• Registrarse
  • Iniciar sesión


  • Resultados 1 al 10 de 10

    me hakearon

    Buenas noches antes ke nada pro tengo un problema me an hakeado mis kuentas de varios juego pero no tengo anty virus y de verdad desearian ke me ayudaran a eliminar el virus gracias...

    1. #1
      Usuario Avatar de maury84
      Registrado
      oct 2012
      Ubicación
      mexico
      Mensajes
      7

      Molesto me hakearon

      Buenas noches antes ke nada pro tengo un problema me an hakeado mis kuentas de varios juego pero no tengo anty virus y de verdad desearian ke me ayudaran a eliminar el virus gracias

    2. #2
      Moderador
      Avatar de @MarioL
      Registrado
      nov 2006
      Ubicación
      Málaga - España
      Mensajes
      8.819

      Re: me hakearon

      Hola y bienvenid@
      Vamos a realizar estos pasos en modo normal, es importante que leas con detenemiento y sin ejecutarlas haz lo siguiente:


      1. Descarga en tú escritorio el TDSSKiller pero NO la ejecutes aún.
      2. Descarga, instala y actualiza el Malwarebytes.


      Ahora vamos a realizar estos pasos:

      1º- Ejecutamos el TDSSKiller según su manual.

      Recuerda marcar ambas opciones:


      Una vez terminado copia su reporte.



      2º- Ejecutamos el Malwarebytes y realizamos lo siguiente:


      1. Pestaña "Actualización" y luego al botón "Actualizar"
      2. Pestaña "Escáner" y luego a "Escaneo Completo" y seguido a "Escanear"
      3. Una vez acabado le das a la opción "Mostrar Resultados" y seguidamente a "Quitar elementos Seleccionado"
      4. Sí te pide reiniciar hazlo.
      5. Copia su último reporte ubicado en la pestaña "Registro"


      3º-
      Analiza tú máquina con ESET Online Scanner siguiendo los pasos con detenimiento
      Bien, una vez acabado el nod32 peganos tambien el reporte, una vez que lo tengamos ya continuamos con más pasos sí fuese necesario


      Resumen:

      • Colocar el reporte del Malwarebytes.
      • Colocar el reporte del TDSSkiller.
      • Colocar el reporte del ESET Online Scanner.
      • Comentar como va el ordenador.


      Un saludo.
      Invy

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    3. #3
      Usuario Avatar de maury84
      Registrado
      oct 2012
      Ubicación
      mexico
      Mensajes
      7

      Re: me hakearon

      Malwarebytes Anti-Malware (Versión de Prueba) 1.65.1.1000
      Malwarebytes : Free anti-malware download

      Versión de la Base de Datos: v2012.10.24.01

      Windows 7 Service Pack 1 x64 NTFS
      Internet Explorer 9.0.8112.16421
      maury :: MAURY-HP [administrador]

      Protección: Habilitado

      24/10/2012 02:16:00 a.m.
      mbam-log-2012-10-24 (03-11-11).txt

      Tipos de Análisis: Análisis Completo (C:\|)
      Opciones de análisis activado: Memoria | Inicio | Registro | Sistema de archivos | Heurística/Extra | Heurística/Shuriken | PUP | PUM
      Opciones de análisis desactivados: P2P
      Objetos examinados: 389110
      Tiempo transcurrido: 52 minuto(s), 52 segundo(s)

      Procesos en Memoria Detectados: 0
      (No se han detectado elementos maliciosos)

      Módulos de Memoria Detectados: 0
      (No se han detectado elementos maliciosos)

      Claves del Registro Detectados: 21
      HKCR\CLSID\{75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7} (PUP.FunMoods) -> No se tomaron medidas.
      HKCR\funmoods.funmoodsHlpr.1 (PUP.FunMoods) -> No se tomaron medidas.
      HKCR\funmoods.funmoodsHlpr (PUP.FunMoods) -> No se tomaron medidas.
      HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7} (PUP.FunMoods) -> No se tomaron medidas.
      HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7} (PUP.FunMoods) -> No se tomaron medidas.
      HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7} (PUP.FunMoods) -> No se tomaron medidas.
      HKCR\CLSID\{965B9DBE-B104-44AC-950A-8A5F97AFF439} (PUP.Funmoods) -> No se tomaron medidas.
      HKCR\CLSID\{A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3} (PUP.Funmoods) -> No se tomaron medidas.
      HKCR\funmoods.dskBnd.1 (PUP.Funmoods) -> No se tomaron medidas.
      HKCR\funmoods.dskBnd (PUP.Funmoods) -> No se tomaron medidas.
      HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3} (PUP.Funmoods) -> No se tomaron medidas.
      HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3} (PUP.Funmoods) -> No se tomaron medidas.
      HKCR\CLSID\{A9DB719C-7156-415E-B49D-BAD039DE4F13} (PUP.Funmoods) -> No se tomaron medidas.
      HKCR\funmoodsApp.appCore.1 (PUP.Funmoods) -> No se tomaron medidas.
      HKCR\funmoodsApp.appCore (PUP.Funmoods) -> No se tomaron medidas.
      HKCR\CLSID\{F03FD9D0-4F2B-497C-8A71-DD41D70B07D9} (PUP.Funmoods) -> No se tomaron medidas.
      HKCR\f (PUP.Funmoods) -> No se tomaron medidas.
      HKCR\Typelib\{1D085C0A-E4F4-4F66-BDBF-4BE51015BFC3} (PUP.Funmoods) -> No se tomaron medidas.
      HKCR\Interface\{0D80F1C5-D17B-4177-AC68-955F3EF9F191} (PUP.Funmoods) -> No se tomaron medidas.
      HKLM\SOFTWARE\Google\chrome\Extensions\fdloijijlkoblmigdofommgnheckmaki (PUP.Funmoods) -> No se tomaron medidas.
      HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Internet Spooling Service (Adware.Agent) -> No se tomaron medidas.

      Valores del Registro Detectados: 2
      HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar|{A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3} (PUP.Funmoods) -> datos: Funmoods Toolbar -> No se tomaron medidas.
      HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3} (PUP.Funmoods) -> datos: -> No se tomaron medidas.

      Elementos de Datos del Registro Detectados: 0
      (No se han detectado elementos maliciosos)

      Carpetas Detectadas: 0
      (No se han detectado elementos maliciosos)

      Archivos Detectados: 3
      C:\Users\maury\AppData\Roaming\cacaoweb\cacaoweb.exe (Trojan.Agent) -> Eliminado.
      C:\Users\maury\Documents\daemon tools.exe (PUP.BundleInstaller.SOL) -> Eliminado.
      C:\Users\maury\AppData\Local\funmoods.crx (PUP.Funmoods) -> Eliminado.

      fin)

    4. #4
      Usuario Avatar de maury84
      Registrado
      oct 2012
      Ubicación
      mexico
      Mensajes
      7

