• Registrarse
  • Iniciar sesión


  • Resultados 1 al 7 de 7

    Redireccionamiento de Página.

    Hola amigos, soy Jimmy_R seguidor del foro de hace ya varios años, pero recien ahora me registro y me da gusto pertenecer a la comunidad. Problema: Cuando hago una busqueda con google, altavista, yandex, cualquiera ...

    1. #1
      Usuario Avatar de Jimmy_R
      Registrado
      oct 2012
      Ubicación
      México
      Mensajes
      4

      Atención Redireccionamiento de Página.

      Hola amigos, soy Jimmy_R seguidor del foro de hace ya varios años, pero recien ahora me registro y me da gusto pertenecer a la comunidad.

      Problema:
      Cuando hago una busqueda con google, altavista, yandex, cualquiera que sea el buscador o Navegador llamse firefox, Maxthon3, Chrome......a una página en concreto, me redirecciona a "http://404.lflink.com/" en otras ocaciones me manda a una página de juegos de casino, o a veces me aparece en vez de la página un mensaje de mi antivirus (Eset Smart Security v5) que dicha página es peligrosa.

      Pero si a dicha página (no pongo url porque no se si esta permitido) ingreso desde la barra de direcciones no tengo ningún problema.

      Espero me ayuden a resolver, un saludo! =)

    2. #2
      Moderador.
      Avatar de @Tincho
      Registrado
      may 2008
      Ubicación
      Argentina
      Mensajes
      14.701

      Re: Redireccionamiento de Página.

      Buenas

      Realiza lo siguiente:


      • Descarga TDSSKiller.zip y extrae el contenido en tu escritorio

      • Desconecte el equipo físicamente de Internet - Quite el cable/apague el módem

      • Doble clic sobre TDSSKiller.exe
      • Clic sobre Change parameters > marque Detect TDLFS File System

      • Haga clic en OK > Start Scan, terminando el análisis:


        • Se mostraran los resultados NO modifique las acciones predeterminadas, únicamente:
        • Si se encuentra "TDLFS File System/TDSS File system" la opción a seguir es Delete


      • Haga clic en Continue > Reboot computer para terminar el proceso.



      Abrir el archivo de texto en C:\TDSSKiller_***_***_.txt copiar todo su contenido y pegarlo en su siguiente respuesta.
      Tyny's
      If on your journey, you should encounter God, God will be cut!

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    3. #3
      Usuario Avatar de Jimmy_R
      Registrado
      oct 2012
      Ubicación
      México
      Mensajes
      4

      Re: Redireccionamiento de Página.

      Buenas Tyny's gracias por atenderme.

      Este es el resultado:

