21:53:23.0750 2200 [ D543E7E8BCAE3F5D256335EEE809ADF5 ] ekrn C:\Archivos de programa\ESET\ESET NOD32 Antivirus\ekrn.exe
      21:53:23.0828 2200 ekrn - ok
      21:53:23.0875 2200 [ AA0AF2830FC14FFD7E80611614ECAC74 ] epfwtdir C:\WINDOWS\system32\DRIVERS\epfwtdir.sys
      21:53:23.0953 2200 epfwtdir - ok
      21:53:23.0984 2200 [ D96623DD7CE1EA9E4DE7285D740E14F6 ] ERSvc C:\WINDOWS\System32\ersvc.dll
      21:53:24.0109 2200 ERSvc - ok
      21:53:24.0140 2200 [ AA6E1769469F9D15603A619FC1FB9E18 ] Eventlog C:\WINDOWS\system32\services.exe
      21:53:24.0171 2200 Eventlog - ok
      21:53:24.0187 2200 [ 6EC3C2A5CEA41B78BB55B30444292CB8 ] EventSystem C:\WINDOWS\system32\es.dll
      21:53:24.0234 2200 EventSystem - ok
      21:53:24.0281 2200 [ 4D893323DAE445E34A4C9038B0551BC9 ] exFat C:\WINDOWS\system32\drivers\exFat.sys
      21:53:24.0328 2200 exFat - ok
      21:53:24.0375 2200 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
      21:53:24.0531 2200 Fastfat - ok
      21:53:24.0562 2200 [ 8A34F9730A2206726B1BE4DC4209CAB9 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
      21:53:24.0593 2200 FastUserSwitchingCompatibility - ok
      21:53:24.0625 2200 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
      21:53:24.0765 2200 Fdc - ok
      21:53:24.0796 2200 [ E9648254056BCE81A85380C0C3647DC4 ] FETNDIS C:\WINDOWS\system32\DRIVERS\fetnd5.sys
      21:53:24.0921 2200 FETNDIS - ok
      21:53:24.0953 2200 [ E5E61F2C07344E91DBFB7EAFDE549AB4 ] Fips C:\WINDOWS\system32\drivers\Fips.sys
      21:53:25.0093 2200 Fips - ok
      21:53:25.0125 2200 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\drivers\Flpydisk.sys
      21:53:25.0265 2200 Flpydisk - ok
      21:53:25.0296 2200 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\DRIVERS\fltMgr.sys
      21:53:25.0453 2200 FltMgr - ok
      21:53:25.0500 2200 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
      21:53:25.0515 2200 FontCache3.0.0.0 - ok
      21:53:25.0546 2200 [ 30D42943A54704EF13E2562911DBFCEA ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
      21:53:25.0593 2200 Fs_Rec - ok
      21:53:25.0625 2200 [ CC5F3AF5711A1C7C8FA1D43BB16B401A ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
      21:53:25.0765 2200 Ftdisk - ok
      21:53:25.0812 2200 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
      21:53:25.0953 2200 Gpc - ok
      21:53:25.0984 2200 [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
      21:53:26.0109 2200 HDAudBus - ok
      21:53:26.0156 2200 [ 6B5E1788ABF15177A20C6C76C11382BB ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
      21:53:26.0296 2200 helpsvc - ok
      21:53:26.0312 2200 HidServ - ok
      21:53:26.0343 2200 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] hidusb C:\WINDOWS\system32\DRIVERS\hidusb.sys
      21:53:26.0500 2200 hidusb - ok
      21:53:26.0531 2200 [ 8F80B5FB68E1E767D872CB9A8CAD5B5D ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
      21:53:26.0656 2200 hkmsvc - ok
      21:53:26.0671 2200 hpn - ok
      21:53:26.0718 2200 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
      21:53:26.0781 2200 HTTP - ok
      21:53:26.0812 2200 [ 0406B351908A8C143B6B6BB8834D4920 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
      21:53:26.0953 2200 HTTPFilter - ok
      21:53:26.0953 2200 i2omgmt - ok
      21:53:26.0984 2200 i2omp - ok
      21:53:27.0031 2200 [ 4A2490A66E8271901E89DD5FB79748AE ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
      21:53:27.0171 2200 i8042prt - ok
      21:53:27.0265 2200 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
      21:53:27.0359 2200 idsvc - ok
      21:53:27.0406 2200 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
      21:53:27.0546 2200 Imapi - ok
      21:53:27.0578 2200 [ E50ABD04CA0C015017722014D1D9251E ] ImapiService C:\WINDOWS\system32\imapi.exe
      21:53:27.0703 2200 ImapiService - ok
      21:53:27.0734 2200 ini910u - ok
      21:53:27.0937 2200 [ 5D138ADC44C43BF37634C8E528D75B1F ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys
      21:53:28.0312 2200 IntcAzAudAddService - ok
      21:53:28.0328 2200 IntelIde - ok
      21:53:28.0375 2200 [ 49A060498C09DB18C3EA9939789005AB ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
      21:53:28.0531 2200 intelppm - ok
      21:53:28.0578 2200 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
      21:53:28.0750 2200 Ip6Fw - ok
      21:53:28.0781 2200 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
      21:53:28.0906 2200 IpFilterDriver - ok
      21:53:28.0937 2200 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
      21:53:29.0078 2200 IpInIp - ok
      21:53:29.0109 2200 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
      21:53:29.0234 2200 IpNat - ok
      21:53:29.0265 2200 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
      21:53:29.0421 2200 IPSec - ok
      21:53:29.0437 2200 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
      21:53:29.0531 2200 IRENUM - ok
      21:53:29.0562 2200 [ 0F3D281B0410FE5D482AADA37D20524B ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
      21:53:29.0750 2200 isapnp - ok
      21:53:29.0781 2200 [ 188DDD286BC0DAEA6984858C6A4D7BBF ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
      21:53:29.0921 2200 Kbdclass - ok
      21:53:29.0953 2200 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
      21:53:30.0078 2200 kmixer - ok
      21:53:30.0109 2200 [ C6EBF1D6AD71DF30DB49B8D3287E1368 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
      21:53:30.0171 2200 KSecDD - ok
      21:53:30.0203 2200 [ CCFC469EFD7ECDDC8FC887BAE7B8563F ] LanmanServer C:\WINDOWS\System32\srvsvc.dll
      21:53:30.0265 2200 LanmanServer - ok
      21:53:30.0312 2200 [ 6EA0EA1A2C9022A3B887048C40C8360B ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
      21:53:30.0375 2200 lanmanworkstation - ok
      21:53:30.0390 2200 lbrtfdc - ok
      21:53:30.0453 2200 [ 01AF2112FF79AA613B6621A75C4E9277 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
      21:53:30.0578 2200 LmHosts - ok
      21:53:30.0609 2200 [ 65E794E86468B61F2BC79ABC48BC4433 ] MBAMProtector C:\WINDOWS\system32\drivers\mbam.sys
      21:53:30.0625 2200 MBAMProtector - ok
      21:53:30.0671 2200 [ 0DCF16B1449811EFA47AB52CAC84093C ] MBAMScheduler C:\Archivos de programa\Malwarebytes' Anti-Malware\mbamscheduler.exe
      21:53:30.0734 2200 MBAMScheduler - ok
      21:53:30.0781 2200 [ 9EAABA4D601004BEA4DAA6E146E19A96 ] MBAMService C:\Archivos de programa\Malwarebytes' Anti-Malware\mbamservice.exe
      21:53:30.0843 2200 MBAMService - ok
      21:53:30.0937 2200 [ 11F714F85530A2BD134074DC30E99FCA ] MDM C:\Archivos de programa\Archivos comunes\Microsoft Shared\VS7DEBUG\MDM.EXE
      21:53:30.0968 2200 MDM - ok
      21:53:31.0000 2200 [ 047E70B04B288439245DDC8DD1A31982 ] Messenger C:\WINDOWS\System32\msgsvc.dll
      21:53:31.0125 2200 Messenger - ok
      21:53:31.0156 2200 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
      21:53:31.0296 2200 mnmdd - ok
      21:53:31.0328 2200 [ 85ADA209695A677C9D60962CDE10696B ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
      21:53:31.0468 2200 mnmsrvc - ok
      21:53:31.0500 2200 [ 9024556E739B8469D2B8F5F0E4C9BC9F ] Modem C:\WINDOWS\system32\drivers\Modem.sys
      21:53:31.0640 2200 Modem - ok
      21:53:31.0703 2200 [ C7D9F9717916B34C1B00DD4834AF485C ] Monfilt C:\WINDOWS\system32\drivers\Monfilt.sys
      21:53:31.0828 2200 Monfilt - ok
      21:53:31.0859 2200 [ 6FD36B4994A2363659A65C9F970CFDB7 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
      21:53:32.0015 2200 Mouclass - ok
      21:53:32.0031 2200 [ 8EE532E516B2D23D686CFC1CC0A15C25 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
      21:53:32.0171 2200 mouhid - ok
      21:53:32.0218 2200 [ 1A1FAA5102466F418494E94FF9B0B091 ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
      21:53:32.0265 2200 MountMgr - ok
      21:53:32.0281 2200 mraid35x - ok
      21:53:32.0328 2200 [ 6A7C4AC5B52155115DEE97995C1CF157 ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
      21:53:32.0390 2200 MRxDAV - ok
      21:53:32.0437 2200 [ FB2FCCC70F7174C7BF64F48E96D3ADF4 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
      21:53:32.0531 2200 MRxSmb - ok
      21:53:32.0562 2200 [ 975BD2762BF355A572597CC54D97BA93 ] MSDTC C:\WINDOWS\system32\msdtc.exe
      21:53:32.0703 2200 MSDTC - ok
      21:53:32.0734 2200 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
      21:53:32.0875 2200 Msfs - ok
      21:53:32.0890 2200 MSIServer - ok
      21:53:32.0921 2200 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
      21:53:33.0062 2200 MSKSSRV - ok
      21:53:33.0093 2200 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
      21:53:33.0250 2200 MSPCLOCK - ok
      21:53:33.0281 2200 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
      21:53:33.0437 2200 MSPQM - ok
