• Registrarse
  • Iniciar sesión


  • Página 2 de 3 PrimeroPrimero 123 ÚltimoÚltimo
    Resultados 11 al 20 de 24

    Windows Update: falta el servicio de transferencia inteligente

    21:07:36.0614 1440 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35 21:07:36.0645 1440 ============================================================ 21:07:36.0645 1440 Current date / time: 2012/11/23 21:07:36.0645 21:07:36.0645 1440 SystemInfo: 21:07:36.0645 1440 21:07:36.0645 1440 OS Version: 6.1.7601 ServicePack: 1.0 21:07:36.0645 ...

    1. #11
      Usuario Avatar de frarina
      Registrado
      nov 2012
      Ubicación
      españa
      Mensajes
      16

      Re: Windows Update: falta el servicio de transferencia inteligente

      21:07:36.0614 1440 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
      21:07:36.0645 1440 ============================================================
      21:07:36.0645 1440 Current date / time: 2012/11/23 21:07:36.0645
      21:07:36.0645 1440 SystemInfo:
      21:07:36.0645 1440
      21:07:36.0645 1440 OS Version: 6.1.7601 ServicePack: 1.0
      21:07:36.0645 1440 Product type: Workstation
      21:07:36.0645 1440 ComputerName: FRARINA-PC
      21:07:36.0645 1440 UserName: frarina
      21:07:36.0645 1440 Windows directory: C:\Windows
      21:07:36.0645 1440 System windows directory: C:\Windows
      21:07:36.0645 1440 Running under WOW64
      21:07:36.0645 1440 Processor architecture: Intel x64
      21:07:36.0645 1440 Number of processors: 2
      21:07:36.0645 1440 Page size: 0x1000
      21:07:36.0645 1440 Boot type: Safe boot with network
      21:07:36.0645 1440 ============================================================
      21:07:40.0249 1440 !crdlk
      21:07:40.0249 1440 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'A'
      21:07:40.0280 1440 ============================================================
      21:07:40.0280 1440 \Device\Harddisk0\DR0:
      21:07:40.0280 1440 MBR partitions:
      21:07:40.0280 1440 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1801F5F, BlocksNum 0x72F04651
      21:07:40.0280 1440 ============================================================
      21:07:40.0327 1440 C: <-> \Device\Harddisk0\DR0\Partition1
      21:07:40.0327 1440 ============================================================
      21:07:40.0327 1440 Initialize success
      21:07:40.0327 1440 ============================================================
      21:07:53.0587 0804 ============================================================
      21:07:53.0587 0804 Scan started
      21:07:53.0587 0804 Mode: Manual; SigCheck; TDLFS;
      21:07:53.0587 0804 ============================================================
      21:07:54.0117 0804 ================ Scan system memory ========================
      21:07:54.0117 0804 System memory - ok
      21:07:54.0117 0804 ================ Scan services =============================
      21:07:54.0257 0804 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
      21:07:54.0523 0804 1394ohci - ok
      21:07:54.0585 0804 Suspicious service (NoAccess): 93a7feacee08d566
      21:07:54.0601 0804 [ 059F730A9AE2CCA1399A9A5527BE2FBC ] 93a7feacee08d566 C:\Windows\System32\Drivers\93a7feacee08d566.sys
      21:07:54.0601 0804 Suspicious file (NoAccess): C:\Windows\System32\Drivers\93a7feacee08d566.sys. md5: 059F730A9AE2CCA1399A9A5527BE2FBC
      21:07:54.0772 0804 93a7feacee08d566 ( Rootkit.Win32.Necurs.gen ) - infected
      21:07:54.0772 0804 93a7feacee08d566 - detected Rootkit.Win32.Necurs.gen (0)
      21:07:54.0850 0804 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
      21:07:54.0866 0804 ACPI - ok
      21:07:54.0897 0804 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
      21:07:54.0975 0804 AcpiPmi - ok
      21:07:55.0069 0804 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
      21:07:55.0084 0804 AdobeARMservice - ok
      21:07:55.0131 0804 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
      21:07:55.0147 0804 adp94xx - ok
      21:07:55.0178 0804 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys
      21:07:55.0193 0804 adpahci - ok
      21:07:55.0225 0804 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
      21:07:55.0240 0804 adpu320 - ok
      21:07:55.0271 0804 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
      21:07:55.0396 0804 AeLookupSvc - ok
      21:07:55.0459 0804 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
      21:07:55.0521 0804 AFD - ok
      21:07:55.0552 0804 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
      21:07:55.0568 0804 agp440 - ok
      21:07:55.0583 0804 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
      21:07:55.0646 0804 ALG - ok
      21:07:55.0677 0804 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
      21:07:55.0677 0804 aliide - ok
      21:07:55.0693 0804 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
      21:07:55.0708 0804 amdide - ok
      21:07:55.0739 0804 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
      21:07:55.0771 0804 AmdK8 - ok
      21:07:55.0802 0804 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
      21:07:55.0833 0804 AmdPPM - ok
      21:07:55.0880 0804 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
      21:07:55.0880 0804 amdsata - ok