      13:26:16.0393 5788 TDSS rootkit removing tool 2.8.13.0 Oct 12 2012 17:26:47
      13:26:16.0424 5788 ============================================================
      13:26:16.0424 5788 Current date / time: 2012/10/16 13:26:16.0424
      13:26:16.0424 5788 SystemInfo:
      13:26:16.0424 5788
      13:26:16.0424 5788 OS Version: 6.1.7601 ServicePack: 1.0
      13:26:16.0424 5788 Product type: Workstation
      13:26:16.0424 5788 ComputerName: JIMMY-PC
      13:26:16.0424 5788 UserName: Jimmy
      13:26:16.0424 5788 Windows directory: C:\Windows
      13:26:16.0424 5788 System windows directory: C:\Windows
      13:26:16.0424 5788 Processor architecture: Intel x86
      13:26:16.0424 5788 Number of processors: 2
      13:26:16.0424 5788 Page size: 0x1000
      13:26:16.0424 5788 Boot type: Normal boot
      13:26:16.0424 5788 ============================================================
      13:26:17.0688 5788 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
      13:26:17.0719 5788 Drive \Device\Harddisk1\DR1 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
      13:26:17.0719 5788 ============================================================
      13:26:17.0719 5788 \Device\Harddisk0\DR0:
      13:26:17.0719 5788 MBR partitions:
      13:26:17.0719 5788 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
      13:26:17.0719 5788 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x167FD800
      13:26:17.0719 5788 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x16830000, BlocksNum 0x6400000
      13:26:17.0734 5788 \Device\Harddisk0\DR0\Partition4: MBR, Type 0x7, StartLBA 0x1CC30800, BlocksNum 0x400000
      13:26:17.0734 5788 \Device\Harddisk1\DR1:
      13:26:17.0734 5788 MBR partitions:
      13:26:17.0734 5788 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x12A18800
      13:26:17.0734 5788 ============================================================
      13:26:17.0781 5788 C: <-> \Device\Harddisk0\DR0\Partition2
      13:26:17.0812 5788 F: <-> \Device\Harddisk1\DR1\Partition1
      13:26:17.0844 5788 D: <-> \Device\Harddisk0\DR0\Partition3
      13:26:17.0875 5788 G: <-> \Device\Harddisk0\DR0\Partition4
      13:26:17.0875 5788 ============================================================
      13:26:17.0875 5788 Initialize success
      13:26:17.0875 5788 ============================================================
      13:27:27.0591 4732 ============================================================
      13:27:27.0591 4732 Scan started
      13:27:27.0591 4732 Mode: Manual; TDLFS;
      13:27:27.0591 4732 ============================================================
      13:27:28.0512 4732 ================ Scan system memory ========================
      13:27:28.0512 4732 System memory - ok
      13:27:28.0512 4732 ================ Scan services =============================
      13:27:28.0683 4732 [ 1B133875B8AA8AC48969BD3458AFE9F5 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
      13:27:28.0683 4732 1394ohci - ok
      13:27:28.0715 4732 [ CEA80C80BED809AA0DA6FEBC04733349 ] ACPI C:\Windows\system32\drivers\ACPI.sys
      13:27:28.0730 4732 ACPI - ok
      13:27:28.0746 4732 [ 1EFBC664ABFF416D1D07DB115DCB264F ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
      13:27:28.0746 4732 AcpiPmi - ok
      13:27:28.0824 4732 [ 4AE327C9C375D985FF2A2AAB92765218 ] Adobe LM Service C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
      13:27:28.0824 4732 Adobe LM Service - ok
      13:27:28.0917 4732 [ 62B7936F9036DD6ED36E6A7EFA805DC0 ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
      13:27:28.0917 4732 AdobeARMservice - ok
      13:27:28.0949 4732 [ 21E785EBD7DC90A06391141AAC7892FB ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
      13:27:28.0964 4732 adp94xx - ok
      13:27:28.0980 4732 [ 0C676BC278D5B59FF5ABD57BBE9123F2 ] adpahci C:\Windows\system32\drivers\adpahci.sys
      13:27:28.0980 4732 adpahci - ok
      13:27:28.0995 4732 [ 7C7B5EE4B7B822EC85321FE23A27DB33 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
      13:27:28.0995 4732 adpu320 - ok
      13:27:29.0042 4732 [ 8B5EEFEEC1E6D1A72A06C526628AD161 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
      13:27:29.0042 4732 AeLookupSvc - ok
      13:27:29.0058 4732 [ 1151FD4FB0216CFED887BFDE29EBD516 ] AFD C:\Windows\system32\drivers\afd.sys
      13:27:29.0073 4732 AFD - ok
      13:27:29.0089 4732 [ 507812C3054C21CEF746B6EE3D04DD6E ] agp440 C:\Windows\system32\drivers\agp440.sys
      13:27:29.0089 4732 agp440 - ok
      13:27:29.0120 4732 [ 8B30250D573A8F6B4BD23195160D8707 ] aic78xx C:\Windows\system32\drivers\djsvs.sys
      13:27:29.0120 4732 aic78xx - ok
      13:27:29.0151 4732 [ 18A54E132947CD98FEA9ACCC57F98F13 ] ALG C:\Windows\System32\alg.exe
      13:27:29.0151 4732 ALG - ok
      13:27:29.0167 4732 [ 0D40BCF52EA90FC7DF2AEAB6503DEA44 ] aliide C:\Windows\system32\drivers\aliide.sys
      13:27:29.0167 4732 aliide - ok
      13:27:29.0198 4732 [ F1635C21B484713BCA63182BCD5DC498 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
      13:27:29.0198 4732 AMD External Events Utility - ok
      13:27:29.0214 4732 [ 3C6600A0696E90A463771C7422E23AB5 ] amdagp C:\Windows\system32\drivers\amdagp.sys
      13:27:29.0214 4732 amdagp - ok
      13:27:29.0245 4732 [ B39F8C63F6E0655B6CF99899BE039250 ] amdide C:\Windows\system32\DRIVERS\amdide.sys
      13:27:29.0245 4732 amdide - ok
      13:27:29.0261 4732 [ 00DDA200D71BAC534BF56A9DB5DFD666 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
      13:27:29.0276 4732 AmdK8 - ok
      13:27:29.0448 4732 [ 8331BF867EFEA8067026394B26A045BA ] amdkmdag C:\Windows\system32\DRIVERS\atipmdag.sys
      13:27:29.0573 4732 amdkmdag - ok
      13:27:29.0604 4732 [ 5F9D49DF02E2DDE0A962A0DD8FF2B405 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
      13:27:29.0604 4732 amdkmdap - ok
      13:27:29.0635 4732 [ 3CBF30F5370FDA40DD3E87DF38EA53B6 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
      13:27:29.0635 4732 AmdPPM - ok
      13:27:29.0651 4732 [ E7F4D42D8076EC60E21715CD11743A0D ] amdsata C:\Windows\system32\drivers\amdsata.sys
      13:27:29.0666 4732 amdsata - ok
      13:27:29.0682 4732 [ EA43AF0C423FF267355F74E7A53BDABA ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
      13:27:29.0682 4732 amdsbs - ok
      13:27:29.0697 4732 [ 146459D2B08BFDCBFA856D9947043C81 ] amdxata C:\Windows\system32\drivers\amdxata.sys
      13:27:29.0697 4732 amdxata - ok
      13:27:29.0729 4732 [ AEA177F783E20150ACE5383EE368DA19 ] AppID C:\Windows\system32\drivers\appid.sys
      13:27:29.0729 4732 AppID - ok
      13:27:29.0760 4732 [ 62A9C86CB6085E20DB4823E4E97826F5 ] AppIDSvc C:\Windows\System32\appidsvc.dll
      13:27:29.0775 4732 AppIDSvc - ok
      13:27:29.0791 4732 [ FB1959012294D6AD43E5304DF65E3C26 ] Appinfo C:\Windows\System32\appinfo.dll
      13:27:29.0791 4732 Appinfo - ok
      13:27:29.0807 4732 [ A45D184DF6A8803DA13A0B329517A64A ] AppMgmt C:\Windows\System32\appmgmts.dll
      13:27:29.0807 4732 AppMgmt - ok
      13:27:29.0822 4732 [ 2932004F49677BD84DBC72EDB754FFB3 ] arc C:\Windows\system32\drivers\arc.sys
      13:27:29.0822 4732 arc - ok
      13:27:29.0838 4732 [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7 ] arcsas C:\Windows\system32\drivers\arcsas.sys
      13:27:29.0838 4732 arcsas - ok
      13:27:29.0885 4732 ArcSec - ok
      13:27:29.0978 4732 [ 776ACEFA0CA9DF0FAA51A5FB2F435705 ] aspnet_state C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
      13:27:29.0978 4732 aspnet_state - ok
      13:27:29.0994 4732 [ ADD2ADE1C2B285AB8378D2DAAF991481 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
      13:27:29.0994 4732 AsyncMac - ok
      13:27:30.0025 4732 [ 338C86357871C167A96AB976519BF59E ] atapi C:\Windows\system32\drivers\atapi.sys
      13:27:30.0025 4732 atapi - ok
      13:27:30.0181 4732 [ 8331BF867EFEA8067026394B26A045BA ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
      13:27:30.0306 4732 atikmdag - ok
      13:27:30.0321 4732 [ 4FFE74E33BD9170950116F0CA46EAC89 ] AtiPcie C:\Windows\system32\DRIVERS\AtiPcie.sys
      13:27:30.0321 4732 AtiPcie - ok
      13:27:30.0368 4732 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
      13:27:30.0384 4732 AudioEndpointBuilder - ok
      13:27:30.0399 4732 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] Audiosrv C:\Windows\System32\Audiosrv.dll
      13:27:30.0399 4732 Audiosrv - ok
      13:27:30.0415 4732 [ 6E30D02AAC9CAC84F421622E3A2F6178 ] AxInstSV C:\Windows\System32\AxInstSV.dll
      13:27:30.0415 4732 AxInstSV - ok
      13:27:30.0462 4732 [ 1A231ABEC60FD316EC54C66715543CEC ] b06bdrv C:\Windows\system32\drivers\bxvbdx.sys
      13:27:30.0477 4732 b06bdrv - ok
      13:27:30.0509 4732 [ BD8869EB9CDE6BBE4508D869929869EE ] b57nd60x C:\Windows\system32\DRIVERS\b57nd60x.sys
      13:27:30.0509 4732 b57nd60x - ok
      13:27:30.0555 4732 [ EE1E9C3BB8228AE423DD38DB69128E71 ] BDESVC C:\Windows\System32\bdesvc.dll
      13:27:30.0555 4732 BDESVC - ok
      13:27:30.0571 4732 [ 505506526A9D467307B3C393DEDAF858 ] Beep C:\Windows\system32\drivers\Beep.sys
      13:27:30.0571 4732 Beep - ok
      13:27:30.0602 4732 [ 1E2BAC209D184BB851E1A187D8A29136 ] BFE C:\Windows\System32\bfe.dll
      13:27:30.0618 4732 BFE - ok
      13:27:30.0649 4732 [ E585445D5021971FAE10393F0F1C3961 ] BITS C:\Windows\System32\qmgr.dll
      13:27:30.0680 4732 BITS - ok
      13:27:30.0696 4732 [ 2287078ED48FCFC477B05B20CF38F36F ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
      13:27:30.0696 4732 blbdrive - ok
      13:27:30.0727 4732 [ FCAFAEF6798D7B51FF029F99A9898961 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
      13:27:30.0727 4732 bowser - ok
      13:27:30.0743 4732 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
      13:27:30.0743 4732 BrFiltLo - ok
      13:27:30.0758 4732 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
      13:27:30.0758 4732 BrFiltUp - ok
      13:27:30.0774 4732 [ 6E11F33D14D020F58D5E02E4D67DFA19 ] Browser C:\Windows\System32\browser.dll
      13:27:30.0774 4732 Browser - ok
      13:27:30.0805 4732 [ 845B8CE732E67F3B4133164868C666EA ] Brserid C:\Windows\System32\Drivers\Brserid.sys
      13:27:30.0805 4732 Brserid - ok
      13:27:30.0821 4732 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
      13:27:30.0836 4732 BrSerWdm - ok
      13:27:30.0852 4732 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
      13:27:30.0852 4732 BrUsbMdm - ok
      13:27:30.0867 4732 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
      13:27:30.0883 4732 BrUsbSer - ok
      13:27:30.0899 4732 [ ED3DF7C56CE0084EB2034432FC56565A ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
      13:27:30.0899 4732 BTHMODEM - ok
      13:27:30.0914 4732 [ 1DF19C96EEF6C29D1C3E1A8678E07190 ] bthserv C:\Windows\system32\bthserv.dll
      13:27:30.0930 4732 bthserv - ok
      13:27:30.0945 4732 [ 77EA11B065E0A8AB902D78145CA51E10 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
      13:27:30.0961 4732 cdfs - ok
      13:27:31.0023 4732 [ BE167ED0FDB9C1FA1133953C18D5A6C9 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
      13:27:31.0023 4732 cdrom - ok
      13:27:31.0055 4732 [ 319C6B309773D063541D01DF8AC6F55F ] CertPropSvc C:\Windows\System32\certprop.dll
      13:27:31.0055 4732 CertPropSvc - ok
      13:27:31.0070 4732 [ 3FE3FE94A34DF6FB06E6418D0F6A0060 ] circlass C:\Windows\system32\drivers\circlass.sys
      13:27:31.0070 4732 circlass - ok
      13:27:31.0101 4732 [ 635181E0E9BBF16871BF5380D71DB02D ] CLFS C:\Windows\system32\CLFS.sys
      13:27:31.0117 4732 CLFS - ok
      13:27:31.0164 4732 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
      13:27:31.0164 4732 clr_optimization_v2.0.50727_32 - ok
      13:27:31.0211 4732 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
      13:27:31.0211 4732 clr_optimization_v4.0.30319_32 - ok
      13:27:31.0226 4732 [ DEA805815E587DAD1DD2C502220B5616 ] CmBatt C:\Windows\system32\drivers\CmBatt.sys
      13:27:31.0226 4732 CmBatt - ok
      13:27:31.0242 4732 [ C537B1DB64D495B9B4717B4D6D9EDBF2 ] cmdide C:\Windows\system32\drivers\cmdide.sys
      13:27:31.0242 4732 cmdide - ok
      13:27:31.0257 4732 [ 1B675691ED940766149C93E8F4488D68 ] CNG C:\Windows\system32\Drivers\cng.sys
      13:27:31.0273 4732 CNG - ok
      13:27:31.0289 4732 [ A6023D3823C37043986713F118A89BEE ] Compbatt C:\Windows\system32\drivers\compbatt.sys
      13:27:31.0289 4732 Compbatt - ok
      13:27:31.0320 4732 [ CBE8C58A8579CFE5FCCF809E6F114E89 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
      13:27:31.0320 4732 CompositeBus - ok
      13:27:31.0320 4732 COMSysApp - ok
      13:27:31.0382 4732 [ 26CE59F9FC8639FD7FED53CE3B785015 ] cpuz135 C:\Windows\system32\drivers\cpuz135_x32.sys
      13:27:31.0382 4732 cpuz135 - ok
      13:27:31.0413 4732 [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
      13:27:31.0413 4732 crcdisk - ok
      13:27:31.0445 4732 [ A585BEBF7D054BD9618EDA0922D5484A ] CryptSvc C:\Windows\system32\cryptsvc.dll
      13:27:31.0445 4732 CryptSvc - ok
      13:27:31.0476 4732 [ 3C2177A897B4CA2788C6FB0C3FD81D4B ] CSC C:\Windows\system32\drivers\csc.sys
      13:27:31.0507 4732 CSC - ok
      13:27:31.0523 4732 [ 15F93B37F6801943360D9EB42485D5D3 ] CscService C:\Windows\System32\cscsvc.dll
      13:27:31.0538 4732 CscService - ok
      13:27:31.0585 4732 [ 7660F01D3B38ACA1747E397D21D790AF ] DcomLaunch C:\Windows\system32\rpcss.dll