      Re: me hakearon

      .0984 6216 Scan started
      02:05:17.0984 6216 Mode: Manual; SigCheck; TDLFS;
      02:05:17.0984 6216 ============================================================
      02:05:18.0223 6216 ================ Scan system memory ========================
      02:05:18.0223 6216 System memory - ok
      02:05:18.0233 6216 ================ Scan services =============================
      02:05:18.0478 6216 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
      02:05:18.0652 6216 1394ohci - ok
      02:05:18.0675 6216 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
      02:05:18.0702 6216 ACPI - ok
      02:05:18.0716 6216 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
      02:05:18.0757 6216 AcpiPmi - ok
      02:05:18.0836 6216 [ 62B7936F9036DD6ED36E6A7EFA805DC0 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
      02:05:18.0870 6216 AdobeARMservice - ok
      02:05:19.0009 6216 [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
      02:05:19.0043 6216 AdobeFlashPlayerUpdateSvc - ok
      02:05:19.0085 6216 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
      02:05:19.0132 6216 adp94xx - ok
      02:05:19.0173 6216 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys
      02:05:19.0205 6216 adpahci - ok
      02:05:19.0227 6216 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
      02:05:19.0253 6216 adpu320 - ok
      02:05:19.0282 6216 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
      02:05:19.0346 6216 AeLookupSvc - ok
      02:05:19.0390 6216 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
      02:05:19.0427 6216 AFD - ok
      02:05:19.0450 6216 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
      02:05:19.0472 6216 agp440 - ok
      02:05:19.0493 6216 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
      02:05:19.0532 6216 ALG - ok
      02:05:19.0565 6216 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
      02:05:19.0585 6216 aliide - ok
      02:05:19.0617 6216 [ 20C8A3E435A47F0408A1EA674AFA6194 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
      02:05:19.0655 6216 AMD External Events Utility - ok
      02:05:19.0697 6216 AMD FUEL Service - ok
      02:05:19.0714 6216 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
      02:05:19.0736 6216 amdide - ok
      02:05:19.0757 6216 [ 6A2EEB0C4133B20773BB3DD0B7B377B4 ] amdiox64 C:\Windows\system32\DRIVERS\amdiox64.sys
      02:05:19.0791 6216 amdiox64 - ok
      02:05:19.0819 6216 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
      02:05:19.0854 6216 AmdK8 - ok
      02:05:20.0133 6216 [ 0B45C18B0F3EE996D25BAA4E74884B83 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
      02:05:20.0367 6216 amdkmdag - ok
      02:05:20.0413 6216 [ 0E57258E5CC4CC7A9A9A877AFDF0CEC6 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
      02:05:20.0466 6216 amdkmdap - ok
      02:05:20.0502 6216 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
      02:05:20.0542 6216 AmdPPM - ok
      02:05:20.0592 6216 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
      02:05:20.0618 6216 amdsata - ok
      02:05:20.0650 6216 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
      02:05:20.0678 6216 amdsbs - ok
      02:05:20.0720 6216 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
      02:05:20.0745 6216 amdxata - ok
      02:05:20.0777 6216 [ F9D46B6B322708BD5AFCC8767EBDC901 ] amd_sata C:\Windows\system32\DRIVERS\amd_sata.sys
      02:05:20.0800 6216 amd_sata - ok
      02:05:20.0815 6216 [ 329CC9C7E20DEEBCD4CD10816193EF14 ] amd_xata C:\Windows\system32\DRIVERS\amd_xata.sys
      02:05:20.0839 6216 amd_xata - ok
      02:05:20.0872 6216 [ 5B25D1A753CC3A3EDB909BB759AC1098 ] AODDriver4.1 C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
      02:05:20.0895 6216 AODDriver4.1 - ok
      02:05:20.0928 6216 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
      02:05:20.0984 6216 AppID - ok
      02:05:21.0006 6216 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
      02:05:21.0064 6216 AppIDSvc - ok
      02:05:21.0107 6216 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
      02:05:21.0182 6216 Appinfo - ok
      02:05:21.0225 6216 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys
      02:05:21.0251 6216 arc - ok
      02:05:21.0289 6216 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys
      02:05:21.0314 6216 arcsas - ok
      02:05:21.0395 6216 aspnet_state - ok
      02:05:21.0449 6216 [ F9278A56E92DF6B16476431B582236B4 ] aswFsBlk C:\Windows\system32\drivers\aswFsBlk.sys
      02:05:21.0490 6216 aswFsBlk - ok
      02:05:21.0543 6216 [ FA86861F5B30A2909F8A555ACCF10F33 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
      02:05:21.0580 6216 aswMonFlt - ok
      02:05:21.0608 6216 [ 57768C7DB4681F2510F247F82EF31D4F ] aswRdr C:\Windows\System32\Drivers\aswrdr2.sys
      02:05:21.0634 6216 aswRdr - ok
      02:05:21.0707 6216 [ 0CB9A8CFB177E4FBA9F3A3D7EB038AC7 ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
      02:05:21.0762 6216 aswSnx - ok
      02:05:21.0823 6216 [ 27215E171E212EA5770406EC216F7409 ] aswSP C:\Windows\system32\drivers\aswSP.sys
      02:05:21.0878 6216 aswSP - ok
      02:05:21.0930 6216 [ 88AF99223812186A8046001EA22DAB86 ] aswTdi C:\Windows\system32\drivers\aswTdi.sys
      02:05:21.0964 6216 aswTdi - ok
      02:05:22.0001 6216 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
      02:05:22.0108 6216 AsyncMac - ok
      02:05:22.0130 6216 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
      02:05:22.0166 6216 atapi - ok
      02:05:22.0241 6216 [ 24464B908E143D2561E9E452FEE97309 ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
      02:05:22.0276 6216 AtiHDAudioService - ok
      02:05:22.0330 6216 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
      02:05:22.0421 6216 AudioEndpointBuilder - ok
      02:05:22.0433 6216 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
      02:05:22.0490 6216 AudioSrv - ok
      02:05:22.0599 6216 [ FB05FF189FC5F57DE636315B1F5E56DB ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
      02:05:22.0638 6216 avast! Antivirus - ok
      02:05:22.0677 6216 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
      02:05:22.0768 6216 AxInstSV - ok
      02:05:22.0831 6216 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
      02:05:22.0919 6216 b06bdrv - ok
      02:05:22.0957 6216 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
      02:05:23.0037 6216 b57nd60a - ok
      02:05:23.0116 6216 [ 7F46A03C1890D47EF594995DD374C637 ] bcbtums C:\Windows\system32\drivers\bcbtums.sys
      02:05:23.0159 6216 bcbtums - ok
      02:05:23.0318 6216 [ 461E574D7967E895640109A371A912A5 ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl664.sys
      02:05:23.0534 6216 BCM43XX - ok
      02:05:23.0561 6216 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
      02:05:23.0607 6216 BDESVC - ok
      02:05:23.0643 6216 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
      02:05:23.0718 6216 Beep - ok
      02:05:23.0766 6216 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
      02:05:23.0848 6216 BFE - ok
      02:05:24.0018 6216 [ 5B1FE9D351C284701C8051DA2AA81DF6 ] BHDrvx64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.0.0.128\Definitions\BASHDefs\20120413.001\BHDrvx64.sys
      02:05:24.0107 6216 BHDrvx64 - ok
      02:05:24.0150 6216 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
      02:05:24.0249 6216 BITS - ok
      02:05:24.0289 6216 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
      02:05:24.0329 6216 blbdrive - ok
      02:05:24.0363 6216 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
      02:05:24.0423 6216 bowser - ok
      02:05:24.0466 6216 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
      02:05:24.0509 6216 BrFiltLo - ok
      02:05:24.0531 6216 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
      02:05:24.0564 6216 BrFiltUp - ok
      02:05:24.0588 6216 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
      02:05:24.0619 6216 Browser - ok
      02:05:24.0657 6216 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
      02:05:24.0721 6216 Brserid - ok
      02:05:24.0745 6216 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
      02:05:24.0791 6216 BrSerWdm - ok
      02:05:24.0813 6216 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
      02:05:24.0865 6216 BrUsbMdm - ok
      02:05:24.0908 6216 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
      02:05:24.0948 6216 BrUsbSer - ok
      02:05:25.0009 6216 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
      02:05:25.0052 6216 BthEnum - ok
      02:05:25.0080 6216 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
      02:05:25.0130 6216 BTHMODEM - ok
      02:05:25.0163 6216 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
      02:05:25.0208 6216 BthPan - ok
      02:05:25.0248 6216 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT C:\Windows\system32\Drivers\BTHport.sys
      02:05:25.0298 6216 BTHPORT - ok
      02:05:25.0331 6216 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
      02:05:25.0422 6216 bthserv - ok
      02:05:25.0470 6216 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\Windows\system32\Drivers\BTHUSB.sys
      02:05:25.0528 6216 BTHUSB - ok
      02:05:25.0588 6216 [ 0D9F24D24FE52D16F97E758F36FA54BB ] btwampfl C:\Windows\system32\DRIVERS\btwampfl.sys
      02:05:25.0650 6216 btwampfl - ok
      02:05:25.0689 6216 [ 1D007889460CEE1BDF1009E054379706 ] btwaudio C:\Windows\system32\drivers\btwaudio.sys
      02:05:25.0734 6216 btwaudio - ok
      02:05:25.0760 6216 [ 3DF5971BE52709618FD3959033E654F7 ] btwavdt C:\Windows\system32\drivers\btwavdt.sys
      02:05:25.0806 6216 btwavdt - ok
      02:05:25.0875 6216 [ EB3C8EB163E437CEAE2B738ED99F35C5 ] btwdins C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
      02:05:25.0957 6216 btwdins - ok
      02:05:26.0001 6216 [ 41933521A618475644B6E8D8487AF326 ] BTWDPAN C:\Windows\system32\DRIVERS\btwdpan.sys
      02:05:26.0043 6216 BTWDPAN - ok
      02:05:26.0066 6216 [ B9354F9F111C64F2495B60F1E24CB453 ] btwl2cap C:\Windows\system32\DRIVERS\btwl2cap.sys
      02:05:26.0105 6216 btwl2cap - ok
      02:05:26.0141 6216 [ 745D388376D354B806102B78CE1DE611 ] btwrchid C:\Windows\system32\DRIVERS\btwrchid.sys
      02:05:26.0179 6216 btwrchid - ok
      02:05:26.0275 6216 [ 2C6FFCCA37B002AAB3C7C31A6D780A76 ] ccSet_NIS C:\Windows\system32\drivers\NISx64\1309000.009\ccSetx64.sys
      02:05:26.0318 6216 ccSet_NIS - ok
      02:05:26.0359 6216 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
      02:05:26.0442 6216 cdfs - ok
      02:05:26.0480 6216 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
      02:05:26.0527 6216 cdrom - ok
      02:05:26.0570 6216 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
      02:05:26.0648 6216 CertPropSvc - ok
      02:05:26.0692 6216 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\drivers\circlass.sys
      02:05:26.0741 6216 circlass - ok
      02:05:26.0771 6216 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
      02:05:26.0808 6216 CLFS - ok
      02:05:26.0843 6216 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
      02:05:26.0869 6216 clr_optimization_v2.0.50727_32 - ok
      02:05:26.0924 6216 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
      02:05:26.0962 6216 clr_optimization_v2.0.50727_64 - ok
      02:05:27.0042 6216 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
      02:05:27.0078 6216 clr_optimization_v4.0.30319_32 - ok
      02:05:27.0130 6216 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
      02:05:27.0167 6216 clr_optimization_v4.0.30319_64 - ok
      02:05:27.0206 6216 [ 50F92C943F18B070F166D019DFAB3D9A ] clwvd C:\Windows\system32\DRIVERS\clwvd.sys
      02:05:27.0237 6216 clwvd - ok
      02:05:27.0257 6216 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\drivers\CmBatt.sys
      02:05:27.0298 6216 CmBatt - ok
