• Registrarse
  • Iniciar sesión


  • Página 1 de 2 12 ÚltimoÚltimo
    Resultados 1 al 10 de 19

    Desconexión del centro de seguridad y redireccionamiento de google.

    Hola, desde hace un par de dias vengo sufriendo los efectos de un virus/gusano/loquesea, que me está desquiciando. He leido varios hilos con problemas parecidos, he intentado aplicar las soluciones, pero el problema persiste. He ...

    1. #1
      Usuario Avatar de Ramon2k12
      Registrado
      oct 2012
      Ubicación
      Alicante
      Mensajes
      12

      Desconexión del centro de seguridad y redireccionamiento de google.

      Hola, desde hace un par de dias vengo sufriendo los efectos de un virus/gusano/loquesea, que me está desquiciando.
      He leido varios hilos con problemas parecidos, he intentado aplicar las soluciones, pero el problema persiste.
      He entrado en modo seguro y peinado con el antivirus aswMBR, sin resultado, he pasado el "Antimalware" y he eliminado varias amenazas que ha encontrado y despues de un reinicio sigo igual.
      Pasé el combofix, y tampoco ha dado resultado, el log del combofix es este:

      ComboFix 12-10-23.02 - Tienda 24/10/2012 11:49:34.1.1 - x64
      Microsoft Windows 7 Professional 6.1.7601.1.1252.34.3082.18.4095.2662 [GMT 2:00]
      Running from: c:\users\Tienda\Desktop\ComboFix.exe
      AV: Microsoft Security Essentials *Enabled/Updated* {B140BF4E-23BB-4198-90AB-A51A4C60A69C}
      SP: Microsoft Security Essentials *Enabled/Updated* {0A215EAA-0581-4E16-AA1B-9E6837E7EC21}
      SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
      * Created a new restore point
      .
      .
      ((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
      .
      .
      c:\users\temp\acmdwrap.dll
      c:\users\temp\afd.dll
      c:\users\temp\asyncmac.dll
      c:\users\temp\audevman.dll
      c:\users\temp\autoras.dll
      c:\users\temp\aygshell.dll
      c:\users\temp\BackLight.dll
      c:\users\temp\battdrvr.dll
      c:\users\temp\batterylow.exe
      c:\users\temp\binfs.dll
      c:\users\temp\ceddk.dll
      c:\users\temp\cefobj.dll
      c:\users\temp\ceshell.dll
      c:\users\temp\commctrl.dll
      c:\users\temp\commdlg.dll
      c:\users\temp\connmc.exe
      c:\users\temp\connpnl.cpl
      c:\users\temp\control.exe
      c:\users\temp\coredll.dll
      c:\users\temp\cplmain.cpl
      c:\users\temp\crypt32.dll
      c:\users\temp\ctlpnl.exe
      c:\users\temp\cxport.dll
      c:\users\temp\desktopdirectory.ini
      c:\users\temp\device.exe
      c:\users\temp\dumprom.exe
      c:\users\temp\dxmasf.dll
      c:\users\temp\eap.dll
      c:\users\temp\eapchap.dll
      c:\users\temp\eaptls.dll
      c:\users\temp\eventrst.exe
      c:\users\temp\fatfsd.dll
      c:\users\temp\fatutil.dll
      c:\users\temp\filesys.exe
      c:\users\temp\FLASHDRV.DLL
      c:\users\temp\fsdmgr.dll
      c:\users\temp\GV360Uti.exe
      c:\users\temp\gwes.exe
      c:\users\temp\IECEExt.dll
      c:\users\temp\imgdecmp.dll
      c:\users\temp\intll.cpl
      c:\users\temp\iphlpapi.dll
      c:\users\temp\lpcd.dll
      c:\users\temp\lpcrt.dll
      c:\users\temp\mlang.dll
      c:\users\temp\mmtimer.dll
      c:\users\temp\mp3dmod.dll
      c:\users\temp\mqoa.dll
      c:\users\temp\msasn1.dll
      c:\users\temp\msdmo.dll
      c:\users\temp\msim.dll
      c:\users\temp\msmqadm.exe
      c:\users\temp\msmqd.dll
      c:\users\temp\msmqrt.dll
      c:\users\temp\mspart.dll
      c:\users\temp\msxml3.dll
      c:\users\temp\MuteIcon.exe
      c:\users\temp\ndis.dll
      c:\users\temp\ndispwr.dll
      c:\users\temp\netbios.dll
      c:\users\temp\netui.dll
      c:\users\temp\nk.exe
      c:\users\temp\nspm.dll
      c:\users\temp\ntlmssp.dll
      c:\users\temp\obexapi.dll
      c:\users\temp\ole32.dll
      c:\users\temp\oleaut32.dll
      c:\users\temp\pm.dll
      c:\users\temp\prnerr.dll
      c:\users\temp\prnport.dll
      c:\users\temp\pwrbtn2410.dll
      c:\users\temp\PWRBTNGV360.dll
      c:\users\temp\quartz.dll
      c:\users\temp\rapisrv.exe
      c:\users\temp\recorder.exe
      c:\users\temp\redir.dll
      c:\users\temp\regenum.dll
      c:\users\temp\repllog.exe
      c:\users\temp\rnaapp.exe
      c:\users\temp\rra_stm.dll
      c:\users\temp\rsaenh.dll
      c:\users\temp\s3c2410disp.dll
      c:\users\temp\sc2410_usb_ser.dll
      c:\users\temp\schannel.dll
      c:\users\temp\sdmmc.dll
      c:\users\temp\SDMMC_loader.dll
      c:\users\temp\secur32.dll
      c:\users\temp\ser2410.dll
      c:\users\temp\shcore.dll
      c:\users\temp\shdocvw.dll
      c:\users\temp\shlwapi.dll
      c:\users\temp\softkb.dll
      c:\users\temp\spnego.dll
      c:\users\temp\ssllsp.dll
      c:\users\temp\stguil.cpl
      c:\users\temp\system.cpl
      c:\users\temp\tapi.dll
      c:\users\temp\tcpstk.dll
      c:\users\temp\termctrl.dll
      c:\users\temp\touch.dll
      c:\users\temp\udp2tcp.exe
      c:\users\temp\unimodem.dll
      c:\users\temp\unload.exe
      c:\users\temp\urlmon.dll
      c:\users\temp\usb.exe
      c:\users\temp\usbcnect.exe
      c:\users\temp\visadm.exe
      c:\users\temp\wavclick.dll
      c:\users\temp\waveapi.dll
      c:\users\temp\wavedev.dll
      c:\users\temp\wceload.exe
      c:\users\temp\webview.dll
      c:\users\temp\wininet.dll
      c:\users\temp\winsock.dll
      c:\users\temp\wisc10.dll
      c:\users\temp\wldap32.dll
      c:\users\temp\wmadmod.dll
      c:\users\temp\wmsdmod.dll
      c:\users\temp\ws2.dll
      c:\users\temp\ws2instl.dll
      c:\users\temp\wspm.dll
      c:\users\temp\zlib.dll
      c:\users\Tienda\AppData\Local\Temp\_MEI34522\_ctypes.pyd
      c:\users\Tienda\AppData\Local\Temp\_MEI34522\_elementtree.pyd
      c:\users\Tienda\AppData\Local\Temp\_MEI34522\_hashlib.pyd
      c:\users\Tienda\AppData\Local\Temp\_MEI34522\_socket.pyd
      c:\users\Tienda\AppData\Local\Temp\_MEI34522\_ssl.pyd
      c:\users\Tienda\AppData\Local\Temp\_MEI34522\pyexpat.pyd
      c:\users\Tienda\AppData\Local\Temp\_MEI34522\pysqlite2._sqlite.pyd
      c:\users\Tienda\AppData\Local\Temp\_MEI34522\python26.dll
      c:\users\Tienda\AppData\Local\Temp\_MEI34522\pythoncom26.dll
      c:\users\Tienda\AppData\Local\Temp\_MEI34522\pywintypes26.dll
      c:\users\Tienda\AppData\Local\Temp\_MEI34522\select.pyd
      c:\users\Tienda\AppData\Local\Temp\_MEI34522\unicodedata.pyd
      c:\users\Tienda\AppData\Local\Temp\_MEI34522\win32api.pyd
      c:\users\Tienda\AppData\Local\Temp\_MEI34522\win32com.shell.shell.pyd
      c:\users\Tienda\AppData\Local\Temp\_MEI34522\win32crypt.pyd
      c:\users\Tienda\AppData\Local\Temp\_MEI34522\win32event.pyd
      c:\users\Tienda\AppData\Local\Temp\_MEI34522\win32file.pyd
      c:\users\Tienda\AppData\Local\Temp\_MEI34522\win32inet.pyd
      c:\users\Tienda\AppData\Local\Temp\_MEI34522\win32pdh.pyd
      c:\users\Tienda\AppData\Local\Temp\_MEI34522\win32process.pyd
      c:\users\Tienda\AppData\Local\Temp\_MEI34522\win32security.pyd
      c:\users\Tienda\AppData\Local\Temp\_MEI34522\windows._cacheinvalidation.pyd
      c:\users\Tienda\AppData\Local\Temp\_MEI34522\wx._controls_.pyd
      c:\users\Tienda\AppData\Local\Temp\_MEI34522\wx._core_.pyd
      c:\users\Tienda\AppData\Local\Temp\_MEI34522\wx._gdi_.pyd
      c:\users\Tienda\AppData\Local\Temp\_MEI34522\wx._html2.pyd
      c:\users\Tienda\AppData\Local\Temp\_MEI34522\wx._misc_.pyd
      c:\users\Tienda\AppData\Local\Temp\_MEI34522\wx._windows_.pyd
      c:\users\Tienda\AppData\Local\Temp\_MEI34522\wx._wizard.pyd
      c:\users\Tienda\AppData\Local\Temp\_MEI34522\wxbase293u_net_vc.dll
      c:\users\Tienda\AppData\Local\Temp\_MEI34522\wxbase293u_vc.dll
      c:\users\Tienda\AppData\Local\Temp\_MEI34522\wxmsw293u_adv_vc.dll
      c:\users\Tienda\AppData\Local\Temp\_MEI34522\wxmsw293u_core_vc.dll
      c:\users\Tienda\AppData\Local\Temp\_MEI34522\wxmsw293u_html_vc.dll
      c:\users\Tienda\AppData\Local\Temp\_MEI34522\wxmsw293u_webview_vc.dll
      c:\users\Tienda\AppData\Roaming\FFSJ
      c:\users\Tienda\AppData\Roaming\FFSJ\FFSJ.cfg
      c:\windows\Tasks\At1.job
      c:\windows\XSxS
      .
      .
      ((((((((((((((((((((((((( Files Created from 2012-09-24 to 2012-10-24 )))))))))))))))))))))))))))))))
      .
      .
      2012-10-24 09:24 . 2012-10-12 07:19 9291768 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{9CFDFB64-1ED2-40B2-AFE4-613777F0A229}\mpengine.dll
      2012-10-24 09:04 . 2012-10-24 09:04 -------- d-----w- c:\users\Tienda\AppData\Roaming\GlarySoft
      2012-10-24 09:01 . 2012-10-24 09:02 -------- d-----w- c:\program files (x86)\Glary Utilities
      2012-10-24 07:37 . 2012-08-24 18:13 154480 ----a-w- c:\windows\system32\drivers\ksecpkg.sys
      2012-10-24 07:37 . 2012-08-24 18:09 458712 ----a-w- c:\windows\system32\drivers\cng.sys
      2012-10-24 07:37 . 2012-08-24 18:05 340992 ----a-w- c:\windows\system32\schannel.dll
      2012-10-24 07:37 . 2012-08-24 18:04 307200 ----a-w- c:\windows\system32\ncrypt.dll
      2012-10-24 07:37 . 2012-08-24 16:57 247808 ----a-w- c:\windows\SysWow64\schannel.dll
      2012-10-24 07:37 . 2012-08-24 18:03 1448448 ----a-w- c:\windows\system32\lsasrv.dll
      2012-10-24 07:37 . 2012-08-24 16:57 220160 ----a-w- c:\windows\SysWow64\ncrypt.dll
      2012-10-24 07:37 . 2012-08-24 16:57 22016 ----a-w- c:\windows\SysWow64\secur32.dll
      2012-10-24 07:37 . 2012-08-24 16:53 96768 ----a-w- c:\windows\SysWow64\sspicli.dll
      2012-10-23 18:24 . 2012-10-23 18:24 -------- d-----w- c:\users\Tienda\DoctorWeb
      2012-10-23 18:09 . 2012-10-23 18:09 -------- d-----w- c:\program files (x86)\ESET
      2012-10-23 16:30 . 2012-10-23 16:30 94208 --sha-r- c:\program files (x86)\Common Files\KBDAZEL.dll
      2012-10-23 07:18 . 2012-10-12 07:19 9291768 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
      2012-10-22 15:56 . 2012-10-22 15:56 -------- d-----w- c:\program files (x86)\Common Files\Java
      2012-10-20 08:52 . 2012-10-20 08:52 -------- d-sh--w- c:\users\Tienda\Phone Browser
      2012-10-20 08:41 . 2012-10-20 08:48 -------- d-----w- c:\users\Tienda\AppData\Local\Nokia
      2012-10-20 08:39 . 2012-10-20 08:40 -------- d-----w- c:\programdata\Nokia
      2012-10-20 08:39 . 2012-06-27 13:18 26112 ----a-w- c:\windows\system32\drivers\pccsmcfdx64.sys
      2012-10-20 08:38 . 2012-10-20 08:38 -------- d-----w- c:\program files (x86)\PC Connectivity Solution
      2012-10-20 07:42 . 2012-09-28 07:22 972192 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{CB253C92-BAF6-4E71-A6DF-64EBB6137473}\gapaengine.dll
      2012-10-17 10:33 . 2011-06-01 02:17 848384 ----a-r- c:\windows\system32\drivers\rtl8192cu.sys
      2012-10-17 10:33 . 2012-10-17 10:33 -------- d-----w- c:\program files (x86)\Belkin
      2012-10-17 10:33 . 2011-01-19 13:01 451072 ----a-w- c:\windows\SysWow64\ISSRemoveSP.exe
      2012-10-15 18:09 . 2012-10-15 18:09 466456 ----a-w- c:\windows\system32\wrap_oal.dll
      2012-10-15 18:09 . 2012-10-15 18:09 444952 ----a-w- c:\windows\SysWow64\wrap_oal.dll
      2012-10-15 18:09 . 2012-10-15 18:09 122904 ----a-w- c:\windows\system32\OpenAL32.dll
      2012-10-15 18:09 . 2012-10-15 18:09 109080 ----a-w- c:\windows\SysWow64\OpenAL32.dll
      2012-10-15 18:09 . 2012-10-15 18:09 -------- d-----w- c:\program files (x86)\OpenAL
      2012-10-10 07:33 . 2012-08-31 18:19 1659760 ----a-w- c:\windows\system32\drivers\ntfs.sys
      2012-10-10 07:33 . 2012-08-30 18:03 5559664 ----a-w- c:\windows\system32\ntoskrnl.exe
      2012-10-10 07:31 . 2012-08-24 18:05 220160 ----a-w- c:\windows\system32\wintrust.dll
      2012-10-10 07:31 . 2012-08-24 16:57 172544 ----a-w- c:\windows\SysWow64\wintrust.dll
      2012-10-10 07:31 . 2012-09-14 19:19 2048 ----a-w- c:\windows\system32\tzres.dll
      2012-10-10 07:31 . 2012-09-14 18:28 2048 ----a-w- c:\windows\SysWow64\tzres.dll
      2012-10-10 07:31 . 2012-08-11 00:56 715776 ----a-w- c:\windows\system32\kerberos.dll
      2012-10-10 07:31 . 2012-08-10 23:56 542208 ----a-w- c:\windows\SysWow64\kerberos.dll
      2012-10-10 07:30 . 2012-06-02 05:41 1464320 ----a-w- c:\windows\system32\crypt32.dll
      2012-10-10 07:30 . 2012-06-02 04:36 1159680 ----a-w- c:\windows\SysWow64\crypt32.dll
      2012-10-10 07:30 . 2012-06-02 05:41 184320 ----a-w- c:\windows\system32\cryptsvc.dll
      2012-10-10 07:30 . 2012-06-02 05:41 140288 ----a-w- c:\windows\system32\cryptnet.dll
      2012-10-10 07:30 . 2012-06-02 04:36 140288 ----a-w- c:\windows\SysWow64\cryptsvc.dll
      2012-10-10 07:30 . 2012-06-02 04:36 103936 ----a-w- c:\windows\SysWow64\cryptnet.dll
      2012-10-02 15:14 . 2007-04-09 23:06 10752 ----a-w- c:\windows\system32\E_GCINST.DLL
      2012-10-02 15:14 . 2011-04-20 01:03 120320 ----a-w- c:\windows\system32\E_ILMHJE.DLL
      2012-10-02 15:14 . 2011-03-15 01:03 83968 ----a-w- c:\windows\system32\E_ID4BHJE.DLL
      2012-09-27 10:25 . 2012-09-27 10:25 -------- d-----w- c:\program files (x86)\ggseq-0.3.1
      2012-09-26 07:16 . 2012-08-21 21:01 245760 ----a-w- c:\windows\system32\OxpsConverter.exe
      2012-09-25 10:45 . 2012-09-25 11:56 17280 ----a-w- c:\windows\system32\drivers\USBDrv_AMD64.sys
      .
      .
      .
      (((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
      .
      2012-10-10 09:18 . 2011-03-16 09:51 65309168 ----a-w- c:\windows\system32\MRT.exe
      2012-10-10 08:40 . 2012-03-30 07:14 696760 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
      2012-10-10 08:40 . 2011-06-28 07:01 73656 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
      2012-09-29 17:54 . 2011-11-22 19:02 25928 ----a-w- c:\windows\system32\drivers\mbam.sys
      2012-09-28 07:22 . 2011-03-25 08:20 972192 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\NISBackup\gapaengine.dll
      2012-09-24 13:32 . 2012-07-16 09:56 477168 ----a-w- c:\windows\SysWow64\npdeployJava1.dll
      2012-09-24 13:32 . 2011-03-15 18:05 473072 ----a-w- c:\windows\SysWow64\deployJava1.dll
      2012-08-30 20:03 . 2012-08-30 20:03 228768 ----a-w- c:\windows\system32\drivers\MpFilter.sys
      2012-08-30 20:03 . 2010-10-24 20:25 128456 ----a-w- c:\windows\system32\drivers\NisDrvWFP.sys
      2012-08-24 11:15 . 2012-09-22 11:44 17810944 ----a-w- c:\windows\system32\mshtml.dll
      2012-08-24 10:39 . 2012-09-22 11:44 10925568 ----a-w- c:\windows\system32\ieframe.dll
      2012-08-24 10:31 . 2012-09-22 11:44 2312704 ----a-w- c:\windows\system32\jscript9.dll
      2012-08-24 10:22 . 2012-09-22 11:44 1346048 ----a-w- c:\windows\system32\urlmon.dll
      2012-08-24 10:21 . 2012-09-22 11:44 1392128 ----a-w- c:\windows\system32\wininet.dll
      2012-08-24 10:20 . 2012-09-22 11:44 1494528 ----a-w- c:\windows\system32\inetcpl.cpl
      2012-08-24 10:18 . 2012-09-22 11:44 237056 ----a-w- c:\windows\system32\url.dll
      2012-08-24 10:17 . 2012-09-22 11:44 85504 ----a-w- c:\windows\system32\jsproxy.dll
      2012-08-24 10:14 . 2012-09-22 11:44 173056 ----a-w- c:\windows\system32\ieUnatt.exe
      2012-08-24 10:14 . 2012-09-22 11:44 816640 ----a-w- c:\windows\system32\jscript.dll
      2012-08-24 10:13 . 2012-09-22 11:44 599040 ----a-w- c:\windows\system32\vbscript.dll
      2012-08-24 10:12 . 2012-09-22 11:44 2144768 ----a-w- c:\windows\system32\iertutil.dll
      2012-08-24 10:11 . 2012-09-22 11:44 729088 ----a-w- c:\windows\system32\msfeeds.dll
      2012-08-24 10:10 . 2012-09-22 11:44 96768 ----a-w- c:\windows\system32\mshtmled.dll
      2012-08-24 10:09 . 2012-09-22 11:44 2382848 ----a-w- c:\windows\system32\mshtml.tlb
      2012-08-24 10:04 . 2012-09-22 11:44 248320 ----a-w- c:\windows\system32\ieui.dll
      2012-08-24 06:59 . 2012-09-22 11:44 1800704 ----a-w- c:\windows\SysWow64\jscript9.dll
      2012-08-24 06:51 . 2012-09-22 11:44 1129472 ----a-w- c:\windows\SysWow64\wininet.dll
      2012-08-24 06:51 . 2012-09-22 11:44 1427968 ----a-w- c:\windows\SysWow64\inetcpl.cpl
      2012-08-24 06:47 . 2012-09-22 11:44 142848 ----a-w- c:\windows\SysWow64\ieUnatt.exe
      2012-08-24 06:47 . 2012-09-22 11:44 420864 ----a-w- c:\windows\SysWow64\vbscript.dll
      2012-08-24 06:43 . 2012-09-22 11:44 2382848 ----a-w- c:\windows\SysWow64\mshtml.tlb
      2012-08-22 18:12 . 2012-09-12 07:12 1913200 ----a-w- c:\windows\system32\drivers\tcpip.sys
      2012-08-22 18:12 . 2012-09-12 07:12 950128 ----a-w- c:\windows\system32\drivers\ndis.sys
      2012-08-22 18:12 . 2012-09-12 07:12 376688 ----a-w- c:\windows\system32\drivers\netio.sys
      2012-08-22 18:12 . 2012-09-12 07:12 288624 ----a-w- c:\windows\system32\drivers\FWPKCLNT.SYS
      2012-08-21 11:01 . 2012-09-17 18:26 33240 ----a-w- c:\windows\system32\drivers\GEARAspiWDM.sys
      2012-08-21 11:01 . 2011-03-16 08:51 106928 ----a-w- c:\windows\SysWow64\GEARAspi.dll
      2012-08-21 11:01 . 2011-03-16 08:51 125872 ----a-w- c:\windows\system32\GEARAspi64.dll
      2012-08-20 17:38 . 2012-10-10 07:32 44032 ----a-w- c:\windows\apppatch\acwow64.dll
      2012-08-02 17:58 . 2012-09-12 07:12 574464 ----a-w- c:\windows\system32\d3d10level9.dll
      2012-08-02 16:57 . 2012-09-12 07:12 490496 ----a-w- c:\windows\SysWow64\d3d10level9.dll
      .
      .
      ((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
      .
      .
      *Note* empty entries & legit default entries are not shown
      REGEDIT4
      .
      [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
      "{db131c55-60c8-4adc-84dc-9e76ab06e2dc}"= "c:\program files (x86)\uTorrentBar_ES\tbuTor.dll" [2010-12-09 3911776]
      .
      [HKEY_CLASSES_ROOT\clsid\{db131c55-60c8-4adc-84dc-9e76ab06e2dc}]
      .
      [HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{B922D405-6D13-4A2B-AE89-08A030DA4402}]
      2011-12-13 16:42 1071456 ----a-w- c:\program files (x86)\pdfforge Toolbar\IE\4.9\pdfforgeToolbarIE.dll
      .
      [HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{db131c55-60c8-4adc-84dc-9e76ab06e2dc}]
      2010-12-09 11:51 3911776 ----a-w- c:\program files (x86)\uTorrentBar_ES\tbuTor.dll
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar]
      "{db131c55-60c8-4adc-84dc-9e76ab06e2dc}"= "c:\program files (x86)\uTorrentBar_ES\tbuTor.dll" [2010-12-09 3911776]
      "{B922D405-6D13-4A2B-AE89-08A030DA4402}"= "c:\program files (x86)\pdfforge Toolbar\IE\4.9\pdfforgeToolbarIE.dll" [2011-12-13 1071456]
      .
      [HKEY_CLASSES_ROOT\clsid\{db131c55-60c8-4adc-84dc-9e76ab06e2dc}]
      .
      [HKEY_CLASSES_ROOT\clsid\{b922d405-6d13-4a2b-ae89-08a030da4402}]
      .
      [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive1]
      @="{F241C880-6982-4CE5-8CF7-7085BA96DA5A}"
      [HKEY_CLASSES_ROOT\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}]
      2012-07-09 16:44 208608 ----a-w- c:\users\Tienda\AppData\Local\Microsoft\SkyDrive\16.4.4111.0525\SkyDriveShell.dll
      .
      [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive2]
      @="{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}"
      [HKEY_CLASSES_ROOT\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}]
      2012-07-09 16:44 208608 ----a-w- c:\users\Tienda\AppData\Local\Microsoft\SkyDrive\16.4.4111.0525\SkyDriveShell.dll
      .
      [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive3]
      @="{BBACC218-34EA-4666-9D7A-C78F2274A524}"
      [HKEY_CLASSES_ROOT\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}]
      2012-07-09 16:44 208608 ----a-w- c:\users\Tienda\AppData\Local\Microsoft\SkyDrive\16.4.4111.0525\SkyDriveShell.dll
      .
      [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
      @="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
      [HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
      2011-02-18 05:12 94208 ----a-w- c:\users\Tienda\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
      .
      [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
      @="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
      [HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
      2011-02-18 05:12 94208 ----a-w- c:\users\Tienda\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
      .
      [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
      @="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
      [HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
      2011-02-18 05:12 94208 ----a-w- c:\users\Tienda\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
      .
      [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
      @="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
      [HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
      2011-02-18 05:12 94208 ----a-w- c:\users\Tienda\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
      .
      [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
      "Xvid"="c:\program files (x86)\Xvid\CheckUpdate.exe" [2011-01-17 8192]
      "GoogleDriveSync"="c:\program files (x86)\Google\Drive\googledrivesync.exe" [2012-09-06 15668432]
      "TomTomHOME.exe"="c:\program files (x86)\TomTom HOME 2\TomTomHOMERunner.exe" [2012-08-28 247768]
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
      "AMD AVT"="start AMD Accelerated Video Transcoding device initialization" [X]
      "Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-07-27 919008]
      "EEventManager"="c:\program files (x86)\Epson Software\Event Manager\EEventManager.exe" [2009-12-03 976320]
      "APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-08-27 59280]
      "Malwarebytes Anti-Malware (reboot)"="c:\program files (x86)\Malwarebytes' Anti-Malware\mbam.exe" [2012-09-29 981656]
      "QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2012-04-18 421888]
      "VirtualCloneDrive"="c:\program files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" [2011-03-07 89456]
      "iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" [2012-09-09 421776]
      "StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2012-07-04 641704]
      "SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2012-09-17 254896]
      .
      c:\users\Tienda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
      Dropbox.lnk - c:\users\Tienda\AppData\Roaming\Dropbox\bin\Dropbox.exe [2012-5-24 27112840]
      GOMIS.BAT - Acceso directo.lnk - c:\users\Tienda\Documents\GOMIS.BAT [2012-6-4 35]
      PrtSvr.exe - Acceso directo.lnk - c:\program files (x86)\Rpv\PrtSvr.exe [2012-6-4 2449408]
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
      "ConsentPromptBehaviorAdmin"= 0 (0x0)
      "ConsentPromptBehaviorUser"= 3 (0x3)
      "EnableLUA"= 0 (0x0)
      "EnableUIADesktopToggle"= 0 (0x0)
      "PromptOnSecureDesktop"= 0 (0x0)
      .
      [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
      "LoadAppInit_DLLs"=0 (0x0)
      .
      [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
      BootExecute REG_MULTI_SZ autocheck autochk /p \??\H:\0autocheck autochk *
      .
      [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
      @="Service"
      .
      [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-disabled]
      "SearchSettings"="c:\program files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe"
      .
      R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
      R2 gupdate;Servicio Google Update (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-04-01 135664]
      R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-10-10 250808]
      R3 GenericMount;Generic Mount Driver;c:\windows\system32\DRIVERS\GenericMount.sys [2009-09-21 54320]
      R3 gupdatem;Servicio de Google Update (gupdatem);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-04-01 135664]
      R3 htcnprot;HTC NDIS Protocol Driver;c:\windows\system32\DRIVERS\htcnprot.sys [2010-06-25 36928]
      R3 hwi4857;USB Flash Memory Controller Service2;c:\windows\system32\Drivers\hwi4857.sys [x]
      R3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-10-13 115168]
      R3 Netaapl;Apple Mobile Device Ethernet Service;c:\windows\system32\DRIVERS\netaapl64.sys [2011-05-10 22528]
      R3 PortRST;BaromTec HMS30C6001 Reset Driver;c:\windows\system32\Drivers\PortRST.sys [x]
      R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2012-08-23 19456]
      R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2012-08-23 57856]
      R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys [2012-07-09 52736]
      R3 usbUDisc;usbUDisc;c:\windows\system32\DRIVERS\USBDrv_AMD64.sys [2012-09-25 17280]
      R3 VBoxUSB;VirtualBox USB;c:\windows\system32\Drivers\VBoxUSB.sys [2011-04-26 45616]
      R3 WatAdminSvc;Servicio de tecnologías de activación de Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2011-03-16 1255736]
      R4 NAUpdate;Nero Update;c:\program files (x86)\Nero\Update\NASvc.exe [2010-03-25 490280]
      S1 VBoxDrv;VirtualBox Service;c:\windows\system32\DRIVERS\VBoxDrv.sys [2011-12-19 224048]
      S1 VBoxUSBMon;VirtualBox USB Monitor Driver;c:\windows\system32\DRIVERS\VBoxUSBMon.sys [2011-12-19 130864]
      S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
      S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-07-27 63960]
      S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2012-07-04 238080]
      S2 AMD FUEL Service;AMD FUEL Service;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2012-07-03 361984]
      S2 EPSON_EB_RPCV4_04;EPSON V5 Service4(04);c:\program files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE [2009-09-14 166400]
      S2 EPSON_PM_RPCV4_04;EPSON V3 Service4(04);c:\program files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE [2009-09-14 128512]
      S2 Freemake Improver;Freemake Improver;c:\programdata\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [2011-12-02 74752]
      S2 MBAMScheduler;MBAMScheduler;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2012-09-29 399432]
      S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-09-29 676936]
      S2 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys [2012-08-30 128456]
      S2 PassThru Service;Internet Pass-Through Service;c:\program files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [2010-09-16 80896]
      S2 TomTomHOMEService;TomTomHOMEService;c:\program files (x86)\TomTom HOME 2\TomTomHOMEService.exe [2012-08-28 92632]
      S3 amdiox64;AMD IO Driver;c:\windows\system32\DRIVERS\amdiox64.sys [2010-02-18 46136]
      S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atikmdag.sys [2012-07-04 11922944]
      S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [2012-07-04 359936]
      S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys [2012-02-23 95760]
      S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2012-09-29 25928]
      S3 NisSrv;Inspección de red de Microsoft;c:\program files\Microsoft Security Client\NisSrv.exe [2012-09-12 368896]
      S3 RTL8192cu;%RTL8192cu.DeviceDesc.DispName%;c:\windows\system32\DRIVERS\RTL8192cu.sys [2011-06-01 848384]
      S3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter;c:\windows\system32\DRIVERS\VBoxNetAdp.sys [2011-12-19 146736]
      S3 VBoxNetFlt;VirtualBox Bridged Networking Service;c:\windows\system32\DRIVERS\VBoxNetFlt.sys [2011-12-19 165680]
      .
      .
      --- Other Services/Drivers In Memory ---
      .
      *NewlyCreated* - WS2IFSL
      .
      Contents of the 'Scheduled Tasks' folder
      .
      2012-10-24 c:\windows\Tasks\Adobe Flash Player Updater.job
      - c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-03-30 08:40]
      .
      2012-10-24 c:\windows\Tasks\GlaryInitialize.job
      - c:\program files (x86)\Glary Utilities\initialize.exe [2012-10-24 10:45]
      .
      2012-10-24 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
      - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-04-01 17:50]
      .
      2012-10-24 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
      - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-04-01 17:50]
      .
      2012-10-24 c:\windows\Tasks\JOWUU.job
      - c:\windows\system32\rundll32.exe [2009-07-13 01:14]
      .
      .
      --------- X64 Entries -----------
      .
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive1]
      @="{F241C880-6982-4CE5-8CF7-7085BA96DA5A}"
      [HKEY_CLASSES_ROOT\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}]
      2012-07-09 16:44 232672 ----a-w- c:\users\Tienda\AppData\Local\Microsoft\SkyDrive\16.4.4111.0525\amd64\SkyDriveShell64.dll
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive2]
      @="{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}"
      [HKEY_CLASSES_ROOT\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}]
      2012-07-09 16:44 232672 ----a-w- c:\users\Tienda\AppData\Local\Microsoft\SkyDrive\16.4.4111.0525\amd64\SkyDriveShell64.dll
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive3]
      @="{BBACC218-34EA-4666-9D7A-C78F2274A524}"
      [HKEY_CLASSES_ROOT\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}]
      2012-07-09 16:44 232672 ----a-w- c:\users\Tienda\AppData\Local\Microsoft\SkyDrive\16.4.4111.0525\amd64\SkyDriveShell64.dll
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
      @="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
      [HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
      2011-02-18 05:12 97792 ----a-w- c:\users\Tienda\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
      @="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
      [HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
      2011-02-18 05:12 97792 ----a-w- c:\users\Tienda\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
      @="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
      [HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
      2011-02-18 05:12 97792 ----a-w- c:\users\Tienda\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
      @="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
      [HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
      2011-02-18 05:12 97792 ----a-w- c:\users\Tienda\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveBlacklistedOverlay]
      @="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}"
      [HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}]
      2012-09-06 13:51 755224 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedOverlay]
      @="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}"
      [HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}]
      2012-09-06 13:51 755224 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncedOverlay]
      @="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}"
      [HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}]
      2012-09-06 13:51 755224 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncingOverlay]
      @="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}"
      [HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}]
      2012-09-06 13:51 755224 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
      "Windows Mobile Device Center"="c:\windows\WindowsMobile\wmdc.exe" [2007-05-31 660360]
      "MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2012-09-12 1289704]
      .
      ------- Supplementary Scan -------
      .
      uLocal Page = c:\windows\system32\blank.htm
      uStart Page = about:blank
      uDefault_Search_URL = hxxp://www.google.com/ie
      mLocal Page = c:\windows\SysWOW64\blank.htm
      uInternet Settings,ProxyOverride = *.local
      uSearchAssistant = hxxp://www.google.com/ie
      uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
      mSearchAssistant = hxxp://start.facemoods.com/?a=make&s={searchTerms}&f=4
      IE: Descargar con Mipony - file://c:\program files (x86)\MiPony\Browser\IEContext.htm
      IE: E&xportar a Microsoft Excel - c:\progra~2\MICROS~3\Office12\EXCEL.EXE/3000
      TCP: DhcpNameServer = 80.58.61.250 80.58.61.254
      TCP: Interfaces\{2D9258C7-3B3C-425B-BB6E-20ADB89FB1E9}: NameServer = 80.58.0.33,8.8.8.8
      FF - ProfilePath - c:\users\Tienda\AppData\Roaming\Mozilla\Firefox\Profiles\5x2d9p23.default\
      FF - prefs.js: browser.startup.homepage - www.google.es
      FF - ExtSQL: 2012-08-31 11:48; {CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}; c:\program files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}
      FF - ExtSQL: 2012-09-19 11:09; {1BC9BA34-1EED-42ca-A505-6D2F1A935BBB}; c:\users\Tienda\AppData\Roaming\Mozilla\Firefox\Profiles\5x2d9p23.default\extensions\{1BC9BA34-1EED-42ca-A505-6D2F1A935BBB}
      FF - ExtSQL: 2012-10-22 17:56; {CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA}; c:\program files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA}
      FF - user.js: extensions.BabylonToolbar_i.babTrack - affID=110183&tt=3012_8
      FF - user.js: extensions.BabylonToolbar_i.babExt -
      FF - user.js: extensions.BabylonToolbar_i.srcExt - ss
      FF - user.js: extensions.BabylonToolbar.tlbrSrchUrl - hxxp://www.google.com/search?babsrc=TB_ggl&q=
      FF - user.js: extensions.BabylonToolbar.id - 784e579d00000000000000262d130f0f
      FF - user.js: extensions.BabylonToolbar.instlDay - 15549
      FF - user.js: extensions.BabylonToolbar.vrsn - 1.5.29.1
      FF - user.js: extensions.BabylonToolbar.vrsni - 1.5.29.1
      FF - user.js: extensions.BabylonToolbar_i.vrsnTs - 1.5.29.112:33
      FF - user.js: extensions.BabylonToolbar.prtnrId - babylon
      FF - user.js: extensions.BabylonToolbar.prdct - BabylonToolbar
      FF - user.js: extensions.BabylonToolbar.aflt - babsst
      FF - user.js: extensions.BabylonToolbar_i.smplGrp - none
      FF - user.js: extensions.BabylonToolbar.tlbrId - base
      FF - user.js: extensions.BabylonToolbar.instlRef - sst
      FF - user.js: extensions.BabylonToolbar.dfltLng - en
      FF - user.js: extensions.BabylonToolbar.excTlbr - false
      FF - user.js: extensions.BabylonToolbar.admin - false
      .
      - - - - ORPHANS REMOVED - - - -
      .
      Wow6432Node-HKCU-Run-MobileDocuments - c:\program files (x86)\Common Files\Apple\Internet Services\ubd.exe
      WebBrowser-{DB131C55-60C8-4ADC-84DC-9E76AB06E2DC} - (no file)
      ShellIconOverlayIdentifiers-{0C4A258A-3F3B-4FFF-80A7-9B3BEC139472} - (no file)
      ShellIconOverlayIdentifiers-{62CCD8E3-9C21-41E1-B55E-1E26DFC68511} - (no file)
      ShellIconOverlayIdentifiers-{A759AFF6-5851-457D-A540-F4ECED148351} - (no file)
      ShellIconOverlayIdentifiers-{1574C9EF-7D58-488F-B358-8B78C1538F51} - (no file)
      .
      .
      .
      --------------------- LOCKED REGISTRY KEYS ---------------------
      .
      [HKEY_USERS\S-1-5-21-3184329585-738872171-714124981-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*<%*ã*]
      @Class="Shell"
      @Allowed: (Read) (RestrictedCode)
      .
      [HKEY_USERS\S-1-5-21-3184329585-738872171-714124981-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*<%*ã*\OpenWithList]
      @Class="Shell"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
      @Denied: (A 2) (Everyone)
      @="FlashBroker"
      "LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_4_402_287_ActiveX.exe,-101"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
      "Enabled"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
      @="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_4_402_287_ActiveX.exe"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
      @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
      @Denied: (A 2) (Everyone)
      @="IFlashBroker5"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
      @="{00020424-0000-0000-C000-000000000046}"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
      @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
      "Version"="1.0"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
      @Denied: (A 2) (Everyone)
      @="FlashBroker"
      "LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_4_402_287_ActiveX.exe,-101"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
      "Enabled"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
      @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_4_402_287_ActiveX.exe"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
      @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
      @Denied: (A 2) (Everyone)
      @="Shockwave Flash Object"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
      @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_287.ocx"
      "ThreadingModel"="Apartment"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
      @="0"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
      @="ShockwaveFlash.ShockwaveFlash.11"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
      @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_287.ocx, 1"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
      @="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
      @="1.0"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
      @="ShockwaveFlash.ShockwaveFlash"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
      @Denied: (A 2) (Everyone)
      @="Macromedia Flash Factory Object"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
      @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_287.ocx"
      "ThreadingModel"="Apartment"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
      @="FlashFactory.FlashFactory.1"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
      @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_287.ocx, 1"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
      @="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
      @="1.0"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
      @="FlashFactory.FlashFactory"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
      @Denied: (A 2) (Everyone)
      @="IFlashBroker5"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
      @="{00020424-0000-0000-C000-000000000046}"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
      @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
      "Version"="1.0"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows CE Services]
      "SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
      00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,4f,00,46,00,\
      .
      [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
      @Denied: (A) (Users)
      @Denied: (A) (Everyone)
      @Allowed: (B 1 2 3 4 5) (S-1-5-20)
      "BlindDial"=dword:00000000
      .
      [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
      @Denied: (Full) (Everyone)
      .
      ------------------------ Other Running Processes ------------------------
      .
      c:\program files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
      c:\windows\SysWOW64\rundll32.exe
      c:\program files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
      .
      **************************************************************************
      .
      Completion time: 2012-10-24 12:14:14 - machine was rebooted
      ComboFix-quarantined-files.txt 2012-10-24 10:14
      .
      Pre-Run: 210.910.883.840 bytes libres
      Post-Run: 210.867.208.192 bytes libres
      .
      - - End Of File - - 192A44245EED0876DE73867797C42BA6