      13:27:31.0616 4732 DcomLaunch - ok
      13:27:31.0647 4732 [ 8D6E10A2D9A5EED59562D9B82CF804E1 ] defragsvc C:\Windows\System32\defragsvc.dll
      13:27:31.0647 4732 defragsvc - ok
      13:27:31.0663 4732 [ F024449C97EC1E464AAFFDA18593DB88 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
      13:27:31.0663 4732 DfsC - ok
      13:27:31.0694 4732 [ E9E01EB683C132F7FA27CD607B8A2B63 ] Dhcp C:\Windows\system32\dhcpcore.dll
      13:27:31.0694 4732 Dhcp - ok
      13:27:31.0710 4732 [ 1A050B0274BFB3890703D490F330C0DA ] discache C:\Windows\system32\drivers\discache.sys
      13:27:31.0710 4732 discache - ok
      13:27:31.0741 4732 [ 565003F326F99802E68CA78F2A68E9FF ] Disk C:\Windows\system32\drivers\disk.sys
      13:27:31.0741 4732 Disk - ok
      13:27:31.0850 4732 [ CBDCA78ED494A1A25480A8DAFF8D3F52 ] Diskeeper C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe
      13:27:31.0897 4732 Diskeeper - ok
      13:27:31.0913 4732 [ 2A958EF85DB1B61FFCA65044FA4BCE9E ] dmvsc C:\Windows\system32\drivers\dmvsc.sys
      13:27:31.0913 4732 dmvsc - ok
      13:27:31.0944 4732 [ 2FE30D71919C51131405797620E0A714 ] Dnscache C:\Windows\System32\dnsrslvr.dll
      13:27:31.0944 4732 Dnscache - ok
      13:27:31.0959 4732 [ 366BA8FB4B7BB7435E3B9EACB3843F67 ] dot3svc C:\Windows\System32\dot3svc.dll
      13:27:31.0975 4732 dot3svc - ok
      13:27:31.0975 4732 [ 8EC04CA86F1D68DA9E11952EB85973D6 ] DPS C:\Windows\system32\dps.dll
      13:27:31.0991 4732 DPS - ok
      13:27:32.0022 4732 [ B918E7C5F9BF77202F89E1A9539F2EB4 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
      13:27:32.0037 4732 drmkaud - ok
      13:27:32.0069 4732 [ 23F5D28378A160352BA8F817BD8C71CB ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
      13:27:32.0100 4732 DXGKrnl - ok
      13:27:32.0131 4732 [ 04238864710460C5682E260207D06192 ] eamonm C:\Windows\system32\DRIVERS\eamonm.sys
      13:27:32.0131 4732 eamonm - ok
      13:27:32.0162 4732 [ 8600142FA91C1B96367D3300AD0F3F3A ] EapHost C:\Windows\System32\eapsvc.dll
      13:27:32.0162 4732 EapHost - ok
      13:27:32.0256 4732 [ 024E1B5CAC09731E4D868E64DBFB4AB0 ] ebdrv C:\Windows\system32\drivers\evbdx.sys
      13:27:32.0318 4732 ebdrv - ok
      13:27:32.0349 4732 [ F42309C4191C506B71DB5D1126D26318 ] EFS C:\Windows\System32\lsass.exe
      13:27:32.0349 4732 EFS - ok
      13:27:32.0396 4732 [ DEFF87F04AB5F6DD5EDF2B80853BBE10 ] ehdrv C:\Windows\system32\DRIVERS\ehdrv.sys
      13:27:32.0396 4732 ehdrv - ok
      13:27:32.0474 4732 [ C7BB95CF9631AA401E4ADED1648F6AF7 ] ekrn C:\Program Files\ESET\ESET Smart Security\ekrn.exe
      13:27:32.0505 4732 ekrn - ok
      13:27:32.0521 4732 [ 0ED67910C8C326796FAA00B2BF6D9D3C ] elxstor C:\Windows\system32\drivers\elxstor.sys
      13:27:32.0537 4732 elxstor - ok
      13:27:32.0583 4732 [ 5BA193CA0AE31209AAA39939CE6736B2 ] epfw C:\Windows\system32\DRIVERS\epfw.sys
      13:27:32.0583 4732 epfw - ok
      13:27:32.0615 4732 [ 9CEFD59C8E5EBFB48165AEF54617F539 ] EpfwLWF C:\Windows\system32\DRIVERS\EpfwLWF.sys
      13:27:32.0615 4732 EpfwLWF - ok
      13:27:32.0646 4732 [ 7144A06AC105A2A7302944602E415EC1 ] epfwwfp C:\Windows\system32\DRIVERS\epfwwfp.sys
      13:27:32.0646 4732 epfwwfp - ok
      13:27:32.0661 4732 [ 8FC3208352DD3912C94367A206AB3F11 ] ErrDev C:\Windows\system32\drivers\errdev.sys
      13:27:32.0661 4732 ErrDev - ok
      13:27:32.0693 4732 [ F6916EFC29D9953D5D0DF06882AE8E16 ] EventSystem C:\Windows\system32\es.dll
      13:27:32.0693 4732 EventSystem - ok
      13:27:32.0724 4732 [ 2DC9108D74081149CC8B651D3A26207F ] exfat C:\Windows\system32\drivers\exfat.sys
      13:27:32.0724 4732 exfat - ok
      13:27:32.0739 4732 [ 7E0AB74553476622FB6AE36F73D97D35 ] fastfat C:\Windows\system32\drivers\fastfat.sys
      13:27:32.0755 4732 fastfat - ok
      13:27:32.0802 4732 [ 967EA5B213E9984CBE270205DF37755B ] Fax C:\Windows\system32\fxssvc.exe
      13:27:32.0817 4732 Fax - ok
      13:27:32.0833 4732 [ E817A017F82DF2A1F8CFDBDA29388B29 ] fdc C:\Windows\system32\drivers\fdc.sys
      13:27:32.0833 4732 fdc - ok
      13:27:32.0849 4732 [ F3222C893BD2F5821A0179E5C71E88FB ] fdPHost C:\Windows\system32\fdPHost.dll
      13:27:32.0864 4732 fdPHost - ok
      13:27:32.0864 4732 [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B ] FDResPub C:\Windows\system32\fdrespub.dll
      13:27:32.0864 4732 FDResPub - ok
      13:27:32.0880 4732 [ 6CF00369C97F3CF563BE99BE983D13D8 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
      13:27:32.0880 4732 FileInfo - ok
      13:27:32.0895 4732 [ 42C51DC94C91DA21CB9196EB64C45DB9 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
      13:27:32.0895 4732 Filetrace - ok
      13:27:32.0958 4732 [ ACEFEEA621DCA62EFB7A7EEA59F5E91B ] FLEXnet Licensing Service C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
      13:27:32.0989 4732 FLEXnet Licensing Service - ok
      13:27:33.0005 4732 [ 87907AA70CB3C56600F1C2FB8841579B ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
      13:27:33.0005 4732 flpydisk - ok
      13:27:33.0036 4732 [ 7520EC808E0C35E0EE6F841294316653 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
      13:27:33.0036 4732 FltMgr - ok
      13:27:33.0083 4732 [ FA6C66E4364D7DA57AADE5DCC03BB999 ] FontCache C:\Windows\system32\FntCache.dll
      13:27:33.0098 4732 FontCache - ok
      13:27:33.0161 4732 [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
      13:27:33.0161 4732 FontCache3.0.0.0 - ok
      13:27:33.0239 4732 FQX - ok
      13:27:33.0254 4732 [ 1A16B57943853E598CFF37FE2B8CBF1D ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
      13:27:33.0254 4732 FsDepends - ok
      13:27:33.0285 4732 [ A574B4360E438977038AAE4BF60D79A2 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
      13:27:33.0285 4732 Fs_Rec - ok
      13:27:33.0301 4732 [ 8A73E79089B282100B9393B644CB853B ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
      13:27:33.0317 4732 fvevol - ok
      13:27:33.0332 4732 [ 65EE0C7A58B65E74AE05637418153938 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
      13:27:33.0332 4732 gagp30kx - ok
      13:27:33.0363 4732 [ E897EAF5ED6BA41E081060C9B447A673 ] gpsvc C:\Windows\System32\gpsvc.dll
      13:27:33.0379 4732 gpsvc - ok
      13:27:33.0410 4732 [ C44E3C2BAB6837DB337DDEE7544736DB ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
      13:27:33.0410 4732 hcw85cir - ok
      13:27:33.0441 4732 [ A5EF29D5315111C80A5C1ABAD14C8972 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
      13:27:33.0441 4732 HdAudAddService - ok
      13:27:33.0473 4732 [ 9036377B8A6C15DC2EEC53E489D159B5 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
      13:27:33.0473 4732 HDAudBus - ok
      13:27:33.0488 4732 [ 1D58A7F3E11A9731D0EAAAA8405ACC36 ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
      13:27:33.0504 4732 HidBatt - ok
      13:27:33.0504 4732 [ 89448F40E6DF260C206A193A4683BA78 ] HidBth C:\Windows\system32\drivers\hidbth.sys
      13:27:33.0519 4732 HidBth - ok
      13:27:33.0535 4732 [ CF50B4CF4A4F229B9F3C08351F99CA5E ] HidIr C:\Windows\system32\drivers\hidir.sys
      13:27:33.0535 4732 HidIr - ok
      13:27:33.0551 4732 [ 2BC6F6A1992B3A77F5F41432CA6B3B6B ] hidserv C:\Windows\system32\hidserv.dll
      13:27:33.0551 4732 hidserv - ok
      13:27:33.0582 4732 [ 10C19F8290891AF023EAEC0832E1EB4D ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
      13:27:33.0597 4732 HidUsb - ok
      13:27:33.0613 4732 [ 196B4E3F4CCCC24AF836CE58FACBB699 ] hkmsvc C:\Windows\system32\kmsvc.dll
      13:27:33.0613 4732 hkmsvc - ok
      13:27:33.0629 4732 [ 6658F4404DE03D75FE3BA09F7ABA6A30 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
      13:27:33.0629 4732 HomeGroupListener - ok
      13:27:33.0660 4732 [ DBC02D918FFF1CAD628ACBE0C0EAA8E8 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
      13:27:33.0660 4732 HomeGroupProvider - ok
      13:27:33.0691 4732 [ 295FDC419039090EB8B49FFDBB374549 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
      13:27:33.0691 4732 HpSAMD - ok
      13:27:33.0722 4732 [ 871917B07A141BFF43D76D8844D48106 ] HTTP C:\Windows\system32\drivers\HTTP.sys
      13:27:33.0738 4732 HTTP - ok
      13:27:33.0753 4732 [ 0C4E035C7F105F1299258C90886C64C5 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
      13:27:33.0753 4732 hwpolicy - ok
      13:27:33.0769 4732 [ F151F0BDC47F4A28B1B20A0818EA36D6 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
      13:27:33.0769 4732 i8042prt - ok
      13:27:33.0785 4732 [ A3CAE5D281DB4CFF7CFF8233507EE5AD ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
      13:27:33.0785 4732 iaStorV - ok
      13:27:33.0847 4732 [ 3240213B26BB814995AE0027313851F7 ] IDMWFP C:\Windows\system32\DRIVERS\idmwfp.sys
      13:27:33.0847 4732 IDMWFP - ok
      13:27:33.0894 4732 [ DAF66902F08796F9C694901660E5A64A ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
      13:27:33.0894 4732 IDriverT - ok
      13:27:33.0956 4732 [ C521D7EB6497BB1AF6AFA89E322FB43C ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
      13:27:33.0987 4732 idsvc - ok
      13:27:34.0003 4732 [ 4173FF5708F3236CF25195FECD742915 ] iirsp C:\Windows\system32\drivers\iirsp.sys
      13:27:34.0003 4732 iirsp - ok
      13:27:34.0050 4732 [ F95622F161474511B8D80D6B093AA610 ] IKEEXT C:\Windows\System32\ikeext.dll
      13:27:34.0081 4732 IKEEXT - ok
      13:27:34.0097 4732 [ A0F12F2C9BA6C72F3987CE780E77C130 ] intelide C:\Windows\system32\drivers\intelide.sys
      13:27:34.0097 4732 intelide - ok
      13:27:34.0112 4732 [ 3B514D27BFC4ACCB4037BC6685F766E0 ] intelppm C:\Windows\system32\drivers\intelppm.sys
      13:27:34.0112 4732 intelppm - ok
      13:27:34.0128 4732 [ ACB364B9075A45C0736E5C47BE5CAE19 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
      13:27:34.0128 4732 IPBusEnum - ok
      13:27:34.0143 4732 [ 709D1761D3B19A932FF0238EA6D50200 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
      13:27:34.0143 4732 IpFilterDriver - ok
      13:27:34.0159 4732 [ 4D65A07B795D6674312F879D09AA7663 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
      13:27:34.0175 4732 iphlpsvc - ok
      13:27:34.0190 4732 [ 4BD7134618C1D2A27466A099062547BF ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
      13:27:34.0206 4732 IPMIDRV - ok
      13:27:34.0221 4732 [ A5FA468D67ABCDAA36264E463A7BB0CD ] IPNAT C:\Windows\system32\drivers\ipnat.sys
      13:27:34.0221 4732 IPNAT - ok
      13:27:34.0237 4732 [ 42996CFF20A3084A56017B7902307E9F ] IRENUM C:\Windows\system32\drivers\irenum.sys
      13:27:34.0237 4732 IRENUM - ok
      13:27:34.0253 4732 [ 1F32BB6B38F62F7DF1A7AB7292638A35 ] isapnp C:\Windows\system32\drivers\isapnp.sys
      13:27:34.0268 4732 isapnp - ok
      13:27:34.0299 4732 [ CB7A9ABB12B8415BCE5D74994C7BA3AE ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
      13:27:34.0299 4732 iScsiPrt - ok
      13:27:34.0346 4732 [ 2F03CEB28307983F3B36216D35FFA5AA ] ISODrive C:\Program Files\UltraISO\drivers\ISODrive.sys
      13:27:34.0346 4732 ISODrive - ok
      13:27:34.0362 4732 [ ADEF52CA1AEAE82B50DF86B56413107E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
      13:27:34.0362 4732 kbdclass - ok
      13:27:34.0393 4732 [ 9E3CED91863E6EE98C24794D05E27A71 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
      13:27:34.0393 4732 kbdhid - ok
      13:27:34.0455 4732 [ F42309C4191C506B71DB5D1126D26318 ] KeyIso C:\Windows\system32\lsass.exe
      13:27:34.0455 4732 KeyIso - ok
      13:27:34.0487 4732 [ 412CEA1AA78CC02A447F5C9E62B32FF1 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
      13:27:34.0502 4732 KSecDD - ok
      13:27:34.0533 4732 [ 26C046977E85B95036453D7B88BA1820 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
      13:27:34.0580 4732 KSecPkg - ok
      13:27:34.0627 4732 [ 89A7B9CC98D0D80C6F31B91C0A310FCD ] KtmRm C:\Windows\system32\msdtckrm.dll
      13:27:34.0643 4732 KtmRm - ok
      13:27:34.0658 4732 [ D64AF876D53ECA3668BB97B51B4E70AB ] LanmanServer C:\Windows\system32\srvsvc.dll
      13:27:34.0658 4732 LanmanServer - ok
      13:27:34.0689 4732 [ 58405E4F68BA8E4057C6E914F326ABA2 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
      13:27:34.0689 4732 LanmanWorkstation - ok
      13:27:34.0721 4732 [ F7611EC07349979DA9B0AE1F18CCC7A6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
      13:27:34.0721 4732 lltdio - ok
      13:27:34.0752 4732 [ 5700673E13A2117FA3B9020C852C01E2 ] lltdsvc C:\Windows\System32\lltdsvc.dll
      13:27:34.0752 4732 lltdsvc - ok
      13:27:34.0767 4732 [ 55CA01BA19D0006C8F2639B6C045E08B ] lmhosts C:\Windows\System32\lmhsvc.dll
      13:27:34.0767 4732 lmhosts - ok
      13:27:34.0814 4732 [ EB119A53CCF2ACC000AC71B065B78FEF ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
      13:27:34.0814 4732 LSI_FC - ok
      13:27:34.0830 4732 [ 8ADE1C877256A22E49B75D1CC9161F9C ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
      13:27:34.0845 4732 LSI_SAS - ok
      13:27:34.0845 4732 [ DC9DC3D3DAA0E276FD2EC262E38B11E9 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
      13:27:34.0861 4732 LSI_SAS2 - ok
      13:27:34.0861 4732 [ 0A036C7D7CAB643A7F07135AC47E0524 ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
      13:27:34.0861 4732 LSI_SCSI - ok
      13:27:34.0877 4732 [ 6703E366CC18D3B6E534F5CF7DF39CEE ] luafv C:\Windows\system32\drivers\luafv.sys
      13:27:34.0877 4732 luafv - ok
      13:27:34.0892 4732 lxbk_device - ok
      13:27:34.0923 4732 [ 6DFE7F2E8E8A337263AA5C92A215F161 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