      02:05:27.0332 6216 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
      02:05:27.0355 6216 cmdide - ok
      02:05:27.0389 6216 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
      02:05:27.0443 6216 CNG - ok
      02:05:27.0490 6216 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
      02:05:27.0517 6216 Compbatt - ok
      02:05:27.0559 6216 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
      02:05:27.0599 6216 CompositeBus - ok
      02:05:27.0619 6216 COMSysApp - ok
      02:05:27.0654 6216 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
      02:05:27.0692 6216 crcdisk - ok
      02:05:27.0736 6216 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
      02:05:27.0804 6216 CryptSvc - ok
      02:05:27.0921 6216 [ 72794D112CBAFF3BC0C29BF7350D4741 ] cvhsvc C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
      02:05:27.0988 6216 cvhsvc - ok
      02:05:28.0039 6216 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
      02:05:28.0152 6216 DcomLaunch - ok
      02:05:28.0204 6216 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
      02:05:28.0312 6216 defragsvc - ok
      02:05:28.0343 6216 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
      02:05:28.0423 6216 DfsC - ok
      02:05:28.0459 6216 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
      02:05:28.0556 6216 Dhcp - ok
      02:05:28.0585 6216 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
      02:05:28.0664 6216 discache - ok
      02:05:28.0708 6216 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\drivers\disk.sys
      02:05:28.0731 6216 Disk - ok
      02:05:28.0760 6216 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
      02:05:28.0799 6216 Dnscache - ok
      02:05:28.0847 6216 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
      02:05:28.0911 6216 dot3svc - ok
      02:05:28.0938 6216 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
      02:05:29.0014 6216 DPS - ok
      02:05:29.0038 6216 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
      02:05:29.0076 6216 drmkaud - ok
      02:05:29.0121 6216 [ 46571ED73AE84469DCA53081D33CF3C8 ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys
      02:05:29.0148 6216 dtsoftbus01 - ok
      02:05:29.0192 6216 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
      02:05:29.0237 6216 DXGKrnl - ok
      02:05:29.0272 6216 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
      02:05:29.0337 6216 EapHost - ok
      02:05:29.0444 6216 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\drivers\evbda.sys
      02:05:29.0582 6216 ebdrv - ok
      02:05:29.0630 6216 [ 0C3F9EFF8DDD9F9EB56D754B4620155F ] eeCtrl C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
      02:05:29.0662 6216 eeCtrl - ok
      02:05:29.0685 6216 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
      02:05:29.0749 6216 EFS - ok
      02:05:29.0830 6216 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
      02:05:29.0929 6216 ehRecvr - ok
      02:05:29.0950 6216 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
      02:05:29.0990 6216 ehSched - ok
      02:05:30.0039 6216 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys
      02:05:30.0079 6216 elxstor - ok
      02:05:30.0136 6216 [ 8C0F9B877BC0B7FFD327EF55F9EFB642 ] EraserUtilRebootDrv C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
      02:05:30.0178 6216 EraserUtilRebootDrv - ok
      02:05:30.0204 6216 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
      02:05:30.0260 6216 ErrDev - ok
      02:05:30.0324 6216 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
      02:05:30.0453 6216 EventSystem - ok
      02:05:30.0489 6216 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
      02:05:30.0590 6216 exfat - ok
      02:05:30.0607 6216 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
      02:05:30.0668 6216 fastfat - ok
      02:05:30.0727 6216 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
      02:05:30.0778 6216 Fax - ok
      02:05:30.0804 6216 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\drivers\fdc.sys
      02:05:30.0840 6216 fdc - ok
      02:05:30.0857 6216 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
      02:05:30.0920 6216 fdPHost - ok
      02:05:30.0953 6216 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
      02:05:31.0009 6216 FDResPub - ok
      02:05:31.0033 6216 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
      02:05:31.0057 6216 FileInfo - ok
      02:05:31.0074 6216 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
      02:05:31.0140 6216 Filetrace - ok
      02:05:31.0163 6216 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
      02:05:31.0188 6216 flpydisk - ok
      02:05:31.0222 6216 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
      02:05:31.0250 6216 FltMgr - ok
      02:05:31.0309 6216 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
      02:05:31.0419 6216 FontCache - ok
      02:05:31.0515 6216 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
      02:05:31.0553 6216 FontCache3.0.0.0 - ok
      02:05:31.0573 6216 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
      02:05:31.0598 6216 FsDepends - ok
      02:05:31.0634 6216 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
      02:05:31.0655 6216 Fs_Rec - ok
      02:05:31.0689 6216 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
      02:05:31.0718 6216 fvevol - ok
      02:05:31.0764 6216 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
      02:05:31.0788 6216 gagp30kx - ok
      02:05:31.0844 6216 [ C403C5DB49A0F9AAF4F2128EDC0106D8 ] GamesAppService C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
      02:05:31.0870 6216 GamesAppService - ok
      02:05:31.0928 6216 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
      02:05:32.0001 6216 gpsvc - ok
      02:05:32.0083 6216 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
      02:05:32.0121 6216 gupdate - ok
      02:05:32.0129 6216 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
      02:05:32.0152 6216 gupdatem - ok
      02:05:32.0218 6216 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
      02:05:32.0258 6216 gusvc - ok
      02:05:32.0280 6216 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
      02:05:32.0340 6216 hcw85cir - ok
      02:05:32.0379 6216 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
      02:05:32.0431 6216 HdAudAddService - ok
      02:05:32.0460 6216 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
      02:05:32.0512 6216 HDAudBus - ok
      02:05:32.0537 6216 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
      02:05:32.0560 6216 HidBatt - ok
      02:05:32.0582 6216 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\drivers\hidbth.sys
      02:05:32.0618 6216 HidBth - ok
      02:05:32.0647 6216 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\drivers\hidir.sys
      02:05:32.0681 6216 HidIr - ok
      02:05:32.0712 6216 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
      02:05:32.0781 6216 hidserv - ok
      02:05:32.0835 6216 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
      02:05:32.0860 6216 HidUsb - ok
      02:05:32.0893 6216 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
      02:05:32.0966 6216 hkmsvc - ok
      02:05:32.0992 6216 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
      02:05:33.0045 6216 HomeGroupListener - ok
      02:05:33.0067 6216 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
      02:05:33.0108 6216 HomeGroupProvider - ok
      02:05:33.0208 6216 [ 13BB1114451C63BFB41BA7DAA4D70A29 ] HP Support Assistant Service C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
      02:05:33.0245 6216 HP Support Assistant Service - ok
      02:05:33.0270 6216 [ 3015B37029AD15C67EBCA5053C422F90 ] HP8207_8307 C:\Windows\system32\DRIVERS\HP8207_8307.sys
      02:05:33.0325 6216 HP8207_8307 - ok
      02:05:33.0372 6216 [ 7B8C1B09C11E8DB7C4480ABD7D17E821 ] HPAuto C:\Program Files\Hewlett-Packard\HP Auto\HPAuto.exe
      02:05:33.0413 6216 HPAuto - ok
      02:05:33.0441 6216 [ 6A181452D4E240B8ECC7614B9A19BDE9 ] HPClientSvc C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
      02:05:33.0467 6216 HPClientSvc - ok
      02:05:33.0517 6216 [ C958976C7DAAF47084A33EBBC6E28B84 ] HPDrvMntSvc.exe C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
      02:05:33.0557 6216 HPDrvMntSvc.exe - ok
      02:05:33.0595 6216 [ 09FBD4C4DB2FD84B9AB1C5BFDCC95559 ] hpqwmiex C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
      02:05:33.0643 6216 hpqwmiex - ok
      02:05:33.0672 6216 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
      02:05:33.0696 6216 HpSAMD - ok
      02:05:33.0746 6216 [ 28E15C3D39DCD27A79251BA0BF216A11 ] HPWMISVC C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
      02:05:33.0779 6216 HPWMISVC - ok
      02:05:33.0830 6216 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
      02:05:33.0915 6216 HTTP - ok
      02:05:33.0930 6216 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
      02:05:33.0950 6216 hwpolicy - ok
      02:05:33.0989 6216 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
      02:05:34.0015 6216 i8042prt - ok
      02:05:34.0058 6216 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
      02:05:34.0107 6216 iaStorV - ok
      02:05:34.0267 6216 [ 3A0FF117B4ADC5ABE4D968E26A337158 ] IconMan_R C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
      02:05:34.0441 6216 IconMan_R ( UnsignedFile.Multi.Generic ) - warning
      02:05:34.0441 6216 IconMan_R - detected UnsignedFile.Multi.Generic (1)
      02:05:34.0499 6216 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
      02:05:34.0544 6216 idsvc - ok
      02:05:34.0613 6216 [ 18C40C3F368323B203ACE403CB430DB1 ] IDSVia64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.0.0.128\Definitions\IPSDefs\20120420.001\IDSvia64.sys
      02:05:34.0649 6216 IDSVia64 - ok
      02:05:34.0691 6216 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\drivers\iirsp.sys
      02:05:34.0719 6216 iirsp - ok
      02:05:34.0765 6216 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
      02:05:34.0854 6216 IKEEXT - ok
      02:05:34.0887 6216 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
      02:05:34.0913 6216 intelide - ok
      02:05:34.0947 6216 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\drivers\intelppm.sys
      02:05:34.0989 6216 intelppm - ok
      02:05:35.0034 6216 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
      02:05:35.0113 6216 IPBusEnum - ok
      02:05:35.0142 6216 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
      02:05:35.0192 6216 IpFilterDriver - ok
      02:05:35.0214 6216 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
      02:05:35.0287 6216 iphlpsvc - ok
      02:05:35.0322 6216 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
      02:05:35.0352 6216 IPMIDRV - ok
      02:05:35.0359 6216 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
      02:05:35.0422 6216 IPNAT - ok
      02:05:35.0455 6216 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
      02:05:35.0486 6216 IRENUM - ok
      02:05:35.0498 6216 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
      02:05:35.0521 6216 isapnp - ok
      02:05:35.0537 6216 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
      02:05:35.0565 6216 iScsiPrt - ok
      02:05:35.0611 6216 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
      02:05:35.0635 6216 kbdclass - ok
      02:05:35.0663 6216 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
      02:05:35.0697 6216 kbdhid - ok
      02:05:35.0719 6216 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
      02:05:35.0746 6216 KeyIso - ok
      02:05:35.0781 6216 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
      02:05:35.0808 6216 KSecDD - ok
      02:05:35.0840 6216 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
      02:05:35.0867 6216 KSecPkg - ok