      Gracias.

      Saludos.

    2. #2
      Moderador Gral.
      Avatar de @Leosolari
      Registrado
      jun 2007
      Ubicación
      Argentina
      Mensajes
      58.638

      Re: Desconexión del centro de seguridad y redireccionamiento de google.

      Hola Ramon2k12



      • Desactivá temporalmente el Antivirus y/o Antispyware. Cómo deshabilitar temporalmente su Antivirus

      • Descarga la Herramienta AT-Destroyer (by InfoSpyware)

      • Ejecuta la herramienta como administrador.
      • (Si usas Windows Vista o 7 Presiona clic derecho y selecciona "Ejecutar como Administrador.")

      • Aparecerá el Disclaimer de la herramienta. Presiona .

      • Presiona sobre la opción 1 (Buscar y Destruir)

      • La herramienta desconectará el escritorio moméntaneamente.

      • En caso de estar infectado,la herramienta lo indicará con lineas rojas donde se haya encontrado la infección,sino,serán lineas verdes.

      • Una vez terminado el escaneo,podrás volver a ver el escritorio y se te abrirá un reporte,que deberás copiar en tu próxima respuesta comentando cómo funciona el sistema.






      Descarga TDSSKiller.zip a tu escritorio.



      Desconecta tu ordenador de Internet (Desconecta el cable).
      • Descomprime el archivo tdsskiller.zip
      • Ejecuta el archivo TDSSKiller.exe Si usas Vista o 7 presiona clic derecho ejecutar como administrador.
      • Presiona clic sobre
      • Marca también las casillas:

      • Presiona clic sobre el botón

        .
      • TDSSKiller comenzara a analizar el equipo.
      • Si el equipo no está infectado:
      • Mostrara
      • No threats found.
      • Presiona clic sobre el botón "Close"
      • Si el equipo está infectado:
      • Mostrara:
      • Threats detected.
      • Select action for found objects:


      • Malware object, high risk. La acción predeterminada es "Cure" o "Delete".
      • Suspicious object, medium risk. Usa siempre la opción "Skip"
      • El programa selecciona de forma automática la acción a tomar.
      • Presiona clic sobre el botón "Continue"
      • Para desinfectar correctamente el Sistema, puede solicitarle reiniciar el equipo.
      • Presiona clic sobre el botón

      • Abre el reporte de TDSSKiller, ubicado en C:\TDSSKiller.x.xx.x_xx.xx.xxxx_xx.xx.xx_log.txt, donde "x.xx.x_xx.xx.xxxx_xx.xx.xx" son versión, fecha y hora.
      • Copia y pega su contenido en tu próxima respuesta.
      Síguenos en Twitter y hazte nuestro amigo en Facebook.

    3. #3
      Usuario Avatar de Ramon2k12
      Registrado
      oct 2012
      Ubicación
      Alicante
      Mensajes
      12

      Re: Desconexión del centro de seguridad y redireccionamiento de google.

      Hola y muchas gracias por la rapidez.
      Me temo que sigo con el problema, en ambos casos el AT-destroyer y TDSSkiller, no me han resuelto el problema, no he reiniciado porque ninguna de esas herramientas me lo sugirió en ningún momento.

      El log del TDSSkiller:

