No puedo actualizar windows 7 home premium

Printable View

Mostrar 40 mensajes desde este tema en una página

31/10/12, 09:34:06
abelique

Re: No puedo actualizar windows 7 home premium

OK, mi pc de sobre messa lleva desde antes de navidades que tiene el archivo: c:\windows\system32\services.exe infectado, no sabia como solucionarlo ya que es un archivo del sistema, hasta intente reemplazarlo pero no encontré
ningun metodo para hacerlo, si no te importa Anleg_30 realizo tus pasos en los dos ordenadores y te dejo los reportes,

Sobre messa=========>
reporte de TDSSKiller:

Cita:

13:24:40.0020 4756 TDSS rootkit removing tool 2.8.13.0 Oct 12 2012 17:26:47
13:24:40.0200 4756 ============================================================
13:24:40.0200 4756 Current date / time: 2012/10/31 13:24:40.0200
13:24:40.0200 4756 SystemInfo:
13:24:40.0200 4756
13:24:40.0200 4756 OS Version: 6.0.6002 ServicePack: 2.0
13:24:40.0200 4756 Product type: Workstation
13:24:40.0200 4756 ComputerName: ULTIMATE
13:24:40.0200 4756 UserName: Abelique
13:24:40.0200 4756 Windows directory: C:\Windows
13:24:40.0200 4756 System windows directory: C:\Windows
13:24:40.0200 4756 Running under WOW64
13:24:40.0200 4756 Processor architecture: Intel x64
13:24:40.0200 4756 Number of processors: 2
13:24:40.0201 4756 Page size: 0x1000
13:24:40.0201 4756 Boot type: Normal boot
13:24:40.0201 4756 ============================================================
13:24:42.0434 4756 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
13:24:42.0439 4756 ============================================================
13:24:42.0439 4756 \Device\Harddisk0\DR0:
13:24:42.0439 4756 MBR partitions:
13:24:42.0439 4756 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xC803400
13:24:42.0439 4756 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0xC80343F, BlocksNum 0x190029BD
13:24:42.0439 4756 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x25805DFC, BlocksNum 0x14B7EE45
13:24:42.0439 4756 ============================================================
13:24:42.0517 4756 C: <-> \Device\Harddisk0\DR0\Partition1
13:24:42.0661 4756 D: <-> \Device\Harddisk0\DR0\Partition2
13:24:42.0715 4756 E: <-> \Device\Harddisk0\DR0\Partition3
13:24:42.0715 4756 ============================================================
13:24:42.0715 4756 Initialize success
13:24:42.0715 4756 ============================================================
13:25:05.0527 4776 ============================================================
13:25:05.0528 4776 Scan started
13:25:05.0528 4776 Mode: Manual; SigCheck; TDLFS;
13:25:05.0528 4776 ============================================================
13:25:06.0601 4776 ================ Scan system memory ========================
13:25:06.0601 4776 System memory - ok
13:25:06.0601 4776 ================ Scan services =============================
13:25:06.0815 4776 [ 1965AAFFAB07E3FB03C77F81BEBA3547 ] ACPI C:\Windows\system32\drivers\acpi.sys
13:25:07.0004 4776 ACPI - ok
13:25:07.0103 4776 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
13:25:07.0121 4776 AdobeARMservice - ok
13:25:07.0263 4776 [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
13:25:07.0285 4776 AdobeFlashPlayerUpdateSvc - ok
13:25:07.0340 4776 [ 9137451D37BA1C325CD6C2DEF3D2D692 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
13:25:07.0369 4776 adp94xx - ok
13:25:07.0415 4776 [ 01F80898DF5CC7DF19B3B11351846263 ] adpahci C:\Windows\system32\drivers\adpahci.sys
13:25:07.0505 4776 adpahci - ok
13:25:07.0535 4776 [ DA001DB13FFF45DFE9109936E265B7CC ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
13:25:07.0551 4776 adpu160m - ok
13:25:07.0570 4776 [ 2B10C35C5B7C5C0C28F572E035319602 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
13:25:07.0585 4776 adpu320 - ok
13:25:07.0682 4776 [ 96D6CDD0B32846E8CFBE592F4F32E608 ] AdvancedSystemCareService5 C:\Program Files (x86)\IObit\Advanced SystemCare 5\ASCService.exe
13:25:07.0708 4776 AdvancedSystemCareService5 - ok
13:25:07.0784 4776 [ 0F421175574BFE0BF2F4D8E910A253BB ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
13:25:07.0959 4776 AeLookupSvc - ok
13:25:08.0009 4776 [ C4F6CE6087760AD70960C9EB130E7943 ] AFD C:\Windows\system32\drivers\afd.sys
13:25:08.0081 4776 AFD - ok
13:25:08.0099 4776 [ 5CCDD13BC602AE33CD8B62D33C29AB72 ] agp440 C:\Windows\system32\drivers\agp440.sys
13:25:08.0115 4776 agp440 - ok
13:25:08.0136 4776 [ 222CB641B4B8A1D1126F8033F9FD6A00 ] aic78xx C:\Windows\system32\drivers\djsvs.sys
13:25:08.0154 4776 aic78xx - ok
13:25:08.0185 4776 [ 5922F4F59B7868F3D74BBBBEB7B825A3 ] ALG C:\Windows\System32\alg.exe
13:25:08.0327 4776 ALG - ok
13:25:08.0361 4776 [ 157D0898D4B73F075CE9FA26B482DF98 ] aliide C:\Windows\system32\drivers\aliide.sys
13:25:08.0378 4776 aliide - ok
13:25:08.0392 4776 [ 970FA5059E61E30D25307B99903E991E ] amdide C:\Windows\system32\drivers\amdide.sys
13:25:08.0410 4776 amdide - ok
13:25:08.0427 4776 [ DE55DC52F7CEB89A967572D6B491ADA2 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
13:25:08.0577 4776 AmdK8 - ok
13:25:08.0604 4776 [ 71336E77F98A65EFAAEB950902611D3F ] AmFSM C:\Windows\system32\DRIVERS\amm6460.sys
13:25:08.0630 4776 AmFSM - ok
13:25:08.0721 4776 [ B11291CBC71231C373743055FB7F5B48 ] AppHostSvc C:\Windows\system32\inetsrv\apphostsvc.dll
13:25:08.0762 4776 AppHostSvc - ok
13:25:08.0813 4776 [ 9C37B3FD5615477CB9A0CD116CF43F5C ] Appinfo C:\Windows\System32\appinfo.dll
13:25:08.0862 4776 Appinfo - ok
13:25:08.0921 4776 [ 3DA98C07B18A676180FE7EED924D1673 ] AppMgmt C:\Windows\System32\appmgmts.dll
13:25:08.0970 4776 AppMgmt - ok
13:25:08.0984 4776 [ 2E8623F2FED998A97129A3DB919551C8 ] arc C:\Windows\system32\drivers\arc.sys
13:25:09.0001 4776 arc - ok
13:25:09.0038 4776 [ 741A003C041A3EC480A2E71AF71E9654 ] arcsas C:\Windows\system32\drivers\arcsas.sys
13:25:09.0058 4776 arcsas - ok
13:25:09.0099 4776 [ 68726474C69B738EAC3A62E06B33ADDC ] AsIO C:\Windows\syswow64\drivers\AsIO.sys
13:25:09.0114 4776 AsIO - ok
13:25:09.0169 4776 [ 22D13FF3DAFEC2A80634752B1EAA2DE6 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
13:25:09.0242 4776 AsyncMac - ok
13:25:09.0269 4776 [ E68D9B3A3905619732F7FE039466A623 ] atapi C:\Windows\system32\drivers\atapi.sys
13:25:09.0291 4776 atapi - ok
13:25:09.0365 4776 [ 788914C42AD8318F1DD7A565EAFFB049 ] athrusb C:\Windows\system32\DRIVERS\athrxusb.sys
13:25:09.0481 4776 athrusb - ok
13:25:09.0525 4776 [ 79318C744693EC983D20E9337A2F8196 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
13:25:09.0599 4776 AudioEndpointBuilder - ok
13:25:09.0609 4776 [ 79318C744693EC983D20E9337A2F8196 ] AudioSrv C:\Windows\System32\Audiosrv.dll
13:25:09.0654 4776 AudioSrv - ok
13:25:09.0688 4776 Beep - ok
13:25:09.0737 4776 [ FFB96C2589FFA60473EAD78B39FBDE29 ] BFE C:\Windows\System32\bfe.dll
13:25:09.0808 4776 BFE - ok
13:25:09.0893 4776 [ 6D316F4859634071CC25C4FD4589AD2C ] BITS C:\Windows\System32\qmgr.dll
13:25:10.0019 4776 BITS - ok
13:25:10.0024 4776 blbdrive - ok
13:25:10.0100 4776 [ 2348447A80920B2493A9B582A23E81E1 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
13:25:10.0146 4776 bowser - ok
13:25:10.0174 4776 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
13:25:10.0226 4776 BrFiltLo - ok
13:25:10.0254 4776 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
13:25:10.0326 4776 BrFiltUp - ok
13:25:10.0364 4776 [ A1B39DE453433B115B4EA69EE0343816 ] Browser C:\Windows\System32\browser.dll
13:25:10.0416 4776 Browser - ok
13:25:10.0438 4776 [ F0F0BA4D815BE446AA6A4583CA3BCA9B ] Brserid C:\Windows\system32\drivers\brserid.sys
13:25:10.0511 4776 Brserid - ok
13:25:10.0529 4776 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
13:25:10.0606 4776 BrSerWdm - ok
13:25:10.0631 4776 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
13:25:10.0716 4776 BrUsbMdm - ok
13:25:10.0734 4776 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
13:25:10.0808 4776 BrUsbSer - ok
13:25:10.0870 4776 [ 09F926A0D9C0BAFD8417A4307D2ED13C ] BthEnum C:\Windows\system32\DRIVERS\BthEnum.sys
13:25:10.0916 4776 BthEnum - ok
13:25:10.0940 4776 [ 72F70A38BB15252EB7C4DA7BA3BD4ED1 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
13:25:10.0991 4776 BTHMODEM - ok
13:25:11.0019 4776 [ BEFC5311736B475AC5B60C14FF7C775A ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
13:25:11.0064 4776 BthPan - ok
13:25:11.0144 4776 [ E1466882252FF51EDDE48C3F7EDA2591 ] BTHPORT C:\Windows\system32\Drivers\BTHport.sys
13:25:11.0226 4776 BTHPORT - ok
13:25:11.0264 4776 [ 22E65FFD640F16968F855F5B3528D366 ] BthServ C:\Windows\System32\bthserv.dll
13:25:11.0297 4776 BthServ - ok
13:25:11.0352 4776 [ 970192CDED77A128E7E30722E5EE6B9C ] BTHUSB C:\Windows\system32\Drivers\BTHUSB.sys
13:25:11.0375 4776 BTHUSB - ok
13:25:11.0391 4776 catchme - ok
13:25:11.0436 4776 [ B4D787DB8D30793A4D4DF9FEED18F136 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
13:25:11.0486 4776 cdfs - ok
13:25:11.0540 4776 [ C025AA69BE3D0D25C7A2E746EF6F94FC ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
13:25:11.0597 4776 cdrom - ok
13:25:11.0660 4776 [ 5A268127633C7EE2A7FB87F39D748D56 ] CertPropSvc C:\Windows\System32\certprop.dll
13:25:11.0698 4776 CertPropSvc - ok
13:25:11.0754 4776 [ F28F00596824058BC61D5EDF434C9B82 ] circlass C:\Windows\system32\drivers\circlass.sys
13:25:11.0845 4776 circlass - ok
13:25:11.0873 4776 [ 2C0F16506BCBC80097D58099BC6BE4C0 ] CISVC C:\Windows\system32\CISVC.EXE
13:25:11.0900 4776 CISVC - ok
13:25:11.0930 4776 [ 3DCA9A18B204939CFB24BEA53E31EB48 ] CLFS C:\Windows\system32\CLFS.sys
13:25:11.0991 4776 CLFS - ok
13:25:12.0082 4776 [ 8EE772032E2FE80A924F3B8DD5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
13:25:12.0111 4776 clr_optimization_v2.0.50727_32 - ok
13:25:12.0157 4776 [ CE07A466201096F021CD09D631B21540 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
13:25:12.0177 4776 clr_optimization_v2.0.50727_64 - ok
13:25:12.0260 4776 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
13:25:12.0280 4776 clr_optimization_v4.0.30319_32 - ok
13:25:12.0335 4776 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
13:25:12.0352 4776 clr_optimization_v4.0.30319_64 - ok
13:25:12.0368 4776 [ E5D5499A1C50A54B5161296B6AFE6192 ] cmdide C:\Windows\system32\drivers\cmdide.sys
13:25:12.0385 4776 cmdide - ok
13:25:12.0398 4776 [ 0E77A445640BF310817F60941C50560C ] Compbatt C:\Windows\system32\drivers\compbatt.sys
13:25:12.0414 4776 Compbatt - ok
13:25:12.0419 4776 COMSysApp - ok
13:25:12.0453 4776 [ B1192DCD5B9CF46BEED0E2A9E5BCF59A ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
13:25:12.0467 4776 crcdisk - ok
13:25:12.0515 4776 [ CA78B312C44E4D52E842C2C8BD48E452 ] CryptSvc C:\Windows\system32\cryptsvc.dll
13:25:12.0555 4776 CryptSvc - ok
13:25:12.0605 4776 [ F60F50C8ED3FCBE358430B95FE27D09C ] CSC C:\Windows\system32\drivers\csc.sys
13:25:12.0673 4776 CSC - ok
13:25:12.0718 4776 [ 1B5F256D31836ED2BA60B3A6C800200C ] CscService C:\Windows\System32\cscsvc.dll
13:25:12.0758 4776 CscService - ok
13:25:12.0807 4776 [ CF8B9A3A5E7DC57724A89D0C3E8CF9EF ] DcomLaunch C:\Windows\system32\rpcss.dll
13:25:12.0853 4776 DcomLaunch - ok
13:25:12.0887 4776 [ 8B722BA35205C71E7951CDC4CDBADE19 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
13:25:12.0930 4776 DfsC - ok
13:25:13.0042 4776 [ C647F468F7DE343DF8C143655C5557D4 ] DFSR C:\Windows\system32\DFSR.exe
13:25:13.0281 4776 DFSR - ok
13:25:13.0313 4776 [ 3ED0321127CE70ACDAABBF77E157C2A7 ] Dhcp C:\Windows\System32\dhcpcsvc.dll
13:25:13.0353 4776 Dhcp - ok
13:25:13.0401 4776 [ B0107E40ECDB5FA692EBF832F295D905 ] disk C:\Windows\system32\drivers\disk.sys
13:25:13.0417 4776 disk - ok
13:25:13.0452 4776 [ 06230F1B721494A6DF8D47FD395BB1B0 ] Dnscache C:\Windows\System32\dnsrslvr.dll
13:25:13.0482 4776 Dnscache - ok
13:25:13.0524 4776 [ 1A7156DD1E850E9914E5E991E3225B94 ] dot3svc C:\Windows\System32\dot3svc.dll
13:25:13.0572 4776 dot3svc - ok
13:25:13.0607 4776 [ 1583B39790DB3EAEC7EDB0CB0140C708 ] DPS C:\Windows\system32\dps.dll
13:25:13.0658 4776 DPS - ok
13:25:13.0696 4776 [ F1A78A98CFC2EE02144C6BEC945447E6 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
13:25:13.0742 4776 drmkaud - ok
13:25:13.0811 4776 [ B8E554E502D5123BC111F99D6A2181B4 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
13:25:13.0856 4776 DXGKrnl - ok
13:25:13.0901 4776 [ D57FE09B575545738A73A0C193D0616A ] E1G60 C:\Windows\system32\DRIVERS\E1G6032E.sys
13:25:13.0967 4776 E1G60 - ok
13:25:14.0025 4776 [ C2303883FD9BE49DC36A6400643002EA ] EapHost C:\Windows\System32\eapsvc.dll
13:25:14.0078 4776 EapHost - ok
13:25:14.0106 4776 [ 5F94962BE5A62DB6E447FF6470C4F48A ] Ecache C:\Windows\system32\drivers\ecache.sys
13:25:14.0129 4776 Ecache - ok
13:25:14.0176 4776 [ 14CE384D2E27B64C256BDA4DC39C312D ] ehRecvr C:\Windows\ehome\ehRecvr.exe
13:25:14.0232 4776 ehRecvr - ok
13:25:14.0253 4776 [ B93159C1313D66FDFBBE876F5189CD52 ] ehSched C:\Windows\ehome\ehsched.exe
13:25:14.0271 4776 ehSched - ok
13:25:14.0309 4776 [ F5EE2527D74449868E3C3227A59BCD28 ] ehstart C:\Windows\ehome\ehstart.dll
13:25:14.0355 4776 ehstart - ok
13:25:14.0378 4776 [ 3D6298AFF3FE06C0616CE5D090A3EEAA ] elxstor C:\Windows\system32\drivers\elxstor.sys
13:25:14.0402 4776 elxstor - ok
13:25:14.0456 4776 [ A9B18B63A4FD6BAAB83326706D857FAB ] EMDMgmt C:\Windows\system32\emdmgmt.dll
13:25:14.0520 4776 EMDMgmt - ok
13:25:14.0575 4776 [ E12F22B73F153DECE721CD45EC05B4AF ] EventSystem C:\Windows\system32\es.dll
13:25:14.0630 4776 EventSystem - ok
13:25:14.0653 4776 [ 486844F47B6636044A42454614ED4523 ] exfat C:\Windows\system32\drivers\exfat.sys
13:25:14.0706 4776 exfat - ok
13:25:14.0731 4776 [ 1A4BEE34277784619DDAF0422C0C6E23 ] fastfat C:\Windows\system32\drivers\fastfat.sys
13:25:14.0783 4776 fastfat - ok
13:25:14.0857 4776 [ 989A776A2FF32A148FCF15C44058B129 ] Fax C:\Windows\system32\fxssvc.exe
13:25:14.0906 4776 Fax - ok
13:25:14.0932 4776 [ 61B6DBD1AD1143F008364D4E9A96B224 ] fdc C:\Windows\system32\DRIVERS\fdc.sys
13:25:14.0996 4776 fdc - ok
13:25:15.0022 4776 [ BB9267ACACD8B7533DD936C34A0CBA5E ] fdPHost C:\Windows\system32\fdPHost.dll
13:25:15.0102 4776 fdPHost - ok
13:25:15.0146 4776 [ 300C80931EABBE1DB7591C516EFE8D0F ] FDResPub C:\Windows\system32\fdrespub.dll
13:25:15.0238 4776 FDResPub - ok
13:25:15.0275 4776 [ 457B7D1D533E4BD62A99AED9C7BB4C59 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
13:25:15.0298 4776 FileInfo - ok
13:25:15.0352 4776 [ 7A0E303A18B04771A9DFA64932B5AEE0 ] FileMonitor C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\wlh_amd64\FileMonitor.sys
13:25:15.0385 4776 FileMonitor - ok
13:25:15.0428 4776 [ D421327FD6EFCCAF884A54C58E1B0D7F ] Filetrace C:\Windows\system32\drivers\filetrace.sys
13:25:15.0565 4776 Filetrace - ok
13:25:15.0584 4776 [ 12C3D1B4D0CE49E1CE343BA2F22F15E0 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
13:25:15.0708 4776 flpydisk - ok
13:25:15.0750 4776 [ E3041BC26D6930D61F42AEDB79C91720 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
13:25:15.0778 4776 FltMgr - ok
13:25:15.0869 4776 [ BE1C5BD1CA7ED015BC6FA1AE67E592C8 ] FontCache C:\Windows\system32\FntCache.dll
13:25:16.0003 4776 FontCache - ok
13:25:16.0070 4776 [ BC5B0BE5AF3510B0FD8C140EE42C6D3E ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
13:25:16.0090 4776 FontCache3.0.0.0 - ok
13:25:16.0141 4776 [ 5779B86CD8B32519FBECB136394D946A ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
13:25:16.0191 4776 Fs_Rec - ok
13:25:16.0216 4776 [ 849E38DB7D829962D0233A0A252B60C3 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
13:25:16.0242 4776 fvevol - ok
13:25:16.0265 4776 [ B54520CC7B4B55134D7527B1CD3FC1F2 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
13:25:16.0287 4776 gagp30kx - ok
13:25:16.0343 4776 [ A0E1B575BA8F504968CD40C0FAEB2384 ] gpsvc C:\Windows\System32\gpsvc.dll
13:25:16.0411 4776 gpsvc - ok
13:25:16.0444 4776 [ BA207B48AA3D9D73FD4856400F852458 ] hcmon C:\Windows\system32\drivers\hcmon.sys
13:25:16.0462 4776 hcmon - ok
13:25:16.0516 4776 [ DF45F8142DC6DF9D18C39B3EFFBD0409 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
13:25:16.0618 4776 HdAudAddService - ok
13:25:16.0653 4776 [ F942C5820205F2FB453243EDFEC82A3D ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
13:25:16.0738 4776 HDAudBus - ok
13:25:16.0773 4776 [ B4881C84A180E75B8C25DC1D726C375F ] HidBth C:\Windows\system32\drivers\hidbth.sys
13:25:16.0847 4776 HidBth - ok
13:25:16.0864 4776 [ 4E77A77E2C986E8F88F996BB3E1AD829 ] HidIr C:\Windows\system32\drivers\hidir.sys
13:25:16.0940 4776 HidIr - ok
13:25:16.0976 4776 [ 59361D38A297755D46A540E450202B2A ] hidserv C:\Windows\System32\hidserv.dll
13:25:17.0014 4776 hidserv - ok
13:25:17.0057 4776 [ 443BDD2D30BB4F00795C797E2CF99EDF ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
13:25:17.0133 4776 HidUsb - ok
13:25:17.0175 4776 [ B12F367EA39C0795FD57E31242CE1A5A ] hkmsvc C:\Windows\system32\kmsvc.dll
13:25:17.0250 4776 hkmsvc - ok
13:25:17.0291 4776 [ 8EDC820115DF1E04763B2923676EA5B2 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
13:25:17.0311 4776 HpCISSs - ok
13:25:17.0361 4776 [ 098F1E4E5C9CB5B0063A959063631610 ] HTTP C:\Windows\system32\drivers\HTTP.sys
13:25:17.0411 4776 HTTP - ok
13:25:17.0438 4776 [ F2901763845570ECAC48E6A50EC50812 ] i2omp C:\Windows\system32\drivers\i2omp.sys
13:25:17.0456 4776 i2omp - ok
13:25:17.0514 4776 [ CBB597659A2713CE0C9CC20C88C7591F ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
13:25:17.0547 4776 i8042prt - ok
13:25:17.0578 4776 [ 72C3EE7EA3CD75A772E62AE0E5DF8B8C ] iaStorV C:\Windows\system32\drivers\iastorv.sys
13:25:17.0601 4776 iaStorV - ok
13:25:17.0666 4776 [ 749F5F8CEDCA70F2A512945325FC489D ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
13:25:17.0720 4776 idsvc - ok
13:25:17.0754 4776 [ 8C3951AD2FE886EF76C7B5027C3125D3 ] iirsp C:\Windows\system32\drivers\iirsp.sys
13:25:17.0767 4776 iirsp - ok
13:25:17.0831 4776 [ 0C9EA6E654E7B0471741E343A6C671AF ] IKEEXT C:\Windows\System32\ikeext.dll
13:25:17.0865 4776 IKEEXT - ok
13:25:17.0962 4776 [ 8AE99EBE30E8338907361018D9030835 ] IMFservice C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
13:25:17.0984 4776 IMFservice - ok
13:25:18.0085 4776 [ F04D22D7A49A1B2210DBADF0B803E870 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
13:25:18.0173 4776 IntcAzAudAddService - ok
13:25:18.0237 4776 [ DF797A12176F11B2D301C5B234BB200E ] intelide C:\Windows\system32\drivers\intelide.sys
13:25:18.0252 4776 intelide - ok
13:25:18.0289 4776 [ BFD84AF32FA1BAD6231C4585CB469630 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
13:25:18.0341 4776 intelppm - ok
13:25:18.0360 4776 [ 5624BC1BC5EEB49C0AB76A8114F05EA3 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
13:25:18.0399 4776 IPBusEnum - ok
13:25:18.0436 4776 [ D8AABC341311E4780D6FCE8C73C0AD81 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
13:25:18.0484 4776 IpFilterDriver - ok
13:25:18.0517 4776 [ BF0DBFA9792C5C14FA00F61C75116C1B ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
13:25:18.0551 4776 iphlpsvc - ok
13:25:18.0556 4776 IpInIp - ok
13:25:18.0588 4776 [ EACDBBE429C6D170BDEEE0EFFCBC317B ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
13:25:18.0650 4776 IPMIDRV - ok
13:25:18.0679 4776 [ B7E6212F581EA5F6AB0C3A6CEEEB89BE ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
13:25:18.0727 4776 IPNAT - ok
13:25:18.0765 4776 [ 8C42CA155343A2F11D29FECA67FAA88D ] IRENUM C:\Windows\system32\drivers\irenum.sys
13:25:18.0803 4776 IRENUM - ok
13:25:18.0838 4776 [ D3BB520B31F28C1A065CD058E762EE73 ] isapnp C:\Windows\system32\drivers\isapnp.sys
13:25:18.0854 4776 isapnp - ok
13:25:18.0907 4776 [ E4FDF99599F27EC25D2CF6D754243520 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
13:25:18.0929 4776 iScsiPrt - ok
13:25:18.0951 4776 [ 63C766CDC609FF8206CB447A65ABBA4A ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
13:25:18.0966 4776 iteatapi - ok
13:25:19.0003 4776 [ 1281FE73B17664631D12F643CBEA3F59 ] iteraid C:\Windows\system32\drivers\iteraid.sys
13:25:19.0019 4776 iteraid - ok
13:25:19.0049 4776 [ 423696F3BA6472DD17699209B933BC26 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
13:25:19.0068 4776 kbdclass - ok
13:25:19.0080 4776 [ DBDF75D51464FBC47D0104EC3D572C05 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