    5. #5
      Usuario Avatar de maury84
      Registrado
      oct 2012
      Ubicación
      mexico
      Mensajes
      7

      Re: me hakearon

      0901 6216 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
      02:05:35.0970 6216 ksthunk - ok
      02:05:36.0011 6216 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
      02:05:36.0092 6216 KtmRm - ok
      02:05:36.0156 6216 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
      02:05:36.0232 6216 LanmanServer - ok
      02:05:36.0263 6216 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
      02:05:36.0336 6216 LanmanWorkstation - ok
      02:05:36.0390 6216 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
      02:05:36.0456 6216 lltdio - ok
      02:05:36.0481 6216 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
      02:05:36.0561 6216 lltdsvc - ok
      02:05:36.0591 6216 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
      02:05:36.0660 6216 lmhosts - ok
      02:05:36.0694 6216 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
      02:05:36.0721 6216 LSI_FC - ok
      02:05:36.0743 6216 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
      02:05:36.0771 6216 LSI_SAS - ok
      02:05:36.0800 6216 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
      02:05:36.0822 6216 LSI_SAS2 - ok
      02:05:36.0857 6216 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
      02:05:36.0882 6216 LSI_SCSI - ok
      02:05:36.0904 6216 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
      02:05:36.0976 6216 luafv - ok
      02:05:37.0019 6216 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
      02:05:37.0060 6216 Mcx2Svc - ok
      02:05:37.0087 6216 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\drivers\megasas.sys
      02:05:37.0114 6216 megasas - ok
      02:05:37.0161 6216 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
      02:05:37.0194 6216 MegaSR - ok
      02:05:37.0225 6216 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
      02:05:37.0293 6216 MMCSS - ok
      02:05:37.0317 6216 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
      02:05:37.0393 6216 Modem - ok
      02:05:37.0408 6216 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
      02:05:37.0437 6216 monitor - ok
      02:05:37.0466 6216 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
      02:05:37.0489 6216 mouclass - ok
      02:05:37.0518 6216 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
      02:05:37.0556 6216 mouhid - ok
      02:05:37.0587 6216 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
      02:05:37.0613 6216 mountmgr - ok
      02:05:37.0643 6216 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
      02:05:37.0669 6216 mpio - ok
      02:05:37.0688 6216 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
      02:05:37.0743 6216 mpsdrv - ok
      02:05:37.0785 6216 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
      02:05:37.0866 6216 MpsSvc - ok
      02:05:37.0882 6216 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
      02:05:37.0924 6216 MRxDAV - ok
      02:05:37.0952 6216 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
      02:05:38.0009 6216 mrxsmb - ok
      02:05:38.0038 6216 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
      02:05:38.0073 6216 mrxsmb10 - ok
      02:05:38.0093 6216 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
      02:05:38.0134 6216 mrxsmb20 - ok
      02:05:38.0160 6216 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
      02:05:38.0183 6216 msahci - ok
      02:05:38.0210 6216 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
      02:05:38.0235 6216 msdsm - ok
      02:05:38.0260 6216 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
      02:05:38.0296 6216 MSDTC - ok
      02:05:38.0338 6216 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
      02:05:38.0402 6216 Msfs - ok
      02:05:38.0429 6216 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
      02:05:38.0500 6216 mshidkmdf - ok
      02:05:38.0534 6216 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
      02:05:38.0557 6216 msisadrv - ok
      02:05:38.0587 6216 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
      02:05:38.0661 6216 MSiSCSI - ok
      02:05:38.0667 6216 msiserver - ok
      02:05:38.0699 6216 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
      02:05:38.0770 6216 MSKSSRV - ok
      02:05:38.0790 6216 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
      02:05:38.0860 6216 MSPCLOCK - ok
      02:05:38.0881 6216 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
      02:05:38.0945 6216 MSPQM - ok
      02:05:38.0967 6216 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
      02:05:38.0998 6216 MsRPC - ok
      02:05:39.0028 6216 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
      02:05:39.0051 6216 mssmbios - ok
      02:05:39.0076 6216 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
      02:05:39.0140 6216 MSTEE - ok
      02:05:39.0153 6216 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
      02:05:39.0192 6216 MTConfig - ok
      02:05:39.0223 6216 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
      02:05:39.0253 6216 Mup - ok
      02:05:39.0290 6216 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
      02:05:39.0368 6216 napagent - ok
      02:05:39.0415 6216 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
      02:05:39.0462 6216 NativeWifiP - ok
      02:05:39.0506 6216 [ 2DBE90210DE76BE6E1653BB20EC70EC2 ] NAVENG C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.0.0.128\Definitions\VirusDefs\20120421.017\ENG64.SYS
      02:05:39.0546 6216 NAVENG - ok
      02:05:39.0620 6216 [ 346DA70E203B8E2C850277713DE8F71B ] NAVEX15 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.0.0.128\Definitions\VirusDefs\20120421.017\EX64.SYS
      02:05:39.0724 6216 NAVEX15 - ok
      02:05:39.0784 6216 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
      02:05:39.0838 6216 NDIS - ok
      02:05:39.0877 6216 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
      02:05:39.0954 6216 NdisCap - ok
      02:05:39.0976 6216 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
      02:05:40.0041 6216 NdisTapi - ok
      02:05:40.0053 6216 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
      02:05:40.0128 6216 Ndisuio - ok
      02:05:40.0153 6216 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
      02:05:40.0229 6216 NdisWan - ok
      02:05:40.0259 6216 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
      02:05:40.0338 6216 NDProxy - ok
      02:05:40.0377 6216 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
      02:05:40.0458 6216 NetBIOS - ok
      02:05:40.0482 6216 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
      02:05:40.0535 6216 NetBT - ok
      02:05:40.0553 6216 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
      02:05:40.0576 6216 Netlogon - ok
      02:05:40.0615 6216 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
      02:05:40.0694 6216 Netman - ok
      02:05:40.0707 6216 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
      02:05:40.0782 6216 netprofm - ok
      02:05:40.0805 6216 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
      02:05:40.0828 6216 NetTcpPortSharing - ok
      02:05:40.0865 6216 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
      02:05:40.0889 6216 nfrd960 - ok
      02:05:40.0981 6216 [ F2840DBFE9322F35557219AE82CC4597 ] NIS C:\Program Files (x86)\Norton Internet Security\Engine\19.9.0.9\ccSvcHst.exe
      02:05:41.0019 6216 NIS - ok
      02:05:41.0054 6216 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
      02:05:41.0139 6216 NlaSvc - ok
      02:05:41.0168 6216 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
      02:05:41.0233 6216 Npfs - ok
      02:05:41.0256 6216 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
      02:05:41.0338 6216 nsi - ok
      02:05:41.0360 6216 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
      02:05:41.0437 6216 nsiproxy - ok
      02:05:41.0515 6216 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
      02:05:41.0590 6216 Ntfs - ok
      02:05:41.0626 6216 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
      02:05:41.0689 6216 Null - ok
      02:05:41.0728 6216 [ A85B4F2EF3A7304A5399EF0526423040 ] NVENETFD C:\Windows\system32\DRIVERS\nvm62x64.sys
      02:05:41.0781 6216 NVENETFD - ok
      02:05:41.0824 6216 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
      02:05:41.0855 6216 nvraid - ok
      02:05:41.0873 6216 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
      02:05:41.0904 6216 nvstor - ok
      02:05:41.0929 6216 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
      02:05:41.0960 6216 nv_agp - ok
      02:05:41.0987 6216 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
      02:05:42.0017 6216 ohci1394 - ok
      02:05:42.0056 6216 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
      02:05:42.0083 6216 ose - ok
      02:05:42.0271 6216 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