      21:53:33.0468 2200 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
      21:53:33.0593 2200 mssmbios - ok
      21:53:33.0625 2200 [ F7B1AD991491F02AF6DA70B00B8BF114 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
      21:53:33.0671 2200 Mup - ok
      21:53:33.0703 2200 [ FD578FCC03BBD76AF1E62202E6670D29 ] napagent C:\WINDOWS\System32\qagentrt.dll
      21:53:33.0859 2200 napagent - ok
      21:53:33.0890 2200 [ B5B1080D35974C0E718D64280761BCD5 ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
      21:53:33.0953 2200 NDIS - ok
      21:53:33.0968 2200 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
      21:53:34.0000 2200 NdisTapi - ok
      21:53:34.0031 2200 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
      21:53:34.0187 2200 Ndisuio - ok
      21:53:34.0218 2200 [ B053A8411045FD0664B389A090CB2BBC ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
      21:53:34.0265 2200 NdisWan - ok
      21:53:34.0296 2200 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
      21:53:34.0343 2200 NDProxy - ok
      21:53:34.0375 2200 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
      21:53:34.0531 2200 NetBIOS - ok
      21:53:34.0546 2200 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
      21:53:34.0703 2200 NetBT - ok
      21:53:34.0734 2200 [ 96B009E5B163850CF94DC333ED2BEE93 ] NetDDE C:\WINDOWS\system32\netdde.exe
      21:53:34.0875 2200 NetDDE - ok
      21:53:34.0890 2200 [ 96B009E5B163850CF94DC333ED2BEE93 ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
      21:53:35.0015 2200 NetDDEdsdm - ok
      21:53:35.0046 2200 [ 671ACA589DA3733FAC878A751C5BF0ED ] Netlogon C:\WINDOWS\system32\lsass.exe
      21:53:35.0171 2200 Netlogon - ok
      21:53:35.0203 2200 [ A48884C9359EE9F1FC8F3F0D93FB1D95 ] Netman C:\WINDOWS\System32\netman.dll
      21:53:35.0312 2200 Netman - ok
      21:53:35.0359 2200 [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
      21:53:35.0375 2200 NetTcpPortSharing - ok
      21:53:35.0421 2200 [ DEB0B8C3F99D54FD19433B682982F9FA ] Nla C:\WINDOWS\System32\mswsock.dll
      21:53:35.0453 2200 Nla - ok
      21:53:35.0484 2200 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
      21:53:35.0625 2200 Npfs - ok
      21:53:35.0671 2200 [ AE8CAD8F28DB13B515A68510A539B0B8 ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
      21:53:35.0781 2200 Ntfs - ok
      21:53:35.0796 2200 [ 671ACA589DA3733FAC878A751C5BF0ED ] NtLmSsp C:\WINDOWS\system32\lsass.exe
      21:53:35.0921 2200 NtLmSsp - ok
      21:53:35.0953 2200 [ D60C40D71A4D874C903255E4827AFA0C ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
      21:53:36.0484 2200 NtmsSvc - ok
      21:53:36.0531 2200 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
      21:53:36.0671 2200 Null - ok
      21:53:36.0703 2200 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
      21:53:36.0843 2200 NwlnkFlt - ok
      21:53:36.0843 2200 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
      21:53:37.0000 2200 NwlnkFwd - ok
      21:53:37.0031 2200 [ 7A56CF3E3F12E8AF599963B16F50FB6A ] ose C:\Archivos de programa\Archivos comunes\Microsoft Shared\Source Engine\OSE.EXE
      21:53:37.0046 2200 ose - ok
      21:53:37.0093 2200 [ E7855CBD8BD1FDA085A3F92CFF7906E2 ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
      21:53:37.0250 2200 Parport - ok
      21:53:37.0265 2200 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
      21:53:37.0421 2200 PartMgr - ok
      21:53:37.0453 2200 [ FAD44D704ECD7D39AD01415B8BB34204 ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
      21:53:37.0593 2200 ParVdm - ok
      21:53:37.0625 2200 [ F11BC84AE6C7B003B5E0C8EEB4A1F444 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
      21:53:37.0765 2200 PCI - ok
      21:53:37.0781 2200 PCIDump - ok
      21:53:37.0828 2200 [ 33D63F0A9021ACB4D75D83B646B93A30 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
      21:53:37.0984 2200 PCIIde - ok
      21:53:38.0015 2200 [ F50C27CCA56DC97B3A45E7F0059BD2BA ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
      21:53:38.0203 2200 Pcmcia - ok
      21:53:38.0218 2200 PDCOMP - ok
      21:53:38.0234 2200 PDFRAME - ok
      21:53:38.0265 2200 PDRELI - ok
      21:53:38.0281 2200 PDRFRAME - ok
      21:53:38.0296 2200 perc2 - ok
      21:53:38.0328 2200 perc2hib - ok
      21:53:38.0406 2200 [ AA6E1769469F9D15603A619FC1FB9E18 ] PlugPlay C:\WINDOWS\system32\services.exe
      21:53:38.0421 2200 PlugPlay - ok
      21:53:38.0437 2200 [ 671ACA589DA3733FAC878A751C5BF0ED ] PolicyAgent C:\WINDOWS\system32\lsass.exe
      21:53:38.0546 2200 PolicyAgent - ok
      21:53:38.0578 2200 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
      21:53:38.0718 2200 PptpMiniport - ok
      21:53:38.0750 2200 [ 671ACA589DA3733FAC878A751C5BF0ED ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
      21:53:38.0875 2200 ProtectedStorage - ok
      21:53:38.0906 2200 [ D8E11D311785F89F1D70A28B0E879127 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
      21:53:38.0968 2200 PSched - ok
      21:53:39.0015 2200 [ 0B6DEA0A1662CAB8F2BF339DC0752EF4 ] PSI_SVC_2 c:\Archivos de programa\Archivos comunes\Protexis\License Service\PsiService_2.exe
      21:53:39.0031 2200 PSI_SVC_2 - ok
      21:53:39.0062 2200 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
      21:53:39.0218 2200 Ptilink - ok
      21:53:39.0234 2200 ql1080 - ok
      21:53:39.0250 2200 Ql10wnt - ok
      21:53:39.0265 2200 ql12160 - ok
      21:53:39.0296 2200 ql1240 - ok
      21:53:39.0312 2200 ql1280 - ok
      21:53:39.0359 2200 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
      21:53:39.0500 2200 RasAcd - ok
      21:53:39.0531 2200 [ 8345C6F52F38A95B950B9B3D064AE3EE ] RasAuto C:\WINDOWS\System32\rasauto.dll
      21:53:39.0656 2200 RasAuto - ok
      21:53:39.0703 2200 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
      21:53:39.0843 2200 Rasl2tp - ok
      21:53:39.0875 2200 [ B279F6A9EA3ACB5844C103ED2DB65B44 ] RasMan C:\WINDOWS\System32\rasmans.dll
      21:53:40.0000 2200 RasMan - ok
      21:53:40.0015 2200 [ 2C9D4620A0FD35DE1828370B392F6E2D ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
      21:53:40.0078 2200 RasPppoe - ok
      21:53:40.0109 2200 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
      21:53:40.0250 2200 Raspti - ok
      21:53:40.0281 2200 [ 77050C6615F6EB5402F832B27FD695E0 ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
      21:53:40.0500 2200 Rdbss - ok
      21:53:40.0531 2200 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
      21:53:40.0671 2200 RDPCDD - ok
      21:53:40.0734 2200 [ C694A927EB7C354F7AE97955043A9641 ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
      21:53:40.0796 2200 rdpdr - ok
      21:53:40.0859 2200 [ C7D9BC54354B8C706ABF172D48313F1B ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
      21:53:40.0921 2200 RDPWD - ok
      21:53:40.0984 2200 [ 6193E6B05336C277EA4DB39AFA46BC23 ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
      21:53:41.0109 2200 RDSessMgr - ok
      21:53:41.0140 2200 [ 20950948970A0EA329B4254052BCF093 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
      21:53:41.0281 2200 redbook - ok
      21:53:41.0312 2200 [ 1B7481D377BD7997452352F82F4CFFED ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
      21:53:41.0437 2200 RemoteAccess - ok
      21:53:41.0484 2200 [ E424F05B07AC4357DC08D06218D76C7C ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
      21:53:41.0593 2200 RemoteRegistry - ok
      21:53:41.0640 2200 [ 9FCCBDBAA0CF915AAC0132DE1C9566B3 ] RpcLocator C:\WINDOWS\system32\locator.exe
      21:53:41.0765 2200 RpcLocator - ok
      21:53:41.0796 2200 [ AEF41FC6F108CC4F94F9B4E96AFA9C70 ] RpcSs C:\WINDOWS\system32\rpcss.dll
      21:53:41.0859 2200 RpcSs - ok
      21:53:41.0890 2200 [ 743D7D59767073A617B1DCC6C546F234 ] rspndr C:\WINDOWS\system32\DRIVERS\rspndr.sys
      21:53:41.0953 2200 rspndr - ok
      21:53:42.0000 2200 [ 5E38212C2C00DC342E2281D2F6BFB746 ] RSVP C:\WINDOWS\system32\rsvp.exe
      21:53:42.0125 2200 RSVP - ok
      21:53:42.0140 2200 [ 671ACA589DA3733FAC878A751C5BF0ED ] SamSs C:\WINDOWS\system32\lsass.exe
      21:53:42.0265 2200 SamSs - ok
      21:53:42.0296 2200 [ A50E4DD0E2A9DF762807C84153B4953A ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
      21:53:42.0421 2200 SCardSvr - ok
      21:53:42.0453 2200 [ 51BE25C404D3DD344C6079DE715E4977 ] Schedule C:\WINDOWS\system32\schedsvc.dll
      21:53:42.0593 2200 Schedule - ok
      21:53:42.0640 2200 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
      21:53:42.0734 2200 Secdrv - ok
      21:53:42.0750 2200 [ B62C489373A1E1B949FC0FAA90F3B47A ] seclogon C:\WINDOWS\System32\seclogon.dll
      21:53:42.0890 2200 seclogon - ok
      21:53:42.0906 2200 [ A95A27C874B0931A6F8F656924F4A14A ] SENS C:\WINDOWS\system32\sens.dll
      21:53:43.0046 2200 SENS - ok