      17:21:31.0439 4372 TDSS rootkit removing tool 2.8.13.0 Oct 12 2012 17:26:47
      17:21:31.0470 4372 ============================================================
      17:21:31.0470 4372 Current date / time: 2012/10/24 17:21:31.0470
      17:21:31.0470 4372 SystemInfo:
      17:21:31.0470 4372
      17:21:31.0470 4372 OS Version: 6.1.7601 ServicePack: 1.0
      17:21:31.0470 4372 Product type: Workstation
      17:21:31.0470 4372 ComputerName: TIENDA-PC
      17:21:31.0470 4372 UserName: Tienda
      17:21:31.0470 4372 Windows directory: C:\Windows
      17:21:31.0470 4372 System windows directory: C:\Windows
      17:21:31.0470 4372 Running under WOW64
      17:21:31.0470 4372 Processor architecture: Intel x64
      17:21:31.0470 4372 Number of processors: 1
      17:21:31.0470 4372 Page size: 0x1000
      17:21:31.0470 4372 Boot type: Normal boot
      17:21:31.0470 4372 ============================================================
      17:21:33.0763 4372 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
      17:21:33.0919 4372 ============================================================
      17:21:33.0919 4372 \Device\Harddisk0\DR0:
      17:21:33.0919 4372 MBR partitions:
      17:21:33.0919 4372 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1E00800, BlocksNum 0x32000
      17:21:33.0919 4372 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1E32800, BlocksNum 0x393E7000
      17:21:33.0919 4372 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x3B219800, BlocksNum 0x394EC800
      17:21:33.0919 4372 ============================================================
      17:21:33.0935 4372 C: <-> \Device\Harddisk0\DR0\Partition2
      17:21:33.0966 4372 D: <-> \Device\Harddisk0\DR0\Partition3
      17:21:33.0966 4372 ============================================================
      17:21:33.0966 4372 Initialize success
      17:21:33.0966 4372 ============================================================
      17:21:51.0220 4032 ============================================================
      17:21:51.0220 4032 Scan started
      17:21:51.0220 4032 Mode: Manual; SigCheck; TDLFS;
      17:21:51.0220 4032 ============================================================
      17:21:52.0047 4032 ================ Scan system memory ========================
      17:21:52.0047 4032 System memory - ok
      17:21:52.0047 4032 ================ Scan services =============================
      17:21:52.0234 4032 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
      17:21:52.0343 4032 1394ohci - ok
      17:21:52.0390 4032 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
      17:21:52.0405 4032 ACPI - ok
      17:21:52.0452 4032 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
      17:21:52.0499 4032 AcpiPmi - ok
      17:21:52.0811 4032 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
      17:21:52.0842 4032 AdobeARMservice - ok
      17:21:52.0967 4032 [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
      17:21:52.0983 4032 AdobeFlashPlayerUpdateSvc - ok
      17:21:53.0029 4032 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
      17:21:53.0061 4032 adp94xx - ok
      17:21:53.0092 4032 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
      17:21:53.0107 4032 adpahci - ok
      17:21:53.0139 4032 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
      17:21:53.0154 4032 adpu320 - ok
      17:21:53.0201 4032 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
      17:21:53.0279 4032 AeLookupSvc - ok
      17:21:53.0341 4032 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
      17:21:53.0373 4032 AFD - ok
      17:21:53.0404 4032 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
      17:21:53.0419 4032 agp440 - ok
      17:21:53.0451 4032 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
      17:21:53.0482 4032 ALG - ok
      17:21:53.0513 4032 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
      17:21:53.0529 4032 aliide - ok
      17:21:53.0575 4032 [ E20DDDFBD0DBE7D8EAD4D7A51D654367 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
      17:21:53.0622 4032 AMD External Events Utility - ok
      17:21:53.0763 4032 AMD FUEL Service - ok
      17:21:53.0809 4032 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
      17:21:53.0825 4032 amdide - ok
      17:21:53.0856 4032 [ 6A2EEB0C4133B20773BB3DD0B7B377B4 ] amdiox64 C:\Windows\system32\DRIVERS\amdiox64.sys
      17:21:53.0887 4032 amdiox64 - ok
      17:21:53.0934 4032 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
      17:21:53.0965 4032 AmdK8 - ok
      17:21:54.0246 4032 [ 4284FB1240537A33E6EC417EFD87D40F ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
      17:21:54.0558 4032 amdkmdag - ok
      17:21:54.0621 4032 [ 6C25C497E05EFD0CB6033A0444FC9B51 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
      17:21:54.0652 4032 amdkmdap - ok
      17:21:54.0667 4032 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
      17:21:54.0699 4032 AmdPPM - ok
      17:21:54.0745 4032 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
      17:21:54.0777 4032 amdsata - ok
      17:21:54.0808 4032 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
      17:21:54.0823 4032 amdsbs - ok
      17:21:54.0855 4032 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
      17:21:54.0870 4032 amdxata - ok
      17:21:54.0933 4032 [ 2D71D1EED26923802C1C1B26E603FE0C ] AnyDVD C:\Windows\system32\Drivers\AnyDVD.sys
      17:21:54.0948 4032 AnyDVD - ok
      17:21:55.0011 4032 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
      17:21:55.0104 4032 AppID - ok
      17:21:55.0135 4032 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
      17:21:55.0182 4032 AppIDSvc - ok
      17:21:55.0229 4032 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
      17:21:55.0291 4032 Appinfo - ok
      17:21:55.0416 4032 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
      17:21:55.0447 4032 Apple Mobile Device - ok
      17:21:55.0494 4032 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll
      17:21:55.0541 4032 AppMgmt - ok
      17:21:55.0588 4032 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
      17:21:55.0603 4032 arc - ok
      17:21:55.0635 4032 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
      17:21:55.0650 4032 arcsas - ok
      17:21:55.0681 4032 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
      17:21:55.0728 4032 AsyncMac - ok
      17:21:55.0759 4032 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
      17:21:55.0775 4032 atapi - ok
      17:21:55.0837 4032 [ 24464B908E143D2561E9E452FEE97309 ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
      17:21:55.0853 4032 AtiHDAudioService - ok
      17:21:56.0087 4032 [ 4284FB1240537A33E6EC417EFD87D40F ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
      17:21:56.0290 4032 atikmdag - ok
      17:21:56.0352 4032 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
      17:21:56.0415 4032 AudioEndpointBuilder - ok
      17:21:56.0430 4032 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
      17:21:56.0493 4032 AudioSrv - ok
      17:21:56.0524 4032 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
      17:21:56.0586 4032 AxInstSV - ok
      17:21:56.0633 4032 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
      17:21:56.0664 4032 b06bdrv - ok
      17:21:56.0695 4032 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
      17:21:56.0727 4032 b57nd60a - ok
      17:21:56.0758 4032 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
      17:21:56.0789 4032 BDESVC - ok
      17:21:56.0805 4032 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
      17:21:56.0867 4032 Beep - ok
      17:21:56.0945 4032 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
      17:21:57.0007 4032 BFE - ok
      17:21:57.0054 4032 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\system32\qmgr.dll
      17:21:57.0117 4032 BITS - ok
      17:21:57.0163 4032 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
      17:21:57.0179 4032 blbdrive - ok
      17:21:57.0273 4032 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
      17:21:57.0304 4032 Bonjour Service - ok
      17:21:57.0351 4032 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
      17:21:57.0397 4032 bowser - ok
      17:21:57.0429 4032 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
      17:21:57.0491 4032 BrFiltLo - ok
      17:21:57.0507 4032 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
      17:21:57.0538 4032 BrFiltUp - ok
      17:21:57.0585 4032 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
      17:21:57.0631 4032 BridgeMP - ok
      17:21:57.0663 4032 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
      17:21:57.0694 4032 Browser - ok
      17:21:57.0725 4032 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
      17:21:57.0865 4032 Brserid - ok
      17:21:57.0897 4032 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
      17:21:57.0912 4032 BrSerWdm - ok
      17:21:57.0928 4032 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
      17:21:57.0959 4032 BrUsbMdm - ok
      17:21:57.0975 4032 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
      17:21:57.0990 4032 BrUsbSer - ok
      17:21:58.0021 4032 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
      17:21:58.0037 4032 BTHMODEM - ok
      17:21:58.0084 4032 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
      17:21:58.0131 4032 bthserv - ok
      17:21:58.0177 4032 catchme - ok
      17:21:58.0224 4032 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
      17:21:58.0302 4032 cdfs - ok
      17:21:58.0365 4032 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
      17:21:58.0380 4032 cdrom - ok
      17:21:58.0427 4032 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
      17:21:58.0505 4032 CertPropSvc - ok
      17:21:58.0536 4032 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
      17:21:58.0567 4032 circlass - ok
      17:21:58.0599 4032 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
      17:21:58.0630 4032 CLFS - ok
      17:21:58.0723 4032 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
      17:21:58.0755 4032 clr_optimization_v2.0.50727_32 - ok
      17:21:58.0833 4032 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
      17:21:58.0848 4032 clr_optimization_v2.0.50727_64 - ok
      17:21:58.0942 4032 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
      17:21:58.0957 4032 clr_optimization_v4.0.30319_32 - ok
      17:21:59.0020 4032 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
      17:21:59.0035 4032 clr_optimization_v4.0.30319_64 - ok
      17:21:59.0067 4032 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
      17:21:59.0082 4032 CmBatt - ok
      17:21:59.0113 4032 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
      17:21:59.0129 4032 cmdide - ok
      17:21:59.0176 4032 [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG C:\Windows\system32\Drivers\cng.sys
      17:21:59.0254 4032 CNG - ok
      17:21:59.0269 4032 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
      17:21:59.0285 4032 Compbatt - ok
      17:21:59.0332 4032 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
      17:21:59.0363 4032 CompositeBus - ok
      17:21:59.0379 4032 COMSysApp - ok
      17:21:59.0410 4032 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
      17:21:59.0425 4032 crcdisk - ok
      17:21:59.0488 4032 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
      17:21:59.0503 4032 CryptSvc - ok
      17:21:59.0550 4032 [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC C:\Windows\system32\drivers\csc.sys
      17:21:59.0613 4032 CSC - ok
      17:21:59.0659 4032 [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService C:\Windows\System32\cscsvc.dll
      17:21:59.0737 4032 CscService - ok
      17:21:59.0769 4032 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
      17:21:59.0831 4032 DcomLaunch - ok
      17:21:59.0862 4032 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
      17:21:59.0925 4032 defragsvc - ok
      17:21:59.0956 4032 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
      17:22:00.0003 4032 DfsC - ok
      17:22:00.0034 4032 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
      17:22:00.0081 4032 Dhcp - ok
      17:22:00.0096 4032 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
      17:22:00.0174 4032 discache - ok
      17:22:00.0205 4032 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
      17:22:00.0221 4032 Disk - ok
      17:22:00.0268 4032 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
      17:22:00.0330 4032 Dnscache - ok
      17:22:00.0377 4032 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
      17:22:00.0455 4032 dot3svc - ok
      17:22:00.0517 4032 [ B42ED0320C6E41102FDE0005154849BB ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
      17:22:00.0549 4032 Dot4 - ok
      17:22:00.0580 4032 [ E9F5969233C5D89F3C35E3A66A52A361 ] Dot4Print C:\Windows\system32\DRIVERS\Dot4Prt.sys
      17:22:00.0595 4032 Dot4Print - ok
      17:22:00.0627 4032 [ FD05A02B0370BC3000F402E543CA5814 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
      17:22:00.0642 4032 dot4usb - ok
      17:22:00.0689 4032 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
      17:22:00.0736 4032 DPS - ok
      17:22:00.0767 4032 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
      17:22:00.0783 4032 drmkaud - ok
      17:22:00.0845 4032 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
      17:22:00.0876 4032 DXGKrnl - ok
      17:22:00.0923 4032 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
      17:22:00.0985 4032 EapHost - ok
      17:22:01.0110 4032 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
      17:22:01.0266 4032 ebdrv - ok
      17:22:01.0329 4032 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
      17:22:01.0344 4032 EFS - ok
      17:22:01.0407 4032 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
      17:22:01.0438 4032 ehRecvr - ok
      17:22:01.0485 4032 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
      17:22:01.0531 4032 ehSched - ok
      17:22:01.0594 4032 [ A05FC7ECA0966EBB70E4D17B855A853B ] ElbyCDIO C:\Windows\system32\Drivers\ElbyCDIO.sys
      17:22:01.0641 4032 ElbyCDIO - ok
      17:22:01.0719 4032 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
      17:22:01.0734 4032 elxstor - ok
      17:22:01.0812 4032 [ 7DB097F4F6786307168C0DDDEC43A565 ] EPSON_EB_RPCV4_04 C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE
      17:22:01.0843 4032 EPSON_EB_RPCV4_04 - ok
      17:22:01.0890 4032 [ 258AA65A0862E19B7DE6981FDA3758AD ] EPSON_PM_RPCV4_04 C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE
      17:22:01.0921 4032 EPSON_PM_RPCV4_04 - ok
      17:22:01.0937 4032 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
      17:22:01.0953 4032 ErrDev - ok
      17:22:02.0031 4032 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
      17:22:02.0093 4032 EventSystem - ok
      17:22:02.0124 4032 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
      17:22:02.0171 4032 exfat - ok
      17:22:02.0202 4032 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
      17:22:02.0249 4032 fastfat - ok
      17:22:02.0296 4032 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
      17:22:02.0343 4032 Fax - ok
      17:22:02.0358 4032 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
      17:22:02.0374 4032 fdc - ok
      17:22:02.0405 4032 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
      17:22:02.0467 4032 fdPHost - ok
      17:22:02.0483 4032 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
      17:22:02.0545 4032 FDResPub - ok
      17:22:02.0561 4032 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
      17:22:02.0577 4032 FileInfo - ok
      17:22:02.0608 4032 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
      17:22:02.0655 4032 Filetrace - ok
      17:22:02.0686 4032 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
      17:22:02.0701 4032 flpydisk - ok
      17:22:02.0748 4032 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
      17:22:02.0779 4032 FltMgr - ok
      17:22:02.0826 4032 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
      17:22:02.0889 4032 FontCache - ok
      17:22:02.0951 4032 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
      17:22:02.0967 4032 FontCache3.0.0.0 - ok
      17:22:03.0107 4032 [ 37C2FF67A2565286F1C1C1072BE74678 ] Freemake Improver C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
      17:22:03.0123 4032 Freemake Improver ( UnsignedFile.Multi.Generic ) - warning
      17:22:03.0123 4032 Freemake Improver - detected UnsignedFile.Multi.Generic (1)
      17:22:03.0138 4032 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
      17:22:03.0154 4032 FsDepends - ok
      17:22:03.0185 4032 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
      17:22:03.0201 4032 Fs_Rec - ok
      17:22:03.0263 4032 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
      17:22:03.0294 4032 fvevol - ok
      17:22:03.0325 4032 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
      17:22:03.0341 4032 gagp30kx - ok
      17:22:03.0388 4032 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
      17:22:03.0403 4032 GEARAspiWDM - ok
      17:22:03.0450 4032 [ 022807B149127B8FAA3DBEB13A7D9B41 ] GenericMount C:\Windows\system32\DRIVERS\GenericMount.sys
      17:22:03.0466 4032 GenericMount - ok
      17:22:03.0513 4032 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
      17:22:03.0575 4032 gpsvc - ok
      17:22:03.0637 4032 [ 2ED7FF3E1ADA4092632393781518B3A7 ] grmnusb C:\Windows\system32\drivers\grmnusb.sys
      17:22:03.0669 4032 grmnusb - ok
      17:22:03.0762 4032 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
      17:22:03.0793 4032 gupdate - ok
      17:22:03.0871 4032 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
      17:22:03.0871 4032 gupdatem - ok
      17:22:03.0903 4032 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
      17:22:03.0965 4032 hcw85cir - ok
      17:22:04.0027 4032 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
      17:22:04.0059 4032 HdAudAddService - ok
      17:22:04.0090 4032 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
      17:22:04.0121 4032 HDAudBus - ok
      17:22:04.0137 4032 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
      17:22:04.0168 4032 HidBatt - ok
      17:22:04.0183 4032 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
      17:22:04.0215 4032 HidBth - ok
      17:22:04.0246 4032 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
      17:22:04.0277 4032 HidIr - ok
      17:22:04.0339 4032 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll
      17:22:04.0433 4032 hidserv - ok
      17:22:04.0464 4032 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
      17:22:04.0480 4032 HidUsb - ok
      17:22:04.0527 4032 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
      17:22:04.0573 4032 hkmsvc - ok
      17:22:04.0620 4032 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
      17:22:04.0651 4032 HomeGroupListener - ok
      17:22:04.0698 4032 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
      17:22:04.0729 4032 HomeGroupProvider - ok
      17:22:04.0761 4032 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
      17:22:04.0776 4032 HpSAMD - ok
      17:22:04.0823 4032 [ B8B1B284362E1D8135112573395D5DA5 ] htcnprot C:\Windows\system32\DRIVERS\htcnprot.sys
      17:22:04.0839 4032 htcnprot - ok
      17:22:04.0901 4032 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
      17:22:04.0963 4032 HTTP - ok
      17:22:04.0995 4032 hwi4857 - ok
      17:22:05.0026 4032 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
      17:22:05.0041 4032 hwpolicy - ok
      17:22:05.0088 4032 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
      17:22:05.0104 4032 i8042prt - ok
      17:22:05.0135 4032 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
      17:22:05.0166 4032 iaStorV - ok
      17:22:05.0213 4032 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
      17:22:05.0244 4032 idsvc - ok
      17:22:05.0291 4032 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
      17:22:05.0307 4032 iirsp - ok
      17:22:05.0338 4032 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
      17:22:05.0416 4032 IKEEXT - ok
      17:22:05.0447 4032 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
      17:22:05.0463 4032 intelide - ok
      17:22:05.0494 4032 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
      17:22:05.0509 4032 intelppm - ok
      17:22:05.0541 4032 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
      17:22:05.0587 4032 IPBusEnum - ok
      17:22:05.0634 4032 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
      17:22:05.0681 4032 IpFilterDriver - ok
      17:22:05.0728 4032 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
      17:22:05.0790 4032 iphlpsvc - ok
      17:22:05.0821 4032 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
      17:22:05.0853 4032 IPMIDRV - ok
      17:22:05.0868 4032 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
      17:22:05.0931 4032 IPNAT - ok
      17:22:06.0009 4032 [ 6E50CFA46527B39015B750AAD161C5CC ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
      17:22:06.0071 4032 iPod Service - ok
      17:22:06.0102 4032 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
      17:22:06.0180 4032 IRENUM - ok
      17:22:06.0211 4032 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
      17:22:06.0227 4032 isapnp - ok
      17:22:06.0274 4032 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
      17:22:06.0289 4032 iScsiPrt - ok
      17:22:06.0321 4032 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
      17:22:06.0336 4032 kbdclass - ok
      17:22:06.0383 4032 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
      17:22:06.0414 4032 kbdhid - ok
      17:22:06.0430 4032 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
      17:22:06.0445 4032 KeyIso - ok
      17:22:06.0477 4032 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
      17:22:06.0492 4032 KSecDD - ok
      17:22:06.0539 4032 [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
      17:22:06.0555 4032 KSecPkg - ok
      17:22:06.0586 4032 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
      17:22:06.0664 4032 ksthunk - ok
      17:22:06.0695 4032 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
      17:22:06.0757 4032 KtmRm - ok
      17:22:06.0804 4032 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\System32\srvsvc.dll
      17:22:06.0851 4032 LanmanServer - ok
      17:22:06.0898 4032 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
      17:22:06.0960 4032 LanmanWorkstation - ok
      17:22:07.0007 4032 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
      17:22:07.0054 4032 lltdio - ok
      17:22:07.0101 4032 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
      17:22:07.0147 4032 lltdsvc - ok
      17:22:07.0179 4032 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
      17:22:07.0241 4032 lmhosts - ok
      17:22:07.0288 4032 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
      17:22:07.0303 4032 LSI_FC - ok
      17:22:07.0335 4032 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
      17:22:07.0350 4032 LSI_SAS - ok
      17:22:07.0381 4032 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
      17:22:07.0397 4032 LSI_SAS2 - ok
      17:22:07.0428 4032 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
      17:22:07.0444 4032 LSI_SCSI - ok
      17:22:07.0491 4032 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
      17:22:07.0537 4032 luafv - ok
      17:22:07.0569 4032 [ A8FE8F2783B2929B56F5370A89356CE9 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
      17:22:07.0600 4032 MBAMProtector - ok
      17:22:07.0678 4032 [ 85B16A92B117A5A800032ECD904B86DB ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
      17:22:07.0693 4032 MBAMScheduler - ok
      17:22:07.0740 4032 [ 20E2469DB709FC675E655CEAA11BE312 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
      17:22:07.0771 4032 MBAMService - ok
      17:22:07.0818 4032 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
      17:22:07.0834 4032 Mcx2Svc - ok
      17:22:07.0849 4032 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
      17:22:07.0881 4032 megasas - ok
      17:22:07.0896 4032 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
      17:22:07.0912 4032 MegaSR - ok
      17:22:07.0959 4032 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
      17:22:08.0021 4032 MMCSS - ok
      17:22:08.0052 4032 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
      17:22:08.0099 4032 Modem - ok
      17:22:08.0130 4032 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
      17:22:08.0161 4032 monitor - ok
      17:22:08.0208 4032 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
      17:22:08.0224 4032 mouclass - ok
      17:22:08.0239 4032 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
      17:22:08.0286 4032 mouhid - ok
      17:22:08.0333 4032 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
      17:22:08.0349 4032 mountmgr - ok
      17:22:08.0442 4032 [ 24409A2A9F0351E208E14F609340FB25 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
      17:22:08.0473 4032 MozillaMaintenance - ok
      17:22:08.0520 4032 [ 05BF204EC0E82CC4A054DB189C8A3D84 ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
      17:22:08.0551 4032 MpFilter - ok
      17:22:08.0598 4032 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
      17:22:08.0614 4032 mpio - ok
      17:22:08.0629 4032 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
      17:22:08.0692 4032 mpsdrv - ok
      17:22:08.0739 4032 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
      17:22:08.0801 4032 MpsSvc - ok
      17:22:08.0848 4032 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
      17:22:08.0879 4032 MRxDAV - ok
      17:22:08.0910 4032 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
      17:22:08.0941 4032 mrxsmb - ok
      17:22:08.0988 4032 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
      17:22:09.0004 4032 mrxsmb10 - ok
      17:22:09.0035 4032 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
      17:22:09.0051 4032 mrxsmb20 - ok
      17:22:09.0097 4032 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
      17:22:09.0113 4032 msahci - ok
      17:22:09.0144 4032 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
      17:22:09.0160 4032 msdsm - ok
      17:22:09.0191 4032 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
      17:22:09.0238 4032 MSDTC - ok
      17:22:09.0269 4032 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
      17:22:09.0347 4032 Msfs - ok
      17:22:09.0378 4032 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
      17:22:09.0425 4032 mshidkmdf - ok
      17:22:09.0456 4032 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
      17:22:09.0472 4032 msisadrv - ok
      17:22:09.0519 4032 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
      17:22:09.0581 4032 MSiSCSI - ok
      17:22:09.0597 4032 msiserver - ok
      17:22:09.0628 4032 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
      17:22:09.0690 4032 MSKSSRV - ok
      17:22:09.0753 4032 [ CC8E4F72F21340A4D3A3D4DB50313EF5 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
      17:22:09.0768 4032 MsMpSvc - ok
      17:22:09.0799 4032 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
      17:22:09.0846 4032 MSPCLOCK - ok
      17:22:09.0862 4032 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
      17:22:09.0924 4032 MSPQM - ok
      17:22:09.0955 4032 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
      17:22:09.0987 4032 MsRPC - ok
      17:22:10.0002 4032 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
      17:22:10.0018 4032 mssmbios - ok
      17:22:10.0049 4032 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
      17:22:10.0096 4032 MSTEE - ok
      17:22:10.0143 4032 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
      17:22:10.0158 4032 MTConfig - ok
      17:22:10.0205 4032 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
      17:22:10.0221 4032 Mup - ok
      17:22:10.0283 4032 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
      17:22:10.0330 4032 napagent - ok
      17:22:10.0377 4032 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
      17:22:10.0423 4032 NativeWifiP - ok
      17:22:10.0533 4032 [ E4534BCCDD1EA7A7A256BB9D6688A5FC ] NAUpdate C:\Program Files (x86)\Nero\Update\NASvc.exe
      17:22:10.0579 4032 NAUpdate - ok
      17:22:10.0657 4032 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
      17:22:10.0704 4032 NDIS - ok
      17:22:10.0720 4032 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
      17:22:10.0767 4032 NdisCap - ok
      17:22:10.0813 4032 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
      17:22:10.0876 4032 NdisTapi - ok
      17:22:10.0891 4032 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
      17:22:10.0954 4032 Ndisuio - ok
      17:22:10.0985 4032 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
      17:22:11.0032 4032 NdisWan - ok
      17:22:11.0079 4032 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
      17:22:11.0141 4032 NDProxy - ok
      17:22:11.0250 4032 [ 7D2633295EB6FF2B938185874884059D ] Nero BackItUp Scheduler 4.0 C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
      17:22:11.0328 4032 Nero BackItUp Scheduler 4.0 - ok
      17:22:11.0375 4032 [ DC6530A291D4BDF6DF399F1F128E7F8F ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
      17:22:11.0375 4032 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
      17:22:11.0375 4032 Net Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
      17:22:11.0437 4032 [ 6F4607E2333FE21E9E3FF8133A88B35B ] Netaapl C:\Windows\system32\DRIVERS\netaapl64.sys
      17:22:11.0469 4032 Netaapl - ok
      17:22:11.0515 4032 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
      17:22:11.0562 4032 NetBIOS - ok
      17:22:11.0609 4032 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
      17:22:11.0671 4032 NetBT - ok
      17:22:11.0703 4032 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
      17:22:11.0718 4032 Netlogon - ok
      17:22:11.0781 4032 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
      17:22:11.0843 4032 Netman - ok
      17:22:11.0874 4032 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
      17:22:11.0937 4032 netprofm - ok
      17:22:11.0968 4032 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
      17:22:11.0983 4032 NetTcpPortSharing - ok
      17:22:12.0015 4032 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
      17:22:12.0046 4032 nfrd960 - ok
      17:22:12.0077 4032 [ 5FF89F20317309D28AC1EDEB0CD1BA72 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
      17:22:12.0108 4032 NisDrv - ok
      17:22:12.0139 4032 [ 79E80B10FE8F6662E0C9162A68C43444 ] NisSrv c:\Program Files\Microsoft Security Client\NisSrv.exe
      17:22:12.0155 4032 NisSrv - ok
      17:22:12.0217 4032 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
      17:22:12.0264 4032 NlaSvc - ok
      17:22:12.0342 4032 [ 4903177FC90E77ABEB19021451E9475E ] nmwcd C:\Windows\system32\drivers\ccdcmbx64.sys
      17:22:12.0389 4032 nmwcd - ok
      17:22:12.0436 4032 [ E6844A4C97E5409BBE24BB4ED000320D ] nmwcdc C:\Windows\system32\drivers\ccdcmbox64.sys
      17:22:12.0467 4032 nmwcdc - ok
      17:22:12.0498 4032 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
      17:22:12.0545 4032 Npfs - ok
      17:22:12.0561 4032 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
      17:22:12.0623 4032 nsi - ok
      17:22:12.0639 4032 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
      17:22:12.0685 4032 nsiproxy - ok
      17:22:12.0763 4032 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
      17:22:12.0826 4032 Ntfs - ok
      17:22:12.0841 4032 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
      17:22:12.0888 4032 Null - ok
      17:22:12.0951 4032 [ A85B4F2EF3A7304A5399EF0526423040 ] NVENETFD C:\Windows\system32\DRIVERS\nvm62x64.sys
      17:22:12.0982 4032 NVENETFD - ok
      17:22:13.0044 4032 [ 0AD267A4674805B61A5D7B911D2A978A ] NVNET C:\Windows\system32\DRIVERS\nvmf6264.sys
      17:22:13.0060 4032 NVNET - ok
      17:22:13.0107 4032 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
      17:22:13.0122 4032 nvraid - ok
      17:22:13.0138 4032 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
      17:22:13.0169 4032 nvstor - ok
      17:22:13.0231 4032 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
      17:22:13.0247 4032 nv_agp - ok
      17:22:13.0356 4032 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
      17:22:13.0419 4032 odserv - ok
      17:22:13.0450 4032 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
      17:22:13.0465 4032 ohci1394 - ok
      17:22:13.0512 4032 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
      17:22:13.0528 4032 ose - ok
      17:22:13.0590 4032 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
      17:22:13.0621 4032 p2pimsvc - ok
      17:22:13.0668 4032 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
      17:22:13.0684 4032 p2psvc - ok
      17:22:13.0731 4032 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
      17:22:13.0746 4032 Parport - ok
      17:22:13.0793 4032 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
      17:22:13.0809 4032 partmgr - ok
      17:22:13.0902 4032 [ 5FBCC9EEEFACA3019D5BD5979618F298 ] PassThru Service C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
      17:22:14.0027 4032 PassThru Service ( UnsignedFile.Multi.Generic ) - warning
      17:22:14.0027 4032 PassThru Service - detected UnsignedFile.Multi.Generic (1)
      17:22:14.0074 4032 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
      17:22:14.0105 4032 PcaSvc - ok
      17:22:14.0167 4032 [ 3FDE033DFB0D07F8B7D5C9A3044AA121 ] pccsmcfd C:\Windows\system32\DRIVERS\pccsmcfdx64.sys
      17:22:14.0183 4032 pccsmcfd - ok
      17:22:14.0214 4032 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
      17:22:14.0230 4032 pci - ok
      17:22:14.0277 4032 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
      17:22:14.0292 4032 pciide - ok
      17:22:14.0323 4032 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
      17:22:14.0355 4032 pcmcia - ok
      17:22:14.0370 4032 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
      17:22:14.0386 4032 pcw - ok
      17:22:14.0433 4032 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
      17:22:14.0495 4032 PEAUTH - ok
      17:22:14.0542 4032 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
      17:22:14.0589 4032 PeerDistSvc - ok
      17:22:14.0698 4032 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
      17:22:14.0745 4032 PerfHost - ok
      17:22:14.0823 4032 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
      17:22:14.0916 4032 pla - ok
      17:22:14.0979 4032 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
      17:22:15.0010 4032 PlugPlay - ok
      17:22:15.0057 4032 [ 71F62C51DFDFBC04C83C5C64B2B8058E ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
      17:22:15.0088 4032 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
      17:22:15.0088 4032 Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
      17:22:15.0119 4032 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
      17:22:15.0135 4032 PNRPAutoReg - ok
      17:22:15.0166 4032 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
      17:22:15.0181 4032 PNRPsvc - ok
      17:22:15.0213 4032 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
      17:22:15.0275 4032 PolicyAgent - ok
      17:22:15.0291 4032 PortRST - ok
      17:22:15.0337 4032 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
      17:22:15.0400 4032 Power - ok
      17:22:15.0447 4032 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
      17:22:15.0556 4032 PptpMiniport - ok
      17:22:15.0603 4032 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
      17:22:15.0634 4032 Processor - ok
      17:22:15.0696 4032 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
      17:22:15.0727 4032 ProfSvc - ok
      17:22:15.0759 4032 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
      17:22:15.0774 4032 ProtectedStorage - ok
      17:22:15.0821 4032 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
      17:22:15.0868 4032 Psched - ok
      17:22:15.0915 4032 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
      17:22:15.0961 4032 ql2300 - ok
      17:22:15.0993 4032 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
      17:22:16.0008 4032 ql40xx - ok
      17:22:16.0055 4032 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
      17:22:16.0086 4032 QWAVE - ok
      17:22:16.0117 4032 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
      17:22:16.0133 4032 QWAVEdrv - ok
      17:22:16.0227 4032 [ A55E7D0D873B2C97585B3B5926AC6ADE ] RapiMgr C:\Windows\WindowsMobile\rapimgr.dll
      17:22:16.0242 4032 RapiMgr - ok
      17:22:16.0273 4032 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
      17:22:16.0320 4032 RasAcd - ok
      17:22:16.0367 4032 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
      17:22:16.0429 4032 RasAgileVpn - ok
      17:22:16.0445 4032 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
      17:22:16.0523 4032 RasAuto - ok
      17:22:16.0554 4032 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
      17:22:16.0601 4032 Rasl2tp - ok
      17:22:16.0648 4032 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
      17:22:16.0710 4032 RasMan - ok
      17:22:16.0726 4032 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
      17:22:16.0773 4032 RasPppoe - ok
      17:22:16.0804 4032 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
      17:22:16.0851 4032 RasSstp - ok
      17:22:16.0897 4032 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
      17:22:16.0944 4032 rdbss - ok
      17:22:16.0975 4032 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
      17:22:16.0991 4032 rdpbus - ok
      17:22:17.0007 4032 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
      17:22:17.0069 4032 RDPCDD - ok
      17:22:17.0116 4032 [ 1B6163C503398B23FF8B939C67747683 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
      17:22:17.0147 4032 RDPDR - ok
      17:22:17.0163 4032 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
      17:22:17.0209 4032 RDPENCDD - ok
      17:22:17.0241 4032 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
      17:22:17.0303 4032 RDPREFMP - ok
      17:22:17.0365 4032 [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
      17:22:17.0381 4032 RdpVideoMiniport - ok
      17:22:17.0412 4032 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
      17:22:17.0428 4032 RDPWD - ok
      17:22:17.0475 4032 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
      17:22:17.0506 4032 rdyboost - ok
      17:22:17.0537 4032 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
      17:22:17.0584 4032 RemoteAccess - ok
      17:22:17.0631 4032 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
      17:22:17.0693 4032 RemoteRegistry - ok
      17:22:17.0724 4032 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
      17:22:17.0802 4032 RpcEptMapper - ok
      17:22:17.0833 4032 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
      17:22:17.0849 4032 RpcLocator - ok
      17:22:17.0911 4032 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
      17:22:17.0974 4032 RpcSs - ok
      17:22:18.0005 4032 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
      17:22:18.0067 4032 rspndr - ok
      17:22:18.0161 4032 [ 665BA29357882A8C5980B15B3A0123A4 ] RTL8192cu C:\Windows\system32\DRIVERS\RTL8192cu.sys
      17:22:18.0208 4032 RTL8192cu - ok
      17:22:18.0239 4032 [ E60C0A09F997826C7627B244195AB581 ] s3cap C:\Windows\system32\drivers\vms3cap.sys
      17:22:18.0286 4032 s3cap - ok
      17:22:18.0411 4032 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
      17:22:18.0442 4032 SamSs - ok
      17:22:18.0473 4032 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
      17:22:18.0489 4032 sbp2port - ok
      17:22:18.0535 4032 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
      17:22:18.0598 4032 SCardSvr - ok
      17:22:18.0629 4032 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
      17:22:18.0676 4032 scfilter - ok
      17:22:18.0738 4032 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
      17:22:18.0847 4032 Schedule - ok
      17:22:18.0894 4032 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
      17:22:18.0941 4032 SCPolicySvc - ok
      17:22:18.0988 4032 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
      17:22:19.0035 4032 SDRSVC - ok
      17:22:19.0081 4032 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
      17:22:19.0128 4032 secdrv - ok
      17:22:19.0144 4032 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
      17:22:19.0206 4032 seclogon - ok
      17:22:19.0222 4032 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\system32\sens.dll
      17:22:19.0284 4032 SENS - ok
      17:22:19.0300 4032 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
      17:22:19.0315 4032 SensrSvc - ok
      17:22:19.0347 4032 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
      17:22:19.0362 4032 Serenum - ok
      17:22:19.0378 4032 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
      17:22:19.0409 4032 Serial - ok
      17:22:19.0440 4032 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
      17:22:19.0456 4032 sermouse - ok
      17:22:19.0534 4032 [ 9BDE8F1F5D060E912FCF9FB58B71CBC1 ] ServiceLayer C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
      17:22:19.0612 4032 ServiceLayer - ok
      17:22:19.0674 4032 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
      17:22:19.0737 4032 SessionEnv - ok
      17:22:19.0768 4032 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
      17:22:19.0799 4032 sffdisk - ok
      17:22:19.0815 4032 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
      17:22:19.0830 4032 sffp_mmc - ok
      17:22:19.0861 4032 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
      17:22:19.0877 4032 sffp_sd - ok
      17:22:19.0908 4032 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
      17:22:19.0924 4032 sfloppy - ok
      17:22:19.0971 4032 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
      17:22:20.0033 4032 SharedAccess - ok
      17:22:20.0095 4032 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
      17:22:20.0142 4032 ShellHWDetection - ok
      17:22:20.0173 4032 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
      17:22:20.0189 4032 SiSRaid2 - ok
      17:22:20.0220 4032 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
      17:22:20.0236 4032 SiSRaid4 - ok
      17:22:20.0267 4032 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
      17:22:20.0329 4032 Smb - ok
      17:22:20.0392 4032 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
      17:22:20.0407 4032 SNMPTRAP - ok
      17:22:20.0423 4032 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
      17:22:20.0439 4032 spldr - ok
      17:22:20.0485 4032 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
      17:22:20.0501 4032 Spooler - ok
      17:22:20.0610 4032 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
      17:22:20.0797 4032 sppsvc - ok
      17:22:20.0922 4032 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
      17:22:20.0969 4032 sppuinotify - ok
      17:22:21.0000 4032 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
      17:22:21.0047 4032 srv - ok
      17:22:21.0078 4032 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
      17:22:21.0109 4032 srv2 - ok
      17:22:21.0125 4032 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
      17:22:21.0141 4032 srvnet - ok
      17:22:21.0187 4032 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
      17:22:21.0234 4032 SSDPSRV - ok
      17:22:21.0250 4032 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
      17:22:21.0312 4032 SstpSvc - ok
      17:22:21.0328 4032 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
      17:22:21.0343 4032 stexstor - ok
      17:22:21.0390 4032 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
      17:22:21.0421 4032 stisvc - ok
      17:22:21.0468 4032 [ 7785DC213270D2FC066538DAF94087E7 ] storflt C:\Windows\system32\drivers\vmstorfl.sys
      17:22:21.0484 4032 storflt - ok
      17:22:21.0515 4032 [ C40841817EF57D491F22EB103DA587CC ] StorSvc C:\Windows\system32\storsvc.dll
      17:22:21.0546 4032 StorSvc - ok
      17:22:21.0577 4032 [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc C:\Windows\system32\drivers\storvsc.sys
      17:22:21.0593 4032 storvsc - ok
      17:22:21.0640 4032 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
      17:22:21.0655 4032 swenum - ok
      17:22:21.0687 4032 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
      17:22:21.0765 4032 swprv - ok
      17:22:21.0827 4032 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
      17:22:21.0889 4032 SysMain - ok
      17:22:21.0921 4032 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
      17:22:21.0967 4032 TabletInputService - ok
      17:22:22.0014 4032 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
      17:22:22.0061 4032 TapiSrv - ok
      17:22:22.0108 4032 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
      17:22:22.0155 4032 TBS - ok
      17:22:22.0233 4032 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] Tcpip C:\Windows\system32\drivers\tcpip.sys
      17:22:22.0357 4032 Tcpip - ok
      17:22:22.0404 4032 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
      17:22:22.0451 4032 TCPIP6 - ok
      17:22:22.0513 4032 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
      17:22:22.0576 4032 tcpipreg - ok
      17:22:22.0623 4032 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
      17:22:22.0669 4032 TDPIPE - ok
      17:22:22.0732 4032 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
      17:22:22.0779 4032 TDTCP - ok
      17:22:22.0810 4032 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
      17:22:22.0857 4032 tdx - ok
      17:22:22.0903 4032 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
      17:22:22.0919 4032 TermDD - ok
      17:22:22.0966 4032 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
      17:22:23.0028 4032 TermService - ok
      17:22:23.0044 4032 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
      17:22:23.0075 4032 Themes - ok
      17:22:23.0122 4032 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
      17:22:23.0169 4032 THREADORDER - ok
      17:22:23.0278 4032 [ 0407143F2BBC1A5DD5B518AC0704FCBF ] TomTomHOMEService C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
      17:22:23.0309 4032 TomTomHOMEService - ok