13:25:19.0113 4776 kbdhid - ok
13:25:19.0134 4776 [ 260BF9C43EE12C6898A9F5AAB0FB0E5D ] KeyIso C:\Windows\system32\lsass.exe
13:25:19.0191 4776 KeyIso - ok
13:25:19.0265 4776 [ 88956AD9FA510848AD176777A6C6C1F5 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
13:25:19.0310 4776 KSecDD - ok
13:25:19.0349 4776 [ 1D419CF43DB29396ECD7113D129D94EB ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
13:25:19.0403 4776 ksthunk - ok
13:25:19.0455 4776 [ 1FAF6926F3416D3DA05C5B265491BDAE ] KtmRm C:\Windows\system32\msdtckrm.dll
13:25:19.0557 4776 KtmRm - ok
13:25:19.0616 4776 [ 073508533E422CE8BCEE234EB35CEEBF ] L1E C:\Windows\system32\DRIVERS\L1E60x64.sys
13:25:19.0648 4776 L1E - ok
13:25:19.0688 4776 [ 50C7A3CB427E9BB5ED0708A669956AB5 ] LanmanServer C:\Windows\System32\srvsvc.dll
13:25:19.0739 4776 LanmanServer - ok
13:25:19.0764 4776 [ CAF86FC1388BE1E470F1A7B43E348ADB ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
13:25:19.0826 4776 LanmanWorkstation - ok
13:25:19.0868 4776 [ 96ECE2659B6654C10A0C310AE3A6D02C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
13:25:19.0919 4776 lltdio - ok
13:25:19.0963 4776 [ 961CCBD0B1CCB5675D64976FAE37D092 ] lltdsvc C:\Windows\System32\lltdsvc.dll
13:25:20.0023 4776 lltdsvc - ok
13:25:20.0048 4776 [ A47F8080CACC23C91FE823AD19AA5612 ] lmhosts C:\Windows\System32\lmhsvc.dll
13:25:20.0099 4776 lmhosts - ok
13:25:20.0138 4776 [ 1572F8D999C0AB4376AFDCE058A78DF9 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
13:25:20.0162 4776 LSI_FC - ok
13:25:20.0186 4776 [ 64470979C3E3C9FF60EDFB5230C56E0E ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
13:25:20.0210 4776 LSI_SAS - ok
13:25:20.0240 4776 [ 4CED7D3B54BFC5BBAE75C4A73C7F7428 ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
13:25:20.0262 4776 LSI_SCSI - ok
13:25:20.0307 4776 [ 52F87B9CC8932C2A7375C3B2A9BE5E3E ] luafv C:\Windows\system32\drivers\luafv.sys
13:25:20.0372 4776 luafv - ok
13:25:20.0408 4776 [ A8FE8F2783B2929B56F5370A89356CE9 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
13:25:20.0429 4776 MBAMProtector - ok
13:25:20.0488 4776 [ 85B16A92B117A5A800032ECD904B86DB ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
13:25:20.0517 4776 MBAMScheduler - ok
13:25:20.0569 4776 [ 20E2469DB709FC675E655CEAA11BE312 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
13:25:20.0604 4776 MBAMService - ok
13:25:20.0640 4776 [ 76A58DF02BD4EA29F189B82D0BEF17F8 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
13:25:20.0754 4776 Mcx2Svc - ok
13:25:20.0785 4776 [ 2F631C2939D5F2E8958935EE701D70D7 ] megasas C:\Windows\system32\drivers\megasas.sys
13:25:20.0845 4776 megasas - ok
13:25:20.0960 4776 Microsoft SharePoint Workspace Audit Service - ok
13:25:20.0992 4776 [ 3CBE4995E80E13CCFBC42E5DCF3AC81A ] MMCSS C:\Windows\system32\mmcss.dll
13:25:21.0057 4776 MMCSS - ok
13:25:21.0082 4776 [ 59848D5CC74606F0EE7557983BB73C2E ] Modem C:\Windows\system32\drivers\modem.sys
13:25:21.0132 4776 Modem - ok
13:25:21.0169 4776 [ C247CC2A57E0A0C8C6DCCF7807B3E9E5 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
13:25:21.0238 4776 monitor - ok
13:25:21.0291 4776 [ 9367304E5E412B120CF5F4EA14E4E4F1 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
13:25:21.0313 4776 mouclass - ok
13:25:21.0341 4776 [ C2C2BD5C5CE5AAF786DDD74B75D2AC69 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
13:25:21.0387 4776 mouhid - ok
13:25:21.0408 4776 [ 11BC9B1E8801B01F7F6ADB9EAD30019B ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
13:25:21.0427 4776 MountMgr - ok
13:25:21.0504 4776 [ 4D7F2682D29B92A6251B17957AA0B985 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
13:25:21.0523 4776 MozillaMaintenance - ok
13:25:21.0555 4776 [ ED48EAC719EE28DB773359EB1B06E2B5 ] mpio C:\Windows\system32\drivers\mpio.sys
13:25:21.0575 4776 mpio - ok
13:25:21.0611 4776 [ C92B9ABDB65A5991E00C28F13491DBA2 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
13:25:21.0671 4776 mpsdrv - ok
13:25:21.0721 4776 [ 897E3BAF68BA406A61682AE39C83900C ] MpsSvc C:\Windows\system32\mpssvc.dll
13:25:21.0775 4776 MpsSvc - ok
13:25:21.0798 4776 [ 3C200630A89EF2C0864D515B7A75802E ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
13:25:21.0820 4776 Mraid35x - ok
13:25:21.0837 4776 [ 7C1DE4AA96DC0C071611F9E7DE02A68D ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
13:25:21.0875 4776 MRxDAV - ok
13:25:21.0923 4776 [ 1485811B320FF8C7EDAD1CAEBB1C6C2B ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
13:25:21.0967 4776 mrxsmb - ok
13:25:22.0025 4776 [ 3B929A60C833FC615FD97FBA82BC7632 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
13:25:22.0071 4776 mrxsmb10 - ok
13:25:22.0086 4776 [ C64AB3E1F53B4F5B5BB6D796B2D7BEC3 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
13:25:22.0112 4776 mrxsmb20 - ok
13:25:22.0135 4776 [ EEADF970795148BFBB1DB3ABCC89C16B ] msahci C:\Windows\system32\drivers\msahci.sys
13:25:22.0156 4776 msahci - ok
13:25:22.0186 4776 [ 96D7C0A1B98434C6E4FF0C2E26A0E20A ] msdsm C:\Windows\system32\drivers\msdsm.sys
13:25:22.0209 4776 msdsm - ok
13:25:22.0248 4776 [ 7EC02CE772F068ED0BEAFA3DA341A9BC ] MSDTC C:\Windows\System32\msdtc.exe
13:25:22.0302 4776 MSDTC - ok
13:25:22.0356 4776 [ 704F59BFC4512D2BB0146AEC31B10A7C ] Msfs C:\Windows\system32\drivers\Msfs.sys
13:25:22.0413 4776 Msfs - ok
13:25:22.0461 4776 [ 00EBC952961664780D43DCA157E79B27 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
13:25:22.0477 4776 msisadrv - ok
13:25:22.0517 4776 [ 366B0C1F4478B519C181E37D43DCDA32 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
13:25:22.0569 4776 MSiSCSI - ok
13:25:22.0574 4776 msiserver - ok
13:25:22.0601 4776 [ 0EA73E498F53B96D83DBFCA074AD4CF8 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
13:25:22.0642 4776 MSKSSRV - ok
13:25:22.0660 4776 [ 52E59B7E992A58E740AA63F57EDBAE8B ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
13:25:22.0705 4776 MSPCLOCK - ok
13:25:22.0738 4776 [ 49084A75BAE043AE02D5B44D02991BB2 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
13:25:22.0776 4776 MSPQM - ok
13:25:22.0825 4776 [ DC6CCF440CDEDE4293DB41C37A5060A5 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
13:25:22.0842 4776 MsRPC - ok
13:25:22.0854 4776 [ 855796E59DF77EA93AF46F20155BF55B ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
13:25:22.0867 4776 mssmbios - ok
13:25:22.0901 4776 [ 86D632D75D05D5B7C7C043FA3564AE86 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
13:25:22.0938 4776 MSTEE - ok
13:25:23.0012 4776 [ 6936198F2CC25B39CF5262436C80DF46 ] MTsensor C:\Windows\system32\DRIVERS\ASACPI.sys
13:25:23.0024 4776 MTsensor - ok
13:25:23.0059 4776 [ 0CC49F78D8ACA0877D885F149084E543 ] Mup C:\Windows\system32\Drivers\mup.sys
13:25:23.0078 4776 Mup - ok
13:25:23.0123 4776 [ A5B10C845E7538C60C0F5D87A57CB3F5 ] napagent C:\Windows\system32\qagentRT.dll
13:25:23.0172 4776 napagent - ok
13:25:23.0228 4776 [ 2007B826C4ACD94AE32232B41F0842B9 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
13:25:23.0267 4776 NativeWifiP - ok
13:25:23.0315 4776 [ 65950E07329FCEE8E6516B17C8D0ABB6 ] NDIS C:\Windows\system32\drivers\ndis.sys
13:25:23.0362 4776 NDIS - ok
13:25:23.0396 4776 [ 64DF698A425478E321981431AC171334 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
13:25:23.0443 4776 NdisTapi - ok
13:25:23.0460 4776 [ 8BAA43196D7B5BB972C9A6B2BBF61A19 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
13:25:23.0499 4776 Ndisuio - ok
13:25:23.0520 4776 [ F8158771905260982CE724076419EF19 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
13:25:23.0567 4776 NdisWan - ok
13:25:23.0584 4776 [ 9CB77ED7CB72850253E973A2D6AFDF49 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
13:25:23.0625 4776 NDProxy - ok
13:25:23.0784 4776 [ 40D7D0A208EE863BCA8D89E299216F15 ] Nero BackItUp Scheduler 3 C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBService.exe
13:25:23.0814 4776 Nero BackItUp Scheduler 3 - ok
13:25:23.0870 4776 [ A499294F5029A7862ADC115BDA7371CE ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
13:25:23.0926 4776 NetBIOS - ok
13:25:23.0950 4776 [ FC2C792EBDDC8E28DF939D6A92C83D61 ] netbt C:\Windows\system32\DRIVERS\netbt.sys
13:25:23.0986 4776 netbt - ok
13:25:23.0993 4776 [ 260BF9C43EE12C6898A9F5AAB0FB0E5D ] Netlogon C:\Windows\system32\lsass.exe
13:25:24.0013 4776 Netlogon - ok
13:25:24.0056 4776 [ 9B63B29DEFC0F3115A559D2597BF5D75 ] Netman C:\Windows\System32\netman.dll
13:25:24.0107 4776 Netman - ok
13:25:24.0138 4776 [ 7846D0136CC2B264926A73047BA7688A ] netprofm C:\Windows\System32\netprofm.dll
13:25:24.0203 4776 netprofm - ok
13:25:24.0286 4776 [ 61EBE29D1112D368F6E135916897531D ] netr28ux C:\Windows\system32\DRIVERS\netr28ux.sys
13:25:24.0327 4776 netr28ux - ok
13:25:24.0388 4776 [ 4D457321124EF6031875DA01E9C402B3 ] netr7364 C:\Windows\system32\DRIVERS\netr7364.sys
13:25:24.0427 4776 netr7364 - ok
13:25:24.0456 4776 [ 74751DDA198165947FD7454D83F49825 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
13:25:24.0479 4776 NetTcpPortSharing - ok
13:25:24.0521 4776 [ 4AC08BD6AF2DF42E0C3196D826C8AEA7 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
13:25:24.0542 4776 nfrd960 - ok
13:25:24.0586 4776 [ F145BF4C4668E7E312069F81EF847CFC ] NlaSvc C:\Windows\System32\nlasvc.dll
13:25:24.0677 4776 NlaSvc - ok
13:25:24.0785 4776 [ EBA1B4BF2E2375ABDADEDB649F283541 ] NMIndexingService C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe
13:25:24.0834 4776 NMIndexingService - ok
13:25:24.0908 4776 [ 109338286793775088CB5A3A13C874DB ] NPF C:\Windows\system32\drivers\npf.sys
13:25:24.0925 4776 NPF - ok
13:25:24.0963 4776 [ B298874F8E0EA93F06EC40AA8D146478 ] Npfs C:\Windows\system32\drivers\Npfs.sys
13:25:24.0997 4776 Npfs - ok
13:25:25.0065 4776 [ ACB62BAA1C319B17752553DF3026EEEB ] nsi C:\Windows\system32\nsisvc.dll
13:25:25.0109 4776 nsi - ok
13:25:25.0131 4776 [ 1523AF19EE8B030BA682F7A53537EAEB ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
13:25:25.0200 4776 nsiproxy - ok
13:25:25.0272 4776 [ BAC869DFB98E499BA4D9BB1FB43270E1 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
13:25:25.0338 4776 Ntfs - ok
13:25:25.0364 4776 [ DD5D684975352B85B52E3FD5347C20CB ] Null C:\Windows\system32\drivers\Null.sys
13:25:25.0424 4776 Null - ok
13:25:25.0680 4776 [ F12C5F17D48D9F5C70E4408B3CCB5443 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
13:25:26.0321 4776 nvlddmkm - ok
13:25:26.0346 4776 [ 840EEB44DC49317A6161961F7682CD99 ] nvraid C:\Windows\system32\drivers\nvraid.sys
13:25:26.0363 4776 nvraid - ok
13:25:26.0387 4776 [ 94C5334040A5D500897F4C5FD12AEEDE ] nvstor C:\Windows\system32\drivers\nvstor.sys
13:25:26.0403 4776 nvstor - ok
13:25:26.0453 4776 [ 8A55543C379B0582F0C33DB447D1C892 ] NVSvc C:\Windows\system32\nvvsvc.exe
13:25:26.0512 4776 NVSvc - ok
13:25:26.0539 4776 [ AA1B6C86A4763502E20B65C025F39BAD ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
13:25:26.0558 4776 nv_agp - ok
13:25:26.0564 4776 NwlnkFlt - ok
13:25:26.0570 4776 NwlnkFwd - ok
13:25:26.0604 4776 [ 7B58953E2F263421FDBB09A192712A85 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
13:25:26.0680 4776 ohci1394 - ok
13:25:26.0758 4776 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
13:25:26.0778 4776 ose - ok
13:25:26.0948 4776 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
13:25:27.0200 4776 osppsvc - ok
13:25:27.0265 4776 [ 9AE31D2E1D15C10D91318E0EC149CEAC ] p2pimsvc C:\Windows\system32\p2psvc.dll
13:25:27.0361 4776 p2pimsvc - ok
13:25:27.0396 4776 [ 9AE31D2E1D15C10D91318E0EC149CEAC ] p2psvc C:\Windows\system32\p2psvc.dll
13:25:27.0420 4776 p2psvc - ok
13:25:27.0543 4776 [ 78B7642B0C51F24F0835C0226540D58B ] Panda Software Controller C:\Program Files (x86)\Panda Security\Panda Antivirus Pro 2012\PsCtrls.exe
13:25:27.0556 4776 Panda Software Controller - ok
13:25:27.0617 4776 [ 4C6A7FD04DDF4DB88791048382E3EDB1 ] Parport C:\Windows\system32\DRIVERS\parport.sys
13:25:27.0661 4776 Parport - ok
13:25:27.0702 4776 [ B43751085E2ABE389DA466BC62A4B987 ] partmgr C:\Windows\system32\drivers\partmgr.sys
13:25:27.0721 4776 partmgr - ok
13:25:27.0790 4776 [ 337A81B3FF34F9851D245D42A725FC22 ] pavboot C:\Windows\system32\Drivers\pavboot64.sys
13:25:27.0803 4776 pavboot - ok
13:25:27.0914 4776 [ AE848C1613C8738BB83ADAB4F0845E84 ] PAVFNSVR C:\Program Files (x86)\Panda Security\Panda Antivirus Pro 2012\PavFnSvr.exe
13:25:27.0993 4776 PAVFNSVR - ok
13:25:28.0048 4776 [ 2AE3F6B23448443BBEF5DE207159213B ] PavPrSrv C:\Program Files (x86)\Common Files\Panda Security\PavShld\pavprsrv.exe
13:25:28.0062 4776 PavPrSrv - ok
13:25:28.0078 4776 [ 97005413310966001FB6F4A5C503149C ] PAVSRV C:\Program Files (x86)\Panda Security\Panda Antivirus Pro 2012\pavsrvx86.exe
13:25:28.0096 4776 PAVSRV - ok
13:25:28.0108 4776 PavTPK.sys - ok
13:25:28.0161 4776 [ 9AB157B374192FF276C1628FBDBA2B0E ] PcaSvc C:\Windows\System32\pcasvc.dll
13:25:28.0220 4776 PcaSvc - ok
13:25:28.0263 4776 [ 47AB1E0FC9D0E12BB53BA246E3A0906D ] pci C:\Windows\system32\drivers\pci.sys
13:25:28.0283 4776 pci - ok
13:25:28.0306 4776 [ 8D618C829034479985A9ED56106CC732 ] pciide C:\Windows\system32\drivers\pciide.sys
13:25:28.0321 4776 pciide - ok
13:25:28.0342 4776 [ 037661F3D7C507C9993B7010CEEE6288 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
13:25:28.0364 4776 pcmcia - ok
13:25:28.0416 4776 [ AF7CE12C4F3DC8CB2B07685C916BBCFE ] pcouffin C:\Windows\system32\Drivers\pcouffin.sys
13:25:28.0457 4776 pcouffin - ok
13:25:28.0485 4776 [ 58865916F53592A61549B04941BFD80D ] PEAUTH C:\Windows\system32\drivers\peauth.sys
13:25:28.0583 4776 PEAUTH - ok
13:25:28.0684 4776 [ 0ED8727EA0172860F47258456C06CAEA ] PerfHost C:\Windows\SysWow64\perfhost.exe
13:25:28.0727 4776 PerfHost - ok
13:25:28.0812 4776 [ E9E68C1A0F25CF4A7AC966EEA74EE89E ] pla C:\Windows\system32\pla.dll
13:25:28.0862 4776 pla - ok
13:25:28.0914 4776 [ 875E4E0661F3A5994DF9E5E3A0A4F96B ] PLFlash DeviceIoControl Service C:\Windows\SysWOW64\IoctlSvc.exe
13:25:28.0935 4776 PLFlash DeviceIoControl Service ( UnsignedFile.Multi.Generic ) - warning
13:25:28.0935 4776 PLFlash DeviceIoControl Service - detected UnsignedFile.Multi.Generic (1)
13:25:28.0982 4776 [ FE6B0F59215C9FD9F9D26539C58C8B82 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
13:25:29.0024 4776 PlugPlay - ok
13:25:29.0063 4776 [ 9AE31D2E1D15C10D91318E0EC149CEAC ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
13:25:29.0091 4776 PNRPAutoReg - ok
13:25:29.0147 4776 [ 9AE31D2E1D15C10D91318E0EC149CEAC ] PNRPsvc C:\Windows\system32\p2psvc.dll
13:25:29.0172 4776 PNRPsvc - ok
13:25:29.0212 4776 [ 89A5560671C2D8B4A4B51F3E1AA069D8 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
13:25:29.0265 4776 PolicyAgent - ok
13:25:29.0316 4776 [ 23386E9952025F5F21C368971E2E7301 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
13:25:29.0355 4776 PptpMiniport - ok
13:25:29.0399 4776 [ 6BC78E5F12CBB74E7930AAAA4A0DB387 ] Processor C:\Windows\system32\drivers\processr.sys
13:25:29.0457 4776 Processor - ok
13:25:29.0497 4776 [ E058CE4FC2449D8BFA14739C83B7FF2A ] ProfSvc C:\Windows\system32\profsvc.dll
13:25:29.0537 4776 ProfSvc - ok
13:25:29.0554 4776 Prot6Flt - ok
13:25:29.0579 4776 [ 260BF9C43EE12C6898A9F5AAB0FB0E5D ] ProtectedStorage C:\Windows\system32\lsass.exe
13:25:29.0625 4776 ProtectedStorage - ok
13:25:29.0673 4776 [ C5AB7F0809392D0DA027F4A2A81BFA31 ] PSched C:\Windows\system32\DRIVERS\pacer.sys
13:25:29.0705 4776 PSched - ok
13:25:29.0754 4776 [ 196C450F2779D0B462C444DA4906EA7F ] PSIMSVC C:\Program Files (x86)\Panda Security\Panda Antivirus Pro 2012\PsImSvc.exe
13:25:29.0767 4776 PSIMSVC - ok
13:25:29.0787 4776 [ 341457B79B3FC31A80C346C767045879 ] PskSvcRetail C:\Program Files (x86)\Panda Security\Panda Antivirus Pro 2012\PskSvc.exe
13:25:29.0801 4776 PskSvcRetail - ok
13:25:29.0839 4776 [ 4A29D25704917161BAD9B4659A248DFD ] ql2300 C:\Windows\system32\drivers\ql2300.sys
13:25:29.0873 4776 ql2300 - ok
13:25:29.0903 4776 [ E1C80F8D4D1E39EF9595809C1369BF2A ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
13:25:29.0918 4776 ql40xx - ok
13:25:29.0970 4776 [ 90574842C3DA781E279061A3EFF91F07 ] QWAVE C:\Windows\system32\qwave.dll
13:25:29.0991 4776 QWAVE - ok
13:25:30.0009 4776 [ E8D76EDAB77EC9C634C27B8EAC33ADC5 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
13:25:30.0037 4776 QWAVEdrv - ok
13:25:30.0072 4776 [ 1013B3B663A56D3DDD784F581C1BD005 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
13:25:30.0122 4776 RasAcd - ok
13:25:30.0167 4776 [ B2AE18F847D07F0044404DDF7CB04497 ] RasAuto C:\Windows\System32\rasauto.dll
13:25:30.0210 4776 RasAuto - ok
13:25:30.0258 4776 [ AC7BC4D42A7E558718DFDEC599BBFC2C ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
13:25:30.0298 4776 Rasl2tp - ok
13:25:30.0321 4776 [ 3AD83E4046C43BE510DE681588ACB8AF ] RasMan C:\Windows\System32\rasmans.dll
13:25:30.0367 4776 RasMan - ok
13:25:30.0394 4776 [ 4517FBF8B42524AFE4EDE1DE102AAE3E ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
13:25:30.0428 4776 RasPppoe - ok
13:25:30.0476 4776 [ C6A593B51F34C33E5474539544072527 ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
13:25:30.0492 4776 RasSstp - ok
13:25:30.0513 4776 [ 322DB5C6B55E8D8EE8D6F358B2AAABB1 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
13:25:30.0556 4776 rdbss - ok
13:25:30.0584 4776 [ 603900CC05F6BE65CCBF373800AF3716 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
13:25:30.0638 4776 RDPCDD - ok
13:25:30.0677 4776 [ AE23E79B13FEB62939E2CA1189E71735 ] rdpdr C:\Windows\system32\DRIVERS\rdpdr.sys
13:25:30.0719 4776 rdpdr - ok
13:25:30.0724 4776 [ CAB9421DAF3D97B33D0D055858E2C3AB ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
13:25:30.0757 4776 RDPENCDD - ok
13:25:30.0806 4776 [ AE4BD9E1C33D351D8E607FC81F15160C ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
13:25:30.0834 4776 RDPWD - ok
13:25:30.0912 4776 [ D7AEA5375DB1D6632A4120AD06C52F6B ] RegFilter C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\wlh_amd64\regfilter.sys
13:25:30.0923 4776 RegFilter - ok
13:25:30.0988 4776 [ C612B9557DA73F70D41F8A6FBC8E5344 ] RemoteAccess C:\Windows\System32\mprdim.dll
13:25:31.0077 4776 RemoteAccess - ok
13:25:31.0120 4776 [ 44B9D8EC2F3EF3A0EFB00857AF70D861 ] RemoteRegistry C:\Windows\system32\regsvc.dll
13:25:31.0186 4776 RemoteRegistry - ok
13:25:31.0228 4776 [ CD71E053D7260E4102D99A28F9196070 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
13:25:31.0253 4776 RFCOMM - ok
13:25:31.0279 4776 [ F46C457840D4B7A4DAAFEE739CE04102 ] RpcLocator C:\Windows\system32\locator.exe
13:25:31.0328 4776 RpcLocator - ok
13:25:31.0381 4776 [ CF8B9A3A5E7DC57724A89D0C3E8CF9EF ] RpcSs C:\Windows\system32\rpcss.dll
13:25:31.0423 4776 RpcSs - ok
13:25:31.0468 4776 [ 22A9CB08B1A6707C1550C6BF099AAE73 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
13:25:31.0510 4776 rspndr - ok
13:25:31.0535 4776 [ 260BF9C43EE12C6898A9F5AAB0FB0E5D ] SamSs C:\Windows\system32\lsass.exe
13:25:31.0549 4776 SamSs - ok
13:25:31.0581 4776 [ CD9C693589C60AD59BBBCFB0E524E01B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
13:25:31.0594 4776 sbp2port - ok
13:25:31.0617 4776 [ FD1CDCF108D5EF3366F00D18B70FB89B ] SCardSvr C:\Windows\System32\SCardSvr.dll
13:25:31.0643 4776 SCardSvr - ok
13:25:31.0696 4776 [ 0F838C811AD295D2A4489B9993096C63 ] Schedule C:\Windows\system32\schedsvc.dll
13:25:31.0735 4776 Schedule - ok
13:25:31.0782 4776 [ 5A268127633C7EE2A7FB87F39D748D56 ] SCPolicySvc C:\Windows\System32\certprop.dll
13:25:31.0808 4776 SCPolicySvc - ok
13:25:31.0880 4776 [ 4FF71B076A7760FE75EA5AE2D0EE0018 ] SDRSVC C:\Windows\System32\SDRSVC.dll
13:25:31.0910 4776 SDRSVC - ok
13:25:31.0998 4776 [ D98E936BDD4A6CFE39535F3696D0EC6F ] SDScannerService C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
13:25:32.0027 4776 SDScannerService - ok
13:25:32.0136 4776 [ 2D5088524613D1ED55D20195AF42DDC7 ] SDUpdateService C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
13:25:32.0189 4776 SDUpdateService - ok
13:25:32.0225 4776 [ 59DCE6783F9ED27EB72C81466E363BF8 ] SDWSCService C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
13:25:32.0240 4776 SDWSCService - ok
13:25:32.0266 4776 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
13:25:32.0336 4776 secdrv - ok