      02:05:42.0524 6216 osppsvc - ok
      02:05:42.0559 6216 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
      02:05:42.0617 6216 p2pimsvc - ok
      02:05:42.0655 6216 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
      02:05:42.0688 6216 p2psvc - ok
      02:05:42.0716 6216 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\drivers\parport.sys
      02:05:42.0739 6216 Parport - ok
      02:05:42.0764 6216 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
      02:05:42.0786 6216 partmgr - ok
      02:05:42.0816 6216 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
      02:05:42.0863 6216 PcaSvc - ok
      02:05:42.0893 6216 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
      02:05:42.0917 6216 pci - ok
      02:05:42.0939 6216 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
      02:05:42.0960 6216 pciide - ok
      02:05:42.0983 6216 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
      02:05:43.0008 6216 pcmcia - ok
      02:05:43.0029 6216 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
      02:05:43.0051 6216 pcw - ok
      02:05:43.0081 6216 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
      02:05:43.0160 6216 PEAUTH - ok
      02:05:43.0271 6216 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
      02:05:43.0332 6216 PerfHost - ok
      02:05:43.0411 6216 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
      02:05:43.0524 6216 pla - ok
      02:05:43.0568 6216 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
      02:05:43.0633 6216 PlugPlay - ok
      02:05:43.0653 6216 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
      02:05:43.0693 6216 PNRPAutoReg - ok
      02:05:43.0726 6216 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
      02:05:43.0758 6216 PNRPsvc - ok
      02:05:43.0791 6216 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
      02:05:43.0870 6216 PolicyAgent - ok
      02:05:43.0911 6216 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
      02:05:43.0990 6216 Power - ok
      02:05:44.0031 6216 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
      02:05:44.0098 6216 PptpMiniport - ok
      02:05:44.0117 6216 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\drivers\processr.sys
      02:05:44.0152 6216 Processor - ok
      02:05:44.0208 6216 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
      02:05:44.0276 6216 ProfSvc - ok
      02:05:44.0297 6216 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
      02:05:44.0345 6216 ProtectedStorage - ok
      02:05:44.0399 6216 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
      02:05:44.0518 6216 Psched - ok
      02:05:44.0579 6216 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
      02:05:44.0668 6216 ql2300 - ok
      02:05:44.0701 6216 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
      02:05:44.0731 6216 ql40xx - ok
      02:05:44.0763 6216 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
      02:05:44.0807 6216 QWAVE - ok
      02:05:44.0831 6216 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
      02:05:44.0888 6216 QWAVEdrv - ok
      02:05:44.0907 6216 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
      02:05:44.0985 6216 RasAcd - ok
      02:05:45.0014 6216 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
      02:05:45.0079 6216 RasAgileVpn - ok
      02:05:45.0100 6216 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
      02:05:45.0179 6216 RasAuto - ok
      02:05:45.0213 6216 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
      02:05:45.0296 6216 Rasl2tp - ok
      02:05:45.0325 6216 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
      02:05:45.0400 6216 RasMan - ok
      02:05:45.0427 6216 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
      02:05:45.0494 6216 RasPppoe - ok
      02:05:45.0508 6216 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
      02:05:45.0585 6216 RasSstp - ok
      02:05:45.0624 6216 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
      02:05:45.0706 6216 rdbss - ok
      02:05:45.0743 6216 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\drivers\rdpbus.sys
      02:05:45.0786 6216 rdpbus - ok
      02:05:45.0811 6216 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
      02:05:45.0878 6216 RDPCDD - ok
      02:05:45.0915 6216 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
      02:05:45.0992 6216 RDPENCDD - ok
      02:05:46.0021 6216 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
      02:05:46.0084 6216 RDPREFMP - ok
      02:05:46.0130 6216 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
      02:05:46.0177 6216 RDPWD - ok
      02:05:46.0205 6216 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
      02:05:46.0236 6216 rdyboost - ok
      02:05:46.0259 6216 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
      02:05:46.0326 6216 RemoteAccess - ok
      02:05:46.0361 6216 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
      02:05:46.0428 6216 RemoteRegistry - ok
      02:05:46.0454 6216 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
      02:05:46.0492 6216 RFCOMM - ok
      02:05:46.0529 6216 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
      02:05:46.0594 6216 RpcEptMapper - ok
      02:05:46.0626 6216 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
      02:05:46.0654 6216 RpcLocator - ok
      02:05:46.0694 6216 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
      02:05:46.0757 6216 RpcSs - ok
      02:05:46.0803 6216 [ CFDFD15D2D26BB50B6F4BF2D4FE6FA70 ] RSPCIESTOR C:\Windows\system32\DRIVERS\RtsPStor.sys
      02:05:46.0831 6216 RSPCIESTOR - ok
      02:05:46.0864 6216 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
      02:05:46.0923 6216 rspndr - ok
      02:05:46.0943 6216 [ E50CFB92986DCAB49DE93788FD695813 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
      02:05:46.0977 6216 RTL8167 - ok
      02:05:46.0986 6216 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
      02:05:47.0009 6216 SamSs - ok
      02:05:47.0041 6216 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
      02:05:47.0066 6216 sbp2port - ok
      02:05:47.0103 6216 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
      02:05:47.0164 6216 SCardSvr - ok
      02:05:47.0185 6216 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
      02:05:47.0252 6216 scfilter - ok
      02:05:47.0298 6216 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
      02:05:47.0394 6216 Schedule - ok
      02:05:47.0426 6216 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
      02:05:47.0478 6216 SCPolicySvc - ok
      02:05:47.0498 6216 [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
      02:05:47.0536 6216 sdbus - ok
      02:05:47.0568 6216 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
      02:05:47.0638 6216 SDRSVC - ok
      02:05:47.0663 6216 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
      02:05:47.0781 6216 secdrv - ok
      02:05:47.0807 6216 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
      02:05:47.0868 6216 seclogon - ok
      02:05:47.0894 6216 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
      02:05:47.0961 6216 SENS - ok
      02:05:48.0000 6216 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
      02:05:48.0047 6216 SensrSvc - ok
      02:05:48.0068 6216 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\drivers\serenum.sys
      02:05:48.0100 6216 Serenum - ok
      02:05:48.0114 6216 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\drivers\serial.sys
      02:05:48.0158 6216 Serial - ok
      02:05:48.0194 6216 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\drivers\sermouse.sys
      02:05:48.0234 6216 sermouse - ok
      02:05:48.0271 6216 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
      02:05:48.0339 6216 SessionEnv - ok
      02:05:48.0362 6216 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
      02:05:48.0403 6216 sffdisk - ok
      02:05:48.0418 6216 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
      02:05:48.0458 6216 sffp_mmc - ok
      02:05:48.0474 6216 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
      02:05:48.0511 6216 sffp_sd - ok
      02:05:48.0534 6216 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
      02:05:48.0573 6216 sfloppy - ok
      02:05:48.0627 6216 [ C6CC9297BD53E5229653303E556AA539 ] Sftfs C:\Windows\system32\DRIVERS\Sftfslh.sys
      02:05:48.0664 6216 Sftfs - ok
      02:05:48.0731 6216 [ 13693B6354DD6E72DC5131DA7D764B90 ] sftlist C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
      02:05:48.0762 6216 sftlist - ok
      02:05:48.0811 6216 [ 390AA7BC52CEE43F6790CDEA1E776703 ] Sftplay C:\Windows\system32\DRIVERS\Sftplaylh.sys
      02:05:48.0838 6216 Sftplay - ok
      02:05:48.0868 6216 [ 617E29A0B0A2807466560D4C4E338D3E ] Sftredir C:\Windows\system32\DRIVERS\Sftredirlh.sys
      02:05:48.0891 6216 Sftredir - ok
      02:05:48.0912 6216 [ 8F571F016FA1976F445147E9E6C8AE9B ] Sftvol C:\Windows\system32\DRIVERS\Sftvollh.sys
      02:05:48.0933 6216 Sftvol - ok