      21:53:43.0062 2200 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
      21:53:43.0218 2200 serenum - ok
      21:53:43.0234 2200 [ F41B42B92AE9C1191858C3F80CC24A9C ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
      21:53:43.0390 2200 Serial - ok
      21:53:43.0468 2200 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
      21:53:43.0609 2200 Sfloppy - ok
      21:53:43.0640 2200 [ 89646F538CC2E47623E1DE2188C4D4B7 ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
      21:53:43.0687 2200 SharedAccess - ok
      21:53:43.0718 2200 [ 8A34F9730A2206726B1BE4DC4209CAB9 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
      21:53:43.0734 2200 ShellHWDetection - ok
      21:53:43.0750 2200 Simbad - ok
      21:53:43.0781 2200 Sparrow - ok
      21:53:43.0828 2200 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
      21:53:43.0984 2200 splitter - ok
      21:53:44.0000 2200 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe
      21:53:44.0046 2200 Spooler - ok
      21:53:44.0078 2200 [ CCB3065C3EE63A4515FE84AF9E78D1DD ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
      21:53:44.0171 2200 sr - ok
      21:53:44.0203 2200 [ 0F30EEC6013FCF76693405EC4A7DF899 ] srservice C:\WINDOWS\system32\srsvc.dll
      21:53:44.0281 2200 srservice - ok
      21:53:44.0328 2200 [ 9B390283569EA58D43D2586032B892F5 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
      21:53:44.0375 2200 Srv - ok
      21:53:44.0406 2200 [ B622A432EF02895DE4AA38AC8B85FA4C ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
      21:53:44.0484 2200 SSDPSRV - ok
      21:53:44.0515 2200 [ 7226422C95FDF8AA6092EE964912B0DF ] stisvc C:\WINDOWS\system32\wiaservc.dll
      21:53:44.0656 2200 stisvc - ok
      21:53:44.0671 2200 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
      21:53:44.0828 2200 swenum - ok
      21:53:44.0859 2200 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
      21:53:45.0031 2200 swmidi - ok
      21:53:45.0046 2200 SwPrv - ok
      21:53:45.0062 2200 symc810 - ok
      21:53:45.0093 2200 symc8xx - ok
      21:53:45.0109 2200 sym_hi - ok
      21:53:45.0125 2200 sym_u3 - ok
      21:53:45.0156 2200 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
      21:53:45.0296 2200 sysaudio - ok
      21:53:45.0328 2200 [ F1F6EE807F0112AAE2259B253B6DDF89 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
      21:53:45.0453 2200 SysmonLog - ok
      21:53:45.0484 2200 [ 89BFC9D79834B8D1B7DA938E4A25366D ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
      21:53:45.0531 2200 TapiSrv - ok
      21:53:45.0562 2200 [ 25A740D70E8007814A48D3FA1B34FA34 ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
      21:53:45.0609 2200 Tcpip ( UnsignedFile.Multi.Generic ) - warning
      21:53:45.0609 2200 Tcpip - detected UnsignedFile.Multi.Generic (1)
      21:53:45.0640 2200 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
      21:53:45.0781 2200 TDPIPE - ok
      21:53:45.0812 2200 [ C0578456F29E5F26285F81B7B71FE57D ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
      21:53:45.0875 2200 TDTCP - ok
      21:53:45.0890 2200 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
      21:53:46.0078 2200 TermDD - ok
      21:53:46.0125 2200 [ ECB6A86B2F0ABBAC639A08557FC71037 ] TermService C:\WINDOWS\System32\termsrv.dll
      21:53:46.0187 2200 TermService - ok
      21:53:46.0218 2200 [ 8A34F9730A2206726B1BE4DC4209CAB9 ] Themes C:\WINDOWS\System32\shsvcs.dll
      21:53:46.0234 2200 Themes - ok
      21:53:46.0265 2200 [ 65BF170815C0DF302BE038FD8891C722 ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe
      21:53:46.0343 2200 TlntSvr - ok
      21:53:46.0359 2200 TosIde - ok
      21:53:46.0390 2200 [ 321761D0D12EE5285CE79AC175CBA672 ] TrkWks C:\WINDOWS\system32\trkwks.dll
      21:53:46.0531 2200 TrkWks - ok
      21:53:46.0562 2200 [ D85938F272D1BCF3DB3A31FC0A048928 ] uagp35 C:\WINDOWS\system32\DRIVERS\uagp35.sys
      21:53:46.0703 2200 uagp35 - ok
      21:53:46.0734 2200 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
      21:53:46.0890 2200 Udfs - ok
      21:53:46.0906 2200 ultra - ok
      21:53:47.0250 2200 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
      21:53:47.0437 2200 Update - ok
      21:53:47.0484 2200 [ 7594203F459ABDB5FE53C08D6B1BD53B ] upnphost C:\WINDOWS\System32\upnphost.dll
      21:53:47.0562 2200 upnphost - ok
      21:53:47.0578 2200 [ 575BAFEB33AF057B13A10579D0DC884A ] UPS C:\WINDOWS\System32\ups.exe
      21:53:47.0703 2200 UPS - ok
      21:53:47.0734 2200 [ 52674B5DBEE499342A599C7771ABECAA ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
      21:53:47.0781 2200 usbehci - ok
      21:53:47.0812 2200 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
      21:53:47.0968 2200 usbhub - ok
      21:53:48.0000 2200 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
      21:53:48.0140 2200 usbscan - ok
      21:53:48.0171 2200 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
      21:53:48.0312 2200 USBSTOR - ok
      21:53:48.0343 2200 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
      21:53:48.0500 2200 usbuhci - ok
      21:53:48.0515 2200 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
      21:53:48.0656 2200 VgaSave - ok
      21:53:48.0671 2200 [ 3B3EFCDA263B8AC14FDF9CBDD0791B2E ] ViaIde C:\WINDOWS\system32\DRIVERS\viaide.sys
      21:53:48.0828 2200 ViaIde - ok
      21:53:48.0859 2200 [ C41FFDC191E6C832E2E53C967EAE0A16 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
      21:53:49.0000 2200 VolSnap - ok
      21:53:49.0031 2200 [ 60F28DE3FAE525D026E4D66405B80DB8 ] VSS C:\WINDOWS\System32\vssvc.exe
      21:53:49.0109 2200 VSS - ok
      21:53:49.0125 2200 [ EB94B698514CFDC171EB5B6767B861A8 ] W32Time C:\WINDOWS\system32\w32time.dll
      21:53:49.0171 2200 W32Time - ok
      21:53:49.0203 2200 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
      21:53:49.0359 2200 Wanarp - ok
      21:53:49.0390 2200 [ BBCFEAB7E871CDDAC2D397EE7FA91FDC ] Wdf01000 C:\WINDOWS\system32\DRIVERS\wdf01000.sys
      21:53:49.0500 2200 Wdf01000 - ok
      21:53:49.0515 2200 WDICA - ok
      21:53:49.0546 2200 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
      21:53:49.0703 2200 wdmaud - ok
      21:53:49.0734 2200 [ 340A4FD9017D1EBD1F6DC435282A39DC ] WebClient C:\WINDOWS\System32\webclnt.dll
      21:53:49.0859 2200 WebClient - ok
      21:53:49.0953 2200 [ A5FC75CAB140CF6A78E16C3681001872 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
      21:53:50.0078 2200 winmgmt - ok
      21:53:50.0140 2200 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\mspmsnsv.dll
      21:53:50.0187 2200 WmdmPmSN - ok
      21:53:50.0234 2200 [ 9B93931A283898B2842FC0FB06AE02A4 ] Wmi C:\WINDOWS\System32\advapi32.dll
      21:53:50.0281 2200 Wmi - ok
      21:53:50.0343 2200 [ CA1A5270ACC0062B13F62CA5A0CD8DA8 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
      21:53:50.0468 2200 WmiApSrv - ok
      21:53:50.0546 2200 [ 6782482A8CA4B5B5DAB4EF0AD78DB08F ] WMPNetworkSvc C:\Archivos de programa\Windows Media Player\WMPNetwk.exe
      21:53:50.0640 2200 WMPNetworkSvc - ok
      21:53:50.0671 2200 [ CF4DEF1BF66F06964DC0D91844239104 ] WpdUsb C:\WINDOWS\system32\DRIVERS\wpdusb.sys
      21:53:50.0703 2200 WpdUsb - ok
      21:53:50.0750 2200 [ 8CD684FD248DFE208C2F8F5052838A81 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
      21:53:50.0875 2200 wscsvc - ok
      21:53:50.0906 2200 [ AAE1A6FFBA2B0436E91795120F48C461 ] wuauserv C:\WINDOWS\system32\wuauserv.dll
      21:53:50.0921 2200 wuauserv - ok
      21:53:50.0953 2200 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
      21:53:51.0015 2200 WudfPf - ok
      21:53:51.0046 2200 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
      21:53:51.0062 2200 WudfRd - ok
      21:53:51.0078 2200 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
      21:53:51.0109 2200 WudfSvc - ok
      21:53:51.0156 2200 [ C5DAC5BFE8AE9AB11E5B255F8A4558A6 ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
      21:53:51.0234 2200 WZCSVC - ok
      21:53:51.0265 2200 [ 14FDADCF05A37582399DAF1DA1DE1C7B ] xmlprov C:\WINDOWS\System32\xmlprov.dll
      21:53:51.0390 2200 xmlprov - ok
      21:53:51.0406 2200 ================ Scan global ===============================
      21:53:51.0421 2200 [ 5E83265291342AE4B13481CA25B115A0 ] C:\WINDOWS\system32\basesrv.dll
      21:53:51.0468 2200 [ 4684FB3B04CD3F91564E4F791E1766F3 ] C:\WINDOWS\system32\winsrv.dll
      21:53:51.0484 2200 [ 4684FB3B04CD3F91564E4F791E1766F3 ] C:\WINDOWS\system32\winsrv.dll
      21:53:51.0515 2200 [ AA6E1769469F9D15603A619FC1FB9E18 ] C:\WINDOWS\system32\services.exe
      21:53:51.0515 2200 [Global] - ok
      21:53:51.0515 2200 ================ Scan MBR ==================================
      21:53:51.0531 2200 [ 792F61657FECE3D17A9122B4EE282847 ] \Device\Harddisk0\DR0
      21:53:51.0781 2200 \Device\Harddisk0\DR0 - ok