13:25:32.0357 4776 [ 5ACDCBC67FCF894A1815B9F96D704490 ] seclogon C:\Windows\system32\seclogon.dll
13:25:32.0387 4776 seclogon - ok
13:25:32.0429 4776 [ 90973A64B96CD647FF81C79443618EED ] SENS C:\Windows\system32\sens.dll
13:25:32.0461 4776 SENS - ok
13:25:32.0507 4776 [ 2449316316411D65BD2C761A6FFB2CE2 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
13:25:32.0540 4776 Serenum - ok
13:25:32.0582 4776 [ 4B438170BE2FC8E0BD35EE87A960F84F ] Serial C:\Windows\system32\DRIVERS\serial.sys
13:25:32.0615 4776 Serial - ok
13:25:32.0642 4776 [ A842F04833684BCEEA7336211BE478DF ] sermouse C:\Windows\system32\drivers\sermouse.sys
13:25:32.0692 4776 sermouse - ok
13:25:32.0746 4776 [ A8E4A4407A09F35DCCC3771AF590B0C4 ] SessionEnv C:\Windows\system32\sessenv.dll
13:25:32.0798 4776 SessionEnv - ok
13:25:32.0816 4776 [ 541B32F8D6B2DCB92EC43BAB267E79EA ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
13:25:32.0879 4776 sffdisk - ok
13:25:32.0899 4776 [ 446E7CCA3325C7E0AE0FDE7F73CDD9C2 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
13:25:32.0948 4776 sffp_mmc - ok
13:25:32.0972 4776 [ 67EDC221348911E895AF51C57D9A3725 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
13:25:33.0013 4776 sffp_sd - ok
13:25:33.0027 4776 [ 6B7838C94135768BD455CBDC23E39E5F ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
13:25:33.0083 4776 sfloppy - ok
13:25:33.0127 4776 [ 4C5AEE179DA7E1EE9A9CCB9DA289AF34 ] SharedAccess C:\Windows\System32\ipnathlp.dll
13:25:33.0165 4776 SharedAccess - ok
13:25:33.0212 4776 [ 56793271ECDEDD350C5ADD305603E963 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
13:25:33.0261 4776 ShellHWDetection - ok
13:25:33.0281 4776 [ 03639A3B26AA808BAE79D89FDB4B151C ] ShldFlt C:\Windows\system32\DRIVERS\ShldFlt.sys
13:25:33.0294 4776 ShldFlt - ok
13:25:33.0320 4776 [ 08DDA16573FA44F8B13AFE74597AD2E5 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
13:25:33.0333 4776 SiSRaid2 - ok
13:25:33.0357 4776 [ C52259E9DAAF3890D572D87FFEE0979E ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
13:25:33.0407 4776 SiSRaid4 - ok
13:25:33.0488 4776 [ A9A27A8E257B45A604FDAD4F26FE7241 ] slsvc C:\Windows\system32\SLsvc.exe
13:25:33.0660 4776 slsvc - ok
13:25:33.0682 4776 [ FD74B4B7C2088E390A30C85A896FC3AF ] SLUINotify C:\Windows\system32\SLUINotify.dll
13:25:33.0723 4776 SLUINotify - ok
13:25:33.0776 4776 [ B68385FD0CB677A1BB3EAB0BEB2999B7 ] SmartDefragDriver C:\Windows\system32\Drivers\SmartDefragDriver.sys
13:25:33.0787 4776 SmartDefragDriver - ok
13:25:33.0816 4776 [ 290B6F6A0EC4FCDFC90F5CB6D7020473 ] Smb C:\Windows\system32\DRIVERS\smb.sys
13:25:33.0841 4776 Smb - ok
13:25:33.0885 4776 [ F8F47F38909823B1AF28D60B96340CFF ] SNMPTRAP C:\Windows\System32\snmptrap.exe
13:25:33.0912 4776 SNMPTRAP - ok
13:25:33.0938 4776 [ 386C3C63F00A7040C7EC5E384217E89D ] spldr C:\Windows\system32\drivers\spldr.sys
13:25:33.0954 4776 spldr - ok
13:25:33.0984 4776 [ F66FF751E7EFC816D266977939EF5DC3 ] Spooler C:\Windows\System32\spoolsv.exe
13:25:34.0009 4776 Spooler - ok
13:25:34.0055 4776 [ 880A57FCCB571EBD063D4DD50E93E46D ] srv C:\Windows\system32\DRIVERS\srv.sys
13:25:34.0089 4776 srv - ok
13:25:34.0120 4776 [ A1AD14A6D7A37891FFFECA35EBBB0730 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
13:25:34.0176 4776 srv2 - ok
13:25:34.0211 4776 [ 4BED62F4FA4D8300973F1151F4C4D8A7 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
13:25:34.0249 4776 srvnet - ok
13:25:34.0321 4776 [ 192C74646EC5725AEF3F80D19FF75F6A ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
13:25:34.0375 4776 SSDPSRV - ok
13:25:34.0426 4776 [ 2EE3FA0308E6185BA64A9A7F2E74332B ] SstpSvc C:\Windows\system32\sstpsvc.dll
13:25:34.0455 4776 SstpSvc - ok
13:25:34.0507 4776 [ 15825C1FBFB8779992CB65087F316AF5 ] stisvc C:\Windows\System32\wiaservc.dll
13:25:34.0537 4776 stisvc - ok
13:25:34.0569 4776 [ 8A851CA908B8B974F89C50D2E18D4F0C ] swenum C:\Windows\system32\DRIVERS\swenum.sys
13:25:34.0585 4776 swenum - ok
13:25:34.0637 4776 [ 6DE37F4DE19D4EFD9C48C43ADDBC949A ] swprv C:\Windows\System32\swprv.dll
13:25:34.0688 4776 swprv - ok
13:25:34.0703 4776 [ 2F26A2C6FC96B29BEFF5D8ED74E6625B ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
13:25:34.0719 4776 Symc8xx - ok
13:25:34.0733 4776 [ A909667976D3BCCD1DF813FED517D837 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
13:25:34.0751 4776 Sym_hi - ok
13:25:34.0765 4776 [ 36887B56EC2D98B9C362F6AE4DE5B7B0 ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
13:25:34.0783 4776 Sym_u3 - ok
13:25:34.0832 4776 [ 92D7A8B0F87B036F17D25885937897A6 ] SysMain C:\Windows\system32\sysmain.dll
13:25:34.0939 4776 SysMain - ok
13:25:34.0971 4776 [ 005CE42567F9113A3BCCB3B20073B029 ] TabletInputService C:\Windows\System32\TabSvc.dll
13:25:35.0010 4776 TabletInputService - ok
13:25:35.0060 4776 [ CC2562B4D55E0B6A4758C65407F63B79 ] TapiSrv C:\Windows\System32\tapisrv.dll
13:25:35.0114 4776 TapiSrv - ok
13:25:35.0167 4776 [ CDBE8D7C1E201B911CDC346D06617FB5 ] TBS C:\Windows\System32\tbssvc.dll
13:25:35.0220 4776 TBS - ok
13:25:35.0286 4776 [ 46D448E9117464E4D3BBF36D7E3FA48E ] Tcpip C:\Windows\system32\drivers\tcpip.sys
13:25:35.0349 4776 Tcpip - ok
13:25:35.0394 4776 [ 46D448E9117464E4D3BBF36D7E3FA48E ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
13:25:35.0470 4776 Tcpip6 - ok
13:25:35.0533 4776 [ C7E72A4071EE0200E3C075DACFB2B334 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
13:25:35.0589 4776 tcpipreg - ok
13:25:35.0627 4776 [ 1D8BF4AAA5FB7A2761475781DC1195BC ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
13:25:35.0682 4776 TDPIPE - ok
13:25:35.0727 4776 [ 7F7E00CDF609DF657F4CDA02DD1C9BB1 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
13:25:35.0770 4776 TDTCP - ok
13:25:35.0795 4776 [ 458919C8C42E398DC4802178D5FFEE27 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
13:25:35.0829 4776 tdx - ok
13:25:35.0949 4776 [ FE559178000347D2CA1B7847F0379749 ] TeamViewer6 C:\Program Files (x86)\TeamViewer\Version6\TeamViewer_Service.exe
13:25:36.0052 4776 TeamViewer6 - ok
13:25:36.0087 4776 [ 8C19678D22649EC002EF2282EAE92F98 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
13:25:36.0110 4776 TermDD - ok
13:25:36.0172 4776 [ 5CDD30BC217082DAC71A9878D9BFD566 ] TermService C:\Windows\System32\termsrv.dll
13:25:36.0474 4776 TermService - ok
13:25:36.0500 4776 [ 56793271ECDEDD350C5ADD305603E963 ] Themes C:\Windows\system32\shsvcs.dll
13:25:36.0527 4776 Themes - ok
13:25:36.0567 4776 [ 3CBE4995E80E13CCFBC42E5DCF3AC81A ] THREADORDER C:\Windows\system32\mmcss.dll
13:25:36.0617 4776 THREADORDER - ok
13:25:36.0652 4776 [ B88C4D29CEE2BF7465FA4BF426A24E4E ] TPSrv C:\Program Files (x86)\Panda Security\Panda Antivirus Pro 2012\TPSrvWow.exe
13:25:36.0671 4776 TPSrv - ok
13:25:36.0707 4776 [ F4689F05AF472A651A7B1B7B02D200E7 ] TrkWks C:\Windows\System32\trkwks.dll
13:25:36.0761 4776 TrkWks - ok
13:25:36.0806 4776 [ 66328B08EF5A9305D8EDE36B93930369 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
13:25:36.0858 4776 TrustedInstaller - ok
13:25:36.0897 4776 [ 9E5409CD17C8BEF193AAD498F3BC2CB8 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
13:25:36.0962 4776 tssecsrv - ok
13:25:37.0004 4776 [ 89EC74A9E602D16A75A4170511029B3C ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
13:25:37.0032 4776 tunmp - ok
13:25:37.0080 4776 [ 30A9B3F45AD081BFFC3BCAA9C812B609 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
13:25:37.0105 4776 tunnel - ok
13:25:37.0153 4776 [ E4722DFBD6232ACF17543EF2C2DCE8D2 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
13:25:37.0176 4776 uagp35 - ok
13:25:37.0232 4776 [ FAF2640A2A76ED03D449E443194C4C34 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
13:25:37.0278 4776 udfs - ok
13:25:37.0337 4776 [ 215462AE7E6A897D675E84DD1E3B3B56 ] ufad-ws60 C:\Program Files (x86)\VMware\VMware Workstation\vmware-ufad.exe
13:25:37.0357 4776 ufad-ws60 - ok
13:25:37.0401 4776 [ 060507C4113391394478F6953A79EEDC ] UI0Detect C:\Windows\system32\UI0Detect.exe
13:25:37.0442 4776 UI0Detect - ok
13:25:37.0459 4776 [ 5663D7696ABBE71F8C9D915C5374118A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
13:25:37.0474 4776 uliagpkx - ok
13:25:37.0497 4776 [ 6030B68E86A30D1B315B51C4D7778B16 ] uliahci C:\Windows\system32\drivers\uliahci.sys
13:25:37.0516 4776 uliahci - ok
13:25:37.0538 4776 [ 31707F09846056651EA2C37858F5DDB0 ] UlSata C:\Windows\system32\drivers\ulsata.sys
13:25:37.0554 4776 UlSata - ok
13:25:37.0574 4776 [ 85E5E43ED5B48C8376281BAB519271B7 ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
13:25:37.0591 4776 ulsata2 - ok
13:25:37.0626 4776 [ 46E9A994C4FED537DD951F60B86AD3F4 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
13:25:37.0677 4776 umbus - ok
13:25:37.0707 4776 [ DC5E34F189B827199B9CC8481C648269 ] UmRdpService C:\Windows\System32\umrdp.dll
13:25:37.0749 4776 UmRdpService - ok
13:25:37.0791 4776 [ 7093799FF80E9DECA0680D2E3535BE60 ] upnphost C:\Windows\System32\upnphost.dll
13:25:37.0856 4776 upnphost - ok
13:25:37.0925 4776 [ 55BA05042FEBB956BE4A54BC5E621593 ] UrlFilter C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\wlh_amd64\UrlFilter.sys
13:25:37.0938 4776 UrlFilter - ok
13:25:37.0976 4776 [ 07E3498FC60834219D2356293DA0FECC ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
13:25:38.0006 4776 usbccgp - ok
13:25:38.0030 4776 [ 9247F7E0B65852C1F6631480984D6ED2 ] usbcir C:\Windows\system32\drivers\usbcir.sys
13:25:38.0086 4776 usbcir - ok
13:25:38.0126 4776 [ 827E44DE934A736EA31E91D353EB126F ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
13:25:38.0155 4776 usbehci - ok
13:25:38.0168 4776 [ BB35CD80A2ECECFADC73569B3D70C7D1 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
13:25:38.0210 4776 usbhub - ok
13:25:38.0233 4776 [ EBA14EF0C07CEC233F1529C698D0D154 ] usbohci C:\Windows\system32\drivers\usbohci.sys
13:25:38.0283 4776 usbohci - ok
13:25:38.0322 4776 [ 28B693B6D31E7B9332C1BDCEFEF228C1 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
13:25:38.0355 4776 usbprint - ok
13:25:38.0397 4776 [ EA0BF666868964FBE8CB10E50C97B9F1 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
13:25:38.0424 4776 usbscan - ok
13:25:38.0462 4776 [ B854C1558FCA0C269A38663E8B59B581 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
13:25:38.0510 4776 USBSTOR - ok
13:25:38.0550 4776 [ B2872CBF9F47316ABD0E0C74A1ABA507 ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
13:25:38.0579 4776 usbuhci - ok
13:25:38.0618 4776 [ D76E231E4850BB3F88A3D9A78DF191E3 ] UxSms C:\Windows\System32\uxsms.dll
13:25:38.0648 4776 UxSms - ok
13:25:38.0743 4776 [ C83D714B7CA4286515B5954B8F8C3C1F ] VBoxDrv C:\Program Files (x86)\YouWave_Android\vb\VBoxDrv.sys
13:25:38.0764 4776 VBoxDrv - ok
13:25:38.0810 4776 [ 294945381DFA7CE58CECF0A9896AF327 ] vds C:\Windows\System32\vds.exe
13:25:38.0879 4776 vds - ok
13:25:38.0921 4776 [ 2998DC48905E9B4821AD8FD75B3E070C ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
13:25:38.0983 4776 vga - ok
13:25:39.0004 4776 [ B83AB16B51FEDA65DD81B8C59D114D63 ] VgaSave C:\Windows\System32\drivers\vga.sys
13:25:39.0045 4776 VgaSave - ok
13:25:39.0072 4776 [ 8294B6C3FDB6C33F24E150DE647ECDAA ] viaide C:\Windows\system32\drivers\viaide.sys
13:25:39.0088 4776 viaide - ok
13:25:39.0121 4776 [ 6FC9B272B838EE8F5FA0E4A7E971154A ] VMAuthdService C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe
13:25:39.0137 4776 VMAuthdService - ok
13:25:39.0168 4776 [ B49CB94DB99519F9DC7F77D2D1F215B5 ] vmci C:\Windows\system32\drivers\vmci.sys
13:25:39.0182 4776 vmci - ok
13:25:39.0210 4776 [ 1AF6462718E5AB0ED55014A6EF3790EF ] vmkbd C:\Windows\system32\drivers\VMkbd.sys
13:25:39.0224 4776 vmkbd - ok
13:25:39.0250 4776 [ 9D54F1339E78C95BF3D9939EBCB66378 ] VMnetAdapter C:\Windows\system32\DRIVERS\vmnetadapter.sys
13:25:39.0264 4776 VMnetAdapter - ok
13:25:39.0311 4776 [ FB54EF3AA613D2832FD3812E7CB2FC75 ] VMnetBridge C:\Windows\system32\DRIVERS\vmnetbridge.sys
13:25:39.0324 4776 VMnetBridge - ok
13:25:39.0331 4776 VMnetDHCP - ok
13:25:39.0382 4776 [ 163B05050FCD9635242EC5206C19A182 ] VMnetuserif C:\Windows\system32\drivers\vmnetuserif.sys
13:25:39.0397 4776 VMnetuserif - ok
13:25:39.0461 4776 [ C8EB96D0C78B1CF67167DAFC617EE960 ] VMparport C:\Windows\system32\drivers\VMparport.sys
13:25:39.0476 4776 VMparport - ok
13:25:39.0512 4776 [ 415B167695C4B5960A13098622EF3D80 ] vmusb C:\Windows\system32\Drivers\vmusb.sys
13:25:39.0527 4776 vmusb - ok
13:25:39.0576 4776 [ F22098DBDD13C1221C274496B3E18DA7 ] VMUSBArbService C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator.exe
13:25:39.0601 4776 VMUSBArbService - ok
13:25:39.0614 4776 VMware NAT Service - ok
13:25:39.0650 4776 [ F2A8EE62D7161E1598CDD269BF22A03D ] vmx86 C:\Windows\system32\drivers\vmx86.sys
13:25:39.0666 4776 vmx86 - ok
13:25:39.0699 4776 [ 2B7E885ED951519A12C450D24535DFCA ] volmgr C:\Windows\system32\drivers\volmgr.sys
13:25:39.0723 4776 volmgr - ok
13:25:39.0793 4776 [ CEC5AC15277D75D9E5DEC2E1C6EAF877 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
13:25:39.0826 4776 volmgrx - ok
13:25:39.0866 4776 [ 5280AADA24AB36B01A84A6424C475C8D ] volsnap C:\Windows\system32\drivers\volsnap.sys
13:25:39.0894 4776 volsnap - ok
13:25:39.0925 4776 [ 410AE2C141142C58BC617FC2C677F8B0 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
13:25:39.0948 4776 vsmraid - ok
13:25:39.0990 4776 [ B75232DAD33BFD95BF6F0A3E6BFF51E1 ] VSS C:\Windows\system32\vssvc.exe
13:25:40.0132 4776 VSS - ok
13:25:40.0175 4776 [ E61C910E2DDF4797C1B1F9239636E894 ] vstor2-ws60 C:\Program Files (x86)\VMware\VMware Workstation\vstor2-ws60.sys
13:25:40.0193 4776 vstor2-ws60 - ok
13:25:40.0227 4776 [ F14A7DE2EA41883E250892E1E5230A9A ] W32Time C:\Windows\system32\w32time.dll
13:25:40.0308 4776 W32Time - ok
13:25:40.0348 4776 [ FEF8FE5923FEAD2CEE4DFABFCE3393A7 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
13:25:40.0439 4776 WacomPen - ok
13:25:40.0474 4776 [ B8E7049622300D20BA6D8BE0C47C0CFD ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
13:25:40.0524 4776 Wanarp - ok
13:25:40.0532 4776 [ B8E7049622300D20BA6D8BE0C47C0CFD ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
13:25:40.0571 4776 Wanarpv6 - ok
13:25:40.0659 4776 [ 33F26FEF446C4AD9FDB0932601FD017B ] WAS C:\Windows\system32\inetsrv\iisw3adm.dll
13:25:40.0738 4776 WAS - ok
13:25:40.0825 4776 [ 48EEE289DF9E4989128B2283F3EEACC6 ] wbengine C:\Windows\system32\wbengine.exe
13:25:40.0927 4776 wbengine - ok
13:25:40.0971 4776 [ B4E4C37D0AA6100090A53213EE2BF1C1 ] wcncsvc C:\Windows\System32\wcncsvc.dll
13:25:41.0051 4776 wcncsvc - ok
13:25:41.0119 4776 [ EA4B369560E986F19D93F45A881484AC ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
13:25:41.0162 4776 WcsPlugInService - ok
13:25:41.0197 4776 [ 59B501B0A04C9672142B7FFA2BDBF663 ] Wd C:\Windows\system32\drivers\wd.sys
13:25:41.0217 4776 Wd - ok
13:25:41.0271 4776 [ D02E7E4567DA1E7582FBF6A91144B0DF ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
13:25:41.0317 4776 Wdf01000 - ok
13:25:41.0338 4776 [ C5EFDA73EBFCA8B02A094898DE0A9276 ] WdiServiceHost C:\Windows\system32\wdi.dll
13:25:41.0401 4776 WdiServiceHost - ok
13:25:41.0409 4776 [ C5EFDA73EBFCA8B02A094898DE0A9276 ] WdiSystemHost C:\Windows\system32\wdi.dll
13:25:41.0461 4776 WdiSystemHost - ok
13:25:41.0502 4776 [ 3E6D05381CF35F75EBB055544A8ED9AC ] WebClient C:\Windows\System32\webclnt.dll
13:25:41.0563 4776 WebClient - ok
13:25:41.0608 4776 [ 8D40BC587993F876658BF9FB0F7D3462 ] Wecsvc C:\Windows\system32\wecsvc.dll
13:25:41.0664 4776 Wecsvc - ok
13:25:41.0682 4776 [ 9C980351D7E96288EA0C23AE232BD065 ] wercplsupport C:\Windows\System32\wercplsupport.dll
13:25:41.0743 4776 wercplsupport - ok
13:25:41.0764 4776 [ 66B9ECEBC46683F47EDC06333C075FEF ] WerSvc C:\Windows\System32\WerSvc.dll
13:25:41.0819 4776 WerSvc - ok
13:25:41.0858 4776 WinDefend - ok
13:25:41.0873 4776 WinHttpAutoProxySvc - ok
13:25:41.0952 4776 [ D2E7296ED1BD26D8DB2799770C077A02 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
13:25:41.0994 4776 Winmgmt - ok
13:25:42.0077 4776 [ 6CBB0C68F13B9C2EC1B16F5FA5E7C869 ] WinRM C:\Windows\system32\WsmSvc.dll
13:25:42.0230 4776 WinRM - ok
13:25:42.0311 4776 Winstep Xtreme Service - ok
13:25:42.0368 4776 [ EC339C8115E91BAED835957E9A677F16 ] Wlansvc C:\Windows\System32\wlansvc.dll
13:25:42.0442 4776 Wlansvc - ok
13:25:42.0582 4776 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
13:25:42.0694 4776 wlidsvc - ok
13:25:42.0743 4776 [ AE34218455D5DC12D1E45DE85F160346 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
13:25:42.0823 4776 WmiAcpi - ok
13:25:42.0854 4776 [ 21FA389E65A852698B6A1341F36EE02D ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
13:25:42.0909 4776 wmiApSrv - ok
13:25:42.0940 4776 WMPNetworkSvc - ok
13:25:42.0979 4776 [ CBC156C913F099E6680D1DF9307DB7A8 ] WPCSvc C:\Windows\System32\wpcsvc.dll
13:25:43.0032 4776 WPCSvc - ok
13:25:43.0128 4776 [ 490A18B4E4D53DC10879DEAA8E8B70D9 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
13:25:43.0160 4776 WPDBusEnum - ok
13:25:43.0289 4776 [ 991E2C2CF3BC204C2BB2EE1476149E4E ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\WPF\WPFFontCache_v0400.exe
13:25:43.0331 4776 WPFFontCache_v0400 - ok
13:25:43.0391 4776 [ 8A900348370E359B6BFF6A550E4649E1 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
13:25:43.0440 4776 ws2ifsl - ok
13:25:43.0496 4776 [ 9EA3E6D0EF7A5C2B9181961052A4B01A ] wscsvc C:\Windows\system32\wscsvc.dll
13:25:43.0525 4776 wscsvc - ok
13:25:43.0534 4776 WSearch - ok
13:25:43.0624 4776 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
13:25:43.0747 4776 wuauserv - ok
13:25:43.0774 4776 [ 501A65252617B495C0F1832F908D54D8 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
13:25:43.0825 4776 WUDFRd - ok
13:25:43.0848 4776 [ 6CBD51FF913C851D56ED9DC7F2A27DDE ] wudfsvc C:\Windows\System32\WUDFSvc.dll
13:25:43.0911 4776 wudfsvc - ok
13:25:44.0054 4776 ================ Scan global ===============================
13:25:44.0099 4776 [ 060DC3A7A9A2626031EB23D90151428D ] C:\Windows\system32\basesrv.dll
13:25:44.0141 4776 [ AA137104CDFC81818A309CDE32ABB74A ] C:\Windows\system32\winsrv.dll
13:25:44.0158 4776 [ AA137104CDFC81818A309CDE32ABB74A ] C:\Windows\system32\winsrv.dll
13:25:44.0180 4776 [ BC81150939BD52DBC7A08C245F1FB229 ] C:\Windows\system32\services.exe
13:25:44.0189 4776 C:\Windows\system32\services.exe ( Virus.Win64.ZAccess.b ) - infected
13:25:44.0189 4776 C:\Windows\system32\services.exe - detected Virus.Win64.ZAccess.b (0)
13:25:44.0189 4776 ================ Scan MBR ==================================
13:25:44.0206 4776 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
13:25:44.0449 4776 \Device\Harddisk0\DR0 - ok
13:25:44.0450 4776 ================ Scan VBR ==================================
13:25:44.0453 4776 [ 23BF0B1E0C996B8CB16E17C42A0947C9 ] \Device\Harddisk0\DR0\Partition1
13:25:44.0455 4776 \Device\Harddisk0\DR0\Partition1 - ok
13:25:44.0483 4776 [ 7923FDD9FA9CECAC8BAA2DE8EBF31280 ] \Device\Harddisk0\DR0\Partition2
13:25:44.0485 4776 \Device\Harddisk0\DR0\Partition2 - ok
13:25:44.0505 4776 [ C8DD793D2A1094D87262A3E84C3AD2CC ] \Device\Harddisk0\DR0\Partition3
13:25:44.0506 4776 \Device\Harddisk0\DR0\Partition3 - ok
13:25:44.0507 4776 ============================================================
13:25:44.0507 4776 Scan finished
13:25:44.0507 4776 ============================================================
13:25:44.0524 4596 Detected object count: 2
13:25:44.0524 4596 Actual detected object count: 2
13:26:03.0810 4596 PLFlash DeviceIoControl Service ( UnsignedFile.Multi.Generic ) - skipped by user
13:26:03.0811 4596 PLFlash DeviceIoControl Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:26:03.0851 4596 C:\Windows\system32\services.exe - copied to quarantine
13:26:05.0330 4596 C:\Users\Abelique\AppData\Local\{8ca7d3ce-f44a-a27b-a041-8f83e3901998}\@ - copied to quarantine
13:26:44.0570 4596 Backup copy found, using it..
13:26:44.0669 4596 C:\Users\Abelique\AppData\Local\{8ca7d3ce-f44a-a27b-a041-8f83e3901998}\@ - will be deleted on reboot
13:26:44.0671 4596 C:\Windows\system32\services.exe - will be cured on reboot
13:26:44.0671 4596 C:\Windows\system32\services.exe ( Virus.Win64.ZAccess.b ) - User select action: Cure
13:33:58.0738 3028 Deinitialize success