      02:05:48.0973 6216 [ C3CDDD18F43D44AB713CF8C4916F7696 ] sftvsa C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
      02:05:48.0998 6216 sftvsa - ok
      02:05:49.0033 6216 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
      02:05:49.0110 6216 SharedAccess - ok
      02:05:49.0149 6216 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
      02:05:49.0237 6216 ShellHWDetection - ok
      02:05:49.0271 6216 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
      02:05:49.0297 6216 SiSRaid2 - ok
      02:05:49.0329 6216 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
      02:05:49.0351 6216 SiSRaid4 - ok
      02:05:49.0387 6216 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
      02:05:49.0439 6216 Smb - ok
      02:05:49.0477 6216 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
      02:05:49.0520 6216 SNMPTRAP - ok
      02:05:49.0535 6216 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
      02:05:49.0558 6216 spldr - ok
      02:05:49.0608 6216 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
      02:05:49.0675 6216 Spooler - ok
      02:05:49.0816 6216 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
      02:05:50.0037 6216 sppsvc - ok
      02:05:50.0059 6216 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
      02:05:50.0129 6216 sppuinotify - ok
      02:05:50.0223 6216 [ 891793E00432FA055CF040605C260E49 ] SRTSP C:\Windows\System32\Drivers\NISx64\1309000.009\SRTSP64.SYS
      02:05:50.0278 6216 SRTSP - ok
      02:05:50.0300 6216 [ 1CB7BB3B0561FB5ECFE37F7731E8BF3E ] SRTSPX C:\Windows\system32\drivers\NISx64\1309000.009\SRTSPX64.SYS
      02:05:50.0320 6216 SRTSPX - ok
      02:05:50.0345 6216 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
      02:05:50.0399 6216 srv - ok
      02:05:50.0422 6216 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
      02:05:50.0463 6216 srv2 - ok
      02:05:50.0504 6216 [ 0C4540311E11664B245A263E1154CEF8 ] SrvHsfHDA C:\Windows\system32\DRIVERS\VSTAZL6.SYS
      02:05:50.0546 6216 SrvHsfHDA - ok
      02:05:50.0596 6216 [ 02071D207A9858FBE3A48CBFD59C4A04 ] SrvHsfV92 C:\Windows\system32\DRIVERS\VSTDPV6.SYS
      02:05:50.0660 6216 SrvHsfV92 - ok
      02:05:50.0690 6216 [ 18E40C245DBFAF36FD0134A7EF2DF396 ] SrvHsfWinac C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
      02:05:50.0728 6216 SrvHsfWinac - ok
      02:05:50.0756 6216 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
      02:05:50.0781 6216 srvnet - ok
      02:05:50.0826 6216 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
      02:05:50.0896 6216 SSDPSRV - ok
      02:05:50.0921 6216 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
      02:05:50.0982 6216 SstpSvc - ok
      02:05:51.0035 6216 [ A6B2EC3A2B6AD7C3F7B2F3495CADE4C0 ] STacSV C:\Program Files\IDT\WDM\STacSV64.exe
      02:05:51.0116 6216 STacSV - ok
      02:05:51.0176 6216 Steam Client Service - ok
      02:05:51.0214 6216 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\drivers\stexstor.sys
      02:05:51.0259 6216 stexstor - ok
      02:05:51.0310 6216 [ EBA98394A7D58F7552C52192BD8FA7E6 ] STHDA C:\Windows\system32\DRIVERS\stwrt64.sys
      02:05:51.0392 6216 STHDA - ok
      02:05:51.0450 6216 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
      02:05:51.0534 6216 stisvc - ok
      02:05:51.0564 6216 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
      02:05:51.0609 6216 swenum - ok
      02:05:51.0654 6216 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
      02:05:51.0799 6216 swprv - ok
      02:05:51.0853 6216 [ 8B2430762099598DA40686F754632EFD ] SymDS C:\Windows\system32\drivers\NISx64\1309000.009\SYMDS64.SYS
      02:05:51.0909 6216 SymDS - ok
      02:05:51.0974 6216 [ 5CB7F2FD7E30A0F52F93574BFC3A8041 ] SymEFA C:\Windows\system32\drivers\NISx64\1309000.009\SYMEFA64.SYS
      02:05:52.0061 6216 SymEFA - ok
      02:05:52.0089 6216 [ 894579207E39C465737E850A252CE4F2 ] SymEvent C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
      02:05:52.0134 6216 SymEvent - ok
      02:05:52.0181 6216 [ 5013A76CAAA1D7CF1C55214B490B4E35 ] SymIRON C:\Windows\system32\drivers\NISx64\1309000.009\Ironx64.SYS
      02:05:52.0226 6216 SymIRON - ok
      02:05:52.0281 6216 [ 3911BD0E68C010E5438A87706ABBE9AB ] SymNetS C:\Windows\System32\Drivers\NISx64\1309000.009\SYMNETS.SYS
      02:05:52.0334 6216 SymNetS - ok
      02:05:52.0434 6216 [ C447977ED2A4AE9346FE3A0579A34D7C ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
      02:05:52.0525 6216 SynTP - ok
      02:05:52.0589 6216 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
      02:05:52.0683 6216 SysMain - ok
      02:05:52.0707 6216 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
      02:05:52.0748 6216 TabletInputService - ok
      02:05:52.0780 6216 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
      02:05:52.0861 6216 TapiSrv - ok
      02:05:52.0885 6216 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
      02:05:52.0954 6216 TBS - ok
      02:05:53.0042 6216 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] Tcpip C:\Windows\system32\drivers\tcpip.sys
      02:05:53.0140 6216 Tcpip - ok
      02:05:53.0189 6216 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
      02:05:53.0244 6216 TCPIP6 - ok
      02:05:53.0270 6216 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
      02:05:53.0341 6216 tcpipreg - ok
      02:05:53.0366 6216 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
      02:05:53.0404 6216 TDPIPE - ok
      02:05:53.0426 6216 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
      02:05:53.0452 6216 TDTCP - ok
      02:05:53.0495 6216 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
      02:05:53.0545 6216 tdx - ok
      02:05:53.0565 6216 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
      02:05:53.0587 6216 TermDD - ok
      02:05:53.0618 6216 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
      02:05:53.0694 6216 TermService - ok
      02:05:53.0710 6216 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
      02:05:53.0742 6216 Themes - ok
      02:05:53.0770 6216 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
      02:05:53.0824 6216 THREADORDER - ok
      02:05:53.0857 6216 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
      02:05:53.0925 6216 TrkWks - ok
      02:05:53.0960 6216 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
      02:05:54.0032 6216 TrustedInstaller - ok
      02:05:54.0057 6216 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
      02:05:54.0128 6216 tssecsrv - ok
      02:05:54.0171 6216 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
      02:05:54.0211 6216 TsUsbFlt - ok
      02:05:54.0240 6216 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
      02:05:54.0274 6216 TsUsbGD - ok
      02:05:54.0306 6216 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
      02:05:54.0373 6216 tunnel - ok
      02:05:54.0403 6216 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
      02:05:54.0429 6216 uagp35 - ok
      02:05:54.0463 6216 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
      02:05:54.0533 6216 udfs - ok
      02:05:54.0573 6216 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
      02:05:54.0599 6216 UI0Detect - ok
      02:05:54.0614 6216 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
      02:05:54.0637 6216 uliagpkx - ok
      02:05:54.0680 6216 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
      02:05:54.0712 6216 umbus - ok
      02:05:54.0753 6216 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
      02:05:54.0786 6216 UmPass - ok
      02:05:54.0817 6216 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
      02:05:54.0877 6216 upnphost - ok
      02:05:54.0923 6216 [ AA33FC47ED58C34E6E9261E4F850B7EB ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
      02:05:54.0942 6216 USBAAPL64 ( UnsignedFile.Multi.Generic ) - warning
      02:05:54.0942 6216 USBAAPL64 - detected UnsignedFile.Multi.Generic (1)
      02:05:54.0975 6216 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
      02:05:55.0011 6216 usbccgp - ok
      02:05:55.0036 6216 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
      02:05:55.0069 6216 usbcir - ok
      02:05:55.0082 6216 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
      02:05:55.0124 6216 usbehci - ok
      02:05:55.0179 6216 [ 573D192E268F0C5B486B7E96F661E538 ] usbfilter C:\Windows\system32\DRIVERS\usbfilter.sys
      02:05:55.0203 6216 usbfilter - ok
      02:05:55.0244 6216 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
      02:05:55.0287 6216 usbhub - ok
      02:05:55.0317 6216 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
      02:05:55.0357 6216 usbohci - ok
      02:05:55.0392 6216 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\drivers\usbprint.sys
      02:05:55.0438 6216 usbprint - ok
      02:05:55.0471 6216 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
      02:05:55.0526 6216 USBSTOR - ok
      02:05:55.0548 6216 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
      02:05:55.0584 6216 usbuhci - ok