      13:27:34.0923 4732 MBAMProtector - ok
      13:27:34.0986 4732 [ 43683E970F008C93C9429EF428147A54 ] MBAMService C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
      13:27:35.0017 4732 MBAMService - ok
      13:27:35.0033 4732 [ 0FFF5B045293002AB38EB1FD1FC2FB74 ] megasas C:\Windows\system32\drivers\megasas.sys
      13:27:35.0033 4732 megasas - ok
      13:27:35.0048 4732 [ DCBAB2920C75F390CAF1D29F675D03D6 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
      13:27:35.0048 4732 MegaSR - ok
      13:27:35.0111 4732 Microsoft SharePoint Workspace Audit Service - ok
      13:27:35.0126 4732 [ 146B6F43A673379A3C670E86D89BE5EA ] MMCSS C:\Windows\system32\mmcss.dll
      13:27:35.0142 4732 MMCSS - ok
      13:27:35.0157 4732 [ F001861E5700EE84E2D4E52C712F4964 ] Modem C:\Windows\system32\drivers\modem.sys
      13:27:35.0157 4732 Modem - ok
      13:27:35.0173 4732 [ 79D10964DE86B292320E9DFE02282A23 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
      13:27:35.0173 4732 monitor - ok
      13:27:35.0220 4732 [ FB18CC1D4C2E716B6B903B0AC0CC0609 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
      13:27:35.0220 4732 mouclass - ok
      13:27:35.0251 4732 [ 2C388D2CD01C9042596CF3C8F3C7B24D ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
      13:27:35.0251 4732 mouhid - ok
      13:27:35.0267 4732 [ FC8771F45ECCCFD89684E38842539B9B ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
      13:27:35.0267 4732 mountmgr - ok
      13:27:35.0329 4732 [ CB8AF049AC9BE419A77ADAE288673359 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
      13:27:35.0329 4732 MozillaMaintenance - ok
      13:27:35.0345 4732 [ 2D699FB6E89CE0D8DA14ECC03B3EDFE0 ] mpio C:\Windows\system32\drivers\mpio.sys
      13:27:35.0345 4732 mpio - ok
      13:27:35.0360 4732 [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
      13:27:35.0360 4732 mpsdrv - ok
      13:27:35.0376 4732 [ 9835584E999D25004E1EE8E5F3E3B881 ] MpsSvc C:\Windows\system32\mpssvc.dll
      13:27:35.0391 4732 MpsSvc - ok
      13:27:35.0407 4732 [ CEB46AB7C01C9F825F8CC6BABC18166A ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
      13:27:35.0407 4732 MRxDAV - ok
      13:27:35.0438 4732 [ B272B4C3E085EA860C12F2E4FAF2FFA2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
      13:27:35.0438 4732 mrxsmb - ok
      13:27:35.0454 4732 [ 9AC33EF26C8A3AD0F117D00EB7301D03 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
      13:27:35.0454 4732 mrxsmb10 - ok
      13:27:35.0469 4732 [ E0ABDB5ED7E199E242A7D028E76C1D3A ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
      13:27:35.0469 4732 mrxsmb20 - ok
      13:27:35.0485 4732 [ 012C5F4E9349E711E11E0F19A8589F0A ] msahci C:\Windows\system32\drivers\msahci.sys
      13:27:35.0485 4732 msahci - ok
      13:27:35.0485 4732 [ 55055F8AD8BE27A64C831322A780A228 ] msdsm C:\Windows\system32\drivers\msdsm.sys
      13:27:35.0501 4732 msdsm - ok
      13:27:35.0516 4732 [ E1BCE74A3BD9902B72599C0192A07E27 ] MSDTC C:\Windows\System32\msdtc.exe
      13:27:35.0516 4732 MSDTC - ok
      13:27:35.0532 4732 [ DAEFB28E3AF5A76ABCC2C3078C07327F ] Msfs C:\Windows\system32\drivers\Msfs.sys
      13:27:35.0532 4732 Msfs - ok
      13:27:35.0547 4732 [ 3E1E5767043C5AF9367F0056295E9F84 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
      13:27:35.0547 4732 mshidkmdf - ok
      13:27:35.0563 4732 [ 0A4E5757AE09FA9622E3158CC1AEF114 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
      13:27:35.0563 4732 msisadrv - ok
      13:27:35.0594 4732 [ 90F7D9E6B6F27E1A707D4A297F077828 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
      13:27:35.0594 4732 MSiSCSI - ok
      13:27:35.0594 4732 msiserver - ok
      13:27:35.0625 4732 [ 8C0860D6366AAFFB6C5BB9DF9448E631 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
      13:27:35.0625 4732 MSKSSRV - ok
      13:27:35.0657 4732 [ 3EA8B949F963562CEDBB549EAC0C11CE ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
      13:27:35.0657 4732 MSPCLOCK - ok
      13:27:35.0672 4732 [ F456E973590D663B1073E9C463B40932 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
      13:27:35.0672 4732 MSPQM - ok
      13:27:35.0688 4732 [ 0E008FC4819D238C51D7C93E7B41E560 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
      13:27:35.0703 4732 MsRPC - ok
      13:27:35.0719 4732 [ FC6B9FF600CC585EA38B12589BD4E246 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
      13:27:35.0719 4732 mssmbios - ok
      13:27:35.0735 4732 [ B42C6B921F61A6E55159B8BE6CD54A36 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
      13:27:35.0735 4732 MSTEE - ok
      13:27:35.0750 4732 [ 33599130F44E1F34631CEA241DE8AC84 ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
      13:27:35.0750 4732 MTConfig - ok
      13:27:35.0766 4732 [ 159FAD02F64E6381758C990F753BCC80 ] Mup C:\Windows\system32\Drivers\mup.sys
      13:27:35.0766 4732 Mup - ok
      13:27:35.0797 4732 [ 61D57A5D7C6D9AFE10E77DAE6E1B445E ] napagent C:\Windows\system32\qagentRT.dll
      13:27:35.0813 4732 napagent - ok
      13:27:35.0844 4732 [ 26384429FCD85D83746F63E798AB1480 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
      13:27:35.0859 4732 NativeWifiP - ok
      13:27:35.0891 4732 [ E7C54812A2AAF43316EB6930C1FFA108 ] NDIS C:\Windows\system32\drivers\ndis.sys
      13:27:35.0922 4732 NDIS - ok
      13:27:35.0937 4732 [ 0E1787AA6C9191D3D319E8BAFE86F80C ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
      13:27:35.0937 4732 NdisCap - ok
      13:27:35.0953 4732 [ E4A8AEC125A2E43A9E32AFEEA7C9C888 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
      13:27:35.0953 4732 NdisTapi - ok
      13:27:35.0969 4732 [ D8A65DAFB3EB41CBB622745676FCD072 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
      13:27:35.0984 4732 Ndisuio - ok
      13:27:35.0984 4732 [ 38FBE267E7E6983311179230FACB1017 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
      13:27:36.0000 4732 NdisWan - ok
      13:27:36.0000 4732 [ A4BDC541E69674FBFF1A8FF00BE913F2 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
      13:27:36.0015 4732 NDProxy - ok
      13:27:36.0015 4732 [ 80B275B1CE3B0E79909DB7B39AF74D51 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
      13:27:36.0031 4732 NetBIOS - ok
      13:27:36.0047 4732 [ 280122DDCF04B378EDD1AD54D71C1E54 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
      13:27:36.0047 4732 NetBT - ok
      13:27:36.0062 4732 [ F42309C4191C506B71DB5D1126D26318 ] Netlogon C:\Windows\system32\lsass.exe
      13:27:36.0062 4732 Netlogon - ok
      13:27:36.0109 4732 [ 7CCCFCA7510684768DA22092D1FA4DB2 ] Netman C:\Windows\System32\netman.dll
      13:27:36.0109 4732 Netman - ok
      13:27:36.0156 4732 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
      13:27:36.0156 4732 NetMsmqActivator - ok
      13:27:36.0156 4732 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
      13:27:36.0156 4732 NetPipeActivator - ok
      13:27:36.0187 4732 [ 8C338238C16777A802D6A9211EB2BA50 ] netprofm C:\Windows\System32\netprofm.dll
      13:27:36.0187 4732 netprofm - ok
      13:27:36.0187 4732 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
      13:27:36.0187 4732 NetTcpActivator - ok
      13:27:36.0203 4732 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
      13:27:36.0203 4732 NetTcpPortSharing - ok
      13:27:36.0234 4732 [ 1D85C4B390B0EE09C7A46B91EFB2C097 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
      13:27:36.0234 4732 nfrd960 - ok
      13:27:36.0249 4732 [ 912084381D30D8B89EC4E293053F4710 ] NlaSvc C:\Windows\System32\nlasvc.dll
      13:27:36.0249 4732 NlaSvc - ok
      13:27:36.0265 4732 [ 1DB262A9F8C087E8153D89BEF3D2235F ] Npfs C:\Windows\system32\drivers\Npfs.sys
      13:27:36.0265 4732 Npfs - ok
      13:27:36.0296 4732 [ BA387E955E890C8A88306D9B8D06BF17 ] nsi C:\Windows\system32\nsisvc.dll
      13:27:36.0296 4732 nsi - ok
      13:27:36.0312 4732 [ E9A0A4D07E53D8FEA2BB8387A3293C58 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
      13:27:36.0312 4732 nsiproxy - ok
      13:27:36.0359 4732 [ 33C3093D09017CFE2E219F2472BFF6EB ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
      13:27:36.0390 4732 Ntfs - ok
      13:27:36.0405 4732 [ F9756A98D69098DCA8945D62858A812C ] Null C:\Windows\system32\drivers\Null.sys
      13:27:36.0405 4732 Null - ok
      13:27:36.0437 4732 [ AF2EEC9580C1D32FB7EAF105D9784061 ] nvraid C:\Windows\system32\drivers\nvraid.sys
      13:27:36.0452 4732 nvraid - ok
      13:27:36.0452 4732 [ 9283C58EBAA2618F93482EB5DABCEC82 ] nvstor C:\Windows\system32\drivers\nvstor.sys
      13:27:36.0452 4732 nvstor - ok
      13:27:36.0483 4732 [ 5A0983915F02BAE73267CC2A041F717D ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
      13:27:36.0483 4732 nv_agp - ok
      13:27:36.0499 4732 [ 08A70A1F2CDDE9BB49B885CB817A66EB ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
      13:27:36.0499 4732 ohci1394 - ok
      13:27:36.0561 4732 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
      13:27:36.0561 4732 ose - ok
      13:27:36.0686 4732 [ 358A9CCA612C68EB2F07DDAD4CE1D8D7 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
      13:27:36.0795 4732 osppsvc - ok
      13:27:36.0827 4732 [ 82A8521DDC60710C3D3D3E7325209BEC ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
      13:27:36.0827 4732 p2pimsvc - ok
      13:27:36.0858 4732 [ 59C3DDD501E39E006DAC31BF55150D91 ] p2psvc C:\Windows\system32\p2psvc.dll
      13:27:36.0858 4732 p2psvc - ok
      13:27:36.0889 4732 [ 2EA877ED5DD9713C5AC74E8EA7348D14 ] Parport C:\Windows\system32\DRIVERS\parport.sys
      13:27:36.0889 4732 Parport - ok
      13:27:36.0905 4732 [ BF8F6AF06DA75B336F07E23AEF97D93B ] partmgr C:\Windows\system32\drivers\partmgr.sys
      13:27:36.0905 4732 partmgr - ok
      13:27:36.0920 4732 [ EB0A59F29C19B86479D36B35983DAADC ] Parvdm C:\Windows\system32\DRIVERS\parvdm.sys
      13:27:36.0920 4732 Parvdm - ok
      13:27:36.0936 4732 [ 358AB7956D3160000726574083DFC8A6 ] PcaSvc C:\Windows\System32\pcasvc.dll
      13:27:36.0936 4732 PcaSvc - ok
      13:27:36.0951 4732 [ 673E55C3498EB970088E812EA820AA8F ] pci C:\Windows\system32\drivers\pci.sys
      13:27:36.0951 4732 pci - ok
      13:27:36.0983 4732 [ AFE86F419014DB4E5593F69FFE26CE0A ] pciide C:\Windows\system32\drivers\pciide.sys
      13:27:36.0983 4732 pciide - ok
      13:27:37.0029 4732 [ F1CD23597C138F9D5D87CEBD7CF59771 ] PciSPorts C:\Windows\system32\DRIVERS\PciSPorts.sys
      13:27:37.0045 4732 PciSPorts - ok
      13:27:37.0076 4732 [ F396431B31693E71E8A80687EF523506 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
      13:27:37.0076 4732 pcmcia - ok
      13:27:37.0107 4732 [ 5B6C11DE7E839C05248CED8825470FEF ] pcouffin C:\Windows\system32\Drivers\pcouffin.sys
      13:27:37.0107 4732 pcouffin - ok
      13:27:37.0123 4732 [ 250F6B43D2B613172035C6747AEEB19F ] pcw C:\Windows\system32\drivers\pcw.sys
      13:27:37.0123 4732 pcw - ok
      13:27:37.0154 4732 [ 9E0104BA49F4E6973749A02BF41344ED ] PEAUTH C:\Windows\system32\drivers\peauth.sys
      13:27:37.0170 4732 PEAUTH - ok
      13:27:37.0232 4732 [ AF4D64D2A57B9772CF3801950B8058A6 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
      13:27:37.0248 4732 PeerDistSvc - ok
      13:27:37.0326 4732 [ 414BBA67A3DED1D28437EB66AEB8A720 ] pla C:\Windows\system32\pla.dll
      13:27:37.0357 4732 pla - ok
      13:27:37.0404 4732 [ 92DC6E68D2C856C5C2F21AE9E22112B8 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
      13:27:37.0404 4732 PlugPlay - ok
      13:27:37.0419 4732 [ 63FF8572611249931EB16BB8EED6AFC8 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
      13:27:37.0419 4732 PNRPAutoReg - ok
      13:27:37.0435 4732 [ 82A8521DDC60710C3D3D3E7325209BEC ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
      13:27:37.0435 4732 PNRPsvc - ok
      13:27:37.0466 4732 [ 53946B69BA0836BD95B03759530C81EC ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
      13:27:37.0482 4732 PolicyAgent - ok
      13:27:37.0497 4732 [ F87D30E72E03D579A5199CCB3831D6EA ] Power C:\Windows\system32\umpo.dll
      13:27:37.0497 4732 Power - ok
      13:27:37.0529 4732 [ 631E3E205AD6D86F2AED6A4A8E69F2DB ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
      13:27:37.0529 4732 PptpMiniport - ok
      13:27:37.0544 4732 [ 85B1E3A0C7585BC4AAE6899EC6FCF011 ] Processor C:\Windows\system32\drivers\processr.sys
      13:27:37.0544 4732 Processor - ok
      13:27:37.0560 4732 [ 43CA4CCC22D52FB58E8988F0198851D0 ] ProfSvc C:\Windows\system32\profsvc.dll
      13:27:37.0560 4732 ProfSvc - ok
      13:27:37.0575 4732 [ F42309C4191C506B71DB5D1126D26318 ] ProtectedStorage C:\Windows\system32\lsass.exe
      13:27:37.0575 4732 ProtectedStorage - ok
      13:27:37.0591 4732 [ 6270CCAE2A86DE6D146529FE55B3246A ] Psched C:\Windows\system32\DRIVERS\pacer.sys
      13:27:37.0591 4732 Psched - ok
      13:27:37.0638 4732 [ 543A4EF0923BF70D126625B034EF25AF ] PSI_SVC_2 c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
      13:27:37.0638 4732 PSI_SVC_2 - ok
      13:27:37.0685 4732 [ AB95ECF1F6659A60DDC166D8315B0751 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
      13:27:37.0716 4732 ql2300 - ok
      13:27:37.0731 4732 [ B4DD51DD25182244B86737DC51AF2270 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
      13:27:37.0731 4732 ql40xx - ok
      13:27:37.0763 4732 [ 31AC809E7707EB580B2BDB760390765A ] QWAVE C:\Windows\system32\qwave.dll
      13:27:37.0763 4732 QWAVE - ok