.
31/10/12, 09:36:24
abelique

Re: No puedo actualizar windows 7 home premium

Sobre messa reporte ComboFix:

Cita:

ComboFix 12-10-31.03 - Abelique 31/10/2012 13:48:10.6.2 - x64
Microsoft® Windows Vista™ Ultimate 6.0.6002.2.1252.34.3082.18.3070.1599 [GMT 1:00]
Running from: c:\users\Abelique\Desktop\ComboFix.exe
AV: Panda Antivirus Pro 2012 *Disabled/Updated* {86971480-9989-6750-B122-681A86518D59}
SP: IObit Malware Fighter *Disabled/Updated* {A751AC20-3B48-5237-898A-78C4436BB78D}
SP: Panda Antivirus Pro 2012 *Disabled/Updated* {3DF6F564-BFB3-68DE-8B92-5368FDD6C7E4}
SP: Spybot - Search and Destroy *Enabled/Outdated* {1EAF1D03-5480-F3B2-EB14-11F0F5EE2699}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((( Files Created from 2012-09-28 to 2012-10-31 )))))))))))))))))))))))))))))))
.
.
2012-10-31 12:55 . 2012-10-31 12:55 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-10-31 12:26 . 2012-10-31 12:26 -------- d-----w- C:\TDSSKiller_Quarantine
2012-10-31 12:16 . 2012-10-31 12:46 -------- d-----w- C:\32788R22FWJFW
2012-10-31 11:03 . 2012-10-12 07:19 9291768 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{39414680-8659-448F-AB7E-8FFDBD371896}\mpengine.dll
2012-10-25 07:27 . 2012-10-25 07:27 -------- d-----w- c:\program files (x86)\Ares
2012-10-10 21:52 . 2007-07-22 02:50 1043258 ----a-w- c:\windows\allp42.dll
2012-10-10 21:52 . 2007-07-22 02:49 2388304 ----a-w- c:\windows\alld42.dll
2012-10-10 21:39 . 2012-10-26 23:42 -------- d-----w- c:\users\Abelique\AppData\Roaming\codeblocks
2012-10-10 21:39 . 2012-10-10 21:39 -------- d-----w- c:\program files (x86)\CodeBlocks
2012-10-10 11:46 . 2012-09-13 13:45 2048 ----a-w- c:\windows\system32\tzres.dll
2012-10-10 11:46 . 2012-09-13 13:28 2048 ----a-w- c:\windows\SysWow64\tzres.dll
2012-10-10 11:46 . 2012-08-24 16:07 218624 ----a-w- c:\windows\system32\wintrust.dll
2012-10-10 11:46 . 2012-08-24 15:53 172544 ----a-w- c:\windows\SysWow64\wintrust.dll
2012-10-10 11:46 . 2012-06-02 00:20 1268736 ----a-w- c:\windows\system32\crypt32.dll
2012-10-10 11:46 . 2012-06-02 00:02 985088 ----a-w- c:\windows\SysWow64\crypt32.dll
2012-10-10 11:46 . 2012-06-02 00:20 174592 ----a-w- c:\windows\system32\cryptsvc.dll
2012-10-10 11:46 . 2012-06-02 00:20 132096 ----a-w- c:\windows\system32\cryptnet.dll
2012-10-10 11:46 . 2012-06-02 00:02 98304 ----a-w- c:\windows\SysWow64\cryptnet.dll
2012-10-10 11:46 . 2012-06-02 00:02 133120 ----a-w- c:\windows\SysWow64\cryptsvc.dll
2012-10-10 11:46 . 2012-08-29 11:40 4699520 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-10-09 09:29 . 2012-10-09 09:29 -------- d-----w- c:\windows\FltMgr
2012-10-09 09:28 . 2012-10-09 09:28 -------- d-----w- c:\users\Abelique\AppData\Local\Panda Security
2012-10-09 08:52 . 2010-06-22 16:20 30792 ----a-w- c:\windows\system32\drivers\pavboot64.sys
2012-10-09 08:52 . 2012-10-09 09:27 -------- d-----w- c:\program files (x86)\Panda Security
2012-10-08 18:45 . 2012-10-08 18:50 -------- d-----w- c:\programdata\SecTaskMan
2012-10-08 18:45 . 2012-10-08 18:45 -------- d-----w- c:\program files (x86)\Security Task Manager
2012-10-08 05:53 . 2012-10-08 05:53 -------- d-----w- c:\users\Abelique\AppData\Roaming\Uniblue
2012-10-08 05:53 . 2012-10-08 05:53 -------- d-----w- c:\program files (x86)\Uniblue
2012-10-07 20:17 . 2012-07-04 14:33 2769408 ----a-w- c:\windows\system32\win32k.sys
2012-10-07 17:04 . 2012-06-05 16:47 708608 ----a-w- c:\program files (x86)\Common Files\System\ado\msado15.dll
2012-10-07 17:04 . 2012-06-05 16:22 974848 ----a-w- c:\program files\Common Files\System\ado\msado15.dll
2012-10-07 17:04 . 2012-06-05 16:47 1401856 ----a-w- c:\windows\SysWow64\msxml6.dll
2012-10-07 17:04 . 2012-06-05 16:47 1248768 ----a-w- c:\windows\SysWow64\msxml3.dll
2012-10-07 17:04 . 2012-06-05 16:22 1797120 ----a-w- c:\windows\system32\msxml6.dll
2012-10-07 17:04 . 2012-06-05 16:22 1869824 ----a-w- c:\windows\system32\msxml3.dll
2012-10-07 17:04 . 2012-06-04 15:29 516480 ----a-w- c:\windows\system32\drivers\ksecdd.sys
2012-10-07 17:04 . 2012-06-02 00:22 347136 ----a-w- c:\windows\system32\schannel.dll
2012-10-07 17:04 . 2012-06-02 00:22 254464 ----a-w- c:\windows\system32\ncrypt.dll
2012-10-07 17:04 . 2012-06-02 00:03 204288 ----a-w- c:\windows\SysWow64\ncrypt.dll
2012-10-07 17:04 . 2012-06-02 00:05 77312 ----a-w- c:\windows\SysWow64\secur32.dll
2012-10-07 17:04 . 2012-06-02 00:04 278528 ----a-w- c:\windows\SysWow64\schannel.dll
2012-10-07 17:03 . 2012-05-11 16:34 788480 ----a-w- c:\windows\system32\localspl.dll
2012-10-07 17:03 . 2012-05-11 15:57 623616 ----a-w- c:\windows\SysWow64\localspl.dll
2012-10-07 17:03 . 2012-06-29 16:20 648192 ----a-w- c:\windows\system32\netapi32.dll
2012-10-07 17:03 . 2012-06-08 17:59 12899840 ----a-w- c:\windows\system32\shell32.dll
2012-10-07 13:39 . 2012-10-07 13:39 -------- d-----w- c:\users\Abelique\AppData\Roaming\Malwarebytes
2012-10-07 13:38 . 2012-10-30 20:52 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2012-10-07 13:38 . 2012-10-07 13:38 -------- d-----w- c:\programdata\Malwarebytes
2012-10-07 13:38 . 2012-09-29 18:54 25928 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-10-07 13:34 . 2012-10-07 13:34 -------- d-----w- c:\program files\CCleaner
2012-10-06 14:12 . 2012-10-07 08:49 -------- d-----w- c:\programdata\Spybot - Search & Destroy
2012-10-06 14:12 . 2009-01-25 11:14 17272 ----a-w- c:\windows\system32\sdnclean64.exe
2012-10-06 14:12 . 2012-10-06 14:12 -------- d-----w- c:\program files (x86)\Spybot - Search & Destroy 2
2012-10-06 14:09 . 2012-10-06 14:09 -------- d-----w- c:\users\Abelique\AppData\Roaming\AVG2013
2012-10-06 14:07 . 2012-10-06 14:07 -------- d-----w- c:\users\Abelique\AppData\Roaming\TuneUp Software
2012-10-06 14:04 . 2012-10-08 19:25 -------- d-----w- C:\$AVG
2012-10-06 14:04 . 2012-10-08 19:25 -------- d-----w- c:\programdata\AVG2013
2012-10-06 14:00 . 2012-10-08 19:26 -------- d-----w- c:\programdata\MFAData
2012-10-06 14:00 . 2012-10-07 10:43 -------- d-----w- c:\users\Abelique\AppData\Local\Avg2013
2012-10-06 14:00 . 2012-10-06 14:00 -------- d--h--w- c:\programdata\Common Files
2012-10-06 14:00 . 2012-10-06 14:00 -------- d-----w- c:\users\Abelique\AppData\Local\MFAData
2012-10-03 16:54 . 2012-10-18 20:22 1032582 ----a-w- c:\windows\SysWow64\alleg42.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-10-31 12:38 . 2011-02-17 10:16 384512 ----a-w- c:\windows\system32\services.exe
2012-10-15 06:42 . 2012-04-04 16:07 696760 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2012-10-15 06:42 . 2011-05-14 19:18 73656 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-10-10 12:37 . 2006-11-02 12:35 65309168 ----a-w- c:\windows\system32\mrt.exe
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}]
2012-08-10 22:54 194928 ----a-w- c:\program files (x86)\Yontoo\YontooIEClient.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Advanced SystemCare 5"="c:\program files (x86)\IObit\Advanced SystemCare 5\ASCTray.exe" [2012-05-28 288128]
"ares"="c:\program files (x86)\Ares\Ares.exe" [2012-02-02 3209216]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"NBKeyScan"="c:\program files (x86)\Nero\Nero8\Nero BackItUp\NBKeyScan.exe" [2008-02-18 2221352]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2011-06-09 254696]
"IObit Malware Fighter"="c:\program files (x86)\IObit\IObit Malware Fighter\IMF.exe" [2012-07-02 4473728]
"SDTray"="c:\program files (x86)\Spybot - Search & Destroy 2\SDTray.exe" [2012-08-30 3904536]
"APVXDWIN"="c:\program files (x86)\Panda Security\Panda Antivirus Pro 2012\APVXDWIN.EXE" [2011-04-13 1000768]
"SCANINICIO"="c:\program files (x86)\Panda Security\Panda Antivirus Pro 2012\Inicio.exe" [2011-02-02 70464]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\IMFservice]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PskSvcRetail]
@="Service"
.
R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-10-15 250808]
S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-07-27 63960]
S2 AdvancedSystemCareService5;Advanced SystemCare Service 5;c:\program files (x86)\IObit\Advanced SystemCare 5\ASCService.exe [2012-05-26 913792]
.
.
--- Other Services/Drivers In Memory ---
.
*NewlyCreated* - 08450674
*NewlyCreated* - 52982273
*Deregistered* - 08450674
*Deregistered* - 52982273
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
iissvcs REG_MULTI_SZ w3svc was
apphost REG_MULTI_SZ apphostsvc
.
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
Themes
.
Contents of the 'Scheduled Tasks' folder
.
2012-10-31 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-04 06:42]
.
2012-10-31 c:\windows\Tasks\Check for updates (Spybot - Search & Destroy).job
- c:\program files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe [2012-10-06 12:11]
.
2012-10-31 c:\windows\Tasks\Refresh immunization (Spybot - Search & Destroy).job
- c:\program files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe [2012-10-06 12:10]
.
2012-10-07 c:\windows\Tasks\Scan the system (Spybot - Search & Destroy).job
- c:\program files (x86)\Spybot - Search & Destroy 2\SDScan.exe [2012-10-06 12:11]
.
2012-10-08 c:\windows\Tasks\SpeedUpMyPC.job
- c:\program files (x86)\Uniblue\SpeedUpMyPC\spmonitor.exe [2012-10-08 13:38]
.
.
--------- X64 Entries -----------
.
.
------- Supplementary Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.google.es/
mLocal Page = c:\windows\SysWOW64\blank.htm
mSearchAssistant = hxxp://search.babylon.com/?babsrc=SP_ss&q={searchTerms}&mntrId=b6ea7de400000000000000027212faae&tlver=1.4.19.19&affID=17160
IE: &Enviar a OneNote - c:\progra~2\MICROS~4\Office14\ONBttnIE.dll/105
IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~4\Office12\EXCEL.EXE/3000
IE: E&xportar a Microsoft Excel - c:\progra~2\MICROS~4\Office14\EXCEL.EXE/3000
LSP: c:\program files (x86)\VMware\VMware Workstation\vsocklib.dll
TCP: DhcpNameServer = 192.168.2.1
FF - ProfilePath - c:\users\Abelique\AppData\Roaming\Mozilla\Firefox\Profiles\yxzh3f70.default\
FF - ExtSQL: 2012-09-05 17:30; {23fcfd51-4958-4f00-80a3-ae97e717ed8b}; c:\program files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF - ExtSQL: 2012-10-03 13:05; {EB9394A3-4AD6-4918-9537-31A1FD8E8EDF}; c:\program files (x86)\Mozilla Firefox\extensions\{EB9394A3-4AD6-4918-9537-31A1FD8E8EDF}
.
.
------- File Associations -------
.
JSEFile=c:\progra~2\PANDAS~1\PANDAA~1\PAVSCRIP.EXE "%1" %*
.
- - - - ORPHANS REMOVED - - - -
.
BHO-{A6174F27-1FFF-E1D6-A93F-BA48AD5DD448} - (no file)
Notify-SDWinLogon - SDWinLogon.dll
SafeBoot-52982273.sys
AddRemove-Adobe Shockwave Player - c:\windows\system32\Adobe\Shockwave 11\uninstaller.exe
.
.
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Services\Winstep Xtreme Service]
"ImagePath"="c:\program files (x86)\Winstep\WsxService"
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\Approved Extensions]
@Denied: (2) (LocalSystem)
"{18DF081C-E8AD-4283-A596-FA578C2EBDC3}"=hex:51,66,7a,6c,4c,1d,38,12,72,0b,cc,
1c,9f,a6,ed,07,da,80,b9,17,89,70,f9,d7
"{3049C3E9-B461-4BC5-8870-4C09146192CA}"=hex:51,66,7a,6c,4c,1d,38,12,87,c0,5a,
34,53,fa,ab,0e,f7,66,0f,49,11,3f,d6,de
"{64182481-4F71-486B-A045-B233BD0DA8FC}"=hex:51,66,7a,6c,4c,1d,38,12,ef,27,0b,
60,43,01,05,0d,df,53,f1,73,b8,53,ec,e8
"{9030D464-4C02-4ABF-8ECC-5164760863C6}"=hex:51,66,7a,6c,4c,1d,38,12,0a,d7,23,
94,30,02,d1,0f,f1,da,12,24,73,56,27,d2
"{DBC80044-A445-435B-BC74-9C25C1C588A9}"=hex:51,66,7a,6c,4c,1d,38,12,2a,03,db,
df,77,ea,35,06,c3,62,df,65,c4,9b,cc,bd
"{929801A8-4AEF-4D12-BE31-D85BF666452B}"=hex:51,66,7a,6c,4c,1d,38,12,c6,02,8b,
96,dd,04,7c,08,c1,27,9b,1b,f3,38,01,3f
"{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E}"=hex:51,66,7a,6c,4c,1d,38,12,35,fc,e1,
93,3e,68,a1,09,fc,5c,6e,9a,4b,77,a7,8a
.
[HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\ApprovedExtensionsMigration]
@Denied: (2) (LocalSystem)
"Timestamp"=hex:75,57,f3,97,8c,fd,cb,01
.
[HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\User Preferences]
@Denied: (2) (LocalSystem)
"88D7D0879DAB32E14DE5B3A805A34F98AFF34F5977"=hex:01,00,00,00,d0,8c,9d,df,01,15,
d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,77,bf,a8,e9,37,09,0e,4f,9a,5f,39,\
"2D53CFFC5C1A3DD2E97B7979AC2A92BD59BC839E81"=hex:01,00,00,00,d0,8c,9d,df,01,15,
d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,77,bf,a8,e9,37,09,0e,4f,9a,5f,39,\
.
[HKEY_USERS\S-1-5-21-1392155237-1964330354-2939998967-1000\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{35EFDA95-B0F6-79E9-B12A-D81CA5A3FCC6}*]
"jafmkjjniblmmephbpob"=hex:66,61,6b,67,64,67,64,6c,63,6c,67,6b,00,fa
"panmlegkmlmjmcigenimpfofoogclmob"=hex:63,61,6d,67,64,62,00,00
"hafmkjjniblmmeph"=hex:6e,62,65,6d,6e,64,66,6a,6d,61,6e,6d,64,64,6a,64,6b,69,
62,62,70,69,6a,6d,6e,64,61,6b,61,68,68,61,6e,67,6c,6b,64,65,6b,68,6e,63,61,\
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_4_402_287_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_4_402_287_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_4_402_287_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_4_402_287_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_287.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_287.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_287.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_287.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\TypeLib\{D27CDB6B-AE6D-11CF-96B8-444553540000}]
@Denied: (A 2) (Everyone)
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\TypeLib\{D27CDB6B-AE6D-11CF-96B8-444553540000}\1.0]
@="Shockwave Flash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\TypeLib\{FAB3E735-69C7-453B-A446-B6823C6DF1C9}]
@Denied: (A 2) (Everyone)
@=""
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\TypeLib\{FAB3E735-69C7-453B-A446-B6823C6DF1C9}\1.0]
@="FlashBroker"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Classes]
"SymbolicLinkValue"=hex(6):5c,00,52,00,45,00,47,00,49,00,53,00,54,00,52,00,59,
00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,4f,00,46,00,\
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
Completion time: 2012-10-31 13:59:17
ComboFix-quarantined-files.txt 2012-10-31 12:59
.
Pre-Run: 37.960.855.552 bytes libres
Post-Run: 37.706.731.520 bytes libres
.
- - End Of File - - 6DF47FC67745F7FE577A492B650D10E2