      21:53:51.0781 2200 ================ Scan VBR ==================================
      21:53:51.0781 2200 [ F65B47DF201822B5BF594AC097AD4E17 ] \Device\Harddisk0\DR0\Partition1
      21:53:51.0781 2200 \Device\Harddisk0\DR0\Partition1 - ok
      21:53:51.0828 2200 [ C22337774381CEF3D4E23969422FED6F ] \Device\Harddisk0\DR0\Partition2
      21:53:51.0828 2200 \Device\Harddisk0\DR0\Partition2 - ok
      21:53:51.0828 2200 ============================================================
      21:53:51.0828 2200 Scan finished
      21:53:51.0828 2200 ============================================================
      21:53:51.0968 2440 Detected object count: 1
      21:53:51.0968 2440 Actual detected object count: 1
      21:54:31.0062 2440 Tcpip ( UnsignedFile.Multi.Generic ) - skipped by user
      21:54:31.0062 2440 Tcpip ( UnsignedFile.Multi.Generic ) - User select action: Skip
      21:54:55.0578 2576 ============================================================
      21:54:55.0578 2576 Scan started
      21:54:55.0578 2576 Mode: Manual; SigCheck; TDLFS;
      21:54:55.0578 2576 ============================================================
      21:54:55.0796 2576 ================ Scan system memory ========================
      21:54:55.0796 2576 System memory - ok
      21:54:55.0796 2576 ================ Scan services =============================
      21:54:56.0687 2576 Abiosdsk - ok
      21:54:56.0703 2576 abp480n5 - ok
      21:54:56.0734 2576 [ CF2A07E1751A2D612D7E13AA431AB057 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
      21:54:56.0890 2576 ACPI - ok
      21:54:56.0921 2576 [ 1C905333C0B9F3D7C68DDF25E54B00F9 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
      21:54:57.0031 2576 ACPIEC - ok
      21:54:57.0093 2576 [ A9D3B95E8466BD58EEB8A1154654E162 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
      21:54:57.0109 2576 AdobeFlashPlayerUpdateSvc - ok
      21:54:57.0125 2576 adpu160m - ok
      21:54:57.0171 2576 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
      21:54:57.0281 2576 aec - ok
      21:54:57.0328 2576 [ F6B7B1ECD7B41736BDB6FF4B092BCB79 ] AFD C:\WINDOWS\System32\drivers\afd.sys
      21:54:57.0343 2576 AFD - ok
      21:54:57.0359 2576 Aha154x - ok
      21:54:57.0390 2576 aic78u2 - ok
      21:54:57.0406 2576 aic78xx - ok
      21:54:57.0453 2576 [ FEDCA791A089D4E15084DA10F38BCE45 ] Alerter C:\WINDOWS\system32\alrsvc.dll
      21:54:57.0562 2576 Alerter - ok
      21:54:57.0593 2576 [ 764B7A1E6AE2D70416A7932F3B97AC99 ] ALG C:\WINDOWS\System32\alg.exe
      21:54:57.0656 2576 ALG - ok
      21:54:57.0671 2576 AliIde - ok
      21:54:57.0750 2576 [ 267FC636801EDC5AB28E14036349E3BE ] Ambfilt C:\WINDOWS\system32\drivers\Ambfilt.sys
      21:54:57.0828 2576 Ambfilt - ok
      21:54:57.0843 2576 amsint - ok
      21:54:57.0890 2576 [ 30CD42BFCDAFEFE8567B9E527DD3AE08 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
      21:54:57.0953 2576 AppMgmt - ok
      21:54:57.0968 2576 asc - ok
      21:54:58.0000 2576 asc3350p - ok
      21:54:58.0015 2576 asc3550 - ok
      21:54:58.0218 2576 [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
      21:54:58.0250 2576 aspnet_state - ok
      21:54:58.0265 2576 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
      21:54:58.0390 2576 AsyncMac - ok
      21:54:58.0421 2576 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
      21:54:58.0546 2576 atapi - ok
      21:54:58.0562 2576 Atdisk - ok
      21:54:58.0609 2576 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
      21:54:58.0765 2576 Atmarpc - ok
      21:54:58.0781 2576 [ A37F6480B06C37DB69BBFF045CF9F55B ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
      21:54:58.0906 2576 AudioSrv - ok
      21:54:58.0921 2576 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
      21:54:59.0046 2576 audstub - ok
      21:54:59.0062 2576 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
      21:54:59.0187 2576 Beep - ok
      21:54:59.0218 2576 [ 62FE6631BB8699D7C3521C4D15D867D9 ] BITS C:\WINDOWS\system32\qmgr.dll
      21:54:59.0281 2576 BITS - ok
      21:54:59.0312 2576 [ 88F61096EDAF97F86128ED9007802709 ] Browser C:\WINDOWS\System32\browser.dll
      21:54:59.0343 2576 Browser - ok
      21:54:59.0359 2576 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
      21:54:59.0484 2576 cbidf2k - ok
      21:54:59.0500 2576 cd20xrnt - ok
      21:54:59.0515 2576 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
      21:54:59.0625 2576 Cdaudio - ok
      21:54:59.0656 2576 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
      21:54:59.0781 2576 Cdfs - ok
      21:54:59.0812 2576 [ 4B0A100EAF5C49EF3CCA8C641431EACC ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
      21:54:59.0859 2576 Cdrom - ok
      21:54:59.0859 2576 Changer - ok
      21:54:59.0890 2576 [ B0E3FEC4EE7B935A7387FD6EF31EA780 ] CiSvc C:\WINDOWS\system32\cisvc.exe
      21:55:00.0046 2576 CiSvc - ok
      21:55:00.0062 2576 [ 0C3BF68AB94CEFD64B333B326F84510E ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
      21:55:00.0187 2576 ClipSrv - ok
      21:55:00.0218 2576 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
      21:55:00.0265 2576 clr_optimization_v2.0.50727_32 - ok
      21:55:00.0265 2576 CmdIde - ok
      21:55:00.0296 2576 COMSysApp - ok
      21:55:00.0312 2576 Cpqarray - ok
      21:55:00.0343 2576 [ E423C9C1946C656E0E4840210A0A8681 ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
      21:55:00.0453 2576 CryptSvc - ok
      21:55:00.0453 2576 dac2w2k - ok
      21:55:00.0468 2576 dac960nt - ok
      21:55:00.0500 2576 [ AEF41FC6F108CC4F94F9B4E96AFA9C70 ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
      21:55:00.0531 2576 DcomLaunch - ok
      21:55:00.0562 2576 [ 8815D3712259D8BAA50240335488FEC3 ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
      21:55:00.0578 2576 Dhcp - ok
      21:55:00.0593 2576 [ 47B6AAEC570F2C11D8BAD80A064D8ED1 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
      21:55:00.0609 2576 Disk - ok
      21:55:00.0625 2576 dmadmin - ok
      21:55:00.0656 2576 [ C252A99C0A78B39FAA2E2D1D048B1050 ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
      21:55:00.0828 2576 dmboot - ok
      21:55:00.0875 2576 [ 33B4D4039CD2CB25351A7BF13B2988D9 ] dmio C:\WINDOWS\system32\drivers\dmio.sys
      21:55:01.0000 2576 dmio - ok
      21:55:01.0015 2576 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
      21:55:01.0140 2576 dmload - ok
      21:55:01.0171 2576 [ 40D0520DDAA9312C5DDDD8C7C99D8325 ] dmserver C:\WINDOWS\System32\dmserver.dll
      21:55:01.0296 2576 dmserver - ok
      21:55:01.0312 2576 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
      21:55:01.0437 2576 DMusic - ok
      21:55:01.0468 2576 [ 4F90AAADF4CA0D5D01FBCFDB10548FCC ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
      21:55:01.0484 2576 Dnscache - ok
      21:55:01.0500 2576 [ DFDDE88937B358EC11296C2AA1312AB7 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
      21:55:01.0515 2576 Dot3svc - ok
      21:55:01.0531 2576 dpti2o - ok
      21:55:01.0546 2576 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
      21:55:01.0671 2576 drmkaud - ok
      21:55:01.0687 2576 [ C5C63D78435A736C5B38D39DD8D6D8BC ] DumpDrv C:\WINDOWS\system32\drivers\DumpDrv.sys
      21:55:01.0718 2576 DumpDrv - ok
      21:55:01.0750 2576 [ 59D9E5DBCFEF1E0E3DBAC1B55C718F2D ] eamon C:\WINDOWS\system32\DRIVERS\eamon.sys
      21:55:01.0765 2576 eamon - ok
      21:55:01.0796 2576 [ FC3FE3654588E597FFF395C305062C46 ] EapHost C:\WINDOWS\System32\eapsvc.dll
      21:55:01.0921 2576 EapHost - ok
      21:55:01.0953 2576 [ 3BD67A869964BF57266CBBD1DCA38C6A ] ehdrv C:\WINDOWS\system32\DRIVERS\ehdrv.sys
      21:55:02.0000 2576 ehdrv - ok
      21:55:02.0109 2576 [ 96FC9AD2C1B008424093F5367CA1AE3E ] EhttpSrv C:\Archivos de programa\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
      21:55:02.0125 2576 EhttpSrv - ok
      21:55:02.0171 2576 [ D543E7E8BCAE3F5D256335EEE809ADF5 ] ekrn C:\Archivos de programa\ESET\ESET NOD32 Antivirus\ekrn.exe
      21:55:02.0218 2576 ekrn - ok
      21:55:02.0250 2576 [ AA0AF2830FC14FFD7E80611614ECAC74 ] epfwtdir C:\WINDOWS\system32\DRIVERS\epfwtdir.sys
      21:55:02.0281 2576 epfwtdir - ok
      21:55:02.0312 2576 [ D96623DD7CE1EA9E4DE7285D740E14F6 ] ERSvc C:\WINDOWS\System32\ersvc.dll
      21:55:02.0421 2576 ERSvc - ok
      21:55:02.0453 2576 [ AA6E1769469F9D15603A619FC1FB9E18 ] Eventlog C:\WINDOWS\system32\services.exe
      21:55:02.0484 2576 Eventlog - ok
      21:55:02.0500 2576 [ 6EC3C2A5CEA41B78BB55B30444292CB8 ] EventSystem C:\WINDOWS\system32\es.dll
      21:55:02.0515 2576 EventSystem - ok
      21:55:02.0546 2576 [ 4D893323DAE445E34A4C9038B0551BC9 ] exFat C:\WINDOWS\system32\drivers\exFat.sys
      21:55:02.0578 2576 exFat - ok
      21:55:02.0625 2576 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