      13:27:37.0778 4732 [ 584078CA1B95CA72DF2A27C336F9719D ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
      13:27:37.0778 4732 QWAVEdrv - ok
      13:27:37.0794 4732 [ 30A81B53C766D0133BB86D234E5556AB ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
      13:27:37.0794 4732 RasAcd - ok
      13:27:37.0809 4732 [ 57EC4AEF73660166074D8F7F31C0D4FD ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
      13:27:37.0809 4732 RasAgileVpn - ok
      13:27:37.0825 4732 [ A60F1839849C0C00739787FD5EC03F13 ] RasAuto C:\Windows\System32\rasauto.dll
      13:27:37.0825 4732 RasAuto - ok
      13:27:37.0841 4732 [ D9F91EAFEC2815365CBE6D167E4E332A ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
      13:27:37.0841 4732 Rasl2tp - ok
      13:27:37.0872 4732 [ CB9E04DC05EACF5B9A36CA276D475006 ] RasMan C:\Windows\System32\rasmans.dll
      13:27:37.0872 4732 RasMan - ok
      13:27:37.0903 4732 [ 0FE8B15916307A6AC12BFB6A63E45507 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
      13:27:37.0903 4732 RasPppoe - ok
      13:27:37.0919 4732 [ 44101F495A83EA6401D886E7FD70096B ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
      13:27:37.0919 4732 RasSstp - ok
      13:27:37.0950 4732 [ D528BC58A489409BA40334EBF96A311B ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
      13:27:37.0950 4732 rdbss - ok
      13:27:37.0965 4732 [ 0D8F05481CB76E70E1DA06EE9F0DA9DF ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
      13:27:37.0965 4732 rdpbus - ok
      13:27:37.0981 4732 [ 23DAE03F29D253AE74C44F99E515F9A1 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
      13:27:37.0981 4732 RDPCDD - ok
      13:27:38.0012 4732 [ B973FCFC50DC1434E1970A146F7E3885 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
      13:27:38.0012 4732 RDPDR - ok
      13:27:38.0012 4732 [ 5A53CA1598DD4156D44196D200C94B8A ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
      13:27:38.0012 4732 RDPENCDD - ok
      13:27:38.0028 4732 [ 44B0A53CD4F27D50ED461DAE0C0B4E1F ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
      13:27:38.0028 4732 RDPREFMP - ok
      13:27:38.0059 4732 [ 288B06960D78428FF89E811632684E20 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
      13:27:38.0059 4732 RDPWD - ok
      13:27:38.0075 4732 [ 518395321DC96FE2C9F0E96AC743B656 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
      13:27:38.0075 4732 rdyboost - ok
      13:27:38.0106 4732 [ 7B5E1419717FAC363A31CC302895217A ] RemoteAccess C:\Windows\System32\mprdim.dll
      13:27:38.0106 4732 RemoteAccess - ok
      13:27:38.0121 4732 [ CB9A8683F4EF2BF99E123D79950D7935 ] RemoteRegistry C:\Windows\system32\regsvc.dll
      13:27:38.0137 4732 RemoteRegistry - ok
      13:27:38.0184 4732 [ B9BB8E2093C1615AD6EA55AD96214354 ] Revoflt C:\Windows\system32\DRIVERS\revoflt.sys
      13:27:38.0184 4732 Revoflt - ok
      13:27:38.0199 4732 [ 78D072F35BC45D9E4E1B61895C152234 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
      13:27:38.0199 4732 RpcEptMapper - ok
      13:27:38.0231 4732 [ 94D36C0E44677DD26981D2BFEEF2A29D ] RpcLocator C:\Windows\system32\locator.exe
      13:27:38.0231 4732 RpcLocator - ok
      13:27:38.0262 4732 [ 7660F01D3B38ACA1747E397D21D790AF ] RpcSs C:\Windows\system32\rpcss.dll
      13:27:38.0262 4732 RpcSs - ok
      13:27:38.0277 4732 [ 032B0D36AD92B582D869879F5AF5B928 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
      13:27:38.0277 4732 rspndr - ok
      13:27:38.0324 4732 [ 5283B9A27FF230F2FF70D92451FF409A ] RTL8167 C:\Windows\system32\DRIVERS\Rt86win7.sys
      13:27:38.0355 4732 RTL8167 - ok
      13:27:38.0371 4732 [ 7FA7F2E249A5DCBB7970630E15E1F482 ] s3cap C:\Windows\system32\drivers\vms3cap.sys
      13:27:38.0371 4732 s3cap - ok
      13:27:38.0387 4732 [ F42309C4191C506B71DB5D1126D26318 ] SamSs C:\Windows\system32\lsass.exe
      13:27:38.0387 4732 SamSs - ok
      13:27:38.0433 4732 [ 05D860DA1040F111503AC416CCEF2BCA ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
      13:27:38.0433 4732 sbp2port - ok
      13:27:38.0449 4732 [ 8FC518FFE9519C2631D37515A68009C4 ] SCardSvr C:\Windows\System32\SCardSvr.dll
      13:27:38.0449 4732 SCardSvr - ok
      13:27:38.0449 4732 [ 0693B5EC673E34DC147E195779A4DCF6 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
      13:27:38.0465 4732 scfilter - ok
      13:27:38.0480 4732 [ A04BB13F8A72F8B6E8B4071723E4E336 ] Schedule C:\Windows\system32\schedsvc.dll
      13:27:38.0496 4732 Schedule - ok
      13:27:38.0527 4732 [ 319C6B309773D063541D01DF8AC6F55F ] SCPolicySvc C:\Windows\System32\certprop.dll
      13:27:38.0527 4732 SCPolicySvc - ok
      13:27:38.0543 4732 [ 08236C4BCE5EDD0A0318A438AF28E0F7 ] SDRSVC C:\Windows\System32\SDRSVC.dll
      13:27:38.0543 4732 SDRSVC - ok
      13:27:38.0558 4732 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
      13:27:38.0558 4732 secdrv - ok
      13:27:38.0589 4732 [ A59B3A4442C52060CC7A85293AA3546F ] seclogon C:\Windows\system32\seclogon.dll
      13:27:38.0589 4732 seclogon - ok
      13:27:38.0605 4732 [ DCB7FCDCC97F87360F75D77425B81737 ] SENS C:\Windows\System32\sens.dll
      13:27:38.0605 4732 SENS - ok
      13:27:38.0636 4732 [ 50087FE1EE447009C9CC2997B90DE53F ] SensrSvc C:\Windows\system32\sensrsvc.dll
      13:27:38.0636 4732 SensrSvc - ok
      13:27:38.0667 4732 [ 9AD8B8B515E3DF6ACD4212EF465DE2D1 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
      13:27:38.0667 4732 Serenum - ok
      13:27:38.0683 4732 [ 5FB7FCEA0490D821F26F39CC5EA3D1E2 ] Serial C:\Windows\system32\DRIVERS\serial.sys
      13:27:38.0683 4732 Serial - ok
      13:27:38.0699 4732 [ 79BFFB520327FF916A582DFEA17AA813 ] sermouse C:\Windows\system32\drivers\sermouse.sys
      13:27:38.0699 4732 sermouse - ok
      13:27:38.0730 4732 [ 4AE380F39A0032EAB7DD953030B26D28 ] SessionEnv C:\Windows\system32\sessenv.dll
      13:27:38.0730 4732 SessionEnv - ok
      13:27:38.0745 4732 [ 9F976E1EB233DF46FCE808D9DEA3EB9C ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
      13:27:38.0745 4732 sffdisk - ok
      13:27:38.0745 4732 [ 932A68EE27833CFD57C1639D375F2731 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
      13:27:38.0745 4732 sffp_mmc - ok
      13:27:38.0761 4732 [ 6D4CCAEDC018F1CF52866BBBAA235982 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
      13:27:38.0761 4732 sffp_sd - ok
      13:27:38.0792 4732 [ DB96666CC8312EBC45032F30B007A547 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
      13:27:38.0792 4732 sfloppy - ok
      13:27:38.0823 4732 [ D1A079A0DE2EA524513B6930C24527A2 ] SharedAccess C:\Windows\System32\ipnathlp.dll
      13:27:38.0839 4732 SharedAccess - ok
      13:27:38.0855 4732 [ 414DA952A35BF5D50192E28263B40577 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
      13:27:38.0855 4732 ShellHWDetection - ok
      13:27:38.0886 4732 [ 2565CAC0DC9FE0371BDCE60832582B2E ] sisagp C:\Windows\system32\drivers\sisagp.sys
      13:27:38.0886 4732 sisagp - ok
      13:27:38.0901 4732 [ A9F0486851BECB6DDA1D89D381E71055 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
      13:27:38.0917 4732 SiSRaid2 - ok
      13:27:38.0917 4732 [ 3727097B55738E2F554972C3BE5BC1AA ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
      13:27:38.0917 4732 SiSRaid4 - ok
      13:27:38.0948 4732 [ 3E21C083B8A01CB70BA1F09303010FCE ] Smb C:\Windows\system32\DRIVERS\smb.sys
      13:27:38.0948 4732 Smb - ok
      13:27:38.0995 4732 [ 6A984831644ECA1A33FFEAE4126F4F37 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
      13:27:38.0995 4732 SNMPTRAP - ok
      13:27:39.0011 4732 [ 95CF1AE7527FB70F7816563CBC09D942 ] spldr C:\Windows\system32\drivers\spldr.sys
      13:27:39.0011 4732 spldr - ok
      13:27:39.0026 4732 [ 866A43013535DC8587C258E43579C764 ] Spooler C:\Windows\System32\spoolsv.exe
      13:27:39.0026 4732 Spooler - ok
      13:27:39.0104 4732 [ CF87A1DE791347E75B98885214CED2B8 ] sppsvc C:\Windows\system32\sppsvc.exe
      13:27:39.0182 4732 sppsvc - ok
      13:27:39.0198 4732 [ B0180B20B065D89232A78A40FE56EAA6 ] sppuinotify C:\Windows\system32\sppuinotify.dll
      13:27:39.0198 4732 sppuinotify - ok
      13:27:39.0229 4732 [ 112127C3B2E64D7680CC39CD0A39DD7E ] srv C:\Windows\system32\DRIVERS\srv.sys
      13:27:39.0245 4732 srv - ok
      13:27:39.0260 4732 [ E5DD784A4EE5EBC72A86C677C988FCDB ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
      13:27:39.0276 4732 srv2 - ok
      13:27:39.0307 4732 [ CDBE627E16CC9E98F343D73F8E81D258 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
      13:27:39.0307 4732 srvnet - ok
      13:27:39.0307 4732 [ D887C9FD02AC9FA880F6E5027A43E118 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
      13:27:39.0323 4732 SSDPSRV - ok
      13:27:39.0323 4732 [ D318F23BE45D5E3A107469EB64815B50 ] SstpSvc C:\Windows\system32\sstpsvc.dll
      13:27:39.0323 4732 SstpSvc - ok
      13:27:39.0338 4732 [ DB32D325C192B801DF274BFD12A7E72B ] stexstor C:\Windows\system32\drivers\stexstor.sys
      13:27:39.0338 4732 stexstor - ok
      13:27:39.0385 4732 [ E1FB3706030FB4578A0D72C2FC3689E4 ] StiSvc C:\Windows\System32\wiaservc.dll
      13:27:39.0401 4732 StiSvc - ok
      13:27:39.0432 4732 [ 472AF0311073DCECEAA8FA18BA2BDF89 ] storflt C:\Windows\system32\drivers\vmstorfl.sys
      13:27:39.0432 4732 storflt - ok
      13:27:39.0463 4732 [ 0BF669F0A910BEDA4A32258D363AF2A5 ] StorSvc C:\Windows\system32\storsvc.dll
      13:27:39.0463 4732 StorSvc - ok
      13:27:39.0479 4732 [ DCAFFD62259E0BDB433DD67B5BB37619 ] storvsc C:\Windows\system32\drivers\storvsc.sys
      13:27:39.0479 4732 storvsc - ok
      13:27:39.0494 4732 [ E58C78A848ADD9610A4DB6D214AF5224 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
      13:27:39.0494 4732 swenum - ok
      13:27:39.0572 4732 [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
      13:27:39.0603 4732 SwitchBoard - ok
      13:27:39.0635 4732 [ A28BD92DF340E57B024BA433165D34D7 ] swprv C:\Windows\System32\swprv.dll
      13:27:39.0666 4732 swprv - ok
      13:27:39.0697 4732 [ 36650D618CA34C9D357DFD3D89B2C56F ] SysMain C:\Windows\system32\sysmain.dll
      13:27:39.0728 4732 SysMain - ok
      13:27:39.0744 4732 [ 763FECDC3D30C815FE72DD57936C6CD1 ] TabletInputService C:\Windows\System32\TabSvc.dll
      13:27:39.0744 4732 TabletInputService - ok
      13:27:39.0759 4732 [ 613BF4820361543956909043A265C6AC ] TapiSrv C:\Windows\System32\tapisrv.dll
      13:27:39.0775 4732 TapiSrv - ok
      13:27:39.0791 4732 [ B799D9FDB26111737F58288D8DC172D9 ] TBS C:\Windows\System32\tbssvc.dll
      13:27:39.0791 4732 TBS - ok
      13:27:39.0837 4732 [ 37E8FA3779668837CA9E2C36D2415949 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
      13:27:39.0884 4732 Tcpip - ok
      13:27:39.0931 4732 [ 37E8FA3779668837CA9E2C36D2415949 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
      13:27:39.0947 4732 TCPIP6 - ok
      13:27:39.0947 4732 [ CCA24162E055C3714CE5A88B100C64ED ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
      13:27:39.0962 4732 tcpipreg - ok
      13:27:39.0978 4732 [ 1CB91B2BD8F6DD367DFC2EF26FD751B2 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
      13:27:39.0978 4732 TDPIPE - ok
      13:27:39.0978 4732 [ 2C10395BAA4847F83042813C515CC289 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
      13:27:39.0978 4732 TDTCP - ok
      13:27:39.0993 4732 [ B459575348C20E8121D6039DA063C704 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
      13:27:39.0993 4732 tdx - ok
      13:27:40.0009 4732 [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
      13:27:40.0009 4732 TermDD - ok
      13:27:40.0040 4732 [ 382C804C92811BE57829D8E550A900E2 ] TermService C:\Windows\System32\termsrv.dll
      13:27:40.0056 4732 TermService - ok
      13:27:40.0071 4732 [ 42FB6AFD6B79D9FE07381609172E7CA4 ] Themes C:\Windows\system32\themeservice.dll
      13:27:40.0071 4732 Themes - ok
      13:27:40.0087 4732 [ 146B6F43A673379A3C670E86D89BE5EA ] THREADORDER C:\Windows\system32\mmcss.dll
      13:27:40.0087 4732 THREADORDER - ok
      13:27:40.0118 4732 [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A ] TrkWks C:\Windows\System32\trkwks.dll
      13:27:40.0118 4732 TrkWks - ok
      13:27:40.0149 4732 [ 2C49B175AEE1D4364B91B531417FE583 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
      13:27:40.0165 4732 TrustedInstaller - ok
      13:27:40.0181 4732 [ 254BB140EEE3C59D6114C1A86B636877 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
      13:27:40.0181 4732 tssecsrv - ok
      13:27:40.0196 4732 [ FD1D6C73E6333BE727CBCC6054247654 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
      13:27:40.0196 4732 TsUsbFlt - ok
      13:27:40.0212 4732 [ 01246F0BAAD7B68EC0F472AA41E33282 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
      13:27:40.0212 4732 TsUsbGD - ok
      13:27:40.0259 4732 [ B2FA25D9B17A68BB93D58B0556E8C90D ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
      13:27:40.0259 4732 tunnel - ok
      13:27:40.0274 4732 [ 750FBCB269F4D7DD2E420C56B795DB6D ] uagp35 C:\Windows\system32\drivers\uagp35.sys
      13:27:40.0274 4732 uagp35 - ok
      13:27:40.0290 4732 [ EE43346C7E4B5E63E54F927BABBB32FF ] udfs C:\Windows\system32\DRIVERS\udfs.sys
      13:27:40.0290 4732 udfs - ok
      13:27:40.0305 4732 [ 8344FD4FCE927880AA1AA7681D4927E5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
      13:27:40.0321 4732 UI0Detect - ok
      13:27:40.0337 4732 [ 44E8048ACE47BEFBFDC2E9BE4CBC8880 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