///////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////

Los reportes del portatil los colgaré mas tarde ya que el combofix esta tardando en hacer el analisis, Gracias otra vez
31/10/12, 10:17:39
abelique

Re: No puedo actualizar windows 7 home premium

Los reportes del PORTATIL:
TDSSKiller:

Cita:

13:24:10.0795 1604 TDSS rootkit removing tool 2.8.13.0 Oct 12 2012 17:26:47
13:24:11.0092 1604 ============================================================
13:24:11.0092 1604 Current date / time: 2012/10/31 13:24:11.0092
13:24:11.0092 1604 SystemInfo:
13:24:11.0092 1604
13:24:11.0092 1604 OS Version: 6.1.7600 ServicePack: 0.0
13:24:11.0092 1604 Product type: Workstation
13:24:11.0092 1604 ComputerName: SILVI
13:24:11.0092 1604 UserName: Silvia
13:24:11.0092 1604 Windows directory: C:\Windows
13:24:11.0092 1604 System windows directory: C:\Windows
13:24:11.0092 1604 Running under WOW64
13:24:11.0092 1604 Processor architecture: Intel x64
13:24:11.0092 1604 Number of processors: 2
13:24:11.0092 1604 Page size: 0x1000
13:24:11.0092 1604 Boot type: Normal boot
13:24:11.0092 1604 ============================================================
13:24:12.0979 1604 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
13:24:12.0995 1604 ============================================================
13:24:12.0995 1604 \Device\Harddisk0\DR0:
13:24:13.0011 1604 MBR partitions:
13:24:13.0011 1604 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1D4B178, BlocksNum 0xE8E0360
13:24:13.0026 1604 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1062B517, BlocksNum 0x29D5972A
13:24:13.0026 1604 ============================================================
13:24:13.0057 1604 C: <-> \Device\Harddisk0\DR0\Partition1
13:24:13.0089 1604 D: <-> \Device\Harddisk0\DR0\Partition2
13:24:13.0089 1604 ============================================================
13:24:13.0089 1604 Initialize success
13:24:13.0089 1604 ============================================================
13:25:20.0059 4352 ============================================================
13:25:20.0059 4352 Scan started
13:25:20.0059 4352 Mode: Manual; SigCheck; TDLFS;
13:25:20.0059 4352 ============================================================
13:25:20.0543 4352 ================ Scan system memory ========================
13:25:20.0543 4352 System memory - ok
13:25:20.0543 4352 ================ Scan services =============================
13:25:20.0730 4352 [ 1B00662092F9F9568B995902F0CC40D5 ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
13:25:20.0964 4352 1394ohci - ok
13:25:20.0980 4352 [ 6F11E88748CDEFD2F76AA215F97DDFE5 ] ACPI C:\Windows\system32\DRIVERS\ACPI.sys
13:25:21.0011 4352 ACPI - ok
13:25:21.0027 4352 [ 63B05A0420CE4BF0E4AF6DCC7CADA254 ] AcpiPmi C:\Windows\system32\DRIVERS\acpipmi.sys
13:25:21.0073 4352 AcpiPmi - ok
13:25:21.0214 4352 [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
13:25:21.0245 4352 AdobeFlashPlayerUpdateSvc - ok
13:25:21.0261 4352 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
13:25:21.0292 4352 adp94xx - ok
13:25:21.0307 4352 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
13:25:21.0339 4352 adpahci - ok
13:25:21.0370 4352 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
13:25:21.0385 4352 adpu320 - ok
13:25:21.0697 4352 [ C0BF554D2277F7A4C735D475ADE2E3B2 ] ADSMService C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMSrv.exe
13:25:21.0713 4352 ADSMService ( UnsignedFile.Multi.Generic ) - warning
13:25:21.0713 4352 ADSMService - detected UnsignedFile.Multi.Generic (1)
13:25:21.0760 4352 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
13:25:21.0822 4352 AeLookupSvc - ok
13:25:21.0869 4352 [ B9384E03479D2506BC924C16A3DB87BC ] AFD C:\Windows\system32\drivers\afd.sys
13:25:21.0931 4352 AFD - ok
13:25:21.0963 4352 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\DRIVERS\agp440.sys
13:25:21.0978 4352 agp440 - ok
13:25:22.0009 4352 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
13:25:22.0056 4352 ALG - ok
13:25:22.0087 4352 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\DRIVERS\aliide.sys
13:25:22.0103 4352 aliide - ok
13:25:22.0119 4352 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\DRIVERS\amdide.sys
13:25:22.0134 4352 amdide - ok
13:25:22.0150 4352 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
13:25:22.0197 4352 AmdK8 - ok
13:25:22.0212 4352 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
13:25:22.0259 4352 AmdPPM - ok
13:25:22.0275 4352 [ 7A4B413614C055935567CF88A9734D38 ] amdsata C:\Windows\system32\DRIVERS\amdsata.sys
13:25:22.0290 4352 amdsata - ok
13:25:22.0321 4352 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
13:25:22.0337 4352 amdsbs - ok
13:25:22.0368 4352 [ B4AD0CACBAB298671DD6F6EF7E20679D ] amdxata C:\Windows\system32\DRIVERS\amdxata.sys
13:25:22.0384 4352 amdxata - ok
13:25:22.0446 4352 [ 391887990CDAA83DE5C56C3FDE966DA1 ] AmUStor C:\Windows\system32\drivers\AmUStor.SYS
13:25:22.0493 4352 AmUStor - ok
13:25:22.0509 4352 [ 42FD751B27FA0E9C69BB39F39E409594 ] AppID C:\Windows\system32\drivers\appid.sys
13:25:22.0540 4352 AppID - ok
13:25:22.0571 4352 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
13:25:22.0618 4352 AppIDSvc - ok
13:25:22.0633 4352 [ D065BE66822847B7F127D1F90158376E ] Appinfo C:\Windows\System32\appinfo.dll
13:25:22.0680 4352 Appinfo - ok
13:25:22.0727 4352 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
13:25:22.0743 4352 arc - ok
13:25:22.0758 4352 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
13:25:22.0789 4352 arcsas - ok
13:25:22.0805 4352 [ 88FBC8BEBFD38566235EAA5E4DBC4E05 ] AsDsm C:\Windows\system32\drivers\AsDsm.sys
13:25:22.0852 4352 AsDsm - ok
13:25:22.0930 4352 [ 18E5C2F937F9DEB8C282DF66A3761925 ] ASLDRService C:\Program Files (x86)\ASUS\ATK Hotkey\ASLDRSrv.exe
13:25:22.0961 4352 ASLDRService - ok
13:25:23.0039 4352 [ 2DB34EDD17D3A8DA7105A19C95A3DD68 ] ASMMAP64 C:\Program Files\ATKGFNEX\ASMMAP64.sys
13:25:23.0055 4352 ASMMAP64 - ok
13:25:23.0086 4352 [ 55142B4F7A7E4C9C151C6000A6BF7809 ] aswFsBlk C:\Windows\system32\drivers\aswFsBlk.sys
13:25:23.0117 4352 aswFsBlk - ok
13:25:23.0148 4352 [ AA9FDE3D630160B47DAB21BF8250111C ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
13:25:23.0164 4352 aswMonFlt - ok
13:25:23.0195 4352 [ 2A6675C24DF5159A9506CD13ECE5ABE9 ] aswRdr C:\Windows\System32\Drivers\aswrdr2.sys
13:25:23.0211 4352 aswRdr - ok
13:25:23.0304 4352 [ 4E38475BDB51A867CCBA7D5DF7FDFC0C ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
13:25:23.0351 4352 aswSnx - ok
13:25:23.0382 4352 [ 9A49D80D65451AF22913AEF772CC3DA9 ] aswSP C:\Windows\system32\drivers\aswSP.sys
13:25:23.0398 4352 aswSP - ok
13:25:23.0413 4352 [ C3EC420451AC5300A22190AE38418FBA ] aswTdi C:\Windows\system32\drivers\aswTdi.sys
13:25:23.0445 4352 aswTdi - ok
13:25:23.0460 4352 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
13:25:23.0523 4352 AsyncMac - ok
13:25:23.0554 4352 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\DRIVERS\atapi.sys
13:25:23.0569 4352 atapi - ok
13:25:23.0632 4352 [ 0ACC06FCF46F64ED4F11E57EE461C1F4 ] athr C:\Windows\system32\DRIVERS\athrx.sys
13:25:23.0694 4352 athr - ok
13:25:23.0819 4352 [ 7C157574A181B19B9DCF5F339E25337E ] ATKGFNEXSrv C:\Program Files\ATKGFNEX\GFNEXSrv.exe
13:25:23.0835 4352 ATKGFNEXSrv ( UnsignedFile.Multi.Generic ) - warning
13:25:23.0835 4352 ATKGFNEXSrv - detected UnsignedFile.Multi.Generic (1)
13:25:23.0881 4352 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
13:25:23.0944 4352 AudioEndpointBuilder - ok
13:25:23.0959 4352 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioSrv C:\Windows\System32\Audiosrv.dll
13:25:24.0022 4352 AudioSrv - ok
13:25:24.0084 4352 [ 04AC21E821F259845BD7367CEE057290 ] avast! Antivirus C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
13:25:24.0100 4352 avast! Antivirus - ok
13:25:24.0287 4352 [ F6A528DE535396C2FB1A4E3C6F00CEC4 ] AVGIDSAgent C:\Program Files (x86)\AVG\AVG2012\avgidsagent.exe
13:25:24.0381 4352 AVGIDSAgent - ok
13:25:24.0443 4352 [ 1B2E9FCDC26DC7C81D4131430E2DC936 ] AVGIDSDriver C:\Windows\system32\DRIVERS\avgidsdrivera.sys
13:25:24.0474 4352 AVGIDSDriver - ok
13:25:24.0521 4352 [ 0F293406F64B48D5D2F0D3A1117F3A83 ] AVGIDSFilter C:\Windows\system32\DRIVERS\avgidsfiltera.sys
13:25:24.0537 4352 AVGIDSFilter - ok
13:25:24.0568 4352 [ CFFC3A4A638F462E0561CB368B9A7A3A ] AVGIDSHA C:\Windows\system32\DRIVERS\avgidsha.sys
13:25:24.0583 4352 AVGIDSHA - ok
13:25:24.0615 4352 [ 221FEBAB02D6C97C95558348CC354A85 ] Avgldx64 C:\Windows\system32\DRIVERS\avgldx64.sys
13:25:24.0646 4352 Avgldx64 - ok
13:25:24.0661 4352 [ A6AEC362AAE5E2DDA7445E7690CB0F33 ] Avgmfx64 C:\Windows\system32\DRIVERS\avgmfx64.sys
13:25:24.0677 4352 Avgmfx64 - ok
13:25:24.0724 4352 [ 645C7F0A0E39758A0024A9B1748273C0 ] Avgrkx64 C:\Windows\system32\DRIVERS\avgrkx64.sys
13:25:24.0739 4352 Avgrkx64 - ok
13:25:24.0771 4352 [ F8C3C7ED612A41B05C66358FC9786BFD ] Avgtdia C:\Windows\system32\DRIVERS\avgtdia.sys
13:25:24.0786 4352 Avgtdia - ok
13:25:24.0849 4352 [ DE24B2CA078FC6A7EAA53B1DFD3F61CF ] avgtp C:\Windows\system32\drivers\avgtpx64.sys
13:25:24.0864 4352 avgtp - ok
13:25:24.0895 4352 [ EA1145DEBCD508FD25BD1E95C4346929 ] avgwd C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe
13:25:24.0911 4352 avgwd - ok
13:25:24.0942 4352 [ B20B5FA5CA050E9926E4D1DB81501B32 ] AxInstSV C:\Windows\System32\AxInstSV.dll
13:25:24.0973 4352 AxInstSV - ok
13:25:25.0020 4352 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
13:25:25.0067 4352 b06bdrv - ok
13:25:25.0098 4352 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
13:25:25.0145 4352 b57nd60a - ok
13:25:25.0207 4352 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
13:25:25.0239 4352 BDESVC - ok
13:25:25.0270 4352 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
13:25:25.0348 4352 Beep - ok
13:25:25.0379 4352 [ 4992C609A6315671463E30F6512BC022 ] BFE C:\Windows\System32\bfe.dll
13:25:25.0457 4352 BFE - ok
13:25:25.0519 4352 [ 7F0C323FE3DA28AA4AA1BDA3F575707F ] BITS C:\Windows\System32\qmgr.dll
13:25:25.0629 4352 BITS - ok
13:25:25.0675 4352 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
13:25:25.0707 4352 blbdrive - ok
13:25:25.0738 4352 [ 91CE0D3DC57DD377E690A2D324022B08 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
13:25:25.0800 4352 bowser - ok
13:25:25.0816 4352 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
13:25:25.0847 4352 BrFiltLo - ok
13:25:25.0863 4352 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
13:25:25.0894 4352 BrFiltUp - ok
13:25:25.0941 4352 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
13:25:26.0003 4352 BridgeMP - ok
13:25:26.0034 4352 [ 94FBC06F294D58D02361918418F996E3 ] Browser C:\Windows\System32\browser.dll
13:25:26.0097 4352 Browser - ok
13:25:26.0112 4352 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
13:25:26.0159 4352 Brserid - ok
13:25:26.0175 4352 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
13:25:26.0206 4352 BrSerWdm - ok
13:25:26.0237 4352 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
13:25:26.0268 4352 BrUsbMdm - ok
13:25:26.0299 4352 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
13:25:26.0346 4352 BrUsbSer - ok
13:25:26.0377 4352 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
13:25:26.0409 4352 BTHMODEM - ok
13:25:26.0440 4352 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
13:25:26.0518 4352 bthserv - ok
13:25:26.0549 4352 catchme - ok
13:25:26.0565 4352 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
13:25:26.0643 4352 cdfs - ok
13:25:26.0674 4352 [ 83D2D75E1EFB81B3450C18131443F7DB ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
13:25:26.0705 4352 cdrom - ok
13:25:26.0752 4352 [ 312E2F82AF11E79906898AC3E3D58A1F ] CertPropSvc C:\Windows\System32\certprop.dll
13:25:26.0830 4352 CertPropSvc - ok
13:25:26.0861 4352 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
13:25:26.0908 4352 circlass - ok
13:25:26.0939 4352 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
13:25:26.0970 4352 CLFS - ok
13:25:27.0033 4352 clr_optimization_v2.0.50727_32 - ok
13:25:27.0095 4352 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
13:25:27.0157 4352 clr_optimization_v2.0.50727_64 - ok
13:25:27.0251 4352 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
13:25:27.0298 4352 clr_optimization_v4.0.30319_32 - ok
13:25:27.0360 4352 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
13:25:27.0423 4352 clr_optimization_v4.0.30319_64 - ok
13:25:27.0469 4352 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
13:25:27.0485 4352 CmBatt - ok
13:25:27.0516 4352 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\DRIVERS\cmdide.sys
13:25:27.0532 4352 cmdide - ok
13:25:27.0563 4352 [ F95FD4CB7DA00BA2A63CE9F6B5C053E1 ] CNG C:\Windows\system32\Drivers\cng.sys
13:25:27.0594 4352 CNG - ok
13:25:27.0594 4352 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
13:25:27.0625 4352 Compbatt - ok
13:25:27.0641 4352 [ F26B3A86F6FA87CA360B879581AB4123 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
13:25:27.0688 4352 CompositeBus - ok
13:25:27.0688 4352 COMSysApp - ok
13:25:27.0719 4352 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
13:25:27.0750 4352 crcdisk - ok
13:25:27.0781 4352 [ 8C57411B66282C01533CB776F98AD384 ] CryptSvc C:\Windows\system32\cryptsvc.dll
13:25:27.0844 4352 CryptSvc - ok
13:25:27.0906 4352 [ 7266972E86890E2B30C0C322E906B027 ] DcomLaunch C:\Windows\system32\rpcss.dll
13:25:28.0000 4352 DcomLaunch - ok
13:25:28.0031 4352 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
13:25:28.0093 4352 defragsvc - ok
13:25:28.0140 4352 [ 3F1DC527070ACB87E40AFE46EF6DA749 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
13:25:28.0203 4352 DfsC - ok
13:25:28.0218 4352 [ CE3B9562D997F69B330D181A8875960F ] Dhcp C:\Windows\system32\dhcpcore.dll
13:25:28.0281 4352 Dhcp - ok
13:25:28.0296 4352 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
13:25:28.0343 4352 discache - ok
13:25:28.0374 4352 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
13:25:28.0390 4352 Disk - ok
13:25:28.0421 4352 [ 676108C4E3AA6F6B34633748BD0BEBD9 ] Dnscache C:\Windows\System32\dnsrslvr.dll
13:25:28.0483 4352 Dnscache - ok
13:25:28.0499 4352 [ 14452ACDB09B70964C8C21BF80A13ACB ] dot3svc C:\Windows\System32\dot3svc.dll
13:25:28.0733 4352 dot3svc - ok
13:25:28.0811 4352 [ 8C2BA6BEA949EE6E68385F5692BAFB94 ] DPS C:\Windows\system32\dps.dll
13:25:28.0905 4352 DPS - ok
13:25:28.0983 4352 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
13:25:29.0029 4352 drmkaud - ok
13:25:29.0092 4352 [ 24CE1ECF9D0AE0301775B07F5FEA175B ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
13:25:29.0139 4352 DXGKrnl - ok
13:25:29.0185 4352 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
13:25:29.0263 4352 EapHost - ok
13:25:29.0357 4352 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
13:25:29.0482 4352 ebdrv - ok
13:25:29.0513 4352 [ 0793F40B9B8A1BDD266296409DBD91EA ] EFS C:\Windows\System32\lsass.exe
13:25:29.0544 4352 EFS - ok
13:25:29.0622 4352 [ 47C071994C3F649F23D9CD075AC9304A ] ehRecvr C:\Windows\ehome\ehRecvr.exe
13:25:29.0685 4352 ehRecvr - ok
13:25:29.0716 4352 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
13:25:29.0763 4352 ehSched - ok
13:25:29.0794 4352 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
13:25:29.0825 4352 elxstor - ok
13:25:29.0841 4352 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\DRIVERS\errdev.sys
13:25:29.0872 4352 ErrDev - ok
13:25:29.0919 4352 [ 3C38648375B7F3988691F53A7AAE10A9 ] ETD C:\Windows\system32\DRIVERS\ETD.sys
13:25:29.0950 4352 ETD - ok
13:25:30.0012 4352 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
13:25:30.0075 4352 EventSystem - ok
13:25:30.0106 4352 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
13:25:30.0168 4352 exfat - ok
13:25:30.0215 4352 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
13:25:30.0293 4352 fastfat - ok
13:25:30.0324 4352 [ D607B2F1BEE3992AA6C2C92C0A2F0855 ] Fax C:\Windows\system32\fxssvc.exe
13:25:30.0402 4352 Fax - ok
13:25:30.0433 4352 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
13:25:30.0465 4352 fdc - ok
13:25:30.0496 4352 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
13:25:30.0558 4352 fdPHost - ok
13:25:30.0589 4352 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
13:25:30.0636 4352 FDResPub - ok
13:25:30.0667 4352 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
13:25:30.0683 4352 FileInfo - ok
13:25:30.0823 4352 [ 060CC45CECAE2FEAFF9C8C52D8FAFAA8 ] FileMonitor C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys
13:25:30.0839 4352 FileMonitor - ok
13:25:30.0855 4352 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
13:25:30.0901 4352 Filetrace - ok
13:25:30.0948 4352 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
13:25:31.0011 4352 flpydisk - ok
13:25:31.0057 4352 [ F7866AF72ABBAF84B1FA5AA195378C59 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
13:25:31.0089 4352 FltMgr - ok
13:25:31.0151 4352 [ BC00505CFDA789ED3BE95D2FF38C4875 ] FontCache C:\Windows\system32\FntCache.dll
13:25:31.0229 4352 FontCache - ok
13:25:31.0276 4352 [ 8D89E3131C27FDD6932189CB785E1B7A ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
13:25:31.0307 4352 FontCache3.0.0.0 - ok
13:25:31.0338 4352 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
13:25:31.0369 4352 FsDepends - ok
13:25:31.0401 4352 [ 07DA62C960DDCCC2D35836AEAB4FC578 ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
13:25:31.0432 4352 fssfltr - ok
13:25:31.0557 4352 [ 28DDEEEC44E988657B732CF404D504CB ] fsssvc C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
13:25:31.0635 4352 fsssvc - ok
13:25:31.0666 4352 [ E95EF8547DE20CF0603557C0CF7A9462 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
13:25:31.0681 4352 Fs_Rec - ok
13:25:31.0728 4352 [ AE87BA80D0EC3B57126ED2CDC15B24ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
13:25:31.0759 4352 fvevol - ok
13:25:31.0775 4352 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
13:25:31.0806 4352 gagp30kx - ok
13:25:31.0853 4352 [ FE5AB4525BC2EC68B9119A6E5D40128B ] gpsvc C:\Windows\System32\gpsvc.dll
13:25:31.0915 4352 gpsvc - ok
13:25:32.0056 4352 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
13:25:32.0087 4352 gupdate - ok
13:25:32.0118 4352 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
13:25:32.0149 4352 gupdatem - ok
13:25:32.0181 4352 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
13:25:32.0227 4352 hcw85cir - ok
13:25:32.0259 4352 [ 6410F6F415B2A5A9037224C41DA8BF12 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
13:25:32.0305 4352 HdAudAddService - ok
13:25:32.0337 4352 [ 0A49913402747A0B67DE940FB42CBDBB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