      21:55:02.0734 2576 Fastfat - ok
      21:55:02.0765 2576 [ 8A34F9730A2206726B1BE4DC4209CAB9 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
      21:55:02.0781 2576 FastUserSwitchingCompatibility - ok
      21:55:02.0812 2576 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
      21:55:02.0937 2576 Fdc - ok
      21:55:02.0968 2576 [ E9648254056BCE81A85380C0C3647DC4 ] FETNDIS C:\WINDOWS\system32\DRIVERS\fetnd5.sys
      21:55:03.0093 2576 FETNDIS - ok
      21:55:03.0125 2576 [ E5E61F2C07344E91DBFB7EAFDE549AB4 ] Fips C:\WINDOWS\system32\drivers\Fips.sys
      21:55:03.0250 2576 Fips - ok
      21:55:03.0265 2576 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\drivers\Flpydisk.sys
      21:55:03.0375 2576 Flpydisk - ok
      21:55:03.0421 2576 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\DRIVERS\fltMgr.sys
      21:55:03.0531 2576 FltMgr - ok
      21:55:03.0593 2576 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
      21:55:03.0609 2576 FontCache3.0.0.0 - ok
      21:55:03.0640 2576 [ 30D42943A54704EF13E2562911DBFCEA ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
      21:55:03.0671 2576 Fs_Rec - ok
      21:55:03.0703 2576 [ CC5F3AF5711A1C7C8FA1D43BB16B401A ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
      21:55:03.0812 2576 Ftdisk - ok
      21:55:03.0859 2576 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
      21:55:03.0984 2576 Gpc - ok
      21:55:04.0015 2576 [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
      21:55:04.0140 2576 HDAudBus - ok
      21:55:04.0187 2576 [ 6B5E1788ABF15177A20C6C76C11382BB ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
      21:55:04.0296 2576 helpsvc - ok
      21:55:04.0312 2576 HidServ - ok
      21:55:04.0343 2576 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] hidusb C:\WINDOWS\system32\DRIVERS\hidusb.sys
      21:55:04.0468 2576 hidusb - ok
      21:55:04.0500 2576 [ 8F80B5FB68E1E767D872CB9A8CAD5B5D ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
      21:55:04.0625 2576 hkmsvc - ok
      21:55:04.0640 2576 hpn - ok
      21:55:04.0687 2576 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
      21:55:04.0718 2576 HTTP - ok
      21:55:04.0750 2576 [ 0406B351908A8C143B6B6BB8834D4920 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
      21:55:04.0890 2576 HTTPFilter - ok
      21:55:04.0906 2576 i2omgmt - ok
      21:55:04.0921 2576 i2omp - ok
      21:55:05.0031 2576 [ 4A2490A66E8271901E89DD5FB79748AE ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
      21:55:05.0187 2576 i8042prt - ok
      21:55:05.0281 2576 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
      21:55:05.0375 2576 idsvc - ok
      21:55:05.0406 2576 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
      21:55:05.0531 2576 Imapi - ok
      21:55:05.0562 2576 [ E50ABD04CA0C015017722014D1D9251E ] ImapiService C:\WINDOWS\system32\imapi.exe
      21:55:05.0671 2576 ImapiService - ok
      21:55:05.0703 2576 ini910u - ok
      21:55:05.0921 2576 [ 5D138ADC44C43BF37634C8E528D75B1F ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys
      21:55:06.0171 2576 IntcAzAudAddService - ok
      21:55:06.0203 2576 IntelIde - ok
      21:55:06.0234 2576 [ 49A060498C09DB18C3EA9939789005AB ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
      21:55:06.0359 2576 intelppm - ok
      21:55:06.0390 2576 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
      21:55:06.0515 2576 Ip6Fw - ok
      21:55:06.0531 2576 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
      21:55:06.0656 2576 IpFilterDriver - ok
      21:55:06.0687 2576 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
      21:55:06.0812 2576 IpInIp - ok
      21:55:06.0828 2576 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
      21:55:06.0953 2576 IpNat - ok
      21:55:06.0984 2576 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
      21:55:07.0093 2576 IPSec - ok
      21:55:07.0125 2576 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
      21:55:07.0203 2576 IRENUM - ok
      21:55:07.0234 2576 [ 0F3D281B0410FE5D482AADA37D20524B ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
      21:55:07.0343 2576 isapnp - ok
      21:55:07.0375 2576 [ 188DDD286BC0DAEA6984858C6A4D7BBF ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
      21:55:07.0484 2576 Kbdclass - ok
      21:55:07.0515 2576 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
      21:55:07.0640 2576 kmixer - ok
      21:55:07.0671 2576 [ C6EBF1D6AD71DF30DB49B8D3287E1368 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
      21:55:07.0687 2576 KSecDD - ok
      21:55:07.0734 2576 [ CCFC469EFD7ECDDC8FC887BAE7B8563F ] LanmanServer C:\WINDOWS\System32\srvsvc.dll
      21:55:07.0765 2576 LanmanServer - ok
      21:55:07.0796 2576 [ 6EA0EA1A2C9022A3B887048C40C8360B ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
      21:55:07.0812 2576 lanmanworkstation - ok
      21:55:07.0828 2576 lbrtfdc - ok
      21:55:07.0890 2576 [ 01AF2112FF79AA613B6621A75C4E9277 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
      21:55:08.0015 2576 LmHosts - ok
      21:55:08.0031 2576 [ 65E794E86468B61F2BC79ABC48BC4433 ] MBAMProtector C:\WINDOWS\system32\drivers\mbam.sys
      21:55:08.0062 2576 MBAMProtector - ok
      21:55:08.0093 2576 [ 0DCF16B1449811EFA47AB52CAC84093C ] MBAMScheduler C:\Archivos de programa\Malwarebytes' Anti-Malware\mbamscheduler.exe
      21:55:08.0125 2576 MBAMScheduler - ok
      21:55:08.0171 2576 [ 9EAABA4D601004BEA4DAA6E146E19A96 ] MBAMService C:\Archivos de programa\Malwarebytes' Anti-Malware\mbamservice.exe
      21:55:08.0203 2576 MBAMService - ok
      21:55:08.0281 2576 [ 11F714F85530A2BD134074DC30E99FCA ] MDM C:\Archivos de programa\Archivos comunes\Microsoft Shared\VS7DEBUG\MDM.EXE
      21:55:08.0296 2576 MDM - ok
      21:55:08.0328 2576 [ 047E70B04B288439245DDC8DD1A31982 ] Messenger C:\WINDOWS\System32\msgsvc.dll
      21:55:08.0453 2576 Messenger - ok
      21:55:08.0484 2576 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
      21:55:08.0593 2576 mnmdd - ok
      21:55:08.0625 2576 [ 85ADA209695A677C9D60962CDE10696B ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
      21:55:08.0750 2576 mnmsrvc - ok
      21:55:08.0781 2576 [ 9024556E739B8469D2B8F5F0E4C9BC9F ] Modem C:\WINDOWS\system32\drivers\Modem.sys
      21:55:08.0906 2576 Modem - ok
      21:55:08.0968 2576 [ C7D9F9717916B34C1B00DD4834AF485C ] Monfilt C:\WINDOWS\system32\drivers\Monfilt.sys
      21:55:09.0031 2576 Monfilt - ok
      21:55:09.0078 2576 [ 6FD36B4994A2363659A65C9F970CFDB7 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
      21:55:09.0171 2576 Mouclass - ok
      21:55:09.0203 2576 [ 8EE532E516B2D23D686CFC1CC0A15C25 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
      21:55:09.0312 2576 mouhid - ok
      21:55:09.0343 2576 [ 1A1FAA5102466F418494E94FF9B0B091 ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
      21:55:09.0359 2576 MountMgr - ok
      21:55:09.0375 2576 mraid35x - ok
      21:55:09.0421 2576 [ 6A7C4AC5B52155115DEE97995C1CF157 ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
      21:55:09.0437 2576 MRxDAV - ok
      21:55:09.0484 2576 [ FB2FCCC70F7174C7BF64F48E96D3ADF4 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
      21:55:09.0515 2576 MRxSmb - ok
      21:55:09.0546 2576 [ 975BD2762BF355A572597CC54D97BA93 ] MSDTC C:\WINDOWS\system32\msdtc.exe
      21:55:09.0656 2576 MSDTC - ok
      21:55:09.0687 2576 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
      21:55:09.0796 2576 Msfs - ok
      21:55:09.0812 2576 MSIServer - ok
      21:55:09.0843 2576 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
      21:55:09.0968 2576 MSKSSRV - ok
      21:55:10.0000 2576 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
      21:55:10.0109 2576 MSPCLOCK - ok
      21:55:10.0140 2576 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
      21:55:10.0265 2576 MSPQM - ok
      21:55:10.0296 2576 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
      21:55:10.0421 2576 mssmbios - ok
      21:55:10.0437 2576 [ F7B1AD991491F02AF6DA70B00B8BF114 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
      21:55:10.0468 2576 Mup - ok
      21:55:10.0515 2576 [ FD578FCC03BBD76AF1E62202E6670D29 ] napagent C:\WINDOWS\System32\qagentrt.dll
      21:55:10.0625 2576 napagent - ok
      21:55:10.0656 2576 [ B5B1080D35974C0E718D64280761BCD5 ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
      21:55:10.0687 2576 NDIS - ok
      21:55:10.0718 2576 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
      21:55:10.0734 2576 NdisTapi - ok
      21:55:10.0781 2576 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
      21:55:10.0906 2576 Ndisuio - ok
      21:55:10.0921 2576 [ B053A8411045FD0664B389A090CB2BBC ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
      21:55:10.0937 2576 NdisWan - ok