      13:27:40.0352 4732 uliagpkx - ok
      13:27:40.0368 4732 [ D295BED4B898F0FD999FCFA9B32B071B ] umbus C:\Windows\system32\DRIVERS\umbus.sys
      13:27:40.0368 4732 umbus - ok
      13:27:40.0399 4732 [ 7550AD0C6998BA1CB4843E920EE0FEAC ] UmPass C:\Windows\system32\drivers\umpass.sys
      13:27:40.0399 4732 UmPass - ok
      13:27:40.0430 4732 [ 409994A8EACEEE4E328749C0353527A0 ] UmRdpService C:\Windows\System32\umrdp.dll
      13:27:40.0446 4732 UmRdpService - ok
      13:27:40.0477 4732 [ 833FBB672460EFCE8011D262175FAD33 ] upnphost C:\Windows\System32\upnphost.dll
      13:27:40.0477 4732 upnphost - ok
      13:27:40.0493 4732 [ 7E72E7D7E0757D59481D530FD2B0BFAE ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
      13:27:40.0493 4732 usbccgp - ok
      13:27:40.0524 4732 [ 04EC7CEC62EC3B6D9354EEE93327FC82 ] usbcir C:\Windows\system32\drivers\usbcir.sys
      13:27:40.0524 4732 usbcir - ok
      13:27:40.0539 4732 [ CFBCE999C057D78979A181C9C60F208E ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
      13:27:40.0539 4732 usbehci - ok
      13:27:40.0571 4732 [ 08369F1FDD7C0D4287373D253D64D75E ] usbfilter C:\Windows\system32\DRIVERS\usbfilter.sys
      13:27:40.0586 4732 usbfilter - ok
      13:27:40.0617 4732 [ 9D22AAD9AC6A07C691A1113E5F860868 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
      13:27:40.0617 4732 usbhub - ok
      13:27:40.0633 4732 [ A6FB7957EA7AFB1165991E54CE934B74 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
      13:27:40.0633 4732 usbohci - ok
      13:27:40.0649 4732 [ 797D862FE0875E75C7CC4C1AD7B30252 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
      13:27:40.0649 4732 usbprint - ok
      13:27:40.0695 4732 [ 576096CCBC07E7C4EA4F5E6686D6888F ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
      13:27:40.0695 4732 usbscan - ok
      13:27:40.0727 4732 [ BF63EBFC6979FEFB2BC03DF7989A0C1A ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
      13:27:40.0727 4732 USBSTOR - ok
      13:27:40.0742 4732 [ 78780C3EBCE17405B1CCD07A3A8A7D72 ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
      13:27:40.0742 4732 usbuhci - ok
      13:27:40.0773 4732 [ 081E6E1C91AEC36758902A9F727CD23C ] UxSms C:\Windows\System32\uxsms.dll
      13:27:40.0773 4732 UxSms - ok
      13:27:40.0773 4732 [ F42309C4191C506B71DB5D1126D26318 ] VaultSvc C:\Windows\system32\lsass.exe
      13:27:40.0773 4732 VaultSvc - ok
      13:27:40.0820 4732 [ 75639B33F31F24F9A5484582330B768F ] VBoxDrv C:\Windows\system32\DRIVERS\VBoxDrv.sys
      13:27:40.0820 4732 VBoxDrv - ok
      13:27:40.0836 4732 [ 31B7C620454295214BD2173F89549B9F ] VBoxNetAdp C:\Windows\system32\DRIVERS\VBoxNetAdp.sys
      13:27:40.0851 4732 VBoxNetAdp - ok
      13:27:40.0867 4732 [ 5E4AB59B0C2277614EF29ACAAF65B8FC ] VBoxNetFlt C:\Windows\system32\DRIVERS\VBoxNetFlt.sys
      13:27:40.0867 4732 VBoxNetFlt - ok
      13:27:40.0898 4732 [ 46DE9B70AB91C949C004F7F9522CC73B ] VBoxUSBMon C:\Windows\system32\DRIVERS\VBoxUSBMon.sys
      13:27:40.0898 4732 VBoxUSBMon - ok
      13:27:40.0914 4732 [ A059C4C3EDB09E07D21A8E5C0AABD3CB ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
      13:27:40.0914 4732 vdrvroot - ok
      13:27:40.0945 4732 [ C3CD30495687C2A2F66A65CA6FD89BE9 ] vds C:\Windows\System32\vds.exe
      13:27:40.0961 4732 vds - ok
      13:27:40.0976 4732 [ 17C408214EA61696CEC9C66E388B14F3 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
      13:27:40.0976 4732 vga - ok
      13:27:40.0992 4732 [ 8E38096AD5C8570A6F1570A61E251561 ] VgaSave C:\Windows\System32\drivers\vga.sys
      13:27:40.0992 4732 VgaSave - ok
      13:27:41.0007 4732 [ 5461686CCA2FDA57B024547733AB42E3 ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
      13:27:41.0007 4732 vhdmp - ok
      13:27:41.0023 4732 [ C829317A37B4BEA8F39735D4B076E923 ] viaagp C:\Windows\system32\drivers\viaagp.sys
      13:27:41.0039 4732 viaagp - ok
      13:27:41.0039 4732 [ E02F079A6AA107F06B16549C6E5C7B74 ] ViaC7 C:\Windows\system32\drivers\viac7.sys
      13:27:41.0054 4732 ViaC7 - ok
      13:27:41.0132 4732 [ 761869F75A49946A4863200D7AA09AD3 ] VIAHdAudAddService C:\Windows\system32\drivers\viahduaa.sys
      13:27:41.0179 4732 VIAHdAudAddService - ok
      13:27:41.0195 4732 [ E43574F6A56A0EE11809B48C09E4FD3C ] viaide C:\Windows\system32\drivers\viaide.sys
      13:27:41.0195 4732 viaide - ok
      13:27:41.0210 4732 [ 4439C5975D551B52FEB296FD04366C83 ] VIAKaraokeService C:\Windows\system32\viakaraokesrv.exe
      13:27:41.0210 4732 VIAKaraokeService - ok
      13:27:41.0241 4732 [ C2F2911156FDC7817C52829C86DA494E ] vmbus C:\Windows\system32\drivers\vmbus.sys
      13:27:41.0241 4732 vmbus - ok
      13:27:41.0257 4732 [ D4D77455211E204F370D08F4963063CE ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
      13:27:41.0257 4732 VMBusHID - ok
      13:27:41.0288 4732 [ 4C63E00F2F4B5F86AB48A58CD990F212 ] volmgr C:\Windows\system32\drivers\volmgr.sys
      13:27:41.0288 4732 volmgr - ok
      13:27:41.0304 4732 [ B5BB72067DDDDBBFB04B2F89FF8C3C87 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
      13:27:41.0304 4732 volmgrx - ok
      13:27:41.0335 4732 [ F497F67932C6FA693D7DE2780631CFE7 ] volsnap C:\Windows\system32\drivers\volsnap.sys
      13:27:41.0351 4732 volsnap - ok
      13:27:41.0366 4732 [ 9DFA0CC2F8855A04816729651175B631 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
      13:27:41.0366 4732 vsmraid - ok
      13:27:41.0413 4732 [ 209A3B1901B83AEB8527ED211CCE9E4C ] VSS C:\Windows\system32\vssvc.exe
      13:27:41.0444 4732 VSS - ok
      13:27:41.0444 4732 [ 90567B1E658001E79D7C8BBD3DDE5AA6 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
      13:27:41.0444 4732 vwifibus - ok
      13:27:41.0460 4732 [ 55187FD710E27D5095D10A472C8BAF1C ] W32Time C:\Windows\system32\w32time.dll
      13:27:41.0460 4732 W32Time - ok
      13:27:41.0475 4732 [ DE3721E89C653AA281428C8A69745D90 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
      13:27:41.0491 4732 WacomPen - ok
      13:27:41.0507 4732 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
      13:27:41.0507 4732 WANARP - ok
      13:27:41.0507 4732 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
      13:27:41.0522 4732 Wanarpv6 - ok
      13:27:41.0553 4732 [ 691E3285E53DCA558E1A84667F13E15A ] wbengine C:\Windows\system32\wbengine.exe
      13:27:41.0585 4732 wbengine - ok
      13:27:41.0600 4732 [ 9614B5D29DC76AC3C29F6D2D3AA70E67 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
      13:27:41.0600 4732 WbioSrvc - ok
      13:27:41.0616 4732 [ 34EEE0DFAADB4F691D6D5308A51315DC ] wcncsvc C:\Windows\System32\wcncsvc.dll
      13:27:41.0631 4732 wcncsvc - ok
      13:27:41.0647 4732 [ 5D930B6357A6D2AF4D7653BDABBF352F ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
      13:27:41.0647 4732 WcsPlugInService - ok
      13:27:41.0647 4732 [ 1112A9BADACB47B7C0BB0392E3158DFF ] Wd C:\Windows\system32\drivers\wd.sys
      13:27:41.0663 4732 Wd - ok
      13:27:41.0678 4732 [ 9950E3D0F08141C7E89E64456AE7DC73 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
      13:27:41.0694 4732 Wdf01000 - ok
      13:27:41.0709 4732 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiServiceHost C:\Windows\system32\wdi.dll
      13:27:41.0709 4732 WdiServiceHost - ok
      13:27:41.0709 4732 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiSystemHost C:\Windows\system32\wdi.dll
      13:27:41.0709 4732 WdiSystemHost - ok
      13:27:41.0725 4732 [ A9D880F97530D5B8FEE278923349929D ] WebClient C:\Windows\System32\webclnt.dll
      13:27:41.0741 4732 WebClient - ok
      13:27:41.0756 4732 [ 760F0AFE937A77CFF27153206534F275 ] Wecsvc C:\Windows\system32\wecsvc.dll
      13:27:41.0756 4732 Wecsvc - ok
      13:27:41.0772 4732 [ AC804569BB2364FB6017370258A4091B ] wercplsupport C:\Windows\System32\wercplsupport.dll
      13:27:41.0772 4732 wercplsupport - ok
      13:27:41.0803 4732 [ 08E420D873E4FD85241EE2421B02C4A4 ] WerSvc C:\Windows\System32\WerSvc.dll
      13:27:41.0803 4732 WerSvc - ok
      13:27:41.0819 4732 [ 8B9A943F3B53861F2BFAF6C186168F79 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
      13:27:41.0819 4732 WfpLwf - ok
      13:27:41.0834 4732 [ 5CF95B35E59E2A38023836FFF31BE64C ] WIMMount C:\Windows\system32\drivers\wimmount.sys
      13:27:41.0834 4732 WIMMount - ok
      13:27:41.0897 4732 [ 3FAE8F94296001C32EAB62CD7D82E0FD ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
      13:27:41.0928 4732 WinDefend - ok
      13:27:41.0928 4732 WinHttpAutoProxySvc - ok
      13:27:41.0990 4732 [ F62E510B6AD4C21EB9FE8668ED251826 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
      13:27:41.0990 4732 Winmgmt - ok
      13:27:42.0053 4732 [ 1B91CD34EA3A90AB6A4EF0550174F4CC ] WinRM C:\Windows\system32\WsmSvc.dll
      13:27:42.0084 4732 WinRM - ok
      13:27:42.0146 4732 [ 16935C98FF639D185086A3529B1F2067 ] Wlansvc C:\Windows\System32\wlansvc.dll
      13:27:42.0162 4732 Wlansvc - ok
      13:27:42.0193 4732 [ 0217679B8FCA58714C3BF2726D2CA84E ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
      13:27:42.0193 4732 WmiAcpi - ok
      13:27:42.0209 4732 [ 6EB6B66517B048D87DC1856DDF1F4C3F ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
      13:27:42.0224 4732 wmiApSrv - ok
      13:27:42.0255 4732 [ 3B40D3A61AA8C21B88AE57C58AB3122E ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
      13:27:42.0287 4732 WMPNetworkSvc - ok
      13:27:42.0302 4732 [ A2F0EC770A92F2B3F9DE6D518E11409C ] WPCSvc C:\Windows\System32\wpcsvc.dll
      13:27:42.0302 4732 WPCSvc - ok
      13:27:42.0318 4732 [ AA53356D60AF47EACC85BC617A4F3F66 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
      13:27:42.0318 4732 WPDBusEnum - ok
      13:27:42.0349 4732 [ 6DB3276587B853BF886B69528FDB048C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
      13:27:42.0349 4732 ws2ifsl - ok
      13:27:42.0349 4732 [ 6F5D49EFE0E7164E03AE773A3FE25340 ] wscsvc C:\Windows\System32\wscsvc.dll
      13:27:42.0365 4732 wscsvc - ok
      13:27:42.0365 4732 WSearch - ok
      13:27:42.0427 4732 [ 3026418A50C5B4761BEFA632CEDB7406 ] wuauserv C:\Windows\system32\wuaueng.dll
      13:27:42.0474 4732 wuauserv - ok
      13:27:42.0489 4732 [ E714A1C0354636837E20CCBF00888EE7 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
      13:27:42.0489 4732 WudfPf - ok
      13:27:42.0521 4732 [ 1023EE888C9B47178C5293ED5336AB69 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
      13:27:42.0521 4732 WUDFRd - ok
      13:27:42.0552 4732 [ 8D1E1E529A2C9E9B6A85B55A345F7629 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
      13:27:42.0552 4732 wudfsvc - ok
      13:27:42.0567 4732 [ FF2D745B560F7C71B31F30F4D49F73D2 ] WwanSvc C:\Windows\System32\wwansvc.dll
      13:27:42.0567 4732 WwanSvc - ok
      13:27:42.0599 4732 ================ Scan global ===============================
      13:27:42.0614 4732 [ DAB748AE0439955ED2FA22357533DDDB ] C:\Windows\system32\basesrv.dll
      13:27:42.0645 4732 [ A9F564F254E9DDDE120A7135767EC24B ] C:\Windows\system32\winsrv.dll
      13:27:42.0661 4732 [ A9F564F254E9DDDE120A7135767EC24B ] C:\Windows\system32\winsrv.dll
      13:27:42.0677 4732 [ 364455805E64882844EE9ACB72522830 ] C:\Windows\system32\sxssrv.dll
      13:27:42.0708 4732 [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6 ] C:\Windows\system32\services.exe
      13:27:42.0708 4732 [Global] - ok
      13:27:42.0708 4732 ================ Scan MBR ==================================
      13:27:42.0723 4732 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
      13:27:43.0082 4732 \Device\Harddisk0\DR0 - ok
      13:27:43.0113 4732 [ AB869B180D9E0E8C5AAB06C47D6F8186 ] \Device\Harddisk1\DR1
      13:27:43.0425 4732 \Device\Harddisk1\DR1 ( TDSS File System ) - warning
      13:27:43.0425 4732 \Device\Harddisk1\DR1 - detected TDSS File System (1)
      13:27:43.0425 4732 ================ Scan VBR ==================================
      13:27:43.0425 4732 [ C9D1771DA722A0718C862ACD0DB748F7 ] \Device\Harddisk0\DR0\Partition1
      13:27:43.0425 4732 \Device\Harddisk0\DR0\Partition1 - ok
      13:27:43.0457 4732 [ E41FC65A2062B8BAB8B9DCF05E12A4DF ] \Device\Harddisk0\DR0\Partition2
      13:27:43.0457 4732 \Device\Harddisk0\DR0\Partition2 - ok
      13:27:43.0472 4732 [ C9319B61441A82DB8F161A8D72969DDA ] \Device\Harddisk0\DR0\Partition3
      13:27:43.0472 4732 \Device\Harddisk0\DR0\Partition3 - ok
      13:27:43.0488 4732 [ 29E24D6A5244768E699291D788CAE375 ] \Device\Harddisk0\DR0\Partition4
      13:27:43.0488 4732 \Device\Harddisk0\DR0\Partition4 - ok
      13:27:43.0535 4732 [ 45F3726FF03FE85FCE4D840B81AC8341 ] \Device\Harddisk1\DR1\Partition1
      13:27:43.0535 4732 \Device\Harddisk1\DR1\Partition1 - ok
      13:27:43.0535 4732 ============================================================
      13:27:43.0535 4732 Scan finished
      13:27:43.0535 4732 ============================================================
      13:27:43.0550 5372 Detected object count: 1
      13:27:43.0550 5372 Actual detected object count: 1
      13:48:17.0242 5372 \Device\Harddisk1\DR1\TDLFS\config.ini - copied to quarantine
      13:48:17.0258 5372 \Device\Harddisk1\DR1\TDLFS\tdlcmd.dll - copied to quarantine
      13:48:17.0710 5372 \Device\Harddisk1\DR1\TDLFS\tdlwsp.dll - copied to quarantine
      13:48:18.0147 5372 \Device\Harddisk1\DR1\TDLFS - deleted
      13:48:18.0147 5372 \Device\Harddisk1\DR1 ( TDSS File System ) - User select action: Delete
      13:48:23.0919 2616 Deinitialize success