    4. #4
      Usuario Avatar de Ramon2k12
      Registrado
      oct 2012
      Ubicación
      Alicante
      Mensajes
      12

      Re: Desconexión del centro de seguridad y redireccionamiento de google.

      17:22:23.0356 4032 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
      17:22:23.0418 4032 TrkWks - ok
      17:22:23.0481 4032 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
      17:22:23.0543 4032 TrustedInstaller - ok
      17:22:23.0574 4032 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
      17:22:23.0621 4032 tssecsrv - ok
      17:22:23.0683 4032 [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
      17:22:23.0699 4032 TsUsbFlt - ok
      17:22:23.0777 4032 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
      17:22:23.0855 4032 tunnel - ok
      17:22:23.0886 4032 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
      17:22:23.0917 4032 uagp35 - ok
      17:22:23.0964 4032 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
      17:22:24.0011 4032 udfs - ok
      17:22:24.0073 4032 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
      17:22:24.0105 4032 UI0Detect - ok
      17:22:24.0120 4032 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
      17:22:24.0151 4032 uliagpkx - ok
      17:22:24.0183 4032 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
      17:22:24.0198 4032 umbus - ok
      17:22:24.0229 4032 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
      17:22:24.0245 4032 UmPass - ok
      17:22:24.0276 4032 [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService C:\Windows\System32\umrdp.dll
      17:22:24.0323 4032 UmRdpService - ok
      17:22:24.0370 4032 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
      17:22:24.0417 4032 upnphost - ok
      17:22:24.0479 4032 [ 907F50B8695DAA65A9445D27AD306E65 ] upperdev C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys
      17:22:24.0541 4032 upperdev - ok
      17:22:24.0573 4032 [ AF1B9474D67897D0C2CFF58E0ACEACCC ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
      17:22:24.0619 4032 USBAAPL64 - ok
      17:22:24.0682 4032 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
      17:22:24.0713 4032 usbccgp - ok
      17:22:24.0760 4032 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
      17:22:24.0791 4032 usbcir - ok
      17:22:24.0838 4032 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
      17:22:24.0853 4032 usbehci - ok
      17:22:24.0885 4032 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
      17:22:24.0931 4032 usbhub - ok
      17:22:24.0963 4032 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
      17:22:24.0994 4032 usbohci - ok
      17:22:25.0025 4032 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
      17:22:25.0041 4032 usbprint - ok
      17:22:25.0103 4032 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
      17:22:25.0119 4032 usbscan - ok
      17:22:25.0165 4032 [ 4ACEE387FA8FD39F83564FCD2FC234F2 ] usbser C:\Windows\system32\drivers\usbser.sys
      17:22:25.0197 4032 usbser - ok
      17:22:25.0259 4032 [ 3F7498527B48657091C355F683BEB0DD ] UsbserFilt C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys
      17:22:25.0306 4032 UsbserFilt - ok
      17:22:25.0353 4032 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
      17:22:25.0399 4032 USBSTOR - ok
      17:22:25.0462 4032 [ 6D14D8EC1DD33A072653E75E3B28B062 ] usbUDisc C:\Windows\system32\DRIVERS\USBDrv_AMD64.sys
      17:22:25.0477 4032 usbUDisc - ok
      17:22:25.0524 4032 [ 81FB2216D3A60D1284455D511797DB3D ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
      17:22:25.0555 4032 usbuhci - ok
      17:22:25.0587 4032 [ 70D05EE263568A742D14E1876DF80532 ] usb_rndisx C:\Windows\system32\drivers\usb8023x.sys
      17:22:25.0618 4032 usb_rndisx - ok
      17:22:25.0649 4032 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
      17:22:25.0711 4032 UxSms - ok
      17:22:25.0727 4032 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
      17:22:25.0743 4032 VaultSvc - ok
      17:22:25.0805 4032 [ C30F3D43CEB6F79ADE9B805387E5F63C ] VBoxDrv C:\Windows\system32\DRIVERS\VBoxDrv.sys
      17:22:25.0821 4032 VBoxDrv - ok
      17:22:25.0867 4032 [ 8ACF22B86CE4E85C23E3E9513BF45C37 ] VBoxNetAdp C:\Windows\system32\DRIVERS\VBoxNetAdp.sys
      17:22:25.0899 4032 VBoxNetAdp - ok
      17:22:25.0914 4032 [ 7B657669C53A0E6583F07EBAA303D9EA ] VBoxNetFlt C:\Windows\system32\DRIVERS\VBoxNetFlt.sys
      17:22:25.0945 4032 VBoxNetFlt - ok
      17:22:25.0977 4032 [ 7A4CAB9EC7153741520EC8513ACDBA1D ] VBoxUSB C:\Windows\system32\Drivers\VBoxUSB.sys
      17:22:25.0992 4032 VBoxUSB - ok
      17:22:26.0039 4032 [ CF3EE68CD9723E9F21E3198A0F690400 ] VBoxUSBMon C:\Windows\system32\DRIVERS\VBoxUSBMon.sys
      17:22:26.0086 4032 VBoxUSBMon - ok
      17:22:26.0133 4032 [ FD911873C0BB6945FA38C16E9A2B58F9 ] VClone C:\Windows\system32\DRIVERS\VClone.sys
      17:22:26.0164 4032 VClone - ok
      17:22:26.0179 4032 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
      17:22:26.0195 4032 vdrvroot - ok
      17:22:26.0242 4032 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
      17:22:26.0304 4032 vds - ok
      17:22:26.0351 4032 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
      17:22:26.0367 4032 vga - ok
      17:22:26.0382 4032 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
      17:22:26.0429 4032 VgaSave - ok
      17:22:26.0476 4032 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
      17:22:26.0491 4032 vhdmp - ok
      17:22:26.0523 4032 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
      17:22:26.0538 4032 viaide - ok
      17:22:26.0569 4032 [ 86EA3E79AE350FEA5331A1303054005F ] vmbus C:\Windows\system32\drivers\vmbus.sys
      17:22:26.0585 4032 vmbus - ok
      17:22:26.0616 4032 [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
      17:22:26.0647 4032 VMBusHID - ok
      17:22:26.0679 4032 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
      17:22:26.0694 4032 volmgr - ok
      17:22:26.0741 4032 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
      17:22:26.0772 4032 volmgrx - ok
      17:22:26.0803 4032 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
      17:22:26.0819 4032 volsnap - ok
      17:22:26.0866 4032 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
      17:22:26.0881 4032 vsmraid - ok
      17:22:26.0959 4032 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
      17:22:27.0100 4032 VSS - ok
      17:22:27.0115 4032 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
      17:22:27.0147 4032 vwifibus - ok
      17:22:27.0162 4032 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
      17:22:27.0193 4032 vwififlt - ok
      17:22:27.0240 4032 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
      17:22:27.0287 4032 W32Time - ok
      17:22:27.0318 4032 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
      17:22:27.0334 4032 WacomPen - ok
      17:22:27.0381 4032 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
      17:22:27.0427 4032 WANARP - ok
      17:22:27.0459 4032 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
      17:22:27.0505 4032 Wanarpv6 - ok
      17:22:27.0583 4032 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
      17:22:27.0677 4032 WatAdminSvc - ok
      17:22:27.0739 4032 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
      17:22:27.0833 4032 wbengine - ok
      17:22:27.0849 4032 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
      17:22:27.0880 4032 WbioSrvc - ok
      17:22:27.0942 4032 [ 8BDA6DB43AA54E8BB5E0794541DDC209 ] WcesComm C:\Windows\WindowsMobile\wcescomm.dll
      17:22:27.0973 4032 WcesComm - ok
      17:22:28.0020 4032 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
      17:22:28.0051 4032 wcncsvc - ok
      17:22:28.0067 4032 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
      17:22:28.0129 4032 WcsPlugInService - ok
      17:22:28.0207 4032 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
      17:22:28.0223 4032 Wd - ok
      17:22:28.0270 4032 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
      17:22:28.0301 4032 Wdf01000 - ok
      17:22:28.0317 4032 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
      17:22:28.0363 4032 WdiServiceHost - ok
      17:22:28.0379 4032 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
      17:22:28.0395 4032 WdiSystemHost - ok
      17:22:28.0441 4032 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
      17:22:28.0473 4032 WebClient - ok
      17:22:28.0504 4032 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
      17:22:28.0551 4032 Wecsvc - ok
      17:22:28.0582 4032 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
      17:22:28.0629 4032 wercplsupport - ok
      17:22:28.0660 4032 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
      17:22:28.0707 4032 WerSvc - ok
      17:22:28.0753 4032 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
      17:22:28.0800 4032 WfpLwf - ok
      17:22:28.0847 4032 [ 52DED146E4797E6CCF94799E8E22BB2A ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys
      17:22:28.0863 4032 WimFltr - ok
      17:22:28.0894 4032 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
      17:22:28.0909 4032 WIMMount - ok
      17:22:28.0925 4032 WinDefend - ok
      17:22:28.0956 4032 WinHttpAutoProxySvc - ok
      17:22:29.0019 4032 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
      17:22:29.0081 4032 Winmgmt - ok
      17:22:29.0143 4032 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
      17:22:29.0268 4032 WinRM - ok
      17:22:29.0331 4032 [ FE88B288356E7B47B74B13372ADD906D ] WINUSB C:\Windows\system32\DRIVERS\WinUSB.SYS
      17:22:29.0346 4032 WINUSB - ok
      17:22:29.0393 4032 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
      17:22:29.0440 4032 Wlansvc - ok
      17:22:29.0455 4032 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
      17:22:29.0487 4032 WmiAcpi - ok
      17:22:29.0533 4032 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
      17:22:29.0549 4032 wmiApSrv - ok
      17:22:29.0565 4032 WMPNetworkSvc - ok
      17:22:29.0596 4032 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
      17:22:29.0627 4032 WPCSvc - ok
      17:22:29.0658 4032 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
      17:22:29.0689 4032 WPDBusEnum - ok
      17:22:29.0736 4032 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
      17:22:29.0783 4032 ws2ifsl - ok
      17:22:29.0830 4032 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\system32\wscsvc.dll
      17:22:29.0877 4032 wscsvc - ok
      17:22:29.0892 4032 WSearch - ok
      17:22:29.0970 4032 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
      17:22:30.0064 4032 wuauserv - ok
      17:22:30.0111 4032 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
      17:22:30.0157 4032 WudfPf - ok
      17:22:30.0189 4032 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
      17:22:30.0235 4032 WUDFRd - ok
      17:22:30.0298 4032 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
      17:22:30.0345 4032 wudfsvc - ok
      17:22:30.0360 4032 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
      17:22:30.0407 4032 WwanSvc - ok
      17:22:30.0516 4032 ================ Scan global ===============================
      17:22:30.0563 4032 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
      17:22:30.0610 4032 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
      17:22:30.0641 4032 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
      17:22:30.0688 4032 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
      17:22:30.0735 4032 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
      17:22:30.0750 4032 [Global] - ok
      17:22:30.0766 4032 ================ Scan MBR ==================================
      17:22:30.0781 4032 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
      17:22:31.0234 4032 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
      17:22:31.0234 4032 \Device\Harddisk0\DR0 - detected TDSS File System (1)
      17:22:31.0249 4032 ================ Scan VBR ==================================
      17:22:31.0249 4032 [ CD8B73FCE70D9E8C442C5BB23002486B ] \Device\Harddisk0\DR0\Partition1
      17:22:31.0249 4032 \Device\Harddisk0\DR0\Partition1 - ok
      17:22:31.0281 4032 [ F7A361337960C8ACB1D9F07B51A04D71 ] \Device\Harddisk0\DR0\Partition2
      17:22:31.0281 4032 \Device\Harddisk0\DR0\Partition2 - ok
      17:22:31.0312 4032 [ BBDC603E3176A1EDF7D43F72E9352BCB ] \Device\Harddisk0\DR0\Partition3
      17:22:31.0312 4032 \Device\Harddisk0\DR0\Partition3 - ok
      17:22:31.0312 4032 ============================================================
      17:22:31.0312 4032 Scan finished
      17:22:31.0312 4032 ============================================================
      17:22:31.0343 2072 Detected object count: 5
      17:22:31.0343 2072 Actual detected object count: 5
      17:27:11.0613 2072 Freemake Improver ( UnsignedFile.Multi.Generic ) - skipped by user
      17:27:11.0613 2072 Freemake Improver ( UnsignedFile.Multi.Generic ) - User select action: Skip
      17:27:11.0613 2072 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
      17:27:11.0613 2072 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip
      17:27:11.0613 2072 PassThru Service ( UnsignedFile.Multi.Generic ) - skipped by user
      17:27:11.0613 2072 PassThru Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
      17:27:11.0613 2072 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
      17:27:11.0613 2072 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip
      17:27:11.0628 2072 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
      17:27:11.0628 2072 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip
      17:27:17.0307 0872 ============================================================
      17:27:17.0307 0872 Scan started
      17:27:17.0307 0872 Mode: Manual; SigCheck; TDLFS;
      17:27:17.0307 0872 ============================================================
      17:27:17.0587 0872 ================ Scan system memory ========================
      17:27:17.0587 0872 System memory - ok
      17:27:17.0603 0872 ================ Scan services =============================
      17:27:17.0759 0872 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
      17:27:17.0821 0872 1394ohci - ok
      17:27:17.0837 0872 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
      17:27:17.0868 0872 ACPI - ok
      17:27:17.0899 0872 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
      17:27:17.0931 0872 AcpiPmi - ok
      17:27:18.0024 0872 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
      17:27:18.0040 0872 AdobeARMservice - ok
      17:27:18.0165 0872 [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
      17:27:18.0196 0872 AdobeFlashPlayerUpdateSvc - ok
      17:27:18.0243 0872 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
      17:27:18.0258 0872 adp94xx - ok
      17:27:18.0289 0872 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
      17:27:18.0321 0872 adpahci - ok
      17:27:18.0352 0872 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
      17:27:18.0367 0872 adpu320 - ok
      17:27:18.0414 0872 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
      17:27:18.0461 0872 AeLookupSvc - ok
      17:27:18.0508 0872 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
      17:27:18.0523 0872 AFD - ok
      17:27:18.0555 0872 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
      17:27:18.0570 0872 agp440 - ok
      17:27:18.0586 0872 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
      17:27:18.0617 0872 ALG - ok
      17:27:18.0633 0872 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
      17:27:18.0648 0872 aliide - ok
      17:27:18.0695 0872 [ E20DDDFBD0DBE7D8EAD4D7A51D654367 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
      17:27:18.0726 0872 AMD External Events Utility - ok
      17:27:18.0773 0872 AMD FUEL Service - ok
      17:27:18.0789 0872 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
      17:27:18.0804 0872 amdide - ok
      17:27:18.0851 0872 [ 6A2EEB0C4133B20773BB3DD0B7B377B4 ] amdiox64 C:\Windows\system32\DRIVERS\amdiox64.sys
      17:27:18.0867 0872 amdiox64 - ok
      17:27:18.0898 0872 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
      17:27:18.0913 0872 AmdK8 - ok
      17:27:19.0163 0872 [ 4284FB1240537A33E6EC417EFD87D40F ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
      17:27:19.0366 0872 amdkmdag - ok
      17:27:19.0413 0872 [ 6C25C497E05EFD0CB6033A0444FC9B51 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
      17:27:19.0444 0872 amdkmdap - ok
      17:27:19.0459 0872 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
      17:27:19.0475 0872 AmdPPM - ok
      17:27:19.0522 0872 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
      17:27:19.0537 0872 amdsata - ok
      17:27:19.0569 0872 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
      17:27:19.0584 0872 amdsbs - ok
      17:27:19.0600 0872 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
      17:27:19.0615 0872 amdxata - ok
      17:27:19.0662 0872 [ 2D71D1EED26923802C1C1B26E603FE0C ] AnyDVD C:\Windows\system32\Drivers\AnyDVD.sys
      17:27:19.0678 0872 AnyDVD - ok
      17:27:19.0709 0872 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
      17:27:19.0771 0872 AppID - ok
      17:27:19.0803 0872 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
      17:27:19.0849 0872 AppIDSvc - ok
      17:27:19.0896 0872 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
      17:27:19.0943 0872 Appinfo - ok
      17:27:20.0052 0872 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
      17:27:20.0083 0872 Apple Mobile Device - ok
      17:27:20.0130 0872 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll
      17:27:20.0146 0872 AppMgmt - ok
      17:27:20.0161 0872 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
      17:27:20.0193 0872 arc - ok
      17:27:20.0208 0872 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
      17:27:20.0224 0872 arcsas - ok
      17:27:20.0239 0872 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
      17:27:20.0302 0872 AsyncMac - ok
      17:27:20.0333 0872 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
      17:27:20.0349 0872 atapi - ok
      17:27:20.0380 0872 [ 24464B908E143D2561E9E452FEE97309 ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
      17:27:20.0411 0872 AtiHDAudioService - ok
      17:27:20.0645 0872 [ 4284FB1240537A33E6EC417EFD87D40F ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
      17:27:20.0848 0872 atikmdag - ok
      17:27:20.0895 0872 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
      17:27:20.0957 0872 AudioEndpointBuilder - ok
      17:27:20.0988 0872 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
      17:27:21.0035 0872 AudioSrv - ok
      17:27:21.0082 0872 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
      17:27:21.0113 0872 AxInstSV - ok
      17:27:21.0129 0872 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
      17:27:21.0160 0872 b06bdrv - ok
      17:27:21.0191 0872 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
      17:27:21.0207 0872 b57nd60a - ok
      17:27:21.0253 0872 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
      17:27:21.0269 0872 BDESVC - ok
      17:27:21.0285 0872 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
      17:27:21.0331 0872 Beep - ok
      17:27:21.0394 0872 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
      17:27:21.0441 0872 BFE - ok
      17:27:21.0503 0872 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\system32\qmgr.dll
      17:27:21.0565 0872 BITS - ok
      17:27:21.0581 0872 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
      17:27:21.0597 0872 blbdrive - ok
      17:27:21.0643 0872 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
      17:27:21.0659 0872 Bonjour Service - ok
      17:27:21.0706 0872 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
      17:27:21.0721 0872 bowser - ok
      17:27:21.0737 0872 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
      17:27:21.0753 0872 BrFiltLo - ok
      17:27:21.0784 0872 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
      17:27:21.0799 0872 BrFiltUp - ok
      17:27:21.0815 0872 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
      17:27:21.0877 0872 BridgeMP - ok
      17:27:21.0909 0872 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
      17:27:21.0924 0872 Browser - ok
      17:27:21.0955 0872 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
      17:27:21.0971 0872 Brserid - ok
      17:27:22.0002 0872 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
      17:27:22.0018 0872 BrSerWdm - ok
      17:27:22.0049 0872 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
      17:27:22.0065 0872 BrUsbMdm - ok
      17:27:22.0080 0872 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
      17:27:22.0111 0872 BrUsbSer - ok
      17:27:22.0127 0872 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
      17:27:22.0143 0872 BTHMODEM - ok
      17:27:22.0189 0872 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
      17:27:22.0236 0872 bthserv - ok
      17:27:22.0252 0872 catchme - ok
      17:27:22.0267 0872 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
      17:27:22.0314 0872 cdfs - ok
      17:27:22.0361 0872 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
      17:27:22.0392 0872 cdrom - ok
      17:27:22.0423 0872 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
      17:27:22.0470 0872 CertPropSvc - ok
      17:27:22.0486 0872 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
      17:27:22.0501 0872 circlass - ok
      17:27:22.0533 0872 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
      17:27:22.0548 0872 CLFS - ok
      17:27:22.0626 0872 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
      17:27:22.0642 0872 clr_optimization_v2.0.50727_32 - ok
      17:27:22.0720 0872 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
      17:27:22.0767 0872 clr_optimization_v2.0.50727_64 - ok
      17:27:22.0813 0872 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
      17:27:22.0829 0872 clr_optimization_v4.0.30319_32 - ok
      17:27:22.0876 0872 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
      17:27:22.0891 0872 clr_optimization_v4.0.30319_64 - ok
      17:27:22.0907 0872 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
      17:27:22.0923 0872 CmBatt - ok
      17:27:22.0954 0872 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
      17:27:22.0969 0872 cmdide - ok
      17:27:23.0016 0872 [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG C:\Windows\system32\Drivers\cng.sys
      17:27:23.0047 0872 CNG - ok
      17:27:23.0094 0872 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
      17:27:23.0110 0872 Compbatt - ok
      17:27:23.0141 0872 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
      17:27:23.0157 0872 CompositeBus - ok
      17:27:23.0172 0872 COMSysApp - ok
      17:27:23.0203 0872 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
      17:27:23.0219 0872 crcdisk - ok
      17:27:23.0266 0872 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
      17:27:23.0297 0872 CryptSvc - ok
      17:27:23.0328 0872 [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC C:\Windows\system32\drivers\csc.sys
      17:27:23.0359 0872 CSC - ok
      17:27:23.0406 0872 [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService C:\Windows\System32\cscsvc.dll
      17:27:23.0484 0872 CscService - ok
      17:27:23.0515 0872 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
      17:27:23.0578 0872 DcomLaunch - ok
      17:27:23.0625 0872 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
      17:27:23.0671 0872 defragsvc - ok
      17:27:23.0718 0872 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
      17:27:23.0765 0872 DfsC - ok
      17:27:23.0781 0872 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
      17:27:23.0843 0872 Dhcp - ok
      17:27:23.0859 0872 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
      17:27:23.0905 0872 discache - ok
      17:27:23.0921 0872 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
      17:27:23.0937 0872 Disk - ok
      17:27:23.0983 0872 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
      17:27:23.0999 0872 Dnscache - ok
      17:27:24.0030 0872 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
      17:27:24.0077 0872 dot3svc - ok
      17:27:24.0124 0872 [ B42ED0320C6E41102FDE0005154849BB ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
      17:27:24.0171 0872 Dot4 - ok
      17:27:24.0217 0872 [ E9F5969233C5D89F3C35E3A66A52A361 ] Dot4Print C:\Windows\system32\DRIVERS\Dot4Prt.sys
      17:27:24.0233 0872 Dot4Print - ok
      17:27:24.0264 0872 [ FD05A02B0370BC3000F402E543CA5814 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
      17:27:24.0295 0872 dot4usb - ok
      17:27:24.0311 0872 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
      17:27:24.0358 0872 DPS - ok
      17:27:24.0405 0872 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
      17:27:24.0420 0872 drmkaud - ok
      17:27:24.0467 0872 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
      17:27:24.0514 0872 DXGKrnl - ok
      17:27:24.0561 0872 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
      17:27:24.0607 0872 EapHost - ok
      17:27:24.0685 0872 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