      21:55:10.0984 2576 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
      21:55:11.0000 2576 NDProxy - ok
      21:55:11.0031 2576 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
      21:55:11.0156 2576 NetBIOS - ok
      21:55:11.0171 2576 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
      21:55:11.0296 2576 NetBT - ok
      21:55:11.0328 2576 [ 96B009E5B163850CF94DC333ED2BEE93 ] NetDDE C:\WINDOWS\system32\netdde.exe
      21:55:11.0437 2576 NetDDE - ok
      21:55:11.0453 2576 [ 96B009E5B163850CF94DC333ED2BEE93 ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
      21:55:11.0562 2576 NetDDEdsdm - ok
      21:55:11.0593 2576 [ 671ACA589DA3733FAC878A751C5BF0ED ] Netlogon C:\WINDOWS\system32\lsass.exe
      21:55:11.0718 2576 Netlogon - ok
      21:55:11.0750 2576 [ A48884C9359EE9F1FC8F3F0D93FB1D95 ] Netman C:\WINDOWS\System32\netman.dll
      21:55:11.0859 2576 Netman - ok
      21:55:11.0906 2576 [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
      21:55:11.0921 2576 NetTcpPortSharing - ok
      21:55:11.0953 2576 [ DEB0B8C3F99D54FD19433B682982F9FA ] Nla C:\WINDOWS\System32\mswsock.dll
      21:55:11.0984 2576 Nla - ok
      21:55:12.0015 2576 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
      21:55:12.0125 2576 Npfs - ok
      21:55:12.0171 2576 [ AE8CAD8F28DB13B515A68510A539B0B8 ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
      21:55:12.0218 2576 Ntfs - ok
      21:55:12.0234 2576 [ 671ACA589DA3733FAC878A751C5BF0ED ] NtLmSsp C:\WINDOWS\system32\lsass.exe
      21:55:12.0343 2576 NtLmSsp - ok
      21:55:12.0375 2576 [ D60C40D71A4D874C903255E4827AFA0C ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
      21:55:12.0500 2576 NtmsSvc - ok
      21:55:12.0531 2576 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
      21:55:12.0640 2576 Null - ok
      21:55:12.0671 2576 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
      21:55:12.0781 2576 NwlnkFlt - ok
      21:55:12.0796 2576 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
      21:55:12.0921 2576 NwlnkFwd - ok
      21:55:12.0953 2576 [ 7A56CF3E3F12E8AF599963B16F50FB6A ] ose C:\Archivos de programa\Archivos comunes\Microsoft Shared\Source Engine\OSE.EXE
      21:55:12.0968 2576 ose - ok
      21:55:13.0015 2576 [ E7855CBD8BD1FDA085A3F92CFF7906E2 ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
      21:55:13.0156 2576 Parport - ok
      21:55:13.0171 2576 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
      21:55:13.0312 2576 PartMgr - ok
      21:55:13.0343 2576 [ FAD44D704ECD7D39AD01415B8BB34204 ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
      21:55:13.0468 2576 ParVdm - ok
      21:55:13.0484 2576 [ F11BC84AE6C7B003B5E0C8EEB4A1F444 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
      21:55:13.0609 2576 PCI - ok
      21:55:13.0625 2576 PCIDump - ok
      21:55:13.0671 2576 [ 33D63F0A9021ACB4D75D83B646B93A30 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
      21:55:13.0781 2576 PCIIde - ok
      21:55:13.0828 2576 [ F50C27CCA56DC97B3A45E7F0059BD2BA ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
      21:55:13.0937 2576 Pcmcia - ok
      21:55:13.0953 2576 PDCOMP - ok
      21:55:13.0968 2576 PDFRAME - ok
      21:55:13.0984 2576 PDRELI - ok
      21:55:14.0015 2576 PDRFRAME - ok
      21:55:14.0031 2576 perc2 - ok
      21:55:14.0062 2576 perc2hib - ok
      21:55:14.0125 2576 [ AA6E1769469F9D15603A619FC1FB9E18 ] PlugPlay C:\WINDOWS\system32\services.exe
      21:55:14.0140 2576 PlugPlay - ok
      21:55:14.0171 2576 [ 671ACA589DA3733FAC878A751C5BF0ED ] PolicyAgent C:\WINDOWS\system32\lsass.exe
      21:55:14.0265 2576 PolicyAgent - ok
      21:55:14.0296 2576 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
      21:55:14.0437 2576 PptpMiniport - ok
      21:55:14.0468 2576 [ 671ACA589DA3733FAC878A751C5BF0ED ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
      21:55:14.0578 2576 ProtectedStorage - ok
      21:55:14.0609 2576 [ D8E11D311785F89F1D70A28B0E879127 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
      21:55:14.0640 2576 PSched - ok
      21:55:14.0671 2576 [ 0B6DEA0A1662CAB8F2BF339DC0752EF4 ] PSI_SVC_2 c:\Archivos de programa\Archivos comunes\Protexis\License Service\PsiService_2.exe
      21:55:14.0687 2576 PSI_SVC_2 - ok
      21:55:14.0734 2576 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
      21:55:14.0843 2576 Ptilink - ok
      21:55:14.0859 2576 ql1080 - ok
      21:55:14.0875 2576 Ql10wnt - ok
      21:55:14.0890 2576 ql12160 - ok
      21:55:14.0921 2576 ql1240 - ok
      21:55:14.0937 2576 ql1280 - ok
      21:55:14.0984 2576 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
      21:55:15.0109 2576 RasAcd - ok
      21:55:15.0140 2576 [ 8345C6F52F38A95B950B9B3D064AE3EE ] RasAuto C:\WINDOWS\System32\rasauto.dll
      21:55:15.0250 2576 RasAuto - ok
      21:55:15.0281 2576 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
      21:55:15.0421 2576 Rasl2tp - ok
      21:55:15.0437 2576 [ B279F6A9EA3ACB5844C103ED2DB65B44 ] RasMan C:\WINDOWS\System32\rasmans.dll
      21:55:15.0562 2576 RasMan - ok
      21:55:15.0593 2576 [ 2C9D4620A0FD35DE1828370B392F6E2D ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
      21:55:15.0609 2576 RasPppoe - ok
      21:55:15.0640 2576 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
      21:55:15.0750 2576 Raspti - ok
      21:55:15.0796 2576 [ 77050C6615F6EB5402F832B27FD695E0 ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
      21:55:15.0812 2576 Rdbss - ok
      21:55:15.0843 2576 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
      21:55:15.0953 2576 RDPCDD - ok
      21:55:16.0000 2576 [ C694A927EB7C354F7AE97955043A9641 ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
      21:55:16.0031 2576 rdpdr - ok
      21:55:16.0078 2576 [ C7D9BC54354B8C706ABF172D48313F1B ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
      21:55:16.0093 2576 RDPWD - ok
      21:55:16.0140 2576 [ 6193E6B05336C277EA4DB39AFA46BC23 ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
      21:55:16.0265 2576 RDSessMgr - ok
      21:55:16.0281 2576 [ 20950948970A0EA329B4254052BCF093 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
      21:55:16.0390 2576 redbook - ok
      21:55:16.0437 2576 [ 1B7481D377BD7997452352F82F4CFFED ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
      21:55:16.0546 2576 RemoteAccess - ok
      21:55:16.0578 2576 [ E424F05B07AC4357DC08D06218D76C7C ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
      21:55:16.0687 2576 RemoteRegistry - ok
      21:55:16.0718 2576 [ 9FCCBDBAA0CF915AAC0132DE1C9566B3 ] RpcLocator C:\WINDOWS\system32\locator.exe
      21:55:16.0828 2576 RpcLocator - ok
      21:55:16.0859 2576 [ AEF41FC6F108CC4F94F9B4E96AFA9C70 ] RpcSs C:\WINDOWS\system32\rpcss.dll
      21:55:16.0890 2576 RpcSs - ok
      21:55:16.0921 2576 [ 743D7D59767073A617B1DCC6C546F234 ] rspndr C:\WINDOWS\system32\DRIVERS\rspndr.sys
      21:55:16.0937 2576 rspndr - ok
      21:55:16.0968 2576 [ 5E38212C2C00DC342E2281D2F6BFB746 ] RSVP C:\WINDOWS\system32\rsvp.exe
      21:55:17.0078 2576 RSVP - ok
      21:55:17.0109 2576 [ 671ACA589DA3733FAC878A751C5BF0ED ] SamSs C:\WINDOWS\system32\lsass.exe
      21:55:17.0218 2576 SamSs - ok
      21:55:17.0250 2576 [ A50E4DD0E2A9DF762807C84153B4953A ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
      21:55:17.0375 2576 SCardSvr - ok
      21:55:17.0406 2576 [ 51BE25C404D3DD344C6079DE715E4977 ] Schedule C:\WINDOWS\system32\schedsvc.dll
      21:55:17.0531 2576 Schedule - ok
      21:55:17.0578 2576 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
      21:55:17.0640 2576 Secdrv - ok
      21:55:17.0671 2576 [ B62C489373A1E1B949FC0FAA90F3B47A ] seclogon C:\WINDOWS\System32\seclogon.dll
      21:55:17.0781 2576 seclogon - ok
      21:55:17.0812 2576 [ A95A27C874B0931A6F8F656924F4A14A ] SENS C:\WINDOWS\system32\sens.dll
      21:55:17.0953 2576 SENS - ok
      21:55:17.0968 2576 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
      21:55:18.0093 2576 serenum - ok
      21:55:18.0109 2576 [ F41B42B92AE9C1191858C3F80CC24A9C ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
      21:55:18.0265 2576 Serial - ok
      21:55:18.0328 2576 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
      21:55:18.0468 2576 Sfloppy - ok
      21:55:18.0500 2576 [ 89646F538CC2E47623E1DE2188C4D4B7 ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
      21:55:18.0531 2576 SharedAccess - ok
      21:55:18.0562 2576 [ 8A34F9730A2206726B1BE4DC4209CAB9 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
      21:55:18.0578 2576 ShellHWDetection - ok
      21:55:18.0593 2576 Simbad - ok
      21:55:18.0625 2576 Sparrow - ok
      21:55:18.0671 2576 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
      21:55:18.0781 2576 splitter - ok
      21:55:18.0812 2576 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe
      21:55:18.0828 2576 Spooler - ok
      21:55:18.0875 2576 [ CCB3065C3EE63A4515FE84AF9E78D1DD ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
      21:55:18.0937 2576 sr - ok
      21:55:18.0968 2576 [ 0F30EEC6013FCF76693405EC4A7DF899 ] srservice C:\WINDOWS\system32\srsvc.dll
      21:55:19.0031 2576 srservice - ok
      21:55:19.0078 2576 [ 9B390283569EA58D43D2586032B892F5 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
      21:55:19.0109 2576 Srv - ok
      21:55:19.0140 2576 [ B622A432EF02895DE4AA38AC8B85FA4C ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
      21:55:19.0218 2576 SSDPSRV - ok
      21:55:19.0250 2576 [ 7226422C95FDF8AA6092EE964912B0DF ] stisvc C:\WINDOWS\system32\wiaservc.dll
      21:55:19.0375 2576 stisvc - ok
      21:55:19.0406 2576 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
      21:55:19.0515 2576 swenum - ok
      21:55:19.0546 2576 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
      21:55:19.0671 2576 swmidi - ok
      21:55:19.0687 2576 SwPrv - ok
      21:55:19.0703 2576 symc810 - ok
      21:55:19.0734 2576 symc8xx - ok
      21:55:19.0750 2576 sym_hi - ok
      21:55:19.0781 2576 sym_u3 - ok
      21:55:19.0812 2576 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
      21:55:19.0937 2576 sysaudio - ok
      21:55:19.0968 2576 [ F1F6EE807F0112AAE2259B253B6DDF89 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
      21:55:20.0078 2576 SysmonLog - ok
      21:55:20.0125 2576 [ 89BFC9D79834B8D1B7DA938E4A25366D ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
      21:55:20.0156 2576 TapiSrv - ok
      21:55:20.0187 2576 [ 25A740D70E8007814A48D3FA1B34FA34 ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
      21:55:20.0203 2576 Tcpip ( UnsignedFile.Multi.Generic ) - warning
      21:55:20.0203 2576 Tcpip - detected UnsignedFile.Multi.Generic (1)
      21:55:20.0234 2576 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
      21:55:20.0359 2576 TDPIPE - ok
      21:55:20.0390 2576 [ C0578456F29E5F26285F81B7B71FE57D ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
      21:55:20.0437 2576 TDTCP - ok
      21:55:20.0468 2576 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
      21:55:20.0578 2576 TermDD - ok
      21:55:20.0640 2576 [ ECB6A86B2F0ABBAC639A08557FC71037 ] TermService C:\WINDOWS\System32\termsrv.dll
      21:55:20.0671 2576 TermService - ok
      21:55:20.0687 2576 [ 8A34F9730A2206726B1BE4DC4209CAB9 ] Themes C:\WINDOWS\System32\shsvcs.dll
      21:55:20.0703 2576 Themes - ok
      21:55:20.0734 2576 [ 65BF170815C0DF302BE038FD8891C722 ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe
      21:55:20.0796 2576 TlntSvr - ok
      21:55:20.0812 2576 TosIde - ok
      21:55:20.0859 2576 [ 321761D0D12EE5285CE79AC175CBA672 ] TrkWks C:\WINDOWS\system32\trkwks.dll
      21:55:20.0968 2576 TrkWks - ok
      21:55:21.0015 2576 [ D85938F272D1BCF3DB3A31FC0A048928 ] uagp35 C:\WINDOWS\system32\DRIVERS\uagp35.sys
      21:55:21.0125 2576 uagp35 - ok
      21:55:21.0156 2576 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
      21:55:21.0265 2576 Udfs - ok
      21:55:21.0281 2576 ultra - ok
      21:55:21.0328 2576 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
      21:55:21.0515 2576 Update - ok
      21:55:21.0546 2576 [ 7594203F459ABDB5FE53C08D6B1BD53B ] upnphost C:\WINDOWS\System32\upnphost.dll
      21:55:21.0625 2576 upnphost - ok
      21:55:21.0640 2576 [ 575BAFEB33AF057B13A10579D0DC884A ] UPS C:\WINDOWS\System32\ups.exe
      21:55:21.0750 2576 UPS - ok
      21:55:21.0765 2576 [ 52674B5DBEE499342A599C7771ABECAA ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
      21:55:21.0796 2576 usbehci - ok
      21:55:21.0828 2576 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
      21:55:21.0937 2576 usbhub - ok
      21:55:21.0968 2576 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
      21:55:22.0093 2576 usbscan - ok
      21:55:22.0109 2576 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
      21:55:22.0234 2576 USBSTOR - ok
      21:55:22.0265 2576 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
      21:55:22.0375 2576 usbuhci - ok
      21:55:22.0406 2576 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
      21:55:22.0515 2576 VgaSave - ok
      21:55:22.0546 2576 [ 3B3EFCDA263B8AC14FDF9CBDD0791B2E ] ViaIde C:\WINDOWS\system32\DRIVERS\viaide.sys
      21:55:22.0671 2576 ViaIde - ok
      21:55:22.0703 2576 [ C41FFDC191E6C832E2E53C967EAE0A16 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
      21:55:22.0812 2576 VolSnap - ok
      21:55:22.0828 2576 [ 60F28DE3FAE525D026E4D66405B80DB8 ] VSS C:\WINDOWS\System32\vssvc.exe
      21:55:22.0890 2576 VSS - ok
      21:55:22.0921 2576 [ EB94B698514CFDC171EB5B6767B861A8 ] W32Time C:\WINDOWS\system32\w32time.dll
      21:55:22.0953 2576 W32Time - ok
      21:55:22.0968 2576 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
      21:55:23.0078 2576 Wanarp - ok
      21:55:23.0109 2576 [ BBCFEAB7E871CDDAC2D397EE7FA91FDC ] Wdf01000 C:\WINDOWS\system32\DRIVERS\wdf01000.sys
      21:55:23.0140 2576 Wdf01000 - ok
      21:55:23.0156 2576 WDICA - ok
      21:55:23.0187 2576 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
      21:55:23.0312 2576 wdmaud - ok
      21:55:23.0343 2576 [ 340A4FD9017D1EBD1F6DC435282A39DC ] WebClient C:\WINDOWS\System32\webclnt.dll
      21:55:23.0453 2576 WebClient - ok
      21:55:23.0562 2576 [ A5FC75CAB140CF6A78E16C3681001872 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
      21:55:23.0671 2576 winmgmt - ok
      21:55:23.0750 2576 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\mspmsnsv.dll
      21:55:23.0781 2576 WmdmPmSN - ok
      21:55:23.0828 2576 [ 9B93931A283898B2842FC0FB06AE02A4 ] Wmi C:\WINDOWS\System32\advapi32.dll
      21:55:23.0875 2576 Wmi - ok
      21:55:23.0937 2576 [ CA1A5270ACC0062B13F62CA5A0CD8DA8 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
      21:55:24.0046 2576 WmiApSrv - ok
      21:55:24.0109 2576 [ 6782482A8CA4B5B5DAB4EF0AD78DB08F ] WMPNetworkSvc C:\Archivos de programa\Windows Media Player\WMPNetwk.exe
      21:55:24.0187 2576 WMPNetworkSvc - ok
      21:55:24.0218 2576 [ CF4DEF1BF66F06964DC0D91844239104 ] WpdUsb C:\WINDOWS\system32\DRIVERS\wpdusb.sys
      21:55:24.0234 2576 WpdUsb - ok
      21:55:24.0265 2576 [ 8CD684FD248DFE208C2F8F5052838A81 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
      21:55:24.0390 2576 wscsvc - ok
      21:55:24.0421 2576 [ AAE1A6FFBA2B0436E91795120F48C461 ] wuauserv C:\WINDOWS\system32\wuauserv.dll
      21:55:24.0437 2576 wuauserv - ok
      21:55:24.0468 2576 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
      21:55:24.0484 2576 WudfPf - ok
      21:55:24.0500 2576 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
      21:55:24.0515 2576 WudfRd - ok
      21:55:24.0531 2576 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
      21:55:24.0562 2576 WudfSvc - ok
      21:55:24.0593 2576 [ C5DAC5BFE8AE9AB11E5B255F8A4558A6 ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
      21:55:24.0640 2576 WZCSVC - ok
      21:55:24.0671 2576 [ 14FDADCF05A37582399DAF1DA1DE1C7B ] xmlprov C:\WINDOWS\System32\xmlprov.dll
      21:55:24.0796 2576 xmlprov - ok
      21:55:24.0796 2576 ================ Scan global ===============================
      21:55:24.0828 2576 [ 5E83265291342AE4B13481CA25B115A0 ] C:\WINDOWS\system32\basesrv.dll
      21:55:24.0859 2576 [ 4684FB3B04CD3F91564E4F791E1766F3 ] C:\WINDOWS\system32\winsrv.dll
      21:55:24.0875 2576 [ 4684FB3B04CD3F91564E4F791E1766F3 ] C:\WINDOWS\system32\winsrv.dll
      21:55:24.0890 2576 [ AA6E1769469F9D15603A619FC1FB9E18 ] C:\WINDOWS\system32\services.exe
      21:55:24.0906 2576 [Global] - ok
      21:55:24.0906 2576 ================ Scan MBR ==================================
      21:55:24.0921 2576 [ 792F61657FECE3D17A9122B4EE282847 ] \Device\Harddisk0\DR0
      21:55:25.0156 2576 \Device\Harddisk0\DR0 - ok
      21:55:25.0156 2576 ================ Scan VBR ==================================
      21:55:25.0171 2576 [ F65B47DF201822B5BF594AC097AD4E17 ] \Device\Harddisk0\DR0\Partition1
      21:55:25.0171 2576 \Device\Harddisk0\DR0\Partition1 - ok
      21:55:25.0218 2576 [ C22337774381CEF3D4E23969422FED6F ] \Device\Harddisk0\DR0\Partition2
      21:55:25.0218 2576 \Device\Harddisk0\DR0\Partition2 - ok
      21:55:25.0218 2576 ============================================================
      21:55:25.0218 2576 Scan finished
      21:55:25.0218 2576 ============================================================
      21:55:25.0265 2500 Detected object count: 1
      21:55:25.0265 2500 Actual detected object count: 1
      21:55:37.0359 2500 Tcpip ( UnsignedFile.Multi.Generic ) - skipped by user
      21:55:37.0359 2500 Tcpip ( UnsignedFile.Multi.Generic ) - User select action: Skip
      21:55:40.0859 0580 Deinitialize success