    4. #4
      Moderador.
      Avatar de @Tincho
      Registrado
      may 2008
      Ubicación
      Argentina
      Mensajes
      14.701

      Re: Redireccionamiento de Página.

      Buenas.


      Como funciona todo ¿?

      Saludos.
      Tyny's
      If on your journey, you should encounter God, God will be cut!

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    5. #5
      Usuario Avatar de Jimmy_R
      Registrado
      oct 2012
      Ubicación
      México
      Mensajes
      4

      Re: Redireccionamiento de Página.

      Buenas Tyny's, mando capturas, sigo con lo mismo.




      son de IE9, pero sucede con cualquier navegador.

    6. #6
      Moderador.
      Avatar de @Tincho
      Registrado
      may 2008
      Ubicación
      Argentina
      Mensajes
      14.701

      Re: Redireccionamiento de Página.

      Buenas


      Descarga la herramienta ComboFix.exe y guárdala en el escritorio.

      • Desactiva temporalmente el Antivirus y/o Antispyware.
      • Cierra todas las ventanas abiertas.
      • Hacele doble clic al archivo ComboFix.exe y seguí las instrucciones.
      • Cuando termine, generara un registro en C:\ComboFix.txt.
        • *Nota* Mientras CF este trabajando no mover el mouse ya que pararía su proceso.
        • *Nota* ComboFix puede reiniciar automáticamente el PC para completar el proceso de eliminación.



      Atención!! No use ComboFix a menos que se le haya indicado específicamente en su mensaje por un integrante de nuestro Staff. Es una herramienta de gran alcance destinada por su creador a ser usada bajo la orientación y supervisión de un experto, no para uso privado. El uso de ComboFix incorrectamente podría generar problemas en su sistema. Por favor, lea las "Negaciones de la Garantía" de ComboFix.
      • Reinicia y pega el reporte de C:\ComboFix.txt en este mismo mensaje.Comentando como esta funcionado tu sistema.
      Tyny's
      If on your journey, you should encounter God, God will be cut!

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    7. #7
      Usuario Avatar de Jimmy_R
      Registrado
      oct 2012
      Ubicación
      México
      Mensajes
      4

      Re: Redireccionamiento de Página.

      Buenas

      Los navegadores y explorador siguen redireccionando.

      Reporte combofix.