      17:27:24.0748 0872 ebdrv - ok
      17:27:24.0795 0872 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
      17:27:24.0810 0872 EFS - ok
      17:27:24.0888 0872 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
      17:27:24.0935 0872 ehRecvr - ok
      17:27:24.0951 0872 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
      17:27:24.0982 0872 ehSched - ok
      17:27:24.0997 0872 [ A05FC7ECA0966EBB70E4D17B855A853B ] ElbyCDIO C:\Windows\system32\Drivers\ElbyCDIO.sys
      17:27:25.0029 0872 ElbyCDIO - ok
      17:27:25.0060 0872 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
      17:27:25.0091 0872 elxstor - ok
      17:27:25.0153 0872 [ 7DB097F4F6786307168C0DDDEC43A565 ] EPSON_EB_RPCV4_04 C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE
      17:27:25.0169 0872 EPSON_EB_RPCV4_04 - ok
      17:27:25.0200 0872 [ 258AA65A0862E19B7DE6981FDA3758AD ] EPSON_PM_RPCV4_04 C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE
      17:27:25.0216 0872 EPSON_PM_RPCV4_04 - ok
      17:27:25.0247 0872 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
      17:27:25.0263 0872 ErrDev - ok
      17:27:25.0309 0872 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
      17:27:25.0372 0872 EventSystem - ok
      17:27:25.0403 0872 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
      17:27:25.0450 0872 exfat - ok
      17:27:25.0465 0872 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
      17:27:25.0528 0872 fastfat - ok
      17:27:25.0559 0872 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
      17:27:25.0590 0872 Fax - ok
      17:27:25.0621 0872 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
      17:27:25.0637 0872 fdc - ok
      17:27:25.0653 0872 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
      17:27:25.0699 0872 fdPHost - ok
      17:27:25.0715 0872 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
      17:27:25.0762 0872 FDResPub - ok
      17:27:25.0777 0872 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
      17:27:25.0809 0872 FileInfo - ok
      17:27:25.0824 0872 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
      17:27:25.0871 0872 Filetrace - ok
      17:27:25.0902 0872 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
      17:27:25.0918 0872 flpydisk - ok
      17:27:25.0965 0872 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
      17:27:25.0980 0872 FltMgr - ok
      17:27:26.0058 0872 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
      17:27:26.0089 0872 FontCache - ok
      17:27:26.0152 0872 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
      17:27:26.0167 0872 FontCache3.0.0.0 - ok
      17:27:26.0214 0872 [ 37C2FF67A2565286F1C1C1072BE74678 ] Freemake Improver C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
      17:27:26.0214 0872 Freemake Improver ( UnsignedFile.Multi.Generic ) - warning
      17:27:26.0214 0872 Freemake Improver - detected UnsignedFile.Multi.Generic (1)
      17:27:26.0245 0872 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
      17:27:26.0261 0872 FsDepends - ok
      17:27:26.0292 0872 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
      17:27:26.0308 0872 Fs_Rec - ok
      17:27:26.0355 0872 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
      17:27:26.0386 0872 fvevol - ok
      17:27:26.0401 0872 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
      17:27:26.0417 0872 gagp30kx - ok
      17:27:26.0464 0872 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
      17:27:26.0495 0872 GEARAspiWDM - ok
      17:27:26.0557 0872 [ 022807B149127B8FAA3DBEB13A7D9B41 ] GenericMount C:\Windows\system32\DRIVERS\GenericMount.sys
      17:27:26.0589 0872 GenericMount - ok
      17:27:26.0635 0872 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
      17:27:26.0698 0872 gpsvc - ok
      17:27:26.0745 0872 [ 2ED7FF3E1ADA4092632393781518B3A7 ] grmnusb C:\Windows\system32\drivers\grmnusb.sys
      17:27:26.0760 0872 grmnusb - ok
      17:27:26.0854 0872 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
      17:27:26.0869 0872 gupdate - ok
      17:27:26.0885 0872 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
      17:27:26.0901 0872 gupdatem - ok
      17:27:26.0932 0872 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
      17:27:26.0947 0872 hcw85cir - ok
      17:27:26.0979 0872 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
      17:27:27.0010 0872 HdAudAddService - ok
      17:27:27.0041 0872 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
      17:27:27.0072 0872 HDAudBus - ok
      17:27:27.0103 0872 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
      17:27:27.0119 0872 HidBatt - ok
      17:27:27.0135 0872 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
      17:27:27.0150 0872 HidBth - ok
      17:27:27.0181 0872 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
      17:27:27.0197 0872 HidIr - ok
      17:27:27.0244 0872 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll
      17:27:27.0291 0872 hidserv - ok
      17:27:27.0322 0872 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
      17:27:27.0337 0872 HidUsb - ok
      17:27:27.0384 0872 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
      17:27:27.0431 0872 hkmsvc - ok
      17:27:27.0478 0872 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
      17:27:27.0493 0872 HomeGroupListener - ok
      17:27:27.0540 0872 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
      17:27:27.0571 0872 HomeGroupProvider - ok
      17:27:27.0603 0872 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
      17:27:27.0618 0872 HpSAMD - ok
      17:27:27.0649 0872 [ B8B1B284362E1D8135112573395D5DA5 ] htcnprot C:\Windows\system32\DRIVERS\htcnprot.sys
      17:27:27.0681 0872 htcnprot - ok
      17:27:27.0727 0872 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
      17:27:27.0774 0872 HTTP - ok
      17:27:27.0790 0872 hwi4857 - ok
      17:27:27.0821 0872 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
      17:27:27.0837 0872 hwpolicy - ok
      17:27:27.0883 0872 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
      17:27:27.0899 0872 i8042prt - ok
      17:27:27.0915 0872 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
      17:27:27.0946 0872 iaStorV - ok
      17:27:27.0993 0872 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
      17:27:28.0024 0872 idsvc - ok
      17:27:28.0055 0872 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
      17:27:28.0071 0872 iirsp - ok
      17:27:28.0102 0872 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
      17:27:28.0164 0872 IKEEXT - ok
      17:27:28.0211 0872 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
      17:27:28.0227 0872 intelide - ok
      17:27:28.0242 0872 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
      17:27:28.0258 0872 intelppm - ok
      17:27:28.0289 0872 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
      17:27:28.0351 0872 IPBusEnum - ok
      17:27:28.0383 0872 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
      17:27:28.0445 0872 IpFilterDriver - ok
      17:27:28.0492 0872 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
      17:27:28.0539 0872 iphlpsvc - ok
      17:27:28.0570 0872 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
      17:27:28.0585 0872 IPMIDRV - ok
      17:27:28.0617 0872 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
      17:27:28.0663 0872 IPNAT - ok
      17:27:28.0710 0872 [ 6E50CFA46527B39015B750AAD161C5CC ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
      17:27:28.0741 0872 iPod Service - ok
      17:27:28.0757 0872 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
      17:27:28.0788 0872 IRENUM - ok
      17:27:28.0804 0872 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
      17:27:28.0819 0872 isapnp - ok
      17:27:28.0866 0872 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
      17:27:28.0882 0872 iScsiPrt - ok
      17:27:28.0913 0872 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
      17:27:28.0929 0872 kbdclass - ok
      17:27:28.0975 0872 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
      17:27:28.0991 0872 kbdhid - ok
      17:27:29.0007 0872 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
      17:27:29.0022 0872 KeyIso - ok
      17:27:29.0053 0872 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
      17:27:29.0085 0872 KSecDD - ok
      17:27:29.0116 0872 [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
      17:27:29.0131 0872 KSecPkg - ok
      17:27:29.0147 0872 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
      17:27:29.0225 0872 ksthunk - ok
      17:27:29.0272 0872 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
      17:27:29.0381 0872 KtmRm - ok
      17:27:29.0443 0872 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\System32\srvsvc.dll
      17:27:29.0490 0872 LanmanServer - ok
      17:27:29.0537 0872 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
      17:27:29.0584 0872 LanmanWorkstation - ok
      17:27:29.0615 0872 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
      17:27:29.0662 0872 lltdio - ok
      17:27:29.0709 0872 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
      17:27:29.0755 0872 lltdsvc - ok
      17:27:29.0787 0872 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
      17:27:29.0833 0872 lmhosts - ok
      17:27:29.0865 0872 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
      17:27:29.0880 0872 LSI_FC - ok
      17:27:29.0911 0872 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
      17:27:29.0927 0872 LSI_SAS - ok
      17:27:29.0958 0872 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
      17:27:29.0974 0872 LSI_SAS2 - ok
      17:27:30.0005 0872 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
      17:27:30.0021 0872 LSI_SCSI - ok
      17:27:30.0052 0872 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
      17:27:30.0099 0872 luafv - ok
      17:27:30.0114 0872 [ A8FE8F2783B2929B56F5370A89356CE9 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
      17:27:30.0145 0872 MBAMProtector - ok
      17:27:30.0208 0872 [ 85B16A92B117A5A800032ECD904B86DB ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
      17:27:30.0255 0872 MBAMScheduler - ok
      17:27:30.0301 0872 [ 20E2469DB709FC675E655CEAA11BE312 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
      17:27:30.0333 0872 MBAMService - ok
      17:27:30.0379 0872 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
      17:27:30.0395 0872 Mcx2Svc - ok
      17:27:30.0411 0872 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
      17:27:30.0426 0872 megasas - ok
      17:27:30.0457 0872 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
      17:27:30.0473 0872 MegaSR - ok
      17:27:30.0520 0872 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
      17:27:30.0567 0872 MMCSS - ok
      17:27:30.0582 0872 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
      17:27:30.0629 0872 Modem - ok
      17:27:30.0660 0872 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
      17:27:30.0676 0872 monitor - ok
      17:27:30.0723 0872 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
      17:27:30.0738 0872 mouclass - ok
      17:27:30.0769 0872 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
      17:27:30.0785 0872 mouhid - ok
      17:27:30.0832 0872 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
      17:27:30.0847 0872 mountmgr - ok
      17:27:30.0879 0872 [ 24409A2A9F0351E208E14F609340FB25 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
      17:27:30.0894 0872 MozillaMaintenance - ok
      17:27:30.0925 0872 [ 05BF204EC0E82CC4A054DB189C8A3D84 ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
      17:27:30.0941 0872 MpFilter - ok
      17:27:30.0988 0872 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
      17:27:31.0003 0872 mpio - ok
      17:27:31.0050 0872 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
      17:27:31.0113 0872 mpsdrv - ok
      17:27:31.0159 0872 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
      17:27:31.0222 0872 MpsSvc - ok
      17:27:31.0269 0872 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
      17:27:31.0300 0872 MRxDAV - ok
      17:27:31.0331 0872 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
      17:27:31.0347 0872 mrxsmb - ok
      17:27:31.0393 0872 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
      17:27:31.0409 0872 mrxsmb10 - ok
      17:27:31.0456 0872 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
      17:27:31.0471 0872 mrxsmb20 - ok
      17:27:31.0518 0872 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
      17:27:31.0534 0872 msahci - ok
      17:27:31.0565 0872 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
      17:27:31.0581 0872 msdsm - ok
      17:27:31.0612 0872 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
      17:27:31.0627 0872 MSDTC - ok
      17:27:31.0690 0872 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
      17:27:31.0737 0872 Msfs - ok
      17:27:31.0752 0872 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
      17:27:31.0799 0872 mshidkmdf - ok
      17:27:31.0830 0872 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
      17:27:31.0846 0872 msisadrv - ok
      17:27:31.0893 0872 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
      17:27:31.0955 0872 MSiSCSI - ok
      17:27:31.0955 0872 msiserver - ok
      17:27:31.0986 0872 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
      17:27:32.0033 0872 MSKSSRV - ok
      17:27:32.0080 0872 [ CC8E4F72F21340A4D3A3D4DB50313EF5 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
      17:27:32.0111 0872 MsMpSvc - ok
      17:27:32.0127 0872 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
      17:27:32.0173 0872 MSPCLOCK - ok
      17:27:32.0205 0872 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
      17:27:32.0251 0872 MSPQM - ok
      17:27:32.0298 0872 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
      17:27:32.0314 0872 MsRPC - ok
      17:27:32.0329 0872 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
      17:27:32.0345 0872 mssmbios - ok
      17:27:32.0376 0872 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
      17:27:32.0423 0872 MSTEE - ok
      17:27:32.0454 0872 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
      17:27:32.0470 0872 MTConfig - ok
      17:27:32.0501 0872 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
      17:27:32.0517 0872 Mup - ok
      17:27:32.0563 0872 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
      17:27:32.0673 0872 napagent - ok
      17:27:32.0719 0872 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
      17:27:32.0735 0872 NativeWifiP - ok
      17:27:32.0813 0872 [ E4534BCCDD1EA7A7A256BB9D6688A5FC ] NAUpdate C:\Program Files (x86)\Nero\Update\NASvc.exe
      17:27:32.0844 0872 NAUpdate - ok
      17:27:32.0891 0872 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
      17:27:32.0922 0872 NDIS - ok
      17:27:32.0953 0872 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
      17:27:33.0000 0872 NdisCap - ok
      17:27:33.0031 0872 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
      17:27:33.0078 0872 NdisTapi - ok
      17:27:33.0109 0872 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
      17:27:33.0156 0872 Ndisuio - ok
      17:27:33.0203 0872 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
      17:27:33.0250 0872 NdisWan - ok
      17:27:33.0297 0872 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
      17:27:33.0343 0872 NDProxy - ok
      17:27:33.0437 0872 [ 7D2633295EB6FF2B938185874884059D ] Nero BackItUp Scheduler 4.0 C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
      17:27:33.0499 0872 Nero BackItUp Scheduler 4.0 - ok
      17:27:33.0531 0872 [ DC6530A291D4BDF6DF399F1F128E7F8F ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
      17:27:33.0546 0872 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
      17:27:33.0546 0872 Net Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
      17:27:33.0577 0872 [ 6F4607E2333FE21E9E3FF8133A88B35B ] Netaapl C:\Windows\system32\DRIVERS\netaapl64.sys
      17:27:33.0593 0872 Netaapl - ok
      17:27:33.0624 0872 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
      17:27:33.0671 0872 NetBIOS - ok
      17:27:33.0718 0872 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
      17:27:33.0765 0872 NetBT - ok
      17:27:33.0780 0872 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
      17:27:33.0796 0872 Netlogon - ok
      17:27:33.0843 0872 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
      17:27:33.0905 0872 Netman - ok
      17:27:33.0936 0872 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
      17:27:33.0999 0872 netprofm - ok
      17:27:34.0030 0872 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
      17:27:34.0045 0872 NetTcpPortSharing - ok
      17:27:34.0077 0872 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
      17:27:34.0092 0872 nfrd960 - ok
      17:27:34.0123 0872 [ 5FF89F20317309D28AC1EDEB0CD1BA72 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
      17:27:34.0155 0872 NisDrv - ok
      17:27:34.0170 0872 [ 79E80B10FE8F6662E0C9162A68C43444 ] NisSrv c:\Program Files\Microsoft Security Client\NisSrv.exe
      17:27:34.0201 0872 NisSrv - ok
      17:27:34.0264 0872 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
      17:27:34.0373 0872 NlaSvc - ok
      17:27:34.0404 0872 [ 4903177FC90E77ABEB19021451E9475E ] nmwcd C:\Windows\system32\drivers\ccdcmbx64.sys
      17:27:34.0451 0872 nmwcd - ok
      17:27:34.0482 0872 [ E6844A4C97E5409BBE24BB4ED000320D ] nmwcdc C:\Windows\system32\drivers\ccdcmbox64.sys
      17:27:34.0513 0872 nmwcdc - ok
      17:27:34.0545 0872 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
      17:27:34.0591 0872 Npfs - ok
      17:27:34.0623 0872 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
      17:27:34.0669 0872 nsi - ok
      17:27:34.0701 0872 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
      17:27:34.0747 0872 nsiproxy - ok
      17:27:34.0825 0872 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
      17:27:34.0919 0872 Ntfs - ok
      17:27:34.0950 0872 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
      17:27:34.0997 0872 Null - ok
      17:27:35.0044 0872 [ A85B4F2EF3A7304A5399EF0526423040 ] NVENETFD C:\Windows\system32\DRIVERS\nvm62x64.sys
      17:27:35.0059 0872 NVENETFD - ok
      17:27:35.0106 0872 [ 0AD267A4674805B61A5D7B911D2A978A ] NVNET C:\Windows\system32\DRIVERS\nvmf6264.sys
      17:27:35.0122 0872 NVNET - ok
      17:27:35.0169 0872 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
      17:27:35.0184 0872 nvraid - ok
      17:27:35.0215 0872 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
      17:27:35.0231 0872 nvstor - ok
      17:27:35.0262 0872 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
      17:27:35.0278 0872 nv_agp - ok
      17:27:35.0387 0872 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
      17:27:35.0434 0872 odserv - ok
      17:27:35.0481 0872 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
      17:27:35.0496 0872 ohci1394 - ok
      17:27:35.0527 0872 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
      17:27:35.0543 0872 ose - ok
      17:27:35.0590 0872 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
      17:27:35.0621 0872 p2pimsvc - ok
      17:27:35.0652 0872 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
      17:27:35.0683 0872 p2psvc - ok
      17:27:35.0730 0872 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
      17:27:35.0746 0872 Parport - ok
      17:27:35.0777 0872 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
      17:27:35.0793 0872 partmgr - ok
      17:27:35.0855 0872 [ 5FBCC9EEEFACA3019D5BD5979618F298 ] PassThru Service C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
      17:27:35.0871 0872 PassThru Service ( UnsignedFile.Multi.Generic ) - warning
      17:27:35.0871 0872 PassThru Service - detected UnsignedFile.Multi.Generic (1)
      17:27:35.0902 0872 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
      17:27:35.0949 0872 PcaSvc - ok
      17:27:35.0980 0872 [ 3FDE033DFB0D07F8B7D5C9A3044AA121 ] pccsmcfd C:\Windows\system32\DRIVERS\pccsmcfdx64.sys
      17:27:35.0995 0872 pccsmcfd - ok
      17:27:36.0027 0872 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
      17:27:36.0042 0872 pci - ok
      17:27:36.0073 0872 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
      17:27:36.0089 0872 pciide - ok
      17:27:36.0120 0872 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
      17:27:36.0136 0872 pcmcia - ok
      17:27:36.0167 0872 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
      17:27:36.0183 0872 pcw - ok
      17:27:36.0229 0872 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
      17:27:36.0292 0872 PEAUTH - ok
      17:27:36.0354 0872 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
      17:27:36.0432 0872 PeerDistSvc - ok
      17:27:36.0526 0872 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
      17:27:36.0541 0872 PerfHost - ok
      17:27:36.0619 0872 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
      17:27:36.0697 0872 pla - ok
      17:27:36.0744 0872 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
      17:27:36.0775 0872 PlugPlay - ok
      17:27:36.0791 0872 [ 71F62C51DFDFBC04C83C5C64B2B8058E ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
      17:27:36.0807 0872 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
      17:27:36.0807 0872 Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
      17:27:36.0838 0872 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
      17:27:36.0869 0872 PNRPAutoReg - ok
      17:27:36.0885 0872 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
      17:27:36.0900 0872 PNRPsvc - ok
      17:27:36.0931 0872 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
      17:27:36.0994 0872 PolicyAgent - ok
      17:27:37.0009 0872 PortRST - ok
      17:27:37.0056 0872 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
      17:27:37.0103 0872 Power - ok
      17:27:37.0150 0872 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
      17:27:37.0197 0872 PptpMiniport - ok
      17:27:37.0243 0872 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
      17:27:37.0259 0872 Processor - ok
      17:27:37.0290 0872 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
      17:27:37.0321 0872 ProfSvc - ok
      17:27:37.0337 0872 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
      17:27:37.0353 0872 ProtectedStorage - ok
      17:27:37.0399 0872 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
      17:27:37.0446 0872 Psched - ok
      17:27:37.0493 0872 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
      17:27:37.0540 0872 ql2300 - ok
      17:27:37.0555 0872 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
      17:27:37.0587 0872 ql40xx - ok
      17:27:37.0602 0872 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
      17:27:37.0633 0872 QWAVE - ok
      17:27:37.0649 0872 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
      17:27:37.0680 0872 QWAVEdrv - ok
      17:27:37.0743 0872 [ A55E7D0D873B2C97585B3B5926AC6ADE ] RapiMgr C:\Windows\WindowsMobile\rapimgr.dll
      17:27:37.0789 0872 RapiMgr - ok
      17:27:37.0821 0872 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
      17:27:37.0883 0872 RasAcd - ok
      17:27:37.0914 0872 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
      17:27:37.0961 0872 RasAgileVpn - ok
      17:27:37.0977 0872 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
      17:27:38.0039 0872 RasAuto - ok
      17:27:38.0070 0872 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
      17:27:38.0133 0872 Rasl2tp - ok
      17:27:38.0164 0872 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
      17:27:38.0226 0872 RasMan - ok
      17:27:38.0242 0872 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
      17:27:38.0289 0872 RasPppoe - ok
      17:27:38.0304 0872 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
      17:27:38.0367 0872 RasSstp - ok
      17:27:38.0413 0872 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
      17:27:38.0460 0872 rdbss - ok
      17:27:38.0491 0872 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
      17:27:38.0507 0872 rdpbus - ok
      17:27:38.0538 0872 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
      17:27:38.0585 0872 RDPCDD - ok
      17:27:38.0632 0872 [ 1B6163C503398B23FF8B939C67747683 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
      17:27:38.0647 0872 RDPDR - ok
      17:27:38.0663 0872 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
      17:27:38.0725 0872 RDPENCDD - ok
      17:27:38.0741 0872 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
      17:27:38.0788 0872 RDPREFMP - ok
      17:27:38.0835 0872 [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
      17:27:38.0850 0872 RdpVideoMiniport - ok
      17:27:38.0866 0872 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
      17:27:38.0897 0872 RDPWD - ok
      17:27:38.0928 0872 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
      17:27:38.0944 0872 rdyboost - ok
      17:27:38.0975 0872 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
      17:27:39.0037 0872 RemoteAccess - ok
      17:27:39.0053 0872 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
      17:27:39.0100 0872 RemoteRegistry - ok