    5. #5
      Ex-Colaborador Avatar de Superlucas
      Registrado
      sep 2011
      Ubicación
      Argentina
      Mensajes
      15.747

      Re: Variante de Win32/Yebot.AA Troyano

      Hola ,

      No va a ser necesario el formateo.

      Abrí Ccleanner -> Herramientas-> Inicio-> Guardar un archivo de texto y lo guardas en el escritorio con el nombre runs.txt

      En tu próxima respuesta pega el contenido de runs.txt
      Vas a correr o vas a pelear?- Muahy Thai

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    6. #6
      Usuario Avatar de Dr.Brown
      Registrado
      dic 2009
      Ubicación
      Uruguay
      Mensajes
      10

      Re: Variante de Win32/Yebot.AA Troyano

      Aca estamos de nuevo, pegando los resultados que me pediste.

      Saludos y gracias por la preocupacion.

      Si HKCU:Run CTFMON.EXE Microsoft Corporation C:\WINDOWS\system32\ctfmon.exe
      Si HKCU:Run msnmsgr Microsoft Corporation "C:\Archivos de programa\Windows Live\Messenger\msnmsgr.exe" /background
      Si HKCU:Run WwYNcoq C:\WINDOWS\system32\WwYNcoq.exe
      Si HKCU:Run Xvid C:\Archivos de programa\Xvid\CheckUpdate.exe
      Si HKLM:Run egui ESET "C:\Archivos de programa\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
      Si HKLM:Run IMJPMIG8.1 Microsoft Corporation "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
      Si HKLM:Run PHIME2002A Microsoft Corporation C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
      Si HKLM:Run PHIME2002ASync Microsoft Corporation C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
      Si HKLM:Run RTHDCPL Realtek Semiconductor Corp. RTHDCPL.EXE

    7. #7
      Ex-Colaborador Avatar de Superlucas
      Registrado
      sep 2011
      Ubicación
      Argentina
      Mensajes
      15.747

      Re: Variante de Win32/Yebot.AA Troyano

      Hola ,

      Ningún problema

      Descarga OTM by Oltimer y lo copias al escritorio
      Dale doble clic en el icono de OTM para poder abrirlo
      Copiar el texto que se encuentra dentro del recuadrado de abajo, y pegar el texto en el marco izquierdo de OTMoveIt llamado "Paste instruccions for items to be moved ".

      Código:
      :reg
      [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
      "WwYNcoq"=-
      :files
      C:\WINDOWS\system32\WwYNcoq.exe
      :commands
      [resethosts]
      [emptytemp]
      [createrestorepoint]
      Presiona sobre el boton Moveit! para empezar el proceso de eliminación, posiblemente se le pida reiniciar la pc tenemos que ponerle a Si! ya que es fundamental para eliminar los archivos .

      Los resultados aparecen despues del reinicio en C: \ _ OTM\MovedFiles\***_***.log (Donde sale "***_***" es la fecha y hora). Tenes que pegarme el informe de OTM en tu próxima respuesta.

      Nota: Es posible que note archivos u carpetas visibles en el escritorio y/o en otro apartado del sistema, esto es normal, al finalizar los procedimientos, todo volverá a la normalidad.
      Después de eso me contas como continua todo
      Vas a correr o vas a pelear?- Muahy Thai

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    8. #8
      Usuario Avatar de Dr.Brown
      Registrado
      dic 2009
      Ubicación
      Uruguay
      Mensajes
      10

      Re: Variante de Win32/Yebot.AA Troyano

      Gracias!! Y alla vamos por el OTM by Oltimer.

    9. #9
      Ex-Colaborador Avatar de Superlucas
      Registrado
      sep 2011
      Ubicación
      Argentina
      Mensajes
      15.747

      Re: Variante de Win32/Yebot.AA Troyano

      Hola ,

      Quedo a la espera
      Vas a correr o vas a pelear?- Muahy Thai

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    10. #10
      Usuario Avatar de Dr.Brown
      Registrado
      dic 2009
      Ubicación
      Uruguay
      Mensajes
      10

      Re: Variante de Win32/Yebot.AA Troyano

      Trato de ejecutarlo pero como que se me "cuelga" la pc , se queda como congelada en cuanto pongo en funcionamiento el programa, lo mismo me paso con el DT-Kill.exe para el virus del doble tilde.

      Si no hay otra solucion, quiero agradecerte nuevamente por la preocupacion.

    Página 1 de 2 12 ÚltimoÚltimo