      ComboFix 12-10-17.03 - Jimmy 17/10/2012 8:51.1.2 - x86
      Microsoft Windows 7 Professional 6.1.7601.1.1252.52.3082.18.3327.2416 [GMT -5:00]
      Running from: c:\users\Jimmy\Desktop\ComboFix.exe
      AV: ESET Smart Security 5.0 *Disabled/Updated* {77DEAFED-8149-104B-25A1-21771CA47CD1}
      FW: Firewall personal de ESET *Disabled* {4FE52EC8-CB26-1113-0EFE-8842E2773BAA}
      SP: ESET Smart Security 5.0 *Disabled/Updated* {CCBF4E09-A773-1FC5-1F11-1A056723366C}
      SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
      .
      .
      ((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
      .
      .
      C:\InfoSat.txt
      c:\users\Jimmy\AppData\Local\assembly\tmp
      c:\users\Jimmy\AppData\Roaming\inst.exe
      c:\users\Jimmy\AppData\Roaming\Jimmylog.dat
      c:\users\Jimmy\AppData\Roaming\vso_ts_preview.xml
      c:\windows\system32\install
      c:\windows\system32\msstdfmt.dll
      .
      .
      ((((((((((((((((((((((((( Files Created from 2012-09-17 to 2012-10-17 )))))))))))))))))))))))))))))))
      .
      .
      2012-10-16 18:48 . 2012-10-16 18:48 -------- d-----w- C:\TDSSKiller_Quarantine
      2012-10-16 16:08 . 2012-10-16 16:12 -------- d-----w- c:\program files\HDD Regenerator
      2012-10-15 15:21 . 2012-10-15 15:21 -------- d-----w- c:\program files\Common Files\Corel
      2012-10-15 15:20 . 2012-10-15 15:20 -------- d-----w- c:\program files\Common Files\Protexis
      2012-10-14 21:28 . 2012-10-15 15:16 -------- d-----w- c:\program files\Corel
      2012-10-14 21:16 . 2012-10-14 21:16 -------- d-----w- c:\programdata\Vso
      2012-10-14 21:15 . 2012-06-25 17:54 626688 ----a-w- c:\windows\system32\vp7vfw.dll
      2012-10-14 21:15 . 2012-06-25 17:54 1184984 ----a-w- c:\windows\system32\wvc1dmod.dll
      2012-10-12 02:45 . 2012-10-12 02:45 -------- d-----w- c:\users\Jimmy\AppData\Local\MPlayer
      2012-10-12 02:44 . 2012-10-12 02:44 -------- d-----w- c:\programdata\OEM Links
      2012-10-12 02:44 . 2012-10-12 02:44 -------- d-----w- C:\MININT
      2012-10-11 14:24 . 2012-10-11 14:24 -------- d-----w- c:\programdata\Protexis
      2012-10-10 21:24 . 2012-10-10 21:24 -------- d-----r- C:\Sandbox
      2012-10-07 03:25 . 2012-10-09 01:37 2560 ----a-w- c:\windows\_MSRSTRT.EXE
      2012-10-07 03:12 . 2010-06-07 20:59 57904 ------w- c:\windows\system32\wbload.dll
      2012-10-07 03:12 . 2008-04-26 21:14 42672 ------w- c:\windows\system32\wbsys.dll
      2012-10-07 03:12 . 2012-10-07 03:12 -------- d-----w- c:\program files\Stardock
      2012-10-05 17:57 . 2012-10-05 18:14 -------- d-----w- c:\users\Jimmy\AppData\Roaming\deluge
      2012-10-05 17:52 . 2012-10-05 17:52 -------- d-----w- c:\users\Jimmy\AppData\Roaming\gtk-2.0
      2012-10-05 17:40 . 2012-10-05 17:40 -------- d-----w- c:\users\Jimmy\AppData\Roaming\torrent-search
      2012-09-30 17:57 . 2012-09-30 17:57 -------- d-----w- c:\programdata\vsosdk
      2012-09-30 03:32 . 2012-09-30 03:32 -------- d-----w- c:\users\Jimmy\AppData\Local\Nero
      2012-09-28 19:03 . 2012-10-10 15:51 -------- d-----w- c:\users\Jimmy\AppData\Roaming\Media Player Classic
      2012-09-28 19:01 . 2011-12-07 17:32 216064 ----a-w- c:\windows\system32\lagarith.dll
      2012-09-28 19:01 . 2011-06-24 14:44 243200 ----a-w- c:\windows\system32\xvidvfw.dll
      2012-09-28 19:01 . 2011-06-24 14:28 650752 ----a-w- c:\windows\system32\xvidcore.dll
      2012-09-28 19:01 . 2011-12-21 17:14 151552 ----a-w- c:\windows\system32\ac3acm.acm
      2012-09-28 19:01 . 2012-09-20 18:00 112640 ----a-w- c:\windows\system32\ff_vfw.dll
      2012-09-28 15:24 . 2012-09-28 15:24 -------- d-----w- c:\program files\Common Files\Java
      2012-09-28 15:24 . 2012-09-28 15:24 821736 ----a-w- c:\windows\system32\npDeployJava1.dll
      2012-09-28 15:24 . 2012-09-28 15:24 93672 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
      2012-09-28 14:46 . 2012-10-14 21:09 -------- d-----w- c:\users\Jimmy\AppData\Roaming\IDM
      2012-09-28 14:46 . 2012-09-28 14:49 -------- d-----w- c:\program files\Internet Download Manager
      2012-09-27 15:13 . 2012-09-27 15:13 -------- d-----w- c:\program files\GrabIt
      2012-09-27 15:08 . 2012-09-27 18:07 99192 ----a-w- c:\windows\system32\drivers\idmwfp.sys
      2012-09-27 14:24 . 2012-09-28 16:01 -------- d-----w- c:\users\Jimmy\AppData\Roaming\GrabIt
      2012-09-27 02:57 . 2012-09-27 14:36 -------- d-----w- c:\users\Jimmy\AppData\Local\Alt.Binz
      2012-09-27 02:55 . 2012-09-27 02:55 -------- d-----w- C:\KQXP54ALFB
      2012-09-27 02:53 . 2012-09-27 02:57 -------- d-----w- c:\users\Jimmy\AppData\Roaming\Binreader
      2012-09-27 02:52 . 2012-09-27 02:52 -------- d-----w- c:\program files\Binreader
      2012-09-26 22:51 . 2012-09-27 02:39 -------- d-----w- c:\users\Jimmy\AppData\Roaming\SuperNZB
      2012-09-26 22:34 . 2012-09-26 22:34 -------- d-----w- c:\users\Jimmy\AppData\Roaming\Unzbin
      2012-09-26 22:33 . 2012-09-26 22:33 -------- d-----w- c:\users\Jimmy\AppData\Local\Unzbin.com
      2012-09-24 21:32 . 2012-09-24 21:32 -------- d-----w- c:\users\Jimmy\AppData\Local\PAShell
      2012-09-24 21:26 . 2012-09-24 21:26 -------- d-----w- c:\users\Jimmy\AppData\Local\Avanquest North America
      2012-09-24 21:23 . 2012-09-24 21:23 -------- d-----w- c:\users\Jimmy\AppData\Local\Nova Development
      2012-09-24 21:22 . 2012-09-24 21:22 -------- d-----w- c:\program files\Common Files\Nova Development
      2012-09-24 21:22 . 2012-09-24 21:22 -------- d-----w- c:\program files\Nova Development
      2012-09-22 15:16 . 2012-09-22 15:16 -------- d-----w- c:\program files\Common Files\Adobe Systems Shared
      2012-09-22 04:02 . 2012-09-22 04:02 -------- d-----w- c:\users\Jimmy\AppData\Roaming\com.adobe.downloadassistant.AdobeDownloadAssistant
      2012-09-21 20:07 . 2012-09-21 20:07 -------- d-----w- c:\users\Jimmy\AppData\Local\MicroVision Applications
      2012-09-21 20:07 . 2009-12-15 23:25 487424 ----a-w- c:\windows\system32\msvcp70.dll
      2012-09-21 20:07 . 2009-12-15 23:25 344064 ----a-w- c:\windows\system32\msvcr70.dll
      2012-09-21 20:07 . 2012-09-21 20:07 -------- d-----w- c:\program files\Common Files\SureThing Shared
      2012-09-21 20:06 . 2012-09-21 20:07 -------- d-----w- c:\program files\SureThing CD Labeler 5
      2012-09-20 17:25 . 2012-09-20 17:25 -------- d-----w- c:\program files\Western Digital Corporation
      2012-09-20 13:48 . 2012-09-20 13:49 -------- d---a-w- C:\Kaspersky Rescue Disk 10.0
      2012-09-20 04:15 . 2012-09-20 04:15 -------- d-----w- c:\users\Jimmy\AppData\Local\VS Revo Group
      2012-09-20 04:15 . 2009-12-30 16:21 27192 ----a-w- c:\windows\system32\drivers\revoflt.sys
      2012-09-20 04:15 . 2012-09-20 04:15 -------- d-----w- c:\program files\VS Revo Group
      2012-09-20 03:59 . 2012-09-20 03:59 -------- d-----w- c:\program files\Yamicsoft
      2012-09-20 03:57 . 2012-09-20 03:57 -------- d-----w- c:\users\Jimmy\AppData\Roaming\wurst
      2012-09-20 03:51 . 2012-09-20 03:51 -------- d-----w- c:\program files\iNFekt
      2012-09-19 19:24 . 2012-09-21 14:31 -------- d-----w- c:\program files\Ashampoo
      2012-09-19 19:21 . 2012-09-21 16:27 -------- d-----w- c:\users\Jimmy\AppData\Local\Ashampoo Music Studio 3
      .
      .
      .
      (((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
      .
      2012-10-14 21:05 . 2012-08-12 00:40 47360 ----a-w- c:\users\Jimmy\AppData\Roaming\pcouffin.sys
      2012-10-13 13:34 . 2012-04-23 01:30 73656 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
      2012-10-13 13:34 . 2012-04-23 01:30 696760 ----a-w- c:\windows\system32\FlashPlayerApp.exe
      2012-08-20 22:32 . 2012-09-05 02:56 158552 ----a-w- c:\windows\system32\drivers\VBoxDrv.sys
      2012-08-20 22:32 . 2012-09-05 02:56 91992 ----a-w- c:\windows\system32\drivers\VBoxUSBMon.sys
      2012-08-20 22:32 . 2012-08-20 22:32 116056 ----a-w- c:\windows\system32\drivers\VBoxNetFlt.sys
      2012-08-20 22:32 . 2012-08-20 22:32 104792 ----a-w- c:\windows\system32\drivers\VBoxNetAdp.sys
      2012-08-20 22:32 . 2012-08-20 22:32 135512 ----a-w- c:\windows\system32\VBoxNetFltNobj.dll
      2012-08-14 01:15 . 2012-08-12 21:54 8107 ----a-w- c:\windows\w7dsd.reg
      2012-08-14 01:15 . 2012-08-12 21:54 8089 ----a-w- c:\windows\w7dse.reg
      2012-08-12 21:54 . 2012-08-12 21:54 233888 ----a-w- c:\windows\system32\DreamScene.dll
      2012-08-12 00:40 . 2012-08-12 00:40 47360 ----a-w- c:\windows\system32\drivers\pcouffin.sys
      2012-09-10 05:02 . 2012-04-24 20:40 266720 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
      .
      .
      ((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
      .
      .
      *Note* empty entries & legit default entries are not shown
      REGEDIT4
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
      @="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
      [HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
      2012-02-14 22:58 94208 ----a-w- c:\users\Jimmy\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
      @="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
      [HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
      2012-02-14 22:58 94208 ----a-w- c:\users\Jimmy\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
      @="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
      [HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
      2012-02-14 22:58 94208 ----a-w- c:\users\Jimmy\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
      @="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
      [HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
      2012-02-14 22:58 94208 ----a-w- c:\users\Jimmy\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\IDM Shell Extension]
      @="{CDC95B92-E27C-4745-A8C5-64A52A78855D}"
      [HKEY_CLASSES_ROOT\CLSID\{CDC95B92-E27C-4745-A8C5-64A52A78855D}]
      2012-02-08 00:49 22376 ----a-w- c:\program files\Internet Download Manager\IDMShellExt.dll
      .
      [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
      "IDMan"="c:\program files\Internet Download Manager\IDMan.exe" [2012-09-28 3532224]
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
      "egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2011-09-22 3080264]
      "SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848]
      .
      c:\users\Jimmy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
      Dropbox.lnk - c:\users\Jimmy\AppData\Roaming\Dropbox\bin\Dropbox.exe [2012-5-24 27112840]
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
      "ConsentPromptBehaviorAdmin"= 0 (0x0)
      "ConsentPromptBehaviorUser"= 3 (0x3)
      "EnableUIADesktopToggle"= 0 (0x0)
      "EnableLinkedConnections"= 1 (0x1)
      "EnableLUA"= 0 (0x0)
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
      "aux"=wdmaud.drv
      .
      [HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^JShotTray.lnk]
      path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\JShotTray.lnk
      backup=c:\windows\pss\JShotTray.lnk.CommonStartup
      backupExtension=.CommonStartup
      .
      [HKLM\~\startupfolder\C:^Users^Jimmy^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Dropbox.lnk]
      path=c:\users\Jimmy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
      backup=c:\windows\pss\Dropbox.lnk.Startup
      backupExtension=.Startup
      .
      [HKLM\~\startupfolder\C:^Users^Jimmy^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Start Freenet.lnk]
      path=c:\users\Jimmy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Start Freenet.lnk
      backup=c:\windows\pss\Start Freenet.lnk.Startup
      backupExtension=.Startup
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
      2012-04-04 05:53 843712 ----a-w- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0]
      2011-03-15 22:42 499608 ------w- c:\program files\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeBridge]
      2011-03-03 02:35 12008296 ----a-w- c:\program files\Adobe\Adobe Bridge CS5.1\Bridge.exe
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS5.5ServiceManager]
      2011-01-12 12:08 1523360 ----a-w- c:\program files\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BCSSync]
      2010-03-13 19:54 91520 ----a-w- c:\program files\Microsoft Office\Office14\BCSSync.exe
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
      2012-05-01 01:48 136176 ----atw- c:\users\Jimmy\AppData\Local\Google\Update\GoogleUpdate.exe
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HDAudDeck]
      2011-07-18 14:20 3757168 ----a-r- c:\program files\VIA\VIAudioi\VDeck\VDeck.exe
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IDMan]
      2012-09-28 14:49 3532224 ----a-w- c:\program files\Internet Download Manager\IDMan.exe
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\lxbkbmgr.exe]
      2008-02-28 16:59 74408 ----a-w- c:\program files\Lexmark X1100 Series\LXBKbmgr.exe
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Malwarebytes' Anti-Malware]
      2012-07-03 18:46 462920 ----a-w- c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NBAgent]
      2011-04-08 13:50 1406248 ----a-w- c:\program files\Nero\Nero 10\Nero BackItUp\NBAgent.exe
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\StartCCC]
      2010-02-11 02:57 98304 ----a-w- c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
      2012-07-03 14:04 252848 ----a-w- c:\program files\Common Files\Java\Java Update\jusched.exe
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SwitchBoard]
      2010-02-19 18:37 517096 ----a-w- c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
      2012-09-27 20:28 896912 ----a-w- c:\program files\uTorrent\uTorrent.exe
      .
      R1 ArcSec;archlp;c:\windows\system32\drivers\ArcSec.sys [x]
      R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys [x]
      R3 FQX;FQX;c:\users\Jimmy\AppData\Local\Temp\FQX.exe [x]
      R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [x]
      R3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files\Microsoft Office\Office14\GROOVE.EXE [x]
      R3 pcouffin;VSO Software pcouffin;c:\windows\system32\Drivers\pcouffin.sys [x]
      R3 Revoflt;Revoflt;c:\windows\system32\DRIVERS\revoflt.sys [x]
      R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
      R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [x]
      R4 AdobeARMservice;Adobe Acrobat Update Service;c:\program files\Common Files\Adobe\ARM\1.0\armsvc.exe [x]
      R4 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [x]
      R4 lxbk_device;lxbk_device;c:\windows\system32\lxbkcoms.exe [x]
      R4 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [x]
      R4 MozillaMaintenance;Mozilla Maintenance Service;c:\program files\Mozilla Maintenance Service\maintenanceservice.exe [x]
      R4 SwitchBoard;Adobe SwitchBoard;c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [x]
      R4 VIAKaraokeService;VIA Karaoke digital mixer Service;c:\windows\system32\viakaraokesrv.exe [x]
      S0 epfwwfp;epfwwfp;c:\windows\system32\DRIVERS\epfwwfp.sys [x]
      S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [x]
      S1 EpfwLWF;Epfw NDIS LightWeight Filter;c:\windows\system32\DRIVERS\EpfwLWF.sys [x]
      S1 VBoxDrv;VirtualBox Service;c:\windows\system32\DRIVERS\VBoxDrv.sys [x]
      S1 VBoxUSBMon;VirtualBox USB Monitor Driver;c:\windows\system32\DRIVERS\VBoxUSBMon.sys [x]
      S2 cpuz135;cpuz135;c:\windows\system32\drivers\cpuz135_x32.sys [x]
      S2 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys [x]
      S2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\ekrn.exe [x]
      S2 IDMWFP;IDMWFP;c:\windows\system32\DRIVERS\idmwfp.sys [x]
      S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atipmdag.sys [x]
      S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [x]
      S3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [x]
      S3 PciSPorts;High-Speed PCI Serial Port;c:\windows\system32\DRIVERS\PciSPorts.sys [x]
      S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [x]
      S3 usbfilter;AMD USB Filter Driver;c:\windows\system32\DRIVERS\usbfilter.sys [x]
      S3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter;c:\windows\system32\DRIVERS\VBoxNetAdp.sys [x]
      S3 VBoxNetFlt;VirtualBox Bridged Networking Service;c:\windows\system32\DRIVERS\VBoxNetFlt.sys [x]
      S3 VIAHdAudAddService;VIA High Definition Audio Driver Service;c:\windows\system32\drivers\viahduaa.sys [x]
      .
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
      LocalServiceAndNoImpersonation REG_MULTI_SZ SSDPSRV upnphost SCardSvr TBS FontCache fdrespub AppIDSvc QWAVE wcncsvc SensrSvc
      .
      Contents of the 'Scheduled Tasks' folder
      .
      2012-10-17 c:\windows\Tasks\AutoKMS.job
      - c:\windows\AutoKMS\AutoKMS.exe [2012-04-27 03:04]
      .
      2012-10-16 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3369013109-1716610068-4035020156-1000Core.job
      - c:\users\Jimmy\AppData\Local\Google\Update\GoogleUpdate.exe [2012-05-01 01:48]
      .
      2012-10-17 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3369013109-1716610068-4035020156-1000UA.job
      - c:\users\Jimmy\AppData\Local\Google\Update\GoogleUpdate.exe [2012-05-01 01:48]
      .
      .
      ------- Supplementary Scan -------
      .
      uStart Page = hxxp://www.google.com.mx/
      mStart Page = about:blank
      uInternet Settings,ProxyOverride = <local>
      IE: &Enviar a OneNote - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105
      IE: Descargar con IDM - c:\program files\Internet Download Manager\IEExt.htm
      IE: Descargar con IDM todos los enlaces - c:\program files\Internet Download Manager\IEGetAll.htm
      IE: E&xportar a Microsoft Excel - c:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000
      TCP: DhcpNameServer = 192.168.1.254
      FF - ProfilePath - c:\users\Jimmy\AppData\Roaming\Mozilla\Firefox\Profiles\45087u22.default\
      FF - prefs.js: browser.startup.homepage - hxxp://www.google.com.mx
      FF - ExtSQL: 2012-09-11 00:06; {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}; c:\users\Jimmy\AppData\Roaming\Mozilla\Firefox\Profiles\45087u22.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
      .
      .
      ------- File Associations -------
      .
      inifile=Notepad.exe "%1"
      txtfile=Notepad.exe "%1"
      .scr=AutoCADScriptFile
      .
      - - - - ORPHANS REMOVED - - - -
      .
      ShellExecuteHooks-{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - (no file)
      Notify-!SASWinLogon - c:\program files\SUPERAntiSpyware\SASWINLO.DLL
      MSConfigStartUp-Autodesk Sync - c:\program files\Autodesk\Autodesk Sync\AdSync.exe
      .
      .
      .
      --------------------- LOCKED REGISTRY KEYS ---------------------
      .
      [HKEY_USERS\S-1-5-21-3369013109-1716610068-4035020156-1000\Software\TechSmith\SnagIt\10\Addins]
      @DACL=(02 0000)
      .
      [HKEY_USERS\S-1-5-21-3369013109-1716610068-4035020156-1000_Classes\Applications\uTorrent.exe\shell]
      @DACL=(02 0000)
      @="open"
      .
      [HKEY_USERS\S-1-5-21-3369013109-1716610068-4035020156-1000_Classes\AutoCAD.Drawing.19\protocol\StdFileEditing]
      @DACL=(02 0000)
      .
      [HKEY_USERS\S-1-5-21-3369013109-1716610068-4035020156-1000_Classes\AutoCAD.Drawing.19\shell\printto]
      @DACL=(02 0000)
      .
      [HKEY_USERS\S-1-5-21-3369013109-1716610068-4035020156-1000_Classes\AutoCAD.Drawing.19\shellex\PropertySheetHandlers]
      @DACL=(02 0000)
      @="AutoCAD.Drawing.19"
      .
      [HKEY_USERS\S-1-5-21-3369013109-1716610068-4035020156-1000_Classes\AutoCAD.Drawing.19\shellex\{00021500-0000-0000-C000-000000000046}]
      @DACL=(02 0000)
      @="{5800AD5B-72C1-477B-9A08-CA112DF06D97}"
      .
      [HKEY_USERS\S-1-5-21-3369013109-1716610068-4035020156-1000_Classes\CLSID\{255e2b32-c602-4769-9a88-a575972e3646}]
      @Denied: (Full) (Everyone)
      @Allowed: (Read) (RestrictedCode)
      "Model"=dword:000000f6
      "Therad"=dword:0000001b
      "MData"=hex(0):73,d5,cf,b8,a4,07,89,80,31,e4,35,6b,2a,ca,fe,43,b6,1f,81,1f,5a,
      1b,4d,36,46,8f,3c,f2,5c,68,ee,21,46,8f,3c,f2,5c,68,ee,21,46,8f,3c,f2,5c,68,\
      .
      [HKEY_USERS\S-1-5-21-3369013109-1716610068-4035020156-1000_Classes\CLSID\{7B8E9164-324D-4A2E-A46D-0165FB2000EC}]
      @Denied: (Full) (Everyone)
      @Allowed: (Read) (RestrictedCode)
      "scansk"=hex(0):ea,a0,aa,85,6d,15,cb,e9,3d,86,bb,8d,be,90,1f,69,3f,93,6d,a6,e5,
      75,0c,37,2e,69,df,86,3e,55,0f,4d,60,d3,29,a0,34,72,e3,a0,00,00,00,00,00,00,\
      .
      [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
      @Denied: (Full) (Everyone)
      .
      Completion time: 2012-10-17 08:57:49
      ComboFix-quarantined-files.txt 2012-10-17 13:57
      .
      Pre-Run: 130,875,174,912 bytes libres
      Post-Run: 130,658,488,320 bytes libres
      .
      - - End Of File - - 87882ECCA89006421E37449DFFBA9FDB