13:25:32.0383 4352 HDAudBus - ok
13:25:32.0399 4352 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
13:25:32.0446 4352 HidBatt - ok
13:25:32.0461 4352 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
13:25:32.0508 4352 HidBth - ok
13:25:32.0524 4352 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
13:25:32.0555 4352 HidIr - ok
13:25:32.0602 4352 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll
13:25:32.0664 4352 hidserv - ok
13:25:32.0695 4352 [ B3BF6B5B50006DEF50B66306D99FCF6F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
13:25:32.0711 4352 HidUsb - ok
13:25:32.0727 4352 [ EFA58EDE58DD74388FFD04CB32681518 ] hkmsvc C:\Windows\system32\kmsvc.dll
13:25:32.0789 4352 hkmsvc - ok
13:25:32.0820 4352 [ 046B2673767CA626E2CFB7FDF735E9E8 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
13:25:32.0867 4352 HomeGroupListener - ok
13:25:32.0898 4352 [ 06A7422224D9865A5613710A089987DF ] HomeGroupProvider C:\Windows\system32\provsvc.dll
13:25:32.0961 4352 HomeGroupProvider - ok
13:25:32.0976 4352 [ 0886D440058F203EBA0E1825E4355914 ] HpSAMD C:\Windows\system32\DRIVERS\HpSAMD.sys
13:25:33.0023 4352 HpSAMD - ok
13:25:33.0085 4352 [ CEE049CAC4EFA7F4E1E4AD014414A5D4 ] HTTP C:\Windows\system32\drivers\HTTP.sys
13:25:33.0148 4352 HTTP - ok
13:25:33.0163 4352 [ F17766A19145F111856378DF337A5D79 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
13:25:33.0179 4352 hwpolicy - ok
13:25:33.0257 4352 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
13:25:33.0304 4352 i8042prt - ok
13:25:33.0319 4352 [ D83EFB6FD45DF9D55E9A1AFC63640D50 ] iaStorV C:\Windows\system32\DRIVERS\iaStorV.sys
13:25:33.0351 4352 iaStorV - ok
13:25:33.0429 4352 [ 2F2BE70D3E02B6FA877921AB9516D43C ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
13:25:33.0522 4352 idsvc - ok
13:25:33.0553 4352 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
13:25:33.0569 4352 iirsp - ok
13:25:33.0631 4352 [ C5B4683680DF085B57BC53E5EF34861F ] IKEEXT C:\Windows\System32\ikeext.dll
13:25:33.0741 4352 IKEEXT - ok
13:25:33.0803 4352 [ 8AE99EBE30E8338907361018D9030835 ] IMFservice C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
13:25:33.0850 4352 IMFservice - ok
13:25:33.0928 4352 [ 5BA1779E2C84FDE2A5E201FFF9C42C9C ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
13:25:33.0990 4352 IntcAzAudAddService - ok
13:25:34.0068 4352 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\DRIVERS\intelide.sys
13:25:34.0099 4352 intelide - ok
13:25:34.0146 4352 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
13:25:34.0193 4352 intelppm - ok
13:25:34.0224 4352 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
13:25:34.0271 4352 IPBusEnum - ok
13:25:34.0287 4352 [ 722DD294DF62483CECAAE6E094B4D695 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
13:25:34.0349 4352 IpFilterDriver - ok
13:25:34.0380 4352 [ F8E058D17363EC580E4B7232778B6CB5 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
13:25:34.0474 4352 iphlpsvc - ok
13:25:34.0489 4352 [ E2B4A4494DB7CB9B89B55CA268C337C5 ] IPMIDRV C:\Windows\system32\DRIVERS\IPMIDrv.sys
13:25:34.0536 4352 IPMIDRV - ok
13:25:34.0567 4352 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
13:25:34.0614 4352 IPNAT - ok
13:25:34.0630 4352 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
13:25:34.0677 4352 IRENUM - ok
13:25:34.0708 4352 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\DRIVERS\isapnp.sys
13:25:34.0723 4352 isapnp - ok
13:25:34.0739 4352 [ FA4D2557DE56D45B0A346F93564BE6E1 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
13:25:34.0770 4352 iScsiPrt - ok
13:25:34.0801 4352 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
13:25:34.0817 4352 kbdclass - ok
13:25:34.0833 4352 [ 6DEF98F8541E1B5DCEB2C822A11F7323 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
13:25:34.0879 4352 kbdhid - ok
13:25:34.0911 4352 [ E63EF8C3271D014F14E2469CE75FECB4 ] kbfiltr C:\Windows\system32\DRIVERS\kbfiltr.sys
13:25:34.0926 4352 kbfiltr - ok
13:25:34.0957 4352 [ 0793F40B9B8A1BDD266296409DBD91EA ] KeyIso C:\Windows\system32\lsass.exe
13:25:34.0989 4352 KeyIso - ok
13:25:35.0020 4352 [ E8B6FCC9C83535C67F835D407620BD27 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
13:25:35.0035 4352 KSecDD - ok
13:25:35.0067 4352 [ A8C63880EF6F4D3FEC7B616B9C060215 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
13:25:35.0098 4352 KSecPkg - ok
13:25:35.0098 4352 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
13:25:35.0176 4352 ksthunk - ok
13:25:35.0207 4352 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
13:25:35.0301 4352 KtmRm - ok
13:25:35.0332 4352 [ 81F1D04D4D0E433099365127375FD501 ] LanmanServer C:\Windows\System32\srvsvc.dll
13:25:35.0410 4352 LanmanServer - ok
13:25:35.0457 4352 [ 27026EAC8818E8A6C00A1CAD2F11D29A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
13:25:35.0519 4352 LanmanWorkstation - ok
13:25:35.0550 4352 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
13:25:35.0613 4352 lltdio - ok
13:25:35.0644 4352 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
13:25:35.0706 4352 lltdsvc - ok
13:25:35.0737 4352 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
13:25:35.0815 4352 lmhosts - ok
13:25:35.0831 4352 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
13:25:35.0847 4352 LSI_FC - ok
13:25:35.0893 4352 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
13:25:35.0909 4352 LSI_SAS - ok
13:25:35.0925 4352 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
13:25:35.0956 4352 LSI_SAS2 - ok
13:25:35.0971 4352 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
13:25:36.0003 4352 LSI_SCSI - ok
13:25:36.0034 4352 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
13:25:36.0081 4352 luafv - ok
13:25:36.0112 4352 [ A8FE8F2783B2929B56F5370A89356CE9 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
13:25:36.0127 4352 MBAMProtector - ok
13:25:36.0190 4352 [ 85B16A92B117A5A800032ECD904B86DB ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
13:25:36.0221 4352 MBAMScheduler - ok
13:25:36.0252 4352 [ 20E2469DB709FC675E655CEAA11BE312 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
13:25:36.0283 4352 MBAMService - ok
13:25:36.0330 4352 [ F84C8F1000BC11E3B7B23CBD3BAFF111 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
13:25:36.0377 4352 Mcx2Svc - ok
13:25:36.0408 4352 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
13:25:36.0424 4352 megasas - ok
13:25:36.0439 4352 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
13:25:36.0471 4352 MegaSR - ok
13:25:36.0486 4352 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
13:25:36.0564 4352 MMCSS - ok
13:25:36.0580 4352 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
13:25:36.0642 4352 Modem - ok
13:25:36.0673 4352 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
13:25:36.0720 4352 monitor - ok
13:25:36.0736 4352 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
13:25:36.0751 4352 mouclass - ok
13:25:36.0767 4352 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
13:25:36.0814 4352 mouhid - ok
13:25:36.0845 4352 [ 791AF66C4D0E7C90A3646066386FB571 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
13:25:36.0861 4352 mountmgr - ok
13:25:36.0892 4352 [ 609D1D87649ECC19796F4D76D4C15CEA ] mpio C:\Windows\system32\DRIVERS\mpio.sys
13:25:36.0907 4352 mpio - ok
13:25:36.0939 4352 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
13:25:36.0985 4352 mpsdrv - ok
13:25:37.0032 4352 [ AECAB449567D1846DAD63ECE49E893E3 ] MpsSvc C:\Windows\system32\mpssvc.dll
13:25:37.0126 4352 MpsSvc - ok
13:25:37.0157 4352 [ 30524261BB51D96D6FCBAC20C810183C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
13:25:37.0188 4352 MRxDAV - ok
13:25:37.0219 4352 [ 767A4C3BCF9410C286CED15A2DB17108 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
13:25:37.0251 4352 mrxsmb - ok
13:25:37.0282 4352 [ 920EE0FF995FCFDEB08C41605A959E1C ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
13:25:37.0313 4352 mrxsmb10 - ok
13:25:37.0360 4352 [ 740D7EA9D72C981510A5292CF6ADC941 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
13:25:37.0407 4352 mrxsmb20 - ok
13:25:37.0438 4352 [ 5C37497276E3B3A5488B23A326A754B7 ] msahci C:\Windows\system32\DRIVERS\msahci.sys
13:25:37.0453 4352 msahci - ok
13:25:37.0469 4352 [ 8D27B597229AED79430FB9DB3BCBFBD0 ] msdsm C:\Windows\system32\DRIVERS\msdsm.sys
13:25:37.0500 4352 msdsm - ok
13:25:37.0516 4352 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
13:25:37.0578 4352 MSDTC - ok
13:25:37.0609 4352 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
13:25:37.0672 4352 Msfs - ok
13:25:37.0703 4352 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
13:25:37.0765 4352 mshidkmdf - ok
13:25:37.0781 4352 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\DRIVERS\msisadrv.sys
13:25:37.0797 4352 msisadrv - ok
13:25:37.0843 4352 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
13:25:37.0921 4352 MSiSCSI - ok
13:25:37.0937 4352 msiserver - ok
13:25:37.0968 4352 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
13:25:38.0031 4352 MSKSSRV - ok
13:25:38.0062 4352 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
13:25:38.0124 4352 MSPCLOCK - ok
13:25:38.0155 4352 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
13:25:38.0218 4352 MSPQM - ok
13:25:38.0233 4352 [ 89CB141AA8616D8C6A4610FA26C60964 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
13:25:38.0265 4352 MsRPC - ok
13:25:38.0296 4352 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
13:25:38.0327 4352 mssmbios - ok
13:25:38.0343 4352 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
13:25:38.0405 4352 MSTEE - ok
13:25:38.0421 4352 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
13:25:38.0452 4352 MTConfig - ok
13:25:38.0467 4352 [ 032D35C996F21D19A205A7C8F0B76F3C ] MTsensor C:\Windows\system32\DRIVERS\ATK64AMD.sys
13:25:38.0483 4352 MTsensor - ok
13:25:38.0514 4352 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
13:25:38.0530 4352 Mup - ok
13:25:38.0561 4352 [ 4987E079A4530FA737A128BE54B63B12 ] napagent C:\Windows\system32\qagentRT.dll
13:25:38.0639 4352 napagent - ok
13:25:38.0686 4352 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
13:25:38.0733 4352 NativeWifiP - ok
13:25:38.0779 4352 [ CAD515DBD07D082BB317D9928CE8962C ] NDIS C:\Windows\system32\drivers\ndis.sys
13:25:38.0811 4352 NDIS - ok
13:25:38.0842 4352 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
13:25:38.0889 4352 NdisCap - ok
13:25:38.0904 4352 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
13:25:38.0951 4352 NdisTapi - ok
13:25:38.0998 4352 [ F105BA1E22BF1F2EE8F005D4305E4BEC ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
13:25:39.0060 4352 Ndisuio - ok
13:25:39.0091 4352 [ 557DFAB9CA1FCB036AC77564C010DAD3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
13:25:39.0154 4352 NdisWan - ok
13:25:39.0169 4352 [ 659B74FB74B86228D6338D643CD3E3CF ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
13:25:39.0232 4352 NDProxy - ok
13:25:39.0247 4352 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
13:25:39.0310 4352 NetBIOS - ok
13:25:39.0357 4352 [ 9162B273A44AB9DCE5B44362731D062A ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
13:25:39.0419 4352 NetBT - ok
13:25:39.0435 4352 [ 0793F40B9B8A1BDD266296409DBD91EA ] Netlogon C:\Windows\system32\lsass.exe
13:25:39.0481 4352 Netlogon - ok
13:25:39.0528 4352 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
13:25:39.0622 4352 Netman - ok
13:25:39.0653 4352 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
13:25:39.0715 4352 netprofm - ok
13:25:39.0762 4352 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
13:25:39.0778 4352 NetTcpPortSharing - ok
13:25:39.0809 4352 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
13:25:39.0825 4352 nfrd960 - ok
13:25:39.0856 4352 [ D9A0CE66046D6EFA0C61BAA885CBA0A8 ] NlaSvc C:\Windows\System32\nlasvc.dll
13:25:39.0934 4352 NlaSvc - ok
13:25:39.0949 4352 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
13:25:40.0012 4352 Npfs - ok
13:25:40.0027 4352 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
13:25:40.0105 4352 nsi - ok
13:25:40.0152 4352 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
13:25:40.0215 4352 nsiproxy - ok
13:25:40.0277 4352 [ 356698A13C4630D5B31C37378D469196 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
13:25:40.0324 4352 Ntfs - ok
13:25:40.0339 4352 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
13:25:40.0402 4352 Null - ok
13:25:40.0417 4352 [ 6E41A4DF26340A07A489B721F9721EC1 ] NVHDA C:\Windows\system32\drivers\nvhda64v.sys
13:25:40.0433 4352 NVHDA - ok
13:25:40.0714 4352 [ 25B51A9FB639DC59221CB3A5B7836E30 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
13:25:40.0917 4352 nvlddmkm - ok
13:25:40.0948 4352 [ 3E38712941E9BB4DDBEE00AFFE3FED3D ] nvraid C:\Windows\system32\DRIVERS\nvraid.sys
13:25:40.0979 4352 nvraid - ok
13:25:40.0995 4352 [ E58D81FB8616D0CB55C1E36AA0B213C9 ] nvsmu C:\Windows\system32\DRIVERS\nvsmu.sys
13:25:41.0010 4352 nvsmu - ok
13:25:41.0041 4352 [ 477DC4D6DEB99BE37084C9AC6D013DA1 ] nvstor C:\Windows\system32\DRIVERS\nvstor.sys
13:25:41.0057 4352 nvstor - ok
13:25:41.0088 4352 [ 1978DD2EE567287D040B5A9468ECEB72 ] nvstor64 C:\Windows\system32\DRIVERS\nvstor64.sys
13:25:41.0104 4352 nvstor64 - ok
13:25:41.0151 4352 [ 74AA0D3F4768D8DEDE6471F07075567A ] nvsvc C:\Windows\system32\nvvsvc.exe
13:25:41.0182 4352 nvsvc - ok
13:25:41.0213 4352 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\DRIVERS\nv_agp.sys
13:25:41.0229 4352 nv_agp - ok
13:25:41.0338 4352 [ 1F0E05DFF4F5A833168E49BE1256F002 ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
13:25:41.0400 4352 odserv - ok
13:25:41.0431 4352 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
13:25:41.0478 4352 ohci1394 - ok
13:25:41.0541 4352 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
13:25:41.0556 4352 ose - ok
13:25:41.0603 4352 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
13:25:41.0681 4352 p2pimsvc - ok
13:25:41.0712 4352 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
13:25:41.0775 4352 p2psvc - ok
13:25:41.0821 4352 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
13:25:41.0853 4352 Parport - ok
13:25:41.0884 4352 [ 7DAA117143316C4A1537E074A5A9EAF0 ] partmgr C:\Windows\system32\drivers\partmgr.sys
13:25:41.0899 4352 partmgr - ok
13:25:41.0931 4352 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
13:25:41.0977 4352 PcaSvc - ok
13:25:42.0009 4352 [ F36F6504009F2FB0DFD1B17A116AD74B ] pci C:\Windows\system32\DRIVERS\pci.sys
13:25:42.0024 4352 pci - ok
13:25:42.0040 4352 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
13:25:42.0055 4352 pciide - ok
13:25:42.0087 4352 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
13:25:42.0118 4352 pcmcia - ok
13:25:42.0133 4352 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
13:25:42.0149 4352 pcw - ok
13:25:42.0180 4352 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
13:25:42.0258 4352 PEAUTH - ok
13:25:42.0321 4352 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
13:25:42.0367 4352 PerfHost - ok
13:25:42.0445 4352 [ 557E9A86F65F0DE18C9B6751DFE9D3F1 ] pla C:\Windows\system32\pla.dll
13:25:42.0570 4352 pla - ok
13:25:42.0617 4352 [ 23157D583244400E1D7FBAEE2E4B31B7 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
13:25:42.0695 4352 PlugPlay - ok
13:25:42.0711 4352 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
13:25:42.0773 4352 PNRPAutoReg - ok
13:25:42.0789 4352 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
13:25:42.0835 4352 PNRPsvc - ok
13:25:42.0882 4352 [ 166EB40D1F5B47E615DE3D0FFFE5F243 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
13:25:42.0976 4352 PolicyAgent - ok
13:25:43.0007 4352 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
13:25:43.0069 4352 Power - ok
13:25:43.0101 4352 [ 27CC19E81BA5E3403C48302127BDA717 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
13:25:43.0163 4352 PptpMiniport - ok
13:25:43.0194 4352 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
13:25:43.0225 4352 Processor - ok
13:25:43.0257 4352 [ F381975E1F4346DE875CB07339CE8D3A ] ProfSvc C:\Windows\system32\profsvc.dll
13:25:43.0319 4352 ProfSvc - ok
13:25:43.0335 4352 [ 0793F40B9B8A1BDD266296409DBD91EA ] ProtectedStorage C:\Windows\system32\lsass.exe
13:25:43.0366 4352 ProtectedStorage - ok
13:25:43.0381 4352 [ EE992183BD8EAEFD9973F352E587A299 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
13:25:43.0444 4352 Psched - ok
13:25:43.0506 4352 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
13:25:43.0569 4352 ql2300 - ok
13:25:43.0615 4352 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
13:25:43.0631 4352 ql40xx - ok
13:25:43.0678 4352 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
13:25:43.0740 4352 QWAVE - ok
13:25:43.0740 4352 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
13:25:43.0787 4352 QWAVEdrv - ok
13:25:43.0818 4352 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
13:25:43.0865 4352 RasAcd - ok
13:25:43.0896 4352 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
13:25:43.0959 4352 RasAgileVpn - ok
13:25:44.0068 4352 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
13:25:44.0146 4352 RasAuto - ok
13:25:44.0161 4352 [ 87A6E852A22991580D6D39ADC4790463 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
13:25:44.0224 4352 Rasl2tp - ok
13:25:44.0255 4352 [ 47394ED3D16D053F5906EFE5AB51CC83 ] RasMan C:\Windows\System32\rasmans.dll
13:25:44.0349 4352 RasMan - ok
13:25:44.0364 4352 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
13:25:44.0427 4352 RasPppoe - ok
13:25:44.0442 4352 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
13:25:44.0505 4352 RasSstp - ok
13:25:44.0551 4352 [ 3BAC8142102C15D59A87757C1D41DCE5 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
13:25:44.0614 4352 rdbss - ok
13:25:44.0629 4352 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
13:25:44.0661 4352 rdpbus - ok
13:25:44.0707 4352 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
13:25:44.0770 4352 RDPCDD - ok
13:25:44.0785 4352 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
13:25:44.0863 4352 RDPENCDD - ok
13:25:44.0879 4352 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
13:25:44.0941 4352 RDPREFMP - ok
13:25:44.0957 4352 [ 8A3E6BEA1C53EA6177FE2B6EBA2C80D7 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
13:25:45.0004 4352 RDPWD - ok
13:25:45.0035 4352 [ 634B9A2181D98F15941236886164EC8B ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
13:25:45.0051 4352 rdyboost - ok
13:25:45.0097 4352 [ C7DE6F41B1A734EA70BD2DC67235BECC ] RegFilter C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys
13:25:45.0113 4352 RegFilter - ok