      21:07:55.0927 0804 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
      21:07:55.0942 0804 amdsbs - ok
      21:07:55.0958 0804 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
      21:07:55.0973 0804 amdxata - ok
      21:07:56.0005 0804 [ 4CCF421E6C4B2A4CBCE000715911F7CC ] anodlwf C:\Windows\system32\DRIVERS\anodlwfx.sys
      21:07:56.0067 0804 anodlwf - ok
      21:07:56.0114 0804 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
      21:07:56.0223 0804 AppID - ok
      21:07:56.0285 0804 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
      21:07:56.0332 0804 AppIDSvc - ok
      21:07:56.0395 0804 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
      21:07:56.0426 0804 Appinfo - ok
      21:07:56.0457 0804 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll
      21:07:56.0488 0804 AppMgmt - ok
      21:07:56.0519 0804 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys
      21:07:56.0535 0804 arc - ok
      21:07:56.0551 0804 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys
      21:07:56.0566 0804 arcsas - ok
      21:07:56.0597 0804 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
      21:07:56.0660 0804 AsyncMac - ok
      21:07:56.0691 0804 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
      21:07:56.0707 0804 atapi - ok
      21:07:56.0753 0804 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
      21:07:56.0847 0804 AudioEndpointBuilder - ok
      21:07:56.0863 0804 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
      21:07:56.0894 0804 AudioSrv - ok
      21:07:56.0925 0804 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
      21:07:57.0019 0804 AxInstSV - ok
      21:07:57.0065 0804 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
      21:07:57.0097 0804 b06bdrv - ok
      21:07:57.0128 0804 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
      21:07:57.0159 0804 b57nd60a - ok
      21:07:57.0221 0804 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
      21:07:57.0268 0804 BDESVC - ok
      21:07:57.0284 0804 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
      21:07:57.0346 0804 Beep - ok
      21:07:57.0409 0804 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
      21:07:57.0487 0804 BFE - ok
      21:07:57.0549 0804 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
      21:07:57.0627 0804 BITS - ok
      21:07:57.0674 0804 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
      21:07:57.0705 0804 blbdrive - ok
      21:07:57.0752 0804 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
      21:07:57.0799 0804 bowser - ok
      21:07:57.0830 0804 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
      21:07:57.0861 0804 BrFiltLo - ok
      21:07:57.0877 0804 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
      21:07:57.0892 0804 BrFiltUp - ok
      21:07:57.0955 0804 [ 8EF0D5C41EC907751B8429162B1239ED ] Browser C:\Windows\System32\browser.dll
      21:07:58.0001 0804 Browser - ok
      21:07:58.0079 0804 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
      21:07:58.0126 0804 Brserid - ok
      21:07:58.0157 0804 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
      21:07:58.0173 0804 BrSerWdm - ok
      21:07:58.0204 0804 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
      21:07:58.0235 0804 BrUsbMdm - ok
      21:07:58.0251 0804 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
      21:07:58.0282 0804 BrUsbSer - ok
      21:07:58.0313 0804 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
      21:07:58.0329 0804 BTHMODEM - ok
      21:07:58.0376 0804 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
      21:07:58.0423 0804 bthserv - ok
      21:07:58.0454 0804 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
      21:07:58.0485 0804 cdfs - ok
      21:07:58.0516 0804 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
      21:07:58.0547 0804 cdrom - ok
      21:07:58.0579 0804 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
      21:07:58.0625 0804 CertPropSvc - ok
      21:07:58.0657 0804 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\drivers\circlass.sys
      21:07:58.0703 0804 circlass - ok
      21:07:58.0750 0804 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
      21:07:58.0766 0804 CLFS - ok
      21:07:58.0844 0804 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
      21:07:58.0875 0804 clr_optimization_v2.0.50727_32 - ok
      21:07:58.0906 0804 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
      21:07:58.0922 0804 clr_optimization_v2.0.50727_64 - ok
      21:07:59.0000 0804 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
      21:07:59.0078 0804 clr_optimization_v4.0.30319_32 - ok
      21:07:59.0125 0804 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
      21:07:59.0156 0804 clr_optimization_v4.0.30319_64 - ok
      21:07:59.0187 0804 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\drivers\CmBatt.sys
      21:07:59.0218 0804 CmBatt - ok
      21:07:59.0234 0804 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
      21:07:59.0249 0804 cmdide - ok
      21:07:59.0312 0804 [ C4943B6C962E4B82197542447AD599F4 ] CNG C:\Windows\system32\Drivers\cng.sys
      21:07:59.0343 0804 CNG - ok
      21:07:59.0390 0804 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