    5. #5
      Usuario Avatar de Ramon2k12
      Registrado
      oct 2012
      Ubicación
      Alicante
      Mensajes
      12

      Re: Desconexión del centro de seguridad y redireccionamiento de google.

      17:27:39.0131 0872 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
      17:27:39.0178 0872 RpcEptMapper - ok
      17:27:39.0209 0872 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
      17:27:39.0225 0872 RpcLocator - ok
      17:27:39.0271 0872 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
      17:27:39.0318 0872 RpcSs - ok
      17:27:39.0349 0872 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
      17:27:39.0412 0872 rspndr - ok
      17:27:39.0474 0872 [ 665BA29357882A8C5980B15B3A0123A4 ] RTL8192cu C:\Windows\system32\DRIVERS\RTL8192cu.sys
      17:27:39.0537 0872 RTL8192cu - ok
      17:27:39.0599 0872 [ E60C0A09F997826C7627B244195AB581 ] s3cap C:\Windows\system32\drivers\vms3cap.sys
      17:27:39.0615 0872 s3cap - ok
      17:27:39.0630 0872 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
      17:27:39.0661 0872 SamSs - ok
      17:27:39.0693 0872 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
      17:27:39.0708 0872 sbp2port - ok
      17:27:39.0739 0872 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
      17:27:39.0802 0872 SCardSvr - ok
      17:27:39.0833 0872 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
      17:27:39.0880 0872 scfilter - ok
      17:27:39.0942 0872 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
      17:27:40.0005 0872 Schedule - ok
      17:27:40.0036 0872 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
      17:27:40.0098 0872 SCPolicySvc - ok
      17:27:40.0145 0872 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
      17:27:40.0192 0872 SDRSVC - ok
      17:27:40.0223 0872 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
      17:27:40.0270 0872 secdrv - ok
      17:27:40.0301 0872 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
      17:27:40.0363 0872 seclogon - ok
      17:27:40.0379 0872 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\system32\sens.dll
      17:27:40.0426 0872 SENS - ok
      17:27:40.0441 0872 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
      17:27:40.0457 0872 SensrSvc - ok
      17:27:40.0488 0872 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
      17:27:40.0504 0872 Serenum - ok
      17:27:40.0519 0872 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
      17:27:40.0535 0872 Serial - ok
      17:27:40.0582 0872 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
      17:27:40.0597 0872 sermouse - ok
      17:27:40.0676 0872 [ 9BDE8F1F5D060E912FCF9FB58B71CBC1 ] ServiceLayer C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
      17:27:40.0723 0872 ServiceLayer - ok
      17:27:40.0801 0872 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
      17:27:40.0864 0872 SessionEnv - ok
      17:27:40.0895 0872 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
      17:27:40.0910 0872 sffdisk - ok
      17:27:40.0926 0872 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
      17:27:40.0942 0872 sffp_mmc - ok
      17:27:40.0957 0872 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
      17:27:40.0973 0872 sffp_sd - ok
      17:27:41.0004 0872 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
      17:27:41.0020 0872 sfloppy - ok
      17:27:41.0066 0872 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
      17:27:41.0113 0872 SharedAccess - ok
      17:27:41.0160 0872 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
      17:27:41.0222 0872 ShellHWDetection - ok
      17:27:41.0238 0872 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
      17:27:41.0254 0872 SiSRaid2 - ok
      17:27:41.0269 0872 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
      17:27:41.0300 0872 SiSRaid4 - ok
      17:27:41.0332 0872 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
      17:27:41.0378 0872 Smb - ok
      17:27:41.0441 0872 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
      17:27:41.0456 0872 SNMPTRAP - ok
      17:27:41.0472 0872 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
      17:27:41.0488 0872 spldr - ok
      17:27:41.0534 0872 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
      17:27:41.0550 0872 Spooler - ok
      17:27:41.0706 0872 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
      17:27:41.0800 0872 sppsvc - ok
      17:27:41.0909 0872 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
      17:27:41.0971 0872 sppuinotify - ok
      17:27:42.0002 0872 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
      17:27:42.0034 0872 srv - ok
      17:27:42.0049 0872 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
      17:27:42.0080 0872 srv2 - ok
      17:27:42.0096 0872 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
      17:27:42.0127 0872 srvnet - ok
      17:27:42.0143 0872 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
      17:27:42.0205 0872 SSDPSRV - ok
      17:27:42.0221 0872 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
      17:27:42.0268 0872 SstpSvc - ok
      17:27:42.0299 0872 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
      17:27:42.0314 0872 stexstor - ok
      17:27:42.0361 0872 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
      17:27:42.0392 0872 stisvc - ok
      17:27:42.0439 0872 [ 7785DC213270D2FC066538DAF94087E7 ] storflt C:\Windows\system32\drivers\vmstorfl.sys
      17:27:42.0455 0872 storflt - ok
      17:27:42.0486 0872 [ C40841817EF57D491F22EB103DA587CC ] StorSvc C:\Windows\system32\storsvc.dll
      17:27:42.0502 0872 StorSvc - ok
      17:27:42.0533 0872 [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc C:\Windows\system32\drivers\storvsc.sys
      17:27:42.0548 0872 storvsc - ok
      17:27:42.0580 0872 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
      17:27:42.0595 0872 swenum - ok
      17:27:42.0626 0872 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
      17:27:42.0689 0872 swprv - ok
      17:27:42.0751 0872 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
      17:27:42.0814 0872 SysMain - ok
      17:27:42.0829 0872 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
      17:27:42.0860 0872 TabletInputService - ok
      17:27:42.0907 0872 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
      17:27:42.0970 0872 TapiSrv - ok
      17:27:43.0001 0872 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
      17:27:43.0048 0872 TBS - ok
      17:27:43.0126 0872 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] Tcpip C:\Windows\system32\drivers\tcpip.sys
      17:27:43.0172 0872 Tcpip - ok
      17:27:43.0235 0872 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
      17:27:43.0282 0872 TCPIP6 - ok
      17:27:43.0328 0872 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
      17:27:43.0375 0872 tcpipreg - ok
      17:27:43.0406 0872 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
      17:27:43.0422 0872 TDPIPE - ok
      17:27:43.0453 0872 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
      17:27:43.0469 0872 TDTCP - ok
      17:27:43.0516 0872 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
      17:27:43.0562 0872 tdx - ok
      17:27:43.0594 0872 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
      17:27:43.0609 0872 TermDD - ok
      17:27:43.0656 0872 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
      17:27:43.0718 0872 TermService - ok
      17:27:43.0734 0872 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
      17:27:43.0765 0872 Themes - ok
      17:27:43.0796 0872 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
      17:27:43.0859 0872 THREADORDER - ok
      17:27:43.0921 0872 [ 0407143F2BBC1A5DD5B518AC0704FCBF ] TomTomHOMEService C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
      17:27:43.0937 0872 TomTomHOMEService - ok
      17:27:43.0952 0872 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
      17:27:44.0015 0872 TrkWks - ok
      17:27:44.0062 0872 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
      17:27:44.0171 0872 TrustedInstaller - ok
      17:27:44.0218 0872 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
      17:27:44.0264 0872 tssecsrv - ok
      17:27:44.0296 0872 [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
      17:27:44.0311 0872 TsUsbFlt - ok
      17:27:44.0342 0872 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
      17:27:44.0389 0872 tunnel - ok
      17:27:44.0420 0872 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
      17:27:44.0436 0872 uagp35 - ok
      17:27:44.0483 0872 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
      17:27:44.0545 0872 udfs - ok
      17:27:44.0592 0872 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
      17:27:44.0623 0872 UI0Detect - ok
      17:27:44.0639 0872 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
      17:27:44.0654 0872 uliagpkx - ok
      17:27:44.0686 0872 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
      17:27:44.0701 0872 umbus - ok
      17:27:44.0732 0872 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
      17:27:44.0748 0872 UmPass - ok
      17:27:44.0795 0872 [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService C:\Windows\System32\umrdp.dll
      17:27:44.0810 0872 UmRdpService - ok
      17:27:44.0842 0872 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
      17:27:44.0904 0872 upnphost - ok
      17:27:44.0951 0872 [ 907F50B8695DAA65A9445D27AD306E65 ] upperdev C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys
      17:27:45.0029 0872 upperdev - ok
      17:27:45.0060 0872 [ AF1B9474D67897D0C2CFF58E0ACEACCC ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
      17:27:45.0076 0872 USBAAPL64 - ok
      17:27:45.0107 0872 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
      17:27:45.0122 0872 usbccgp - ok
      17:27:45.0154 0872 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
      17:27:45.0185 0872 usbcir - ok
      17:27:45.0200 0872 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
      17:27:45.0232 0872 usbehci - ok
      17:27:45.0278 0872 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
      17:27:45.0310 0872 usbhub - ok
      17:27:45.0341 0872 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
      17:27:45.0356 0872 usbohci - ok
      17:27:45.0388 0872 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
      17:27:45.0403 0872 usbprint - ok
      17:27:45.0450 0872 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
      17:27:45.0466 0872 usbscan - ok
      17:27:45.0497 0872 [ 4ACEE387FA8FD39F83564FCD2FC234F2 ] usbser C:\Windows\system32\drivers\usbser.sys
      17:27:45.0512 0872 usbser - ok
      17:27:45.0544 0872 [ 3F7498527B48657091C355F683BEB0DD ] UsbserFilt C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys
      17:27:45.0575 0872 UsbserFilt - ok
      17:27:45.0622 0872 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
      17:27:45.0637 0872 USBSTOR - ok
      17:27:45.0668 0872 [ 6D14D8EC1DD33A072653E75E3B28B062 ] usbUDisc C:\Windows\system32\DRIVERS\USBDrv_AMD64.sys
      17:27:45.0684 0872 usbUDisc - ok
      17:27:45.0731 0872 [ 81FB2216D3A60D1284455D511797DB3D ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
      17:27:45.0746 0872 usbuhci - ok
      17:27:45.0778 0872 [ 70D05EE263568A742D14E1876DF80532 ] usb_rndisx C:\Windows\system32\drivers\usb8023x.sys
      17:27:45.0793 0872 usb_rndisx - ok
      17:27:45.0824 0872 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
      17:27:45.0887 0872 UxSms - ok
      17:27:45.0902 0872 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
      17:27:45.0918 0872 VaultSvc - ok
      17:27:45.0965 0872 [ C30F3D43CEB6F79ADE9B805387E5F63C ] VBoxDrv C:\Windows\system32\DRIVERS\VBoxDrv.sys
      17:27:45.0996 0872 VBoxDrv - ok
      17:27:46.0027 0872 [ 8ACF22B86CE4E85C23E3E9513BF45C37 ] VBoxNetAdp C:\Windows\system32\DRIVERS\VBoxNetAdp.sys
      17:27:46.0043 0872 VBoxNetAdp - ok
      17:27:46.0074 0872 [ 7B657669C53A0E6583F07EBAA303D9EA ] VBoxNetFlt C:\Windows\system32\DRIVERS\VBoxNetFlt.sys
      17:27:46.0105 0872 VBoxNetFlt - ok
      17:27:46.0136 0872 [ 7A4CAB9EC7153741520EC8513ACDBA1D ] VBoxUSB C:\Windows\system32\Drivers\VBoxUSB.sys
      17:27:46.0152 0872 VBoxUSB - ok
      17:27:46.0183 0872 [ CF3EE68CD9723E9F21E3198A0F690400 ] VBoxUSBMon C:\Windows\system32\DRIVERS\VBoxUSBMon.sys
      17:27:46.0199 0872 VBoxUSBMon - ok
      17:27:46.0230 0872 [ FD911873C0BB6945FA38C16E9A2B58F9 ] VClone C:\Windows\system32\DRIVERS\VClone.sys
      17:27:46.0246 0872 VClone - ok
      17:27:46.0277 0872 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
      17:27:46.0292 0872 vdrvroot - ok
      17:27:46.0355 0872 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
      17:27:46.0448 0872 vds - ok
      17:27:46.0495 0872 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
      17:27:46.0511 0872 vga - ok
      17:27:46.0526 0872 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
      17:27:46.0573 0872 VgaSave - ok
      17:27:46.0620 0872 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
      17:27:46.0636 0872 vhdmp - ok
      17:27:46.0667 0872 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
      17:27:46.0682 0872 viaide - ok
      17:27:46.0714 0872 [ 86EA3E79AE350FEA5331A1303054005F ] vmbus C:\Windows\system32\drivers\vmbus.sys
      17:27:46.0729 0872 vmbus - ok
      17:27:46.0760 0872 [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
      17:27:46.0776 0872 VMBusHID - ok
      17:27:46.0807 0872 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
      17:27:46.0823 0872 volmgr - ok
      17:27:46.0885 0872 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
      17:27:46.0901 0872 volmgrx - ok
      17:27:46.0916 0872 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
      17:27:46.0948 0872 volsnap - ok
      17:27:46.0963 0872 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
      17:27:46.0994 0872 vsmraid - ok
      17:27:47.0057 0872 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
      17:27:47.0135 0872 VSS - ok
      17:27:47.0150 0872 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
      17:27:47.0166 0872 vwifibus - ok
      17:27:47.0213 0872 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
      17:27:47.0228 0872 vwififlt - ok
      17:27:47.0275 0872 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
      17:27:47.0338 0872 W32Time - ok
      17:27:47.0369 0872 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
      17:27:47.0384 0872 WacomPen - ok
      17:27:47.0400 0872 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
      17:27:47.0447 0872 WANARP - ok
      17:27:47.0462 0872 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
      17:27:47.0509 0872 Wanarpv6 - ok
      17:27:47.0587 0872 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
      17:27:47.0618 0872 WatAdminSvc - ok
      17:27:47.0696 0872 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
      17:27:47.0774 0872 wbengine - ok
      17:27:47.0806 0872 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
      17:27:47.0837 0872 WbioSrvc - ok
      17:27:47.0884 0872 [ 8BDA6DB43AA54E8BB5E0794541DDC209 ] WcesComm C:\Windows\WindowsMobile\wcescomm.dll
      17:27:47.0915 0872 WcesComm - ok
      17:27:47.0962 0872 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
      17:27:47.0993 0872 wcncsvc - ok
      17:27:48.0024 0872 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
      17:27:48.0040 0872 WcsPlugInService - ok
      17:27:48.0055 0872 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
      17:27:48.0071 0872 Wd - ok
      17:27:48.0118 0872 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
      17:27:48.0149 0872 Wdf01000 - ok
      17:27:48.0164 0872 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
      17:27:48.0196 0872 WdiServiceHost - ok
      17:27:48.0211 0872 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
      17:27:48.0242 0872 WdiSystemHost - ok
      17:27:48.0289 0872 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
      17:27:48.0320 0872 WebClient - ok
      17:27:48.0336 0872 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
      17:27:48.0398 0872 Wecsvc - ok
      17:27:48.0414 0872 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
      17:27:48.0476 0872 wercplsupport - ok
      17:27:48.0492 0872 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
      17:27:48.0554 0872 WerSvc - ok
      17:27:48.0570 0872 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
      17:27:48.0617 0872 WfpLwf - ok
      17:27:48.0664 0872 [ 52DED146E4797E6CCF94799E8E22BB2A ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys
      17:27:48.0679 0872 WimFltr - ok
      17:27:48.0695 0872 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
      17:27:48.0710 0872 WIMMount - ok
      17:27:48.0742 0872 WinDefend - ok
      17:27:48.0757 0872 WinHttpAutoProxySvc - ok
      17:27:48.0835 0872 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
      17:27:48.0929 0872 Winmgmt - ok
      17:27:48.0991 0872 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
      17:27:49.0069 0872 WinRM - ok
      17:27:49.0132 0872 [ FE88B288356E7B47B74B13372ADD906D ] WINUSB C:\Windows\system32\DRIVERS\WinUSB.SYS
      17:27:49.0147 0872 WINUSB - ok
      17:27:49.0194 0872 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
      17:27:49.0241 0872 Wlansvc - ok
      17:27:49.0256 0872 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
      17:27:49.0272 0872 WmiAcpi - ok
      17:27:49.0319 0872 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
      17:27:49.0334 0872 wmiApSrv - ok
      17:27:49.0350 0872 WMPNetworkSvc - ok
      17:27:49.0366 0872 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
      17:27:49.0397 0872 WPCSvc - ok
      17:27:49.0428 0872 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
      17:27:49.0459 0872 WPDBusEnum - ok
      17:27:49.0490 0872 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
      17:27:49.0537 0872 ws2ifsl - ok
      17:27:49.0553 0872 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\system32\wscsvc.dll
      17:27:49.0584 0872 wscsvc - ok
      17:27:49.0600 0872 WSearch - ok
      17:27:49.0678 0872 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
      17:27:49.0756 0872 wuauserv - ok
      17:27:49.0787 0872 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
      17:27:49.0834 0872 WudfPf - ok
      17:27:49.0865 0872 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
      17:27:49.0912 0872 WUDFRd - ok
      17:27:49.0958 0872 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
      17:27:50.0005 0872 wudfsvc - ok
      17:27:50.0036 0872 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
      17:27:50.0068 0872 WwanSvc - ok
      17:27:50.0130 0872 ================ Scan global ===============================
      17:27:50.0177 0872 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
      17:27:50.0224 0872 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
      17:27:50.0239 0872 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
      17:27:50.0270 0872 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
      17:27:50.0317 0872 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
      17:27:50.0333 0872 [Global] - ok
      17:27:50.0333 0872 ================ Scan MBR ==================================
      17:27:50.0348 0872 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
      17:27:50.0707 0872 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
      17:27:50.0707 0872 \Device\Harddisk0\DR0 - detected TDSS File System (1)
      17:27:50.0707 0872 ================ Scan VBR ==================================
      17:27:50.0723 0872 [ CD8B73FCE70D9E8C442C5BB23002486B ] \Device\Harddisk0\DR0\Partition1
      17:27:50.0723 0872 \Device\Harddisk0\DR0\Partition1 - ok
      17:27:50.0770 0872 [ F7A361337960C8ACB1D9F07B51A04D71 ] \Device\Harddisk0\DR0\Partition2
      17:27:50.0770 0872 \Device\Harddisk0\DR0\Partition2 - ok
      17:27:50.0801 0872 [ BBDC603E3176A1EDF7D43F72E9352BCB ] \Device\Harddisk0\DR0\Partition3
      17:27:50.0801 0872 \Device\Harddisk0\DR0\Partition3 - ok
      17:27:50.0801 0872 ============================================================
      17:27:50.0801 0872 Scan finished
      17:27:50.0801 0872 ============================================================
      17:27:50.0816 4852 Detected object count: 5
      17:27:50.0816 4852 Actual detected object count: 5
      17:29:06.0679 4852 Freemake Improver ( UnsignedFile.Multi.Generic ) - skipped by user
      17:29:06.0679 4852 Freemake Improver ( UnsignedFile.Multi.Generic ) - User select action: Skip
      17:29:06.0679 4852 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
      17:29:06.0679 4852 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip
      17:29:06.0679 4852 PassThru Service ( UnsignedFile.Multi.Generic ) - skipped by user
      17:29:06.0679 4852 PassThru Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
      17:29:06.0695 4852 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
      17:29:06.0695 4852 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip
      17:29:06.0695 4852 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
      17:29:06.0695 4852 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip
      17:29:13.0824 2252 Deinitialize success