13:25:45.0175 4352 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
13:25:45.0269 4352 RemoteAccess - ok
13:25:45.0300 4352 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
13:25:45.0394 4352 RemoteRegistry - ok
13:25:45.0409 4352 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
13:25:45.0487 4352 RpcEptMapper - ok
13:25:45.0534 4352 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
13:25:45.0565 4352 RpcLocator - ok
13:25:45.0597 4352 [ 7266972E86890E2B30C0C322E906B027 ] RpcSs C:\Windows\system32\rpcss.dll
13:25:45.0659 4352 RpcSs - ok
13:25:45.0706 4352 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
13:25:45.0753 4352 rspndr - ok
13:25:45.0799 4352 [ B49DC435AE3695BAC5623DD94B05732D ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
13:25:45.0846 4352 RTL8167 - ok
13:25:45.0862 4352 [ 0793F40B9B8A1BDD266296409DBD91EA ] SamSs C:\Windows\system32\lsass.exe
13:25:45.0893 4352 SamSs - ok
13:25:45.0971 4352 SASDIFSV - ok
13:25:46.0002 4352 SASKUTIL - ok
13:25:46.0049 4352 [ E3BBB89983DAF5622C1D50CF49F28227 ] sbp2port C:\Windows\system32\DRIVERS\sbp2port.sys
13:25:46.0096 4352 sbp2port - ok
13:25:46.0127 4352 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
13:25:46.0221 4352 SCardSvr - ok
13:25:46.0252 4352 [ C94DA20C7E3BA1DCA269BC8460D98387 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
13:25:46.0299 4352 scfilter - ok
13:25:46.0361 4352 [ 624D0F5FF99428BB90A5B8A4123E918E ] Schedule C:\Windows\system32\schedsvc.dll
13:25:46.0423 4352 Schedule - ok
13:25:46.0455 4352 [ 312E2F82AF11E79906898AC3E3D58A1F ] SCPolicySvc C:\Windows\System32\certprop.dll
13:25:46.0501 4352 SCPolicySvc - ok
13:25:46.0548 4352 [ 765A27C3279CE11D14CB9E4F5869FCA5 ] SDRSVC C:\Windows\System32\SDRSVC.dll
13:25:46.0626 4352 SDRSVC - ok
13:25:46.0704 4352 [ 16A252022535B680046F6E34E136D378 ] SeaPort C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
13:25:46.0720 4352 SeaPort - ok
13:25:46.0767 4352 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
13:25:46.0829 4352 secdrv - ok
13:25:46.0876 4352 [ 463B386EBC70F98DA5DFF85F7E654346 ] seclogon C:\Windows\system32\seclogon.dll
13:25:46.0954 4352 seclogon - ok
13:25:46.0969 4352 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\system32\sens.dll
13:25:47.0047 4352 SENS - ok
13:25:47.0079 4352 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
13:25:47.0125 4352 SensrSvc - ok
13:25:47.0141 4352 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
13:25:47.0188 4352 Serenum - ok
13:25:47.0219 4352 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
13:25:47.0266 4352 Serial - ok
13:25:47.0281 4352 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
13:25:47.0328 4352 sermouse - ok
13:25:47.0375 4352 [ C3BC61CE47FF6F4E88AB8A3B429A36AF ] SessionEnv C:\Windows\system32\sessenv.dll
13:25:47.0453 4352 SessionEnv - ok
13:25:47.0469 4352 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
13:25:47.0500 4352 sffdisk - ok
13:25:47.0515 4352 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\DRIVERS\sffp_mmc.sys
13:25:47.0547 4352 sffp_mmc - ok
13:25:47.0578 4352 [ 5588B8C6193EB1522490C122EB94DFFA ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
13:25:47.0609 4352 sffp_sd - ok
13:25:47.0625 4352 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
13:25:47.0671 4352 sfloppy - ok
13:25:47.0718 4352 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
13:25:47.0812 4352 SharedAccess - ok
13:25:47.0859 4352 [ 0298AC45D0EFFFB2DB4BAA7DD186E7BF ] ShellHWDetection C:\Windows\System32\shsvcs.dll
13:25:47.0937 4352 ShellHWDetection - ok
13:25:47.0983 4352 [ 1BC348CF6BAA90EC8E533EF6E6A69933 ] SiSGbeLH C:\Windows\system32\DRIVERS\SiSG664.sys
13:25:48.0015 4352 SiSGbeLH - ok
13:25:48.0030 4352 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
13:25:48.0046 4352 SiSRaid2 - ok
13:25:48.0061 4352 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
13:25:48.0093 4352 SiSRaid4 - ok
13:25:48.0108 4352 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
13:25:48.0171 4352 Smb - ok
13:25:48.0217 4352 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
13:25:48.0264 4352 SNMPTRAP - ok
13:25:48.0327 4352 [ 1D8474722CDFFBB8FCA5FA12C50A05A2 ] SNP2UVC C:\Windows\system32\DRIVERS\snp2uvc.sys
13:25:48.0373 4352 SNP2UVC - ok
13:25:48.0389 4352 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
13:25:48.0405 4352 spldr - ok
13:25:48.0436 4352 [ F8E1FA03CB70D54A9892AC88B91D1E7B ] Spooler C:\Windows\System32\spoolsv.exe
13:25:48.0483 4352 Spooler - ok
13:25:48.0607 4352 [ 913D843498553A1BC8F8DBAD6358E49F ] sppsvc C:\Windows\system32\sppsvc.exe
13:25:48.0685 4352 sppsvc - ok
13:25:48.0717 4352 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
13:25:48.0795 4352 sppuinotify - ok
13:25:48.0857 4352 [ DE6F5658DA951C4BC8E498570B5B0D5F ] srv C:\Windows\system32\DRIVERS\srv.sys
13:25:48.0904 4352 srv - ok
13:25:48.0951 4352 [ 4D33D59C0B930C523D29F9BD40CDA9D2 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
13:25:48.0997 4352 srv2 - ok
13:25:49.0029 4352 [ 5A663FD67049267BC5C3F3279E631FFB ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
13:25:49.0060 4352 srvnet - ok
13:25:49.0122 4352 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
13:25:49.0247 4352 SSDPSRV - ok
13:25:49.0294 4352 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
13:25:49.0372 4352 SstpSvc - ok
13:25:49.0403 4352 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
13:25:49.0434 4352 stexstor - ok
13:25:49.0481 4352 [ 52D0E33B681BD0F33FDC08812FEE4F7D ] stisvc C:\Windows\System32\wiaservc.dll
13:25:49.0559 4352 stisvc - ok
13:25:49.0575 4352 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
13:25:49.0606 4352 swenum - ok
13:25:49.0621 4352 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
13:25:49.0715 4352 swprv - ok
13:25:49.0762 4352 [ 3C1284516A62078FB68F768DE4F1A7BE ] SysMain C:\Windows\system32\sysmain.dll
13:25:49.0840 4352 SysMain - ok
13:25:49.0855 4352 [ 238935C3CF2854886DC7CBB2A0E2CC66 ] TabletInputService C:\Windows\System32\TabSvc.dll
13:25:49.0933 4352 TabletInputService - ok
13:25:49.0965 4352 [ 884264AC597B690C5707C89723BB8E7B ] TapiSrv C:\Windows\System32\tapisrv.dll
13:25:50.0058 4352 TapiSrv - ok
13:25:50.0089 4352 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
13:25:50.0183 4352 TBS - ok
13:25:50.0261 4352 [ 90A2D722CF64D911879D6C4A4F802A4D ] Tcpip C:\Windows\system32\drivers\tcpip.sys
13:25:50.0308 4352 Tcpip - ok
13:25:50.0370 4352 [ 90A2D722CF64D911879D6C4A4F802A4D ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
13:25:50.0417 4352 TCPIP6 - ok
13:25:50.0479 4352 [ 76D078AF6F587B162D50210F761EB9ED ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
13:25:50.0542 4352 tcpipreg - ok
13:25:50.0557 4352 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
13:25:50.0635 4352 TDPIPE - ok
13:25:50.0651 4352 [ E4245BDA3190A582D55ED09E137401A9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
13:25:50.0713 4352 TDTCP - ok
13:25:50.0745 4352 [ 079125C4B17B01FCAEEBCE0BCB290C0F ] tdx C:\Windows\system32\DRIVERS\tdx.sys
13:25:50.0791 4352 tdx - ok
13:25:50.0932 4352 [ 3E85BDD019E3DB66D9471DAD7FD6A887 ] TeamViewer7 C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
13:25:50.0994 4352 TeamViewer7 - ok
13:25:51.0010 4352 [ C448651339196C0E869A355171875522 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
13:25:51.0041 4352 TermDD - ok
13:25:51.0088 4352 [ 0F05EC2887BFE197AD82A13287D2F404 ] TermService C:\Windows\System32\termsrv.dll
13:25:51.0197 4352 TermService - ok
13:25:51.0213 4352 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
13:25:51.0275 4352 Themes - ok
13:25:51.0306 4352 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
13:25:51.0353 4352 THREADORDER - ok
13:25:51.0415 4352 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
13:25:51.0603 4352 TrkWks - ok
13:25:51.0712 4352 [ 840F7FB849F5887A49BA18C13B2DA920 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
13:25:51.0790 4352 TrustedInstaller - ok
13:25:51.0805 4352 [ 61B96C26131E37B24E93327A0BD1FB95 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
13:25:51.0883 4352 tssecsrv - ok
13:25:51.0915 4352 [ 3836171A2CDF3AF8EF10856DB9835A70 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
13:25:51.0977 4352 tunnel - ok
13:25:51.0993 4352 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
13:25:52.0024 4352 uagp35 - ok
13:25:52.0039 4352 [ D47BAEAD86C65D4F4069D7CE0A4EDCEB ] udfs C:\Windows\system32\DRIVERS\udfs.sys
13:25:52.0086 4352 udfs - ok
13:25:52.0117 4352 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
13:25:52.0195 4352 UI0Detect - ok
13:25:52.0211 4352 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\DRIVERS\uliagpkx.sys
13:25:52.0242 4352 uliagpkx - ok
13:25:52.0273 4352 [ EAB6C35E62B1B0DB0D1B48B671D3A117 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
13:25:52.0289 4352 umbus - ok
13:25:52.0320 4352 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
13:25:52.0336 4352 UmPass - ok
13:25:52.0383 4352 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
13:25:52.0461 4352 upnphost - ok
13:25:52.0507 4352 [ 82520FE7A49765E76281DCC7D90C09F6 ] UrlFilter C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\UrlFilter.sys
13:25:52.0523 4352 UrlFilter - ok
13:25:52.0554 4352 [ B26AFB54A534D634523C4FB66765B026 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
13:25:52.0585 4352 usbccgp - ok
13:25:52.0617 4352 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\DRIVERS\usbcir.sys
13:25:52.0663 4352 usbcir - ok
13:25:52.0695 4352 [ DF9F9AFC9AAABD8ED47975D44E38169A ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
13:25:52.0726 4352 usbehci - ok
13:25:52.0757 4352 [ 372A91BC3C6603080A793880B0873785 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
13:25:52.0788 4352 usbhub - ok
13:25:52.0804 4352 [ 58E546BBAF87664FC57E0F6081E4F609 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
13:25:52.0851 4352 usbohci - ok
13:25:52.0897 4352 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
13:25:52.0929 4352 usbprint - ok
13:25:52.0975 4352 [ 080D3820DA6C046BE82FC8B45A893E83 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
13:25:53.0007 4352 USBSTOR - ok
13:25:53.0022 4352 [ 81FB2216D3A60D1284455D511797DB3D ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
13:25:53.0038 4352 usbuhci - ok
13:25:53.0069 4352 [ 7CB8C573C6E4A2714402CC0A36EAB4FE ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
13:25:53.0100 4352 usbvideo - ok
13:25:53.0131 4352 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
13:25:53.0209 4352 UxSms - ok
13:25:53.0241 4352 [ 0793F40B9B8A1BDD266296409DBD91EA ] VaultSvc C:\Windows\system32\lsass.exe
13:25:53.0272 4352 VaultSvc - ok
13:25:53.0319 4352 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\DRIVERS\vdrvroot.sys
13:25:53.0334 4352 vdrvroot - ok
13:25:53.0381 4352 [ 44D73E0BBC1D3C8981304BA15135C2F2 ] vds C:\Windows\System32\vds.exe
13:25:53.0459 4352 vds - ok
13:25:53.0475 4352 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
13:25:53.0506 4352 vga - ok
13:25:53.0537 4352 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
13:25:53.0599 4352 VgaSave - ok
13:25:53.0631 4352 [ C82E748660F62A242B2DFAC1442F22A4 ] vhdmp C:\Windows\system32\DRIVERS\vhdmp.sys
13:25:53.0662 4352 vhdmp - ok
13:25:53.0677 4352 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\DRIVERS\viaide.sys
13:25:53.0693 4352 viaide - ok
13:25:53.0709 4352 [ 2B1A3DAE2B4E70DBBA822B7A03FBD4A3 ] volmgr C:\Windows\system32\DRIVERS\volmgr.sys
13:25:53.0740 4352 volmgr - ok
13:25:53.0771 4352 [ 99B0CBB569CA79ACAED8C91461D765FB ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
13:25:53.0802 4352 volmgrx - ok
13:25:53.0849 4352 [ 58F82EED8CA24B461441F9C3E4F0BF5C ] volsnap C:\Windows\system32\DRIVERS\volsnap.sys
13:25:53.0865 4352 volsnap - ok
13:25:53.0896 4352 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
13:25:53.0927 4352 vsmraid - ok
13:25:53.0989 4352 [ 787898BF9FB6D7BD87A36E2D95C899BA ] VSS C:\Windows\system32\vssvc.exe
13:25:54.0114 4352 VSS - ok
13:25:54.0223 4352 [ 40DBA03782BCC10685A8C200C5EBDCD0 ] vToolbarUpdater12.2.6 C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\12.2.6\ToolbarUpdater.exe
13:25:54.0255 4352 vToolbarUpdater12.2.6 - ok
13:25:54.0270 4352 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
13:25:54.0301 4352 vwifibus - ok
13:25:54.0333 4352 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
13:25:54.0364 4352 vwififlt - ok
13:25:54.0395 4352 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
13:25:54.0426 4352 vwifimp - ok
13:25:54.0457 4352 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
13:25:54.0535 4352 W32Time - ok
13:25:54.0582 4352 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
13:25:54.0613 4352 WacomPen - ok
13:25:54.0629 4352 [ 47CA49400643EFFD3F1C9A27E1D69324 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
13:25:54.0676 4352 WANARP - ok
13:25:54.0691 4352 [ 47CA49400643EFFD3F1C9A27E1D69324 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
13:25:54.0754 4352 Wanarpv6 - ok
13:25:54.0816 4352 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
13:25:54.0879 4352 WatAdminSvc - ok
13:25:54.0941 4352 [ 5AB1BB85BD8B5089CC5D64200DEDAE68 ] wbengine C:\Windows\system32\wbengine.exe
13:25:55.0066 4352 wbengine - ok
13:25:55.0081 4352 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
13:25:55.0159 4352 WbioSrvc - ok
13:25:55.0191 4352 [ 8321C2CA3B62B61B293CDA3451984468 ] wcncsvc C:\Windows\System32\wcncsvc.dll
13:25:55.0284 4352 wcncsvc - ok
13:25:55.0300 4352 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
13:25:55.0362 4352 WcsPlugInService - ok
13:25:55.0393 4352 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
13:25:55.0409 4352 Wd - ok
13:25:55.0440 4352 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
13:25:55.0471 4352 Wdf01000 - ok
13:25:55.0503 4352 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
13:25:55.0565 4352 WdiServiceHost - ok
13:25:55.0581 4352 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
13:25:55.0627 4352 WdiSystemHost - ok
13:25:55.0659 4352 [ 8A438CBB8C032A0C798B0C642FFBE572 ] WebClient C:\Windows\System32\webclnt.dll
13:25:55.0752 4352 WebClient - ok
13:25:55.0768 4352 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
13:25:55.0861 4352 Wecsvc - ok
13:25:55.0893 4352 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
13:25:55.0986 4352 wercplsupport - ok
13:25:56.0002 4352 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
13:25:56.0095 4352 WerSvc - ok
13:25:56.0111 4352 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
13:25:56.0173 4352 WfpLwf - ok
13:25:56.0220 4352 [ 52DED146E4797E6CCF94799E8E22BB2A ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys
13:25:56.0267 4352 WimFltr - ok
13:25:56.0283 4352 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
13:25:56.0298 4352 WIMMount - ok
13:25:56.0329 4352 WinDefend - ok
13:25:56.0329 4352 WinHttpAutoProxySvc - ok
13:25:56.0407 4352 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
13:25:56.0485 4352 Winmgmt - ok
13:25:56.0563 4352 [ 41FBB751936B387F9179E7F03A74FE29 ] WinRM C:\Windows\system32\WsmSvc.dll
13:25:56.0704 4352 WinRM - ok
13:25:56.0782 4352 [ 817EAFF5D38674EDD7713B9DFB8E9791 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
13:25:56.0813 4352 WinUsb - ok
13:25:56.0875 4352 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
13:25:56.0938 4352 Wlansvc - ok
13:25:57.0078 4352 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
13:25:57.0125 4352 wlidsvc - ok
13:25:57.0156 4352 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
13:25:57.0187 4352 WmiAcpi - ok
13:25:57.0234 4352 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
13:25:57.0281 4352 wmiApSrv - ok
13:25:57.0312 4352 WMPNetworkSvc - ok
13:25:57.0343 4352 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
13:25:57.0390 4352 WPCSvc - ok
13:25:57.0406 4352 [ 2E57DDF2880A7E52E76F41C7E96D327B ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
13:25:57.0484 4352 WPDBusEnum - ok
13:25:57.0515 4352 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
13:25:57.0577 4352 ws2ifsl - ok
13:25:57.0609 4352 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
13:25:57.0687 4352 wscsvc - ok
13:25:57.0702 4352 WSearch - ok
13:25:57.0811 4352 [ 38340204A2D0228F1E87740FC5E554A7 ] wuauserv C:\Windows\system32\wuaueng.dll
13:25:57.0983 4352 wuauserv - ok
13:25:58.0045 4352 [ 7CADC74271DD6461C452C271B30BD378 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
13:25:58.0092 4352 WudfPf - ok
13:25:58.0123 4352 [ 3B197AF0FFF08AA66B6B2241CA538D64 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
13:25:58.0170 4352 WUDFRd - ok
13:25:58.0217 4352 [ B551D6637AA0E132C18AC6E504F7B79B ] wudfsvc C:\Windows\System32\WUDFSvc.dll
13:25:58.0279 4352 wudfsvc - ok
13:25:58.0311 4352 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
13:25:58.0373 4352 WwanSvc - ok
13:25:58.0404 4352 ================ Scan global ===============================
13:25:58.0451 4352 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
13:25:58.0498 4352 [ 457B44AB6D502E55F64A867D4F35C76C ] C:\Windows\system32\winsrv.dll
13:25:58.0560 4352 [ 457B44AB6D502E55F64A867D4F35C76C ] C:\Windows\system32\winsrv.dll
13:25:58.0607 4352 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
13:25:58.0669 4352 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
13:25:58.0701 4352 [Global] - ok
13:25:58.0701 4352 ================ Scan MBR ==================================
13:25:58.0701 4352 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
13:25:59.0559 4352 \Device\Harddisk0\DR0 - ok
13:25:59.0559 4352 ================ Scan VBR ==================================
13:25:59.0559 4352 [ 1A66275F14C45CA630BC147CDAA88DF9 ] \Device\Harddisk0\DR0\Partition1
13:25:59.0559 4352 \Device\Harddisk0\DR0\Partition1 - ok
13:25:59.0574 4352 [ BE9EF6A7B01A665656BE9ABDC916351B ] \Device\Harddisk0\DR0\Partition2
13:25:59.0574 4352 \Device\Harddisk0\DR0\Partition2 - ok
13:25:59.0574 4352 ============================================================
13:25:59.0574 4352 Scan finished
13:25:59.0574 4352 ============================================================
13:25:59.0590 5396 Detected object count: 2
13:25:59.0590 5396 Actual detected object count: 2
13:26:33.0925 5396 ADSMService ( UnsignedFile.Multi.Generic ) - skipped by user
13:26:33.0925 5396 ADSMService ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:26:33.0941 5396 ATKGFNEXSrv ( UnsignedFile.Multi.Generic ) - skipped by user
13:26:33.0941 5396 ATKGFNEXSrv ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:26:40.0150 2360 Deinitialize success
31/10/12, 10:19:43
abelique