      02:05:55.0616 6216 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
      02:05:55.0646 6216 usbvideo - ok
      02:05:55.0680 6216 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
      02:05:55.0742 6216 UxSms - ok
      02:05:55.0764 6216 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
      02:05:55.0790 6216 VaultSvc - ok
      02:05:55.0806 6216 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
      02:05:55.0828 6216 vdrvroot - ok
      02:05:55.0859 6216 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
      02:05:55.0933 6216 vds - ok
      02:05:55.0955 6216 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
      02:05:55.0982 6216 vga - ok
      02:05:56.0003 6216 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
      02:05:56.0073 6216 VgaSave - ok
      02:05:56.0100 6216 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
      02:05:56.0127 6216 vhdmp - ok
      02:05:56.0137 6216 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
      02:05:56.0159 6216 viaide - ok
      02:05:56.0179 6216 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
      02:05:56.0204 6216 volmgr - ok
      02:05:56.0236 6216 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
      02:05:56.0266 6216 volmgrx - ok
      02:05:56.0291 6216 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
      02:05:56.0319 6216 volsnap - ok
      02:05:56.0345 6216 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
      02:05:56.0371 6216 vsmraid - ok
      02:05:56.0453 6216 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
      02:05:56.0566 6216 VSS - ok
      02:05:56.0596 6216 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
      02:05:56.0638 6216 vwifibus - ok
      02:05:56.0665 6216 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
      02:05:56.0710 6216 vwififlt - ok
      02:05:56.0753 6216 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
      02:05:56.0816 6216 W32Time - ok
      02:05:56.0845 6216 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\drivers\wacompen.sys
      02:05:56.0885 6216 WacomPen - ok
      02:05:56.0922 6216 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
      02:05:56.0979 6216 WANARP - ok
      02:05:56.0986 6216 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
      02:05:57.0039 6216 Wanarpv6 - ok
      02:05:57.0114 6216 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
      02:05:57.0217 6216 WatAdminSvc - ok
      02:05:57.0297 6216 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
      02:05:57.0443 6216 wbengine - ok
      02:05:57.0478 6216 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
      02:05:57.0526 6216 WbioSrvc - ok
      02:05:57.0564 6216 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
      02:05:57.0611 6216 wcncsvc - ok
      02:05:57.0624 6216 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
      02:05:57.0669 6216 WcsPlugInService - ok
      02:05:57.0696 6216 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\drivers\wd.sys
      02:05:57.0725 6216 Wd - ok
      02:05:57.0760 6216 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
      02:05:57.0804 6216 Wdf01000 - ok
      02:05:57.0818 6216 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
      02:05:57.0877 6216 WdiServiceHost - ok
      02:05:57.0884 6216 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
      02:05:57.0921 6216 WdiSystemHost - ok
      02:05:57.0962 6216 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
      02:05:58.0012 6216 WebClient - ok
      02:05:58.0023 6216 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
      02:05:58.0090 6216 Wecsvc - ok
      02:05:58.0110 6216 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
      02:05:58.0177 6216 wercplsupport - ok
      02:05:58.0217 6216 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
      02:05:58.0290 6216 WerSvc - ok
      02:05:58.0322 6216 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
      02:05:58.0378 6216 WfpLwf - ok
      02:05:58.0391 6216 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
      02:05:58.0416 6216 WIMMount - ok
      02:05:58.0440 6216 WinDefend - ok
      02:05:58.0448 6216 WinHttpAutoProxySvc - ok
      02:05:58.0495 6216 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
      02:05:58.0561 6216 Winmgmt - ok
      02:05:58.0644 6216 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
      02:05:58.0779 6216 WinRM - ok
      02:05:58.0835 6216 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
      02:05:58.0868 6216 WinUsb - ok
      02:05:58.0918 6216 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
      02:05:58.0985 6216 Wlansvc - ok
      02:05:59.0015 6216 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
      02:05:59.0040 6216 wlcrasvc - ok
      02:05:59.0160 6216 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
      02:05:59.0291 6216 wlidsvc - ok
      02:05:59.0331 6216 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
      02:05:59.0396 6216 WmiAcpi - ok
      02:05:59.0438 6216 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
      02:05:59.0479 6216 wmiApSrv - ok
      02:05:59.0514 6216 WMPNetworkSvc - ok
      02:05:59.0544 6216 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
      02:05:59.0578 6216 WPCSvc - ok
      02:05:59.0595 6216 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
      02:05:59.0633 6216 WPDBusEnum - ok
      02:05:59.0659 6216 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
      02:05:59.0722 6216 ws2ifsl - ok
      02:05:59.0744 6216 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
      02:05:59.0779 6216 wscsvc - ok
      02:05:59.0784 6216 WSearch - ok
      02:05:59.0879 6216 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
      02:06:00.0041 6216 wuauserv - ok
      02:06:00.0058 6216 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
      02:06:00.0120 6216 WudfPf - ok
      02:06:00.0161 6216 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
      02:06:00.0220 6216 WUDFRd - ok
      02:06:00.0244 6216 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
      02:06:00.0299 6216 wudfsvc - ok
      02:06:00.0352 6216 [ CE8CF9DE9CBFDAA318BD04D8BE3FCADA ] WwanSvc C:\Windows\System32\wwansvc.dll
      02:06:00.0404 6216 WwanSvc - ok
      02:06:00.0443 6216 ================ Scan global ===============================
      02:06:00.0465 6216 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
      02:06:00.0510 6216 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
      02:06:00.0525 6216 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
      02:06:00.0563 6216 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
      02:06:00.0599 6216 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
      02:06:00.0621 6216 [Global] - ok
      02:06:00.0622 6216 ================ Scan MBR ==================================
      02:06:00.0646 6216 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
      02:06:01.0370 6216 \Device\Harddisk0\DR0 - ok
      02:06:01.0374 6216 ================ Scan VBR ==================================
      02:06:01.0389 6216 [ E63B919A9BF9110318D7B35CD20B984F ] \Device\Harddisk0\DR0\Partition1
      02:06:01.0391 6216 \Device\Harddisk0\DR0\Partition1 - ok
      02:06:01.0408 6216 [ 74E27D647E1663F55ECA0C6B34AB688B ] \Device\Harddisk0\DR0\Partition2
      02:06:01.0411 6216 \Device\Harddisk0\DR0\Partition2 - ok
      02:06:01.0442 6216 [ ADEAFBBECB263A8692A67F39ED112CA7 ] \Device\Harddisk0\DR0\Partition3
      02:06:01.0444 6216 \Device\Harddisk0\DR0\Partition3 - ok
      02:06:01.0457 6216 [ 66836BC792D74BC5B2D01F1C6AFB9D37 ] \Device\Harddisk0\DR0\Partition4
      02:06:01.0458 6216 \Device\Harddisk0\DR0\Partition4 - ok
      02:06:01.0459 6216 ============================================================
      02:06:01.0459 6216 Scan finished
      02:06:01.0459 6216 ============================================================
      02:06:01.0475 6232 Detected object count: 2
      02:06:01.0475 6232 Actual detected object count: 2
      02:06:21.0310 6232 C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe - copied to quarantine
      02:06:21.0392 6232 HKLM\SYSTEM\ControlSet001\services\IconMan_R - will be deleted on reboot
      02:06:21.0417 6232 HKLM\SYSTEM\ControlSet002\services\IconMan_R - will be deleted on reboot
      02:06:21.0610 6232 C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe - will be deleted on reboot
      02:06:21.0610 6232 IconMan_R ( UnsignedFile.Multi.Generic ) - User select action: Delete
      02:06:21.0644 6232 C:\Windows\system32\Drivers\usbaapl64.sys - copied to quarantine
      02:06:21.0698 6232 HKLM\SYSTEM\ControlSet001\services\USBAAPL64 - will be deleted on reboot
      02:06:21.0711 6232 HKLM\SYSTEM\ControlSet002\services\USBAAPL64 - will be deleted on reboot
      02:06:21.0722 6232 C:\Windows\system32\Drivers\usbaapl64.sys - will be deleted on reboot
      02:06:21.0722 6232 USBAAPL64 ( UnsignedFile.Multi.Generic ) - User select action: Delete
      02:09:05.0169 7088 Deinitialize success