      He tenido que dividirr el mensaje en tres partes por la limitación de la cantidad de caracteres en la respuesta.

      Siento el inconveniente.

      Saludos.

    6. #6
      Moderador Gral.
      Avatar de @Leosolari
      Registrado
      jun 2007
      Ubicación
      Argentina
      Mensajes
      58.638

      Re: Desconexión del centro de seguridad y redireccionamiento de google.

      Hola


      Hacé correr nuevamente TDSKiller, pero cuando llegue a esta Detección:

      \Device\Harddisk0\DR0 ( TDSS File System )


      Dale a Opción Delete.


      Reinicias y Nos contas como sigue ...
      Síguenos en Twitter y hazte nuestro amigo en Facebook.

    7. #7
      Usuario Avatar de Ramon2k12
      Registrado
      oct 2012
      Ubicación
      Alicante
      Mensajes
      12

      Re: Desconexión del centro de seguridad y redireccionamiento de google.

      Hola, lo he hecho, y el problema persiste, redirecciona y desconecta el centro de seguridad, ¿Alguna sugerencia?.

      Gracias.

      Saludos.

    8. #8
      Moderador Gral.
      Avatar de @Leosolari
      Registrado
      jun 2007
      Ubicación
      Argentina
      Mensajes
      58.638

      Re: Desconexión del centro de seguridad y redireccionamiento de google.

      Hola de nuevo


      Realiza lo siguiente :

      • Clic en INICIO > EJECUTAR >
        • Y ahí pones notepad.exe y ACEPTAR
        • Ahora copia y pega el texto del cuadro de mas abajo dentro del Notepad


      Código:
      KillAll::
      ClearJavaCache::
      File::
      c:\windows\Tasks\JOWUU.job
      Folder::
      c:\program files (x86)\uTorrentBar_ES
      c:\program files (x86)\pdfforge Toolbar
      c:\program files (x86)\Common Files\Spigot
      Firefox::
      FF - ProfilePath - c:\users\Tienda\AppData\Roaming\Mozilla\Firefox\Profiles\5x2d9p23.default\
      FF - prefs.js: browser.startup.homepage - www.google.es
      FF - ExtSQL: 2012-08-31 11:48; {CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}; c:\program files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}
      FF - ExtSQL: 2012-09-19 11:09; {1BC9BA34-1EED-42ca-A505-6D2F1A935BBB}; c:\users\Tienda\AppData\Roaming\Mozilla\Firefox\Profiles\5x2d9p23.default\extensions\{1BC9BA34-1EED-42ca-A505-6D2F1A935BBB}
      FF - ExtSQL: 2012-10-22 17:56; {CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA}; c:\program files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA}
      FF - user.js: extensions.BabylonToolbar_i.babTrack - affID=110183&tt=3012_8
      FF - user.js: extensions.BabylonToolbar_i.babExt -
      FF - user.js: extensions.BabylonToolbar_i.srcExt - ss
      FF - user.js: extensions.BabylonToolbar.tlbrSrchUrl - hxxp://www.google.com/search?babsrc=TB_ggl&q=
      FF - user.js: extensions.BabylonToolbar.id - 784e579d00000000000000262d130f0f
      FF - user.js: extensions.BabylonToolbar.instlDay - 15549
      FF - user.js: extensions.BabylonToolbar.vrsn - 1.5.29.1
      FF - user.js: extensions.BabylonToolbar.vrsni - 1.5.29.1
      FF - user.js: extensions.BabylonToolbar_i.vrsnTs - 1.5.29.112:33
      FF - user.js: extensions.BabylonToolbar.prtnrId - babylon
      FF - user.js: extensions.BabylonToolbar.prdct - BabylonToolbar
      FF - user.js: extensions.BabylonToolbar.aflt - babsst
      FF - user.js: extensions.BabylonToolbar_i.smplGrp - none
      FF - user.js: extensions.BabylonToolbar.tlbrId - base
      FF - user.js: extensions.BabylonToolbar.instlRef - sst
      FF - user.js: extensions.BabylonToolbar.dfltLng - en
      FF - user.js: extensions.BabylonToolbar.excTlbr - false
      FF - user.js: extensions.BabylonToolbar.admin - false
      Registry::
      [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
      "{db131c55-60c8-4adc-84dc-9e76ab06e2dc}"=-
      [-HKEY_CLASSES_ROOT\clsid\{db131c55-60c8-4adc-84dc-9e76ab06e2dc}]
      [-HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{B922D405-6D13-4A2B-AE89-08A030DA4402}]
      [-HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{db131c55-60c8-4adc-84dc-9e76ab06e2dc}]
      [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar]
      "{db131c55-60c8-4adc-84dc-9e76ab06e2dc}"=- 
      "{B922D405-6D13-4A2B-AE89-08A030DA4402}"=-
      [-HKEY_CLASSES_ROOT\clsid\{db131c55-60c8-4adc-84dc-9e76ab06e2dc}]
      [-HKEY_CLASSES_ROOT\clsid\{b922d405-6d13-4a2b-ae89-08a030da4402}]
      [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-disabled]
      "SearchSettings"=-


      • Guarda este archivo con el nombre CFScript.txt
      • Arrastra y suelta el archivo CFScript.txt dentro del archivo ComboFix.exe como lo muestra el screenshot de abajo.



      • ComboFix comenzará otra vez a ejecutarse. Cuando termine generara un nuevo reporte que tendras que pegar en este mismo tema.




      Después de reiniciar, comprobas en funcionamiento y nos comentás.



      saludos
      Síguenos en Twitter y hazte nuestro amigo en Facebook.

    9. #9
      Usuario Avatar de Ramon2k12
      Registrado
      oct 2012
      Ubicación
      Alicante
      Mensajes
      12

      Re: Desconexión del centro de seguridad y redireccionamiento de google.

      Hola otra vez, pues no, me temo que no, todavía sigo igual, no se si dejarlo ya, al fin y al cabo es solo algo que afecta a Firefox únicamente, puedo navegar con Safari sin problemas, lo que mas me mosquea es lo del antivirus y el centro de seguridad desconectado, no me quedo muy tranquilo con eso.
      Me tomo la libertad de incluirte el log del combofix por si acaso te sireve de algo.
      Una vez mas, gracias por tu tiempo.