Re: No puedo actualizar windows 7 home premium

Y el reporte de ComboFix del portatil:

Cita:

ComboFix 12-10-31.03 - Silvia 31/10/2012 13:57:08.2.2 - x64
Microsoft Windows 7 Home Premium 6.1.7600.0.1252.34.3082.18.4095.2796 [GMT 1:00]
Running from: c:\users\Silvia\Desktop\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
AV: AVG Internet Security 2012 *Disabled/Updated* {5A2746B1-DEE9-F85A-FBCD-ADB11639C5F0}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: AVG Internet Security 2012 *Disabled/Updated* {E146A755-F8D3-F7D4-C17D-96C36DBE8F4D}
SP: IObit Malware Fighter *Disabled/Updated* {A751AC20-3B48-5237-898A-78C4436BB78D}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\SysWow64\userinit.exe . . . is infected!!
.
.
((((((((((((((((((((((((( Files Created from 2012-09-28 to 2012-10-31 )))))))))))))))))))))))))))))))
.
.
2012-10-31 13:47 . 2012-10-31 13:47 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-10-30 21:20 . 2012-10-30 21:21 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2012-10-26 23:25 . 2012-06-29 11:55 22528 ----a-w- c:\windows\AT-Uninstall.exe
2012-10-26 23:25 . 2012-03-12 21:27 11776 ----a-w- c:\windows\Colous.exe
2012-10-26 23:25 . 2008-03-25 08:39 69660 ----a-w- c:\windows\Fart.exe
2012-10-26 18:58 . 2012-10-26 18:58 -------- d-----w- c:\users\Silvia\DoctorWeb
2012-10-10 19:46 . 2012-10-10 19:46 -------- d-----w- c:\programdata\NVIDIA
2012-10-10 19:00 . 2012-10-10 19:00 -------- d-----w- c:\users\Silvia\AppData\Roaming\AVG2012
2012-10-10 17:15 . 2012-10-10 17:15 -------- d-----w- c:\users\Silvia\AppData\Local\AVG Secure Search
2012-10-10 17:15 . 2012-10-11 12:43 -------- d-----w- c:\programdata\AVG Secure Search
2012-10-10 17:14 . 2012-10-10 17:14 31080 ----a-w- c:\windows\system32\drivers\avgtpx64.sys
2012-10-10 17:14 . 2012-10-10 17:14 -------- d-----w- c:\program files (x86)\Common Files\AVG Secure Search
2012-10-10 17:14 . 2012-10-10 17:15 -------- d-----w- c:\program files (x86)\AVG Secure Search
2012-10-10 17:13 . 2012-10-10 17:13 -------- d-----w- C:\$AVG
2012-10-10 17:13 . 2012-10-10 19:49 -------- d-----w- c:\programdata\AVG2012
2012-10-10 17:13 . 2012-10-10 17:13 -------- d-----w- c:\program files (x86)\AVG
2012-10-10 16:06 . 2012-10-10 16:06 -------- d-----w- C:\SpybotPortable
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-10-08 23:04 . 2012-06-15 12:59 696760 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2012-10-08 23:04 . 2011-06-02 13:10 73656 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-09-29 18:54 . 2011-01-27 18:23 25928 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-08-24 13:43 . 2012-08-24 13:43 384352 ----a-w- c:\windows\system32\drivers\avgtdia.sys
2012-08-21 09:13 . 2011-06-22 16:09 969200 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2012-08-21 09:13 . 2011-01-27 23:43 359464 ----a-w- c:\windows\system32\drivers\aswSP.sys
2012-08-21 09:13 . 2011-01-27 23:43 59728 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2012-08-21 09:13 . 2012-03-24 15:17 54072 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
2012-08-21 09:13 . 2011-01-27 23:43 71600 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2012-08-21 09:13 . 2011-01-27 23:43 25232 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2012-08-21 09:12 . 2011-01-27 23:37 41224 ----a-w- c:\windows\avastSS.scr
2012-08-21 09:12 . 2011-01-27 23:37 227648 ----a-w- c:\windows\SysWow64\aswBoot.exe
2012-08-21 09:12 . 2011-01-26 22:48 285328 ----a-w- c:\windows\system32\aswBoot.exe
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{28387537-e3f9-4ed7-860c-11e69af4a8a0}]
2012-02-27 08:49 89008 ----a-w- c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\wincoreimdtx.dll
.
[HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}]
2012-10-10 17:14 1734240 ----a-w- c:\program files (x86)\AVG Secure Search\12.2.5.34\AVG Secure Search_toolbar.dll
.
[HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{BE7A24F5-69CB-4708-B77B-B1EDA6043B95}]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar]
"{28387537-e3f9-4ed7-860c-11e69af4a8a0}"= "c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\wincoreimdtx.dll" [2012-02-27 89008]
"{95B7759C-8C7F-4BF1-B163-73684A933233}"= "c:\program files (x86)\AVG Secure Search\12.2.5.34\AVG Secure Search_toolbar.dll" [2012-10-10 1734240]
.
[HKEY_CLASSES_ROOT\clsid\{28387537-e3f9-4ed7-860c-11e69af4a8a0}]
.
[HKEY_CLASSES_ROOT\clsid\{95b7759c-8c7f-4bf1-b163-73684a933233}]
[HKEY_CLASSES_ROOT\AVG Secure Search.PugiObj.1]
[HKEY_CLASSES_ROOT\AVG Secure Search.PugiObj]
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ADSMOverlayIcon1]
@="{A8D448F4-0431-45AC-9F5E-E1B434AB2249}"
[HKEY_CLASSES_ROOT\CLSID\{A8D448F4-0431-45AC-9F5E-E1B434AB2249}]
2007-06-02 01:08 143360 ----a-w- c:\program files (x86)\ASUS\ASUS Data Security Manager\ShlExt\x86\OverlayIconShlExt1.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-07-14 1475072]
"uTorrent"="c:\program files (x86)\uTorrent\uTorrent.exe" [2012-09-29 1022352]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"HControlUser"="c:\program files (x86)\ASUS\ATK Hotkey\HControlUser.exe" [2009-06-19 105016]
"ATKOSD2"="c:\program files (x86)\ASUS\ATKOSD2\ATKOSD2.exe" [2009-08-17 6859392]
"ATKMEDIA"="c:\program files (x86)\ASUS\ATK Media\DMedia.exe" [2009-08-20 170624]
"CLMLServer"="c:\program files (x86)\CyberLink\Power2Go\CLMLSvc.exe" [2009-11-02 103720]
"ASUS Screen Saver Protector"="c:\windows\AsScrPro.exe" [2010-01-14 3058304]
"ADSMTray"="c:\program files (x86)\ASUS\ASUS Data Security Manager\ADSMTray.exe" [2009-06-24 272952]
"avast"="c:\program files\Alwil Software\Avast5\avastUI.exe" [2012-08-21 4282728]
"AVG_TRAY"="c:\program files (x86)\AVG\AVG2012\avgtray.exe" [2012-07-31 2596984]
"vProt"="c:\program files (x86)\AVG Secure Search\vprot.exe" [2012-10-10 947808]
"ROC_ROC_NT"="c:\program files (x86)\AVG Secure Search\ROC_ROC_NT.exe" [2012-10-10 856160]
"IObit Malware Fighter"="c:\program files (x86)\IObit\IObit Malware Fighter\IMF.exe" [2012-01-12 4453208]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"DeleteEngineAfterUpdate"="reg DELETE HKCU\Software\AppDataLow\Software\ConduitEngine" [X]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
"AppInit_DLLs"=c:\progra~2\IMESHA~1\MediaBar\Datamngr\datamngr.dll c:\progra~2\IMESHA~1\MediaBar\Datamngr\IEBHO.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0c:\progra~2\AVG\AVG2012\avgrsa.exe /sync /restart
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\IMFservice]
@="Service"
.
R1 SASDIFSV;SASDIFSV;c:\users\Silvia\AppData\Local\Temp\SAS_SelfExtract\SASDIFSV64.SYS [x]
R1 SASKUTIL;SASKUTIL;c:\users\Silvia\AppData\Local\Temp\SAS_SelfExtract\SASKUTIL64.SYS [x]
R2 AVGIDSAgent;AVGIDSAgent;c:\program files (x86)\AVG\AVG2012\avgidsagent.exe [2012-08-13 5167736]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 gupdate;Servicio Google Update (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-06-18 136176]
R2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-09-29 676936]
R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-10-08 250808]
R3 AmUStor;AM USB Stroage Driver;c:\windows\system32\drivers\AmUStor.SYS [2009-08-12 40448]
R3 gupdatem;Servicio de Google Update (gupdatem);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-06-18 136176]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2012-09-29 25928]
R3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver;c:\windows\system32\DRIVERS\SiSG664.sys [2009-06-10 56832]
R3 UrlFilter;UrlFilter;c:\program files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\UrlFilter.sys [2011-09-20 21872]
R3 WatAdminSvc;Servicio de tecnologías de activación de Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2010-05-25 1255736]
R4 FileMonitor;FileMonitor;c:\program files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys [2012-01-05 21384]
S0 AVGIDSHA;AVGIDSHA;c:\windows\system32\DRIVERS\avgidsha.sys [2012-04-19 28480]
S0 Avgrkx64;AVG Anti-Rootkit Driver;c:\windows\system32\DRIVERS\avgrkx64.sys [2012-01-31 36944]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S1 Avgldx64;AVG AVI Loader Driver;c:\windows\system32\DRIVERS\avgldx64.sys [2012-07-26 291680]
S1 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\DRIVERS\avgmfx64.sys [2011-12-23 47696]
S1 Avgtdia;AVG TDI Driver;c:\windows\system32\DRIVERS\avgtdia.sys [2012-08-24 384352]
S1 avgtp;avgtp;c:\windows\system32\drivers\avgtpx64.sys [2012-10-10 31080]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
S2 ASMMAP64;ASMMAP64;c:\program files\ATKGFNEX\ASMMAP64.sys [2007-07-24 14904]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2012-08-21 71600]
S2 avgwd;WatchDog de AVG;c:\program files (x86)\AVG\AVG2012\avgwdsvc.exe [2012-02-14 193288]
S2 IMFservice;IMF Service;c:\program files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe [2012-01-09 821592]
S2 MBAMScheduler;MBAMScheduler;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2012-09-29 399432]
S2 TeamViewer7;TeamViewer 7;c:\program files (x86)\TeamViewer\Version7\TeamViewer_Service.exe [2012-01-19 3027840]
S2 vToolbarUpdater12.2.6;vToolbarUpdater12.2.6;c:\program files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\12.2.6\ToolbarUpdater.exe [2012-10-10 722528]
S3 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\DRIVERS\avgidsdrivera.sys [2011-12-23 124496]
S3 AVGIDSFilter;AVGIDSFilter;c:\windows\system32\DRIVERS\avgidsfiltera.sys [2011-12-23 29776]
S3 ETD;ELAN PS/2 Port Input Device;c:\windows\system32\DRIVERS\ETD.sys [2009-10-15 117760]
S3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows\system32\drivers\nvhda64v.sys [2009-05-01 81440]
S3 RegFilter;RegFilter;c:\program files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys [2011-09-20 33184]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2009-05-22 215040]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{A8D647C8-65AC-409F-B7B2-3C0FEE1A32F2}]
2010-02-16 18:02 114688 ----a-w- c:\program files (x86)\PixiePack Codec Pack\InstallerHelper.exe
.
Contents of the 'Scheduled Tasks' folder
.
2012-10-31 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-06-15 23:04]
.
2012-10-10 c:\windows\Tasks\avast! Emergency Update.job
- c:\program files\Alwil Software\Avast5\AvastEmUpdate.exe [2012-10-10 09:12]
.
2012-10-31 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-06-18 12:01]
.
2012-10-31 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-06-18 12:01]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{BE7A24F5-69CB-4708-B77B-B1EDA6043B95}]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2012-08-21 09:11 133400 ----a-w- c:\program files\Alwil Software\Avast5\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ADSMOverlayIcon1]
@="{A8D448F4-0431-45AC-9F5E-E1B434AB2249}"
[HKEY_CLASSES_ROOT\CLSID\{A8D448F4-0431-45AC-9F5E-E1B434AB2249}]
2007-06-02 00:52 159744 ----a-w- c:\program files (x86)\ASUS\ASUS Data Security Manager\ShlExt\x64\OverlayIconShlExt1_64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AsusWSShellExt_B]
@="{6D4133E5-0742-4ADC-8A8C-9303440F7190}"
[HKEY_CLASSES_ROOT\CLSID\{6D4133E5-0742-4ADC-8A8C-9303440F7190}]
2009-11-26 05:49 70656 ----a-w- c:\program files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSShellExt64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AsusWSShellExt_O]
@="{64174815-8D98-4CE6-8646-4C039977D808}"
[HKEY_CLASSES_ROOT\CLSID\{64174815-8D98-4CE6-8646-4C039977D808}]
2009-11-26 05:49 70656 ----a-w- c:\program files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSShellExt64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ETDWare"="c:\program files\Elantech\ETDCtrl.exe" [2009-09-30 621440]
"EeeStorageBackup"="c:\program files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSService.exe" [2009-11-26 1732608]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2009-08-15 16336416]
"AmIcoSinglun64"="c:\program files (x86)\AmIcoSingLun\AmIcoSinglun64.exe" [2009-08-12 323072]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2009-09-11 8114720]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=c:\progra~2\IMESHA~1\MediaBar\Datamngr\x64\datamngr.dll c:\progra~2\IMESHA~1\MediaBar\Datamngr\x64\IEBHO.dll
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.google.es/
uLocal Page = c:\windows\system32\blank.htm
mStart Page = hxxp://www.google.com
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
IE: E&xportar a Microsoft Excel - c:\progra~2\MICROS~1\OFFICE11\EXCEL.EXE/3000
IE: Google Sidewiki... - c:\program files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll/cmsidewiki.html
TCP: DhcpNameServer = 192.168.2.1
Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - c:\program files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\12.2.6\ViProtocol.dll
.
- - - - ORPHANS REMOVED - - - -
.
Toolbar-Locked - (no file)
Toolbar-10 - (no file)
WebBrowser-{30F9B915-B755-4826-820B-08FBA6BD249D} - (no file)
WebBrowser-{977AE9CC-AF83-45E8-9E03-E2798216E2D5} - (no file)
WebBrowser-{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - (no file)
AddRemove-ASUS_Screensaver - c:\windows\system32\ASUS_Screensaver.scr
.
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\User Preferences]
@Denied: (2) (LocalSystem)
"88D7D0879DAB32E14DE5B3A805A34F98AFF34F5977"=hex:01,00,00,00,d0,8c,9d,df,01,15,
d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,d5,52,aa,c9,cc,3b,c6,44,a8,9c,dd,\
"2D53CFFC5C1A3DD2E97B7979AC2A92BD59BC839E81"=hex:01,00,00,00,d0,8c,9d,df,01,15,
d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,d5,52,aa,c9,cc,3b,c6,44,a8,9c,dd,\
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_4_402_287_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_4_402_287_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_4_402_287_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_4_402_287_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_287.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_287.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_287.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_287.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\system\ControlSet002\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Completion time: 2012-10-31 14:50:23
ComboFix-quarantined-files.txt 2012-10-31 13:50
ComboFix2.txt 2012-10-10 17:10
.
Pre-Run: 92.051.324.928 bytes libres
Post-Run: 91.853.873.152 bytes libres
.
- - End Of File - - 5CBCF5654C1D7BD7BFBE906E801CF4CB
31/10/12, 15:24:45
Anleg_30

Re: No puedo actualizar windows 7 home premium

Hola

Bien pero vamos a ir en orden, así que realiza los pasos solo en el equipo que te indique ok.

Para terminar con la de sobremesa, Desinstala el Spybot S&D, actualiza MalwareBytes y realiza un escaneo completo.
Elimina lo que consiga y me traes es reporte. Luego te daré otros pasos para la portatil.
31/10/12, 18:09:27
abelique

Re: No puedo actualizar windows 7 home premium

Hola de nuevo, ok los pasos anteriores y pasar el Malwarebytes actualizado
te dejo el reporte:

Cita:

Malwarebytes Anti-Malware 1.65.1.1000
Malwarebytes : Free anti-malware download

Versión de la Base de Datos: v2012.10.31.08

Windows Vista Service Pack 2 x64 NTFS
Internet Explorer 9.0.8112.16421
Abelique :: ULTIMATE [administrador]

31/10/2012 21:17:54
mbam-log-2012-10-31 (21-17-54).txt

Tipos de Análisis: Análisis Completo (C:\|D:\|E:\|F:\|)
Opciones de análisis activado: Memoria | Inicio | Registro | Sistema de archivos | Heurística/Extra | Heurística/Shuriken | PUP | PUM
Opciones de análisis desactivados: P2P
Objetos examinados: 465001
Tiempo transcurrido: 1 hora(s), 13 minuto(s), 33 segundo(s)

Procesos en Memoria Detectados: 0
(No se han detectado elementos maliciosos)

Módulos de Memoria Detectados: 0
(No se han detectado elementos maliciosos)

Claves del Registro Detectados: 0
(No se han detectado elementos maliciosos)

Valores del Registro Detectados: 0
(No se han detectado elementos maliciosos)

Elementos de Datos del Registro Detectados: 0
(No se han detectado elementos maliciosos)

Carpetas Detectadas: 0
(No se han detectado elementos maliciosos)

Archivos Detectados: 0
(No se han detectado elementos maliciosos)

fin)
31/10/12, 21:12:35
Anleg_30

Re: No puedo actualizar windows 7 home premium

Bien, ahora pasaremos a la portatil.

Usas Avast y AVG al mismo tiempo ?¿

Ve a la web de Virus Total + Leer Manual y con el examinador ubica este archivo para que los subas.

c:\windows\SysWow64\userinit.exe

Si te alerta que la muestra ya fué analizada, has caso omiso del mensaje y vuelve a reanalizar ok
Dejame el reporte o el Link que te genere.

Seguidamente usa esta herramienta ( ServicesRepair.exe) que está al final de la guia. Me dejas el reporte si lo genera y me comentas si las actualizaciones vuleven a funcionar.
01/11/12, 05:39:14
abelique

Re: No puedo actualizar windows 7 home premium

Hola,
del portatil he pasado el archivo userinit.exe por dicha pagina, y no me detecta ningun virus, te dejo el link
https://www.virustotal.com/file/7784...is/1351762311/
y le he pasado el servicesrepair.exe y que no me ha dejado ningun log.
y siguo sin poder actualizar.
Gracias
01/11/12, 11:41:32
Anleg_30

Re: No puedo actualizar windows 7 home premium
Ok,

Desinstala un Antivirus por favor.

Verifica en el panel de control, centro de seguridad si las actualizaciones estan habilitadas, de no estarlo las habilitas.

Ve a inicio->ejecutar->escribe: services.msc
En la ventana que se abrirá busca el servicio de Actualización automática, haz doble clic y verifica el apartado "Tipo de Inicio" cambialo a Automático de no estar así, aplicas y aceptas

Luego busca Servicio de transferencia inteligente en segundo plano (BITS) y verifica el apartado "Tipo de Inicio" cambialo a manual de no estar así, aplicas y aceptas.

Reinicia el computador y verifica si va todo normal.

Si siguen sin funcionar realiza lo siguiente:

Descarga Tweaking Windows repair al escritorio.
Ejecuatalo como Administrador y ve a la pestaña "Start Repair"
Selecciona "Custom Mode" y pulsa Start, cuando el programa te avise para hacer una copia de seguridad, pulsas en SI.
Luego de hacer la copia deja marcadas solamente las siguientes casillas:
- Repair registry Permissions
- Repair WMI
- Repair Widows Update
- Set Windows services to default startup
Pulsa en Start.
Reinicia el equipo y me comentas, si aun siguen el fallo
01/11/12, 19:38:58
abelique

Re: No puedo actualizar windows 7 home premium

He realizado los pasos anteriores y despues de reiniciar no puedo actualizar,
Nota: con el "services.msc" cuando inicio el servicio BITS se inicia con normalidad pero el servicio windows update
lo primero que hace al darle a iniciar es enviar un mensaje a la pantalla"el servicio windows update no puede iniciar el servicio, error 126, no se pudo encontrar....",aun asi se llega a cambiar el "tipo de inicio" a automatico en este caso, y despues de reiniciar con "msconfig" en la pestaña servicios de windows aparece el windows update "detenido".

te dejo el log de Windows repair por si acaso, gracias de todos modos:

Cita:

Log:
Starting Repairs...
Start (02/11/2012 0:18:11)

Reset Registry Permissions 01/03
HKEY_CURRENT_USER & Sub Keys
Start (02/11/2012 0:18:11)
Done (02/11/2012 0:18:16)

Reset Registry Permissions 02/03
HKEY_LOCAL_MACHINE & Sub Keys
Start (02/11/2012 0:18:16)
Done (02/11/2012 0:18:21)

Reset Registry Permissions 03/03
HKEY_CLASSES_ROOT & Sub Keys
Start (02/11/2012 0:18:21)
Done (02/11/2012 0:18:25)

Repair WMI
Start (02/11/2012 0:18:25)
Step 01/03 - Deleting WMI Repository...
Step 02/03 - Rebuilding WMI Repository...
Step 03/03 - Registering WMI...
Done (02/11/2012 0:20:33)

Repair Windows Updates
Start (02/11/2012 0:20:33)
Done (02/11/2012 0:21:04)

Set Windows Services To Default Startup
Start (02/11/2012 0:21:04)
Done (02/11/2012 0:21:13)

Cleaning up empty logs...

All Selected Repairs Done.
Done (02/11/2012 0:21:13)
Total Repair Time: 00:03:02

...YOU MUST RESTART YOUR SYSTEM...

Mostrar 40 mensajes desde este tema en una página