    6. #6
      Moderador
      Avatar de @MarioL
      Registrado
      nov 2006
      Ubicación
      Málaga - España
      Mensajes
      8.819

      Re: me hakearon

      Hola

      En el malwarebytes pone " No se tomaron medidas", realiza nuevamente un análisis verificando que todas las infecciones estan marcadas, tras ello las eliminas todo lo encontrado pegando su nuevo reporte :)
      Invy

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    7. #7
      Usuario Avatar de maury84
      Registrado
      oct 2012
      Ubicación
      mexico
      Mensajes
      7

      Re: me hakearon

      la reinicie y no pude iniciar secion se kedaba la pantaya negra lo ke isefue restaurarla computadora y ya me dejo entrar y lo volvere aser gracias por su pasiencia ya ke soy nuevo en esto

    8. #8
      Usuario Avatar de maury84
      Registrado
      oct 2012
      Ubicación
      mexico
      Mensajes
      7

      Re: me hakearon

      Malwarebytes Anti-Malware (Versión de Prueba) 1.65.1.1000
      Malwarebytes : Free anti-malware download

      Versión de la Base de Datos: v2012.10.24.01

      Windows 7 Service Pack 1 x64 NTFS
      Internet Explorer 9.0.8112.16421
      maury :: MAURY-HP [administrador]

      Protección: Habilitado

      24/10/2012 02:16:00 a.m.
      mbam-log-2012-10-24 (03-11-11).txt

      Tipos de Análisis: Análisis Completo (C:\|)
      Opciones de análisis activado: Memoria | Inicio | Registro | Sistema de archivos | Heurística/Extra | Heurística/Shuriken | PUP | PUM
      Opciones de análisis desactivados: P2P
      Objetos examinados: 389110
      Tiempo transcurrido: 52 minuto(s), 52 segundo(s)

      Procesos en Memoria Detectados: 0
      (No se han detectado elementos maliciosos)

      Módulos de Memoria Detectados: 0
      (No se han detectado elementos maliciosos)

      Claves del Registro Detectados: 21
      HKCR\CLSID\{75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7} (PUP.FunMoods) -> No se tomaron medidas.
      HKCR\funmoods.funmoodsHlpr.1 (PUP.FunMoods) -> No se tomaron medidas.
      HKCR\funmoods.funmoodsHlpr (PUP.FunMoods) -> No se tomaron medidas.
      HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7} (PUP.FunMoods) -> No se tomaron medidas.
      HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7} (PUP.FunMoods) -> No se tomaron medidas.
      HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7} (PUP.FunMoods) -> No se tomaron medidas.
      HKCR\CLSID\{965B9DBE-B104-44AC-950A-8A5F97AFF439} (PUP.Funmoods) -> No se tomaron medidas.
      HKCR\CLSID\{A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3} (PUP.Funmoods) -> No se tomaron medidas.
      HKCR\funmoods.dskBnd.1 (PUP.Funmoods) -> No se tomaron medidas.
      HKCR\funmoods.dskBnd (PUP.Funmoods) -> No se tomaron medidas.
      HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3} (PUP.Funmoods) -> No se tomaron medidas.
      HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3} (PUP.Funmoods) -> No se tomaron medidas.
      HKCR\CLSID\{A9DB719C-7156-415E-B49D-BAD039DE4F13} (PUP.Funmoods) -> No se tomaron medidas.
      HKCR\funmoodsApp.appCore.1 (PUP.Funmoods) -> No se tomaron medidas.
      HKCR\funmoodsApp.appCore (PUP.Funmoods) -> No se tomaron medidas.
      HKCR\CLSID\{F03FD9D0-4F2B-497C-8A71-DD41D70B07D9} (PUP.Funmoods) -> No se tomaron medidas.
      HKCR\f (PUP.Funmoods) -> No se tomaron medidas.
      HKCR\Typelib\{1D085C0A-E4F4-4F66-BDBF-4BE51015BFC3} (PUP.Funmoods) -> No se tomaron medidas.
      HKCR\Interface\{0D80F1C5-D17B-4177-AC68-955F3EF9F191} (PUP.Funmoods) -> No se tomaron medidas.
      HKLM\SOFTWARE\Google\chrome\Extensions\fdloijijlkoblmigdofommgnheckmaki (PUP.Funmoods) -> No se tomaron medidas.
      HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Internet Spooling Service (Adware.Agent) -> No se tomaron medidas.

      Valores del Registro Detectados: 2
      HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar|{A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3} (PUP.Funmoods) -> datos: Funmoods Toolbar -> No se tomaron medidas.
      HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3} (PUP.Funmoods) -> datos: -> No se tomaron medidas.

      Elementos de Datos del Registro Detectados: 0
      (No se han detectado elementos maliciosos)

      Carpetas Detectadas: 0
      (No se han detectado elementos maliciosos)

      Archivos Detectados: 3
      C:\Users\maury\AppData\Roaming\cacaoweb\cacaoweb.exe (Trojan.Agent) -> No se tomaron medidas.
      C:\Users\maury\Documents\daemon tools.exe (PUP.BundleInstaller.SOL) -> No se tomaron medidas.
      C:\Users\maury\AppData\Local\funmoods.crx (PUP.Funmoods) -> No se tomaron medidas.

    9. #9
      Usuario Avatar de maury84
      Registrado
      oct 2012
      Ubicación
      mexico
      Mensajes
      7

      Re: me hakearon

      una pregunta porke no puedo desinstalar daemon tolls me marca error cuando va en el 38%
      Última edición por maury84 fecha: 24/10/12 a las 06:24:57

    10. #10
      Moderador
      Avatar de @MarioL
      Registrado
      nov 2006
      Ubicación
      Málaga - España
      Mensajes
      8.819

      Re: me hakearon

      Por favor lee con detenimiento el manual, has vuelto a tener el mismo fallo y otro más... ahora has puesto "Tipos de Análisis: Análisis Rápido" en vez de completo y sigue apareciendo " No se tomaron medidas"

      Por favor para no alargar tú post es de gran ayuda que leas con detenimiento tanto mis indicaciones como los manuales, con esto evitamos dobles análisis y alargar más tú problema.

      Un saludo.
      Invy

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.