      ComboFix 12-10-25.01 - Tienda 25/10/2012 13:52:07.2.1 - x64
      Microsoft Windows 7 Professional 6.1.7601.1.1252.34.3082.18.4095.2346 [GMT 2:00]
      Running from: c:\users\Tienda\Desktop\ComboFix.exe
      Command switches used :: c:\users\Tienda\Desktop\CFScript.txt
      AV: Microsoft Security Essentials *Enabled/Updated* {B140BF4E-23BB-4198-90AB-A51A4C60A69C}
      SP: Microsoft Security Essentials *Enabled/Updated* {0A215EAA-0581-4E16-AA1B-9E6837E7EC21}
      SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
      * Created a new restore point
      .
      FILE ::
      "c:\windows\Tasks\JOWUU.job"
      .
      .
      ((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
      .
      .
      c:\program files (x86)\uTorrentBar_ES
      c:\program files (x86)\uTorrentBar_ES\GottenAppsContextMenu.xml
      c:\program files (x86)\uTorrentBar_ES\INSTALL.LOG
      c:\program files (x86)\uTorrentBar_ES\OtherAppsContextMenu.xml
      c:\program files (x86)\uTorrentBar_ES\SharedAppsContextMenu.xml
      c:\program files (x86)\uTorrentBar_ES\tbuTor.dll
      c:\program files (x86)\uTorrentBar_ES\toolbar.cfg
      c:\program files (x86)\uTorrentBar_ES\ToolbarContextMenu.xml
      c:\program files (x86)\uTorrentBar_ES\UNWISE.EXE
      c:\program files (x86)\uTorrentBar_ES\UNWISE.INI
      c:\program files (x86)\uTorrentBar_ES\uTorrentBar_ESToolbarHelper.exe
      c:\users\Tienda\AppData\Local\Temp\_MEI35482\_ctypes.pyd
      c:\users\Tienda\AppData\Local\Temp\_MEI35482\_elementtree.pyd
      c:\users\Tienda\AppData\Local\Temp\_MEI35482\_hashlib.pyd
      c:\users\Tienda\AppData\Local\Temp\_MEI35482\_socket.pyd
      c:\users\Tienda\AppData\Local\Temp\_MEI35482\_ssl.pyd
      c:\users\Tienda\AppData\Local\Temp\_MEI35482\pyexpat.pyd
      c:\users\Tienda\AppData\Local\Temp\_MEI35482\pysqlite2._sqlite.pyd
      c:\users\Tienda\AppData\Local\Temp\_MEI35482\python26.dll
      c:\users\Tienda\AppData\Local\Temp\_MEI35482\pythoncom26.dll
      c:\users\Tienda\AppData\Local\Temp\_MEI35482\pywintypes26.dll
      c:\users\Tienda\AppData\Local\Temp\_MEI35482\select.pyd
      c:\users\Tienda\AppData\Local\Temp\_MEI35482\unicodedata.pyd
      c:\users\Tienda\AppData\Local\Temp\_MEI35482\win32api.pyd
      c:\users\Tienda\AppData\Local\Temp\_MEI35482\win32com.shell.shell.pyd
      c:\users\Tienda\AppData\Local\Temp\_MEI35482\win32crypt.pyd
      c:\users\Tienda\AppData\Local\Temp\_MEI35482\win32event.pyd
      c:\users\Tienda\AppData\Local\Temp\_MEI35482\win32file.pyd
      c:\users\Tienda\AppData\Local\Temp\_MEI35482\win32inet.pyd
      c:\users\Tienda\AppData\Local\Temp\_MEI35482\win32pdh.pyd
      c:\users\Tienda\AppData\Local\Temp\_MEI35482\win32process.pyd
      c:\users\Tienda\AppData\Local\Temp\_MEI35482\win32security.pyd
      c:\users\Tienda\AppData\Local\Temp\_MEI35482\windows._cacheinvalidation.pyd
      c:\users\Tienda\AppData\Local\Temp\_MEI35482\wx._controls_.pyd
      c:\users\Tienda\AppData\Local\Temp\_MEI35482\wx._core_.pyd
      c:\users\Tienda\AppData\Local\Temp\_MEI35482\wx._gdi_.pyd
      c:\users\Tienda\AppData\Local\Temp\_MEI35482\wx._html2.pyd
      c:\users\Tienda\AppData\Local\Temp\_MEI35482\wx._misc_.pyd
      c:\users\Tienda\AppData\Local\Temp\_MEI35482\wx._windows_.pyd
      c:\users\Tienda\AppData\Local\Temp\_MEI35482\wx._wizard.pyd
      c:\users\Tienda\AppData\Local\Temp\_MEI35482\wxbase293u_net_vc.dll
      c:\users\Tienda\AppData\Local\Temp\_MEI35482\wxbase293u_vc.dll
      c:\users\Tienda\AppData\Local\Temp\_MEI35482\wxmsw293u_adv_vc.dll
      c:\users\Tienda\AppData\Local\Temp\_MEI35482\wxmsw293u_core_vc.dll
      c:\users\Tienda\AppData\Local\Temp\_MEI35482\wxmsw293u_html_vc.dll
      c:\users\Tienda\AppData\Local\Temp\_MEI35482\wxmsw293u_webview_vc.dll
      .
      .
      ((((((((((((((((((((((((( Files Created from 2012-09-25 to 2012-10-25 )))))))))))))))))))))))))))))))
      .
      .
      2012-10-25 12:17 . 2012-10-12 07:19 9291768 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{11CDDB0B-1090-431D-A583-2FD9C5DBA3F2}\mpengine.dll
      2012-10-25 12:04 . 2012-10-25 12:04 -------- d-----w- c:\users\Tienda2\AppData\Local\temp
      2012-10-25 12:04 . 2012-10-25 12:04 -------- d-----w- c:\users\Default\AppData\Local\temp
      2012-10-25 07:21 . 2012-10-25 07:21 -------- d-----w- C:\TDSSKiller_Quarantine
      2012-10-24 15:15 . 2012-06-29 11:55 22528 ----a-w- c:\windows\AT-Uninstall.exe
      2012-10-24 15:15 . 2012-03-12 21:27 11776 ----a-w- c:\windows\Colous.exe
      2012-10-24 15:15 . 2008-03-25 08:39 69660 ----a-w- c:\windows\Fart.exe
      2012-10-24 09:24 . 2012-10-12 07:19 9291768 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
      2012-10-24 09:04 . 2012-10-24 09:04 -------- d-----w- c:\users\Tienda\AppData\Roaming\GlarySoft
      2012-10-24 09:01 . 2012-10-24 09:02 -------- d-----w- c:\program files (x86)\Glary Utilities
      2012-10-24 07:37 . 2012-08-24 18:13 154480 ----a-w- c:\windows\system32\drivers\ksecpkg.sys
      2012-10-24 07:37 . 2012-08-24 18:09 458712 ----a-w- c:\windows\system32\drivers\cng.sys
      2012-10-24 07:37 . 2012-08-24 18:05 340992 ----a-w- c:\windows\system32\schannel.dll
      2012-10-24 07:37 . 2012-08-24 18:04 307200 ----a-w- c:\windows\system32\ncrypt.dll
      2012-10-24 07:37 . 2012-08-24 16:57 247808 ----a-w- c:\windows\SysWow64\schannel.dll
      2012-10-24 07:37 . 2012-08-24 18:03 1448448 ----a-w- c:\windows\system32\lsasrv.dll
      2012-10-24 07:37 . 2012-08-24 16:57 220160 ----a-w- c:\windows\SysWow64\ncrypt.dll
      2012-10-24 07:37 . 2012-08-24 16:57 22016 ----a-w- c:\windows\SysWow64\secur32.dll
      2012-10-24 07:37 . 2012-08-24 16:53 96768 ----a-w- c:\windows\SysWow64\sspicli.dll
      2012-10-23 18:24 . 2012-10-23 18:24 -------- d-----w- c:\users\Tienda\DoctorWeb
      2012-10-23 18:09 . 2012-10-23 18:09 -------- d-----w- c:\program files (x86)\ESET
      2012-10-23 16:30 . 2012-10-23 16:30 94208 --sha-r- c:\program files (x86)\Common Files\KBDAZEL.dll
      2012-10-22 15:56 . 2012-10-22 15:56 -------- d-----w- c:\program files (x86)\Common Files\Java
      2012-10-20 08:52 . 2012-10-20 08:52 -------- d-sh--w- c:\users\Tienda\Phone Browser
      2012-10-20 08:41 . 2012-10-20 08:48 -------- d-----w- c:\users\Tienda\AppData\Local\Nokia
      2012-10-20 08:39 . 2012-10-20 08:40 -------- d-----w- c:\programdata\Nokia
      2012-10-20 08:39 . 2012-06-27 13:18 26112 ----a-w- c:\windows\system32\drivers\pccsmcfdx64.sys
      2012-10-20 08:38 . 2012-10-20 08:38 -------- d-----w- c:\program files (x86)\PC Connectivity Solution
      2012-10-20 07:42 . 2012-09-28 07:22 972192 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{CB253C92-BAF6-4E71-A6DF-64EBB6137473}\gapaengine.dll
      2012-10-17 10:33 . 2011-06-01 02:17 848384 ----a-r- c:\windows\system32\drivers\rtl8192cu.sys
      2012-10-17 10:33 . 2012-10-17 10:33 -------- d-----w- c:\program files (x86)\Belkin
      2012-10-17 10:33 . 2011-01-19 13:01 451072 ----a-w- c:\windows\SysWow64\ISSRemoveSP.exe
      2012-10-15 18:09 . 2012-10-15 18:09 466456 ----a-w- c:\windows\system32\wrap_oal.dll
      2012-10-15 18:09 . 2012-10-15 18:09 444952 ----a-w- c:\windows\SysWow64\wrap_oal.dll
      2012-10-15 18:09 . 2012-10-15 18:09 122904 ----a-w- c:\windows\system32\OpenAL32.dll
      2012-10-15 18:09 . 2012-10-15 18:09 109080 ----a-w- c:\windows\SysWow64\OpenAL32.dll
      2012-10-15 18:09 . 2012-10-15 18:09 -------- d-----w- c:\program files (x86)\OpenAL
      2012-10-10 07:33 . 2012-08-31 18:19 1659760 ----a-w- c:\windows\system32\drivers\ntfs.sys
      2012-10-10 07:33 . 2012-08-30 18:03 5559664 ----a-w- c:\windows\system32\ntoskrnl.exe
      2012-10-10 07:31 . 2012-08-24 18:05 220160 ----a-w- c:\windows\system32\wintrust.dll
      2012-10-10 07:31 . 2012-08-24 16:57 172544 ----a-w- c:\windows\SysWow64\wintrust.dll
      2012-10-10 07:31 . 2012-09-14 19:19 2048 ----a-w- c:\windows\system32\tzres.dll
      2012-10-10 07:31 . 2012-09-14 18:28 2048 ----a-w- c:\windows\SysWow64\tzres.dll
      2012-10-10 07:31 . 2012-08-11 00:56 715776 ----a-w- c:\windows\system32\kerberos.dll
      2012-10-10 07:31 . 2012-08-10 23:56 542208 ----a-w- c:\windows\SysWow64\kerberos.dll
      2012-10-10 07:30 . 2012-06-02 05:41 1464320 ----a-w- c:\windows\system32\crypt32.dll
      2012-10-10 07:30 . 2012-06-02 04:36 1159680 ----a-w- c:\windows\SysWow64\crypt32.dll
      2012-10-10 07:30 . 2012-06-02 05:41 184320 ----a-w- c:\windows\system32\cryptsvc.dll
      2012-10-10 07:30 . 2012-06-02 05:41 140288 ----a-w- c:\windows\system32\cryptnet.dll
      2012-10-10 07:30 . 2012-06-02 04:36 140288 ----a-w- c:\windows\SysWow64\cryptsvc.dll
      2012-10-10 07:30 . 2012-06-02 04:36 103936 ----a-w- c:\windows\SysWow64\cryptnet.dll
      2012-10-02 15:14 . 2007-04-09 23:06 10752 ----a-w- c:\windows\system32\E_GCINST.DLL
      2012-10-02 15:14 . 2011-04-20 01:03 120320 ----a-w- c:\windows\system32\E_ILMHJE.DLL
      2012-10-02 15:14 . 2011-03-15 01:03 83968 ----a-w- c:\windows\system32\E_ID4BHJE.DLL
      2012-09-27 10:25 . 2012-09-27 10:25 -------- d-----w- c:\program files (x86)\ggseq-0.3.1
      2012-09-26 07:16 . 2012-08-21 21:01 245760 ----a-w- c:\windows\system32\OxpsConverter.exe
      .
      .
      .
      (((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
      .
      2012-10-10 09:18 . 2011-03-16 09:51 65309168 ----a-w- c:\windows\system32\MRT.exe
      2012-10-10 08:40 . 2012-03-30 07:14 696760 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
      2012-10-10 08:40 . 2011-06-28 07:01 73656 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
      2012-09-29 17:54 . 2011-11-22 19:02 25928 ----a-w- c:\windows\system32\drivers\mbam.sys
      2012-09-28 07:22 . 2011-03-25 08:20 972192 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\NISBackup\gapaengine.dll
      2012-09-25 11:56 . 2012-09-25 10:45 17280 ----a-w- c:\windows\system32\drivers\USBDrv_AMD64.sys
      2012-09-24 13:32 . 2012-07-16 09:56 477168 ----a-w- c:\windows\SysWow64\npdeployJava1.dll
      2012-09-24 13:32 . 2011-03-15 18:05 473072 ----a-w- c:\windows\SysWow64\deployJava1.dll
      2012-08-30 20:03 . 2012-08-30 20:03 228768 ----a-w- c:\windows\system32\drivers\MpFilter.sys
      2012-08-30 20:03 . 2010-10-24 20:25 128456 ----a-w- c:\windows\system32\drivers\NisDrvWFP.sys
      2012-08-24 11:15 . 2012-09-22 11:44 17810944 ----a-w- c:\windows\system32\mshtml.dll
      2012-08-24 10:39 . 2012-09-22 11:44 10925568 ----a-w- c:\windows\system32\ieframe.dll
      2012-08-24 10:31 . 2012-09-22 11:44 2312704 ----a-w- c:\windows\system32\jscript9.dll
      2012-08-24 10:22 . 2012-09-22 11:44 1346048 ----a-w- c:\windows\system32\urlmon.dll
      2012-08-24 10:21 . 2012-09-22 11:44 1392128 ----a-w- c:\windows\system32\wininet.dll
      2012-08-24 10:20 . 2012-09-22 11:44 1494528 ----a-w- c:\windows\system32\inetcpl.cpl
      2012-08-24 10:18 . 2012-09-22 11:44 237056 ----a-w- c:\windows\system32\url.dll
      2012-08-24 10:17 . 2012-09-22 11:44 85504 ----a-w- c:\windows\system32\jsproxy.dll
      2012-08-24 10:14 . 2012-09-22 11:44 173056 ----a-w- c:\windows\system32\ieUnatt.exe
      2012-08-24 10:14 . 2012-09-22 11:44 816640 ----a-w- c:\windows\system32\jscript.dll
      2012-08-24 10:13 . 2012-09-22 11:44 599040 ----a-w- c:\windows\system32\vbscript.dll
      2012-08-24 10:12 . 2012-09-22 11:44 2144768 ----a-w- c:\windows\system32\iertutil.dll
      2012-08-24 10:11 . 2012-09-22 11:44 729088 ----a-w- c:\windows\system32\msfeeds.dll
      2012-08-24 10:10 . 2012-09-22 11:44 96768 ----a-w- c:\windows\system32\mshtmled.dll
      2012-08-24 10:09 . 2012-09-22 11:44 2382848 ----a-w- c:\windows\system32\mshtml.tlb
      2012-08-24 10:04 . 2012-09-22 11:44 248320 ----a-w- c:\windows\system32\ieui.dll
      2012-08-24 06:59 . 2012-09-22 11:44 1800704 ----a-w- c:\windows\SysWow64\jscript9.dll
      2012-08-24 06:51 . 2012-09-22 11:44 1129472 ----a-w- c:\windows\SysWow64\wininet.dll
      2012-08-24 06:51 . 2012-09-22 11:44 1427968 ----a-w- c:\windows\SysWow64\inetcpl.cpl
      2012-08-24 06:47 . 2012-09-22 11:44 142848 ----a-w- c:\windows\SysWow64\ieUnatt.exe
      2012-08-24 06:47 . 2012-09-22 11:44 420864 ----a-w- c:\windows\SysWow64\vbscript.dll
      2012-08-24 06:43 . 2012-09-22 11:44 2382848 ----a-w- c:\windows\SysWow64\mshtml.tlb
      2012-08-22 18:12 . 2012-09-12 07:12 1913200 ----a-w- c:\windows\system32\drivers\tcpip.sys
      2012-08-22 18:12 . 2012-09-12 07:12 950128 ----a-w- c:\windows\system32\drivers\ndis.sys
      2012-08-22 18:12 . 2012-09-12 07:12 376688 ----a-w- c:\windows\system32\drivers\netio.sys
      2012-08-22 18:12 . 2012-09-12 07:12 288624 ----a-w- c:\windows\system32\drivers\FWPKCLNT.SYS
      2012-08-21 11:01 . 2012-09-17 18:26 33240 ----a-w- c:\windows\system32\drivers\GEARAspiWDM.sys
      2012-08-21 11:01 . 2011-03-16 08:51 106928 ----a-w- c:\windows\SysWow64\GEARAspi.dll
      2012-08-21 11:01 . 2011-03-16 08:51 125872 ----a-w- c:\windows\system32\GEARAspi64.dll
      2012-08-20 17:38 . 2012-10-10 07:32 44032 ----a-w- c:\windows\apppatch\acwow64.dll
      2012-08-02 17:58 . 2012-09-12 07:12 574464 ----a-w- c:\windows\system32\d3d10level9.dll
      2012-08-02 16:57 . 2012-09-12 07:12 490496 ----a-w- c:\windows\SysWow64\d3d10level9.dll
      .
      .
      ((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
      .
      .
      *Note* empty entries & legit default entries are not shown
      REGEDIT4
      .
      [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive1]
      @="{F241C880-6982-4CE5-8CF7-7085BA96DA5A}"
      [HKEY_CLASSES_ROOT\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}]
      2012-07-09 16:44 208608 ----a-w- c:\users\Tienda\AppData\Local\Microsoft\SkyDrive\16.4.4111.0525\SkyDriveShell.dll
      .
      [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive2]
      @="{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}"
      [HKEY_CLASSES_ROOT\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}]
      2012-07-09 16:44 208608 ----a-w- c:\users\Tienda\AppData\Local\Microsoft\SkyDrive\16.4.4111.0525\SkyDriveShell.dll
      .
      [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive3]
      @="{BBACC218-34EA-4666-9D7A-C78F2274A524}"
      [HKEY_CLASSES_ROOT\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}]
      2012-07-09 16:44 208608 ----a-w- c:\users\Tienda\AppData\Local\Microsoft\SkyDrive\16.4.4111.0525\SkyDriveShell.dll
      .
      [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
      @="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
      [HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
      2011-02-18 05:12 94208 ----a-w- c:\users\Tienda\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
      .
      [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
      @="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
      [HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
      2011-02-18 05:12 94208 ----a-w- c:\users\Tienda\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
      .
      [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
      @="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
      [HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
      2011-02-18 05:12 94208 ----a-w- c:\users\Tienda\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
      .
      [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
      @="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
      [HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
      2011-02-18 05:12 94208 ----a-w- c:\users\Tienda\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
      .
      [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
      "Xvid"="c:\program files (x86)\Xvid\CheckUpdate.exe" [2011-01-17 8192]
      "GoogleDriveSync"="c:\program files (x86)\Google\Drive\googledrivesync.exe" [2012-09-06 15668432]
      "TomTomHOME.exe"="c:\program files (x86)\TomTom HOME 2\TomTomHOMERunner.exe" [2012-08-28 247768]
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
      "AMD AVT"="start AMD Accelerated Video Transcoding device initialization" [X]
      "Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-07-27 919008]
      "EEventManager"="c:\program files (x86)\Epson Software\Event Manager\EEventManager.exe" [2009-12-03 976320]
      "APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-08-27 59280]
      "Malwarebytes Anti-Malware (reboot)"="c:\program files (x86)\Malwarebytes' Anti-Malware\mbam.exe" [2012-09-29 981656]
      "QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2012-04-18 421888]
      "VirtualCloneDrive"="c:\program files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" [2011-03-07 89456]
      "iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" [2012-09-09 421776]
      "StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2012-07-04 641704]
      "SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2012-09-17 254896]
      .
      c:\users\Tienda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
      Dropbox.lnk - c:\users\Tienda\AppData\Roaming\Dropbox\bin\Dropbox.exe [2012-5-24 27112840]
      GOMIS.BAT - Acceso directo.lnk - c:\users\Tienda\Documents\GOMIS.BAT [2012-6-4 35]
      PrtSvr.exe - Acceso directo.lnk - c:\program files (x86)\Rpv\PrtSvr.exe [2012-6-4 2449408]
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
      "ConsentPromptBehaviorAdmin"= 0 (0x0)
      "ConsentPromptBehaviorUser"= 3 (0x3)
      "EnableLUA"= 0 (0x0)
      "EnableUIADesktopToggle"= 0 (0x0)
      "PromptOnSecureDesktop"= 0 (0x0)
      .
      [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
      "LoadAppInit_DLLs"=0 (0x0)
      .
      [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
      BootExecute REG_MULTI_SZ autocheck autochk /p \??\H:\0autocheck autochk *
      .
      [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
      @="Service"
      .
      R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
      R2 gupdate;Servicio Google Update (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-04-01 135664]
      R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-10-10 250808]
      R3 GenericMount;Generic Mount Driver;c:\windows\system32\DRIVERS\GenericMount.sys [2009-09-21 54320]
      R3 gupdatem;Servicio de Google Update (gupdatem);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-04-01 135664]
      R3 htcnprot;HTC NDIS Protocol Driver;c:\windows\system32\DRIVERS\htcnprot.sys [2010-06-25 36928]
      R3 hwi4857;USB Flash Memory Controller Service2;c:\windows\system32\Drivers\hwi4857.sys [x]
      R3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-10-13 115168]
      R3 Netaapl;Apple Mobile Device Ethernet Service;c:\windows\system32\DRIVERS\netaapl64.sys [2011-05-10 22528]
      R3 PortRST;BaromTec HMS30C6001 Reset Driver;c:\windows\system32\Drivers\PortRST.sys [x]
      R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2012-08-23 19456]
      R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2012-08-23 57856]
      R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys [2012-07-09 52736]
      R3 usbUDisc;usbUDisc;c:\windows\system32\DRIVERS\USBDrv_AMD64.sys [2012-09-25 17280]
      R3 VBoxUSB;VirtualBox USB;c:\windows\system32\Drivers\VBoxUSB.sys [2011-04-26 45616]
      R3 WatAdminSvc;Servicio de tecnologías de activación de Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2011-03-16 1255736]
      R4 NAUpdate;Nero Update;c:\program files (x86)\Nero\Update\NASvc.exe [2010-03-25 490280]
      S1 VBoxDrv;VirtualBox Service;c:\windows\system32\DRIVERS\VBoxDrv.sys [2011-12-19 224048]
      S1 VBoxUSBMon;VirtualBox USB Monitor Driver;c:\windows\system32\DRIVERS\VBoxUSBMon.sys [2011-12-19 130864]
      S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
      S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-07-27 63960]
      S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2012-07-04 238080]
      S2 AMD FUEL Service;AMD FUEL Service;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2012-07-03 361984]
      S2 EPSON_EB_RPCV4_04;EPSON V5 Service4(04);c:\program files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE [2009-09-14 166400]
      S2 EPSON_PM_RPCV4_04;EPSON V3 Service4(04);c:\program files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE [2009-09-14 128512]
      S2 Freemake Improver;Freemake Improver;c:\programdata\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [2011-12-02 74752]
      S2 MBAMScheduler;MBAMScheduler;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2012-09-29 399432]
      S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-09-29 676936]
      S2 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys [2012-08-30 128456]
      S2 PassThru Service;Internet Pass-Through Service;c:\program files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [2010-09-16 80896]
      S2 TomTomHOMEService;TomTomHOMEService;c:\program files (x86)\TomTom HOME 2\TomTomHOMEService.exe [2012-08-28 92632]
      S3 amdiox64;AMD IO Driver;c:\windows\system32\DRIVERS\amdiox64.sys [2010-02-18 46136]
      S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atikmdag.sys [2012-07-04 11922944]
      S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [2012-07-04 359936]
      S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys [2012-02-23 95760]
      S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2012-09-29 25928]
      S3 NisSrv;Inspección de red de Microsoft;c:\program files\Microsoft Security Client\NisSrv.exe [2012-09-12 368896]
      S3 RTL8192cu;%RTL8192cu.DeviceDesc.DispName%;c:\windows\system32\DRIVERS\RTL8192cu.sys [2011-06-01 848384]
      S3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter;c:\windows\system32\DRIVERS\VBoxNetAdp.sys [2011-12-19 146736]
      S3 VBoxNetFlt;VirtualBox Bridged Networking Service;c:\windows\system32\DRIVERS\VBoxNetFlt.sys [2011-12-19 165680]
      .
      .
      Contents of the 'Scheduled Tasks' folder
      .
      2012-10-25 c:\windows\Tasks\Adobe Flash Player Updater.job
      - c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-03-30 08:40]
      .
      2012-10-25 c:\windows\Tasks\GlaryInitialize.job
      - c:\program files (x86)\Glary Utilities\initialize.exe [2012-10-24 10:45]
      .
      2012-10-25 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
      - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-04-01 17:50]
      .
      2012-10-25 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
      - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-04-01 17:50]
      .
      2012-10-25 c:\windows\Tasks\JOWUU.job
      - c:\windows\system32\rundll32.exe [2009-07-13 01:14]
      .
      .
      --------- X64 Entries -----------
      .
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive1]
      @="{F241C880-6982-4CE5-8CF7-7085BA96DA5A}"
      [HKEY_CLASSES_ROOT\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}]
      2012-07-09 16:44 232672 ----a-w- c:\users\Tienda\AppData\Local\Microsoft\SkyDrive\16.4.4111.0525\amd64\SkyDriveShell64.dll
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive2]
      @="{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}"
      [HKEY_CLASSES_ROOT\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}]
      2012-07-09 16:44 232672 ----a-w- c:\users\Tienda\AppData\Local\Microsoft\SkyDrive\16.4.4111.0525\amd64\SkyDriveShell64.dll
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive3]
      @="{BBACC218-34EA-4666-9D7A-C78F2274A524}"
      [HKEY_CLASSES_ROOT\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}]
      2012-07-09 16:44 232672 ----a-w- c:\users\Tienda\AppData\Local\Microsoft\SkyDrive\16.4.4111.0525\amd64\SkyDriveShell64.dll
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
      @="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
      [HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
      2011-02-18 05:12 97792 ----a-w- c:\users\Tienda\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
      @="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
      [HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
      2011-02-18 05:12 97792 ----a-w- c:\users\Tienda\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
      @="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
      [HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
      2011-02-18 05:12 97792 ----a-w- c:\users\Tienda\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
      @="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
      [HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
      2011-02-18 05:12 97792 ----a-w- c:\users\Tienda\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveBlacklistedOverlay]
      @="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}"
      [HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}]
      2012-09-06 13:51 755224 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedOverlay]
      @="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}"
      [HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}]
      2012-09-06 13:51 755224 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncedOverlay]
      @="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}"
      [HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}]
      2012-09-06 13:51 755224 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncingOverlay]
      @="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}"
      [HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}]
      2012-09-06 13:51 755224 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
      "Windows Mobile Device Center"="c:\windows\WindowsMobile\wmdc.exe" [2007-05-31 660360]
      "MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2012-09-12 1289704]
      .
      ------- Supplementary Scan -------
      .
      uLocal Page = c:\windows\system32\blank.htm
      uStart Page = hxxp://www.google.com
      uDefault_Search_URL = hxxp://www.google.com/ie
      mStart Page = hxxp://www.google.com
      mLocal Page = c:\windows\SysWOW64\blank.htm
      uInternet Settings,ProxyOverride = *.local
      uSearchAssistant = hxxp://www.google.com/ie
      uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
      mSearchAssistant = hxxp://start.facemoods.com/?a=make&s={searchTerms}&f=4
      IE: Descargar con Mipony - file://c:\program files (x86)\MiPony\Browser\IEContext.htm
      IE: E&xportar a Microsoft Excel - c:\progra~2\MICROS~3\Office12\EXCEL.EXE/3000
      TCP: DhcpNameServer = 80.58.61.250 80.58.61.254
      TCP: Interfaces\{2D9258C7-3B3C-425B-BB6E-20ADB89FB1E9}: NameServer = 80.58.0.33,8.8.8.8
      FF - ProfilePath - c:\users\Tienda\AppData\Roaming\Mozilla\Firefox\Profiles\5x2d9p23.default\
      FF - prefs.js: keyword.URL - hxxp://google.com
      FF - ExtSQL: 2012-08-31 11:48; {CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}; c:\program files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}
      FF - ExtSQL: 2012-09-19 11:09; {1BC9BA34-1EED-42ca-A505-6D2F1A935BBB}; c:\users\Tienda\AppData\Roaming\Mozilla\Firefox\Profiles\5x2d9p23.default\extensions\{1BC9BA34-1EED-42ca-A505-6D2F1A935BBB}
      FF - ExtSQL: 2012-10-22 17:56; {CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA}; c:\program files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA}
      FF - user.js: extensions.BabylonToolbar_i.babTrack - affID=110183&tt=3012_8
      FF - user.js: extensions.BabylonToolbar_i.babExt -
      FF - user.js: extensions.BabylonToolbar_i.srcExt - ss
      FF - user.js: extensions.BabylonToolbar.tlbrSrchUrl - hxxp://www.google.com/search?babsrc=TB_ggl&q=
      FF - user.js: extensions.BabylonToolbar.id - 784e579d00000000000000262d130f0f
      FF - user.js: extensions.BabylonToolbar.instlDay - 15549
      FF - user.js: extensions.BabylonToolbar.vrsn - 1.5.29.1
      FF - user.js: extensions.BabylonToolbar.vrsni - 1.5.29.1
      FF - user.js: extensions.BabylonToolbar_i.vrsnTs - 1.5.29.112:33
      FF - user.js: extensions.BabylonToolbar.prtnrId - babylon
      FF - user.js: extensions.BabylonToolbar.prdct - BabylonToolbar
      FF - user.js: extensions.BabylonToolbar.aflt - babsst
      FF - user.js: extensions.BabylonToolbar_i.smplGrp - none
      FF - user.js: extensions.BabylonToolbar.tlbrId - base
      FF - user.js: extensions.BabylonToolbar.instlRef - sst
      FF - user.js: extensions.BabylonToolbar.dfltLng - en
      FF - user.js: extensions.BabylonToolbar.excTlbr - false
      FF - user.js: extensions.BabylonToolbar.admin - false
      .
      - - - - ORPHANS REMOVED - - - -
      .
      BHO-{db131c55-60c8-4adc-84dc-9e76ab06e2dc} - c:\program files (x86)\uTorrentBar_ES\tbuTor.dll
      ShellIconOverlayIdentifiers-{0C4A258A-3F3B-4FFF-80A7-9B3BEC139472} - (no file)
      ShellIconOverlayIdentifiers-{62CCD8E3-9C21-41E1-B55E-1E26DFC68511} - (no file)
      ShellIconOverlayIdentifiers-{A759AFF6-5851-457D-A540-F4ECED148351} - (no file)
      ShellIconOverlayIdentifiers-{1574C9EF-7D58-488F-B358-8B78C1538F51} - (no file)
      AddRemove-uTorrentBar_ES Toolbar - c:\progra~2\UTORRE~1\UNWISE.EXE
      .
      .
      .
      --------------------- LOCKED REGISTRY KEYS ---------------------
      .
      [HKEY_USERS\S-1-5-21-3184329585-738872171-714124981-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*<%*ã*]
      @Class="Shell"
      @Allowed: (Read) (RestrictedCode)
      .
      [HKEY_USERS\S-1-5-21-3184329585-738872171-714124981-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*<%*ã*\OpenWithList]
      @Class="Shell"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
      @Denied: (A 2) (Everyone)
      @="FlashBroker"
      "LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_4_402_287_ActiveX.exe,-101"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
      "Enabled"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
      @="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_4_402_287_ActiveX.exe"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
      @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
      @Denied: (A 2) (Everyone)
      @="IFlashBroker5"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
      @="{00020424-0000-0000-C000-000000000046}"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
      @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
      "Version"="1.0"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
      @Denied: (A 2) (Everyone)
      @="FlashBroker"
      "LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_4_402_287_ActiveX.exe,-101"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
      "Enabled"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
      @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_4_402_287_ActiveX.exe"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
      @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
      @Denied: (A 2) (Everyone)
      @="Shockwave Flash Object"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
      @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_287.ocx"
      "ThreadingModel"="Apartment"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
      @="0"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
      @="ShockwaveFlash.ShockwaveFlash.11"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
      @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_287.ocx, 1"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
      @="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
      @="1.0"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
      @="ShockwaveFlash.ShockwaveFlash"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
      @Denied: (A 2) (Everyone)
      @="Macromedia Flash Factory Object"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
      @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_287.ocx"
      "ThreadingModel"="Apartment"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
      @="FlashFactory.FlashFactory.1"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
      @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_287.ocx, 1"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
      @="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
      @="1.0"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
      @="FlashFactory.FlashFactory"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
      @Denied: (A 2) (Everyone)
      @="IFlashBroker5"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
      @="{00020424-0000-0000-C000-000000000046}"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
      @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
      "Version"="1.0"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows CE Services]
      "SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
      00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,4f,00,46,00,\
      .
      [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
      @Denied: (A) (Users)
      @Denied: (A) (Everyone)
      @Allowed: (B 1 2 3 4 5) (S-1-5-20)
      "BlindDial"=dword:00000000
      .
      [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
      @Denied: (Full) (Everyone)
      .
      ------------------------ Other Running Processes ------------------------
      .
      c:\program files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
      c:\windows\SysWOW64\rundll32.exe
      c:\program files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
      .
      **************************************************************************
      .
      Completion time: 2012-10-25 17:13:10 - machine was rebooted
      ComboFix-quarantined-files.txt 2012-10-25 15:13
      ComboFix2.txt 2012-10-24 10:14
      .
      Pre-Run: 211.034.525.696 bytes libres
      Post-Run: 211.065.606.144 bytes libres
      .
      - - End Of File - - 47818D7E1C0DE1FC601F8081218E65CE

    10. #10
      Moderador Gral.
      Avatar de @Leosolari
      Registrado
      jun 2007
      Ubicación
      Argentina
      Mensajes
      58.638

      Re: Desconexión del centro de seguridad y redireccionamiento de google.

      Hola

      Desinstalá CF de la siguiente manera:
      • Ir a Inicio > Ejecutar
      • Escribir lo siguiente: ComboFix /Uninstall como muestra la imagen debajo:

      • Esto activara el desinstalador de ComboFix abriendo su pantalla principal y luego de unos segundos veras ("ComboFix is uninstalled")



      Si No podes desinstalalrlo asì, Descargá OTC.exe en el escritorio.

      Lo ejecutás y presionás Cleanup para Desinstalar ComboFix y sus carpetas creadas.

      Eso reiniciará tu pc.




      Desinstalá Completamente Firefox, con todas sus Extenciones y plugIn.




      Descarga FSS.exe a tu escritorio.


      Ejecuta FSS.exe (Si usas Windows vista o 7 Presiona clic derecho y le das a la opción Ejecutar como administrador)

      Marca las siguientes opciones:



      • Internet Services
      • Windows Firewall
      • System Restore
      • Security Center
      • Windows Update
      • Windows Defender




      Presiona el botón Scan y esperá a que termine Su trabajo.



      Se abrirá un Bloc de notas. Copia y pega el contenido en tu próxima respuesta.


      Salu2.
      Síguenos en Twitter y hazte nuestro amigo en Facebook.

    Página 1 de 2 12 ÚltimoÚltimo