      21:07:59.0405 0804 Compbatt - ok
      21:07:59.0452 0804 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
      21:07:59.0483 0804 CompositeBus - ok
      21:07:59.0499 0804 COMSysApp - ok
      21:07:59.0546 0804 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
      21:07:59.0546 0804 crcdisk - ok
      21:07:59.0593 0804 [ 15597883FBE9B056F276ADA3AD87D9AF ] CryptSvc C:\Windows\system32\cryptsvc.dll
      21:07:59.0624 0804 CryptSvc - ok
      21:07:59.0686 0804 [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC C:\Windows\system32\drivers\csc.sys
      21:07:59.0749 0804 CSC - ok
      21:07:59.0795 0804 [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService C:\Windows\System32\cscsvc.dll
      21:07:59.0858 0804 CscService - ok
      21:07:59.0920 0804 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
      21:07:59.0967 0804 DcomLaunch - ok
      21:07:59.0998 0804 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
      21:08:00.0061 0804 defragsvc - ok
      21:08:00.0092 0804 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
      21:08:00.0123 0804 DfsC - ok
      21:08:00.0185 0804 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
      21:08:00.0232 0804 Dhcp - ok
      21:08:00.0263 0804 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
      21:08:00.0310 0804 discache - ok
      21:08:00.0357 0804 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\drivers\disk.sys
      21:08:00.0373 0804 Disk - ok
      21:08:00.0404 0804 [ 5DB085A8A6600BE6401F2B24EECB5415 ] dmvsc C:\Windows\system32\drivers\dmvsc.sys
      21:08:00.0466 0804 dmvsc - ok
      21:08:00.0497 0804 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
      21:08:00.0544 0804 Dnscache - ok
      21:08:00.0591 0804 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
      21:08:00.0638 0804 dot3svc - ok
      21:08:00.0669 0804 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
      21:08:00.0716 0804 DPS - ok
      21:08:00.0763 0804 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
      21:08:00.0794 0804 drmkaud - ok
      21:08:00.0856 0804 [ 46571ED73AE84469DCA53081D33CF3C8 ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys
      21:08:00.0872 0804 dtsoftbus01 - ok
      21:08:00.0934 0804 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
      21:08:00.0950 0804 DXGKrnl - ok
      21:08:01.0043 0804 [ F195FBC375342BD25C936982245A8FB0 ] D_Link_DWA-125 C:\Program Files (x86)\D-Link\DWA-125 revA\ANIWZCSdS.exe
      21:08:01.0043 0804 D_Link_DWA-125 ( UnsignedFile.Multi.Generic ) - warning
      21:08:01.0043 0804 D_Link_DWA-125 - detected UnsignedFile.Multi.Generic (1)
      21:08:01.0075 0804 [ 4DB0907D750E0810309F8D8FA36625A6 ] D_Link_DWA-125_WPS C:\Program Files (x86)\D-Link\DWA-125 revA\ANIWConnService.exe
      21:08:01.0075 0804 D_Link_DWA-125_WPS ( UnsignedFile.Multi.Generic ) - warning
      21:08:01.0075 0804 D_Link_DWA-125_WPS - detected UnsignedFile.Multi.Generic (1)
      21:08:01.0121 0804 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
      21:08:01.0184 0804 EapHost - ok
      21:08:01.0277 0804 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\drivers\evbda.sys
      21:08:01.0371 0804 ebdrv - ok
      21:08:01.0418 0804 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
      21:08:01.0465 0804 EFS - ok
      21:08:01.0511 0804 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
      21:08:01.0574 0804 ehRecvr - ok
      21:08:01.0605 0804 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
      21:08:01.0636 0804 ehSched - ok
      21:08:01.0683 0804 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys
      21:08:01.0699 0804 elxstor - ok
      21:08:01.0761 0804 [ ABDD5AD016AFFD34AD40E944CE94BF59 ] EpsonBidirectionalService C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSVC.exe
      21:08:01.0777 0804 EpsonBidirectionalService ( UnsignedFile.Multi.Generic ) - warning
      21:08:01.0777 0804 EpsonBidirectionalService - detected UnsignedFile.Multi.Generic (1)
      21:08:01.0792 0804 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
      21:08:01.0808 0804 ErrDev - ok
      21:08:01.0886 0804 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
      21:08:01.0933 0804 EventSystem - ok
      21:08:01.0964 0804 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
      21:08:02.0026 0804 exfat - ok
      21:08:02.0089 0804 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
      21:08:02.0135 0804 fastfat - ok
      21:08:02.0167 0804 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
      21:08:02.0213 0804 Fax - ok
      21:08:02.0245 0804 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\drivers\fdc.sys
      21:08:02.0245 0804 fdc - ok
      21:08:02.0276 0804 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
      21:08:02.0323 0804 fdPHost - ok
      21:08:02.0354 0804 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
      21:08:02.0385 0804 FDResPub - ok
      21:08:02.0432 0804 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
      21:08:02.0447 0804 FileInfo - ok
      21:08:02.0479 0804 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
      21:08:02.0510 0804 Filetrace - ok
      21:08:02.0541 0804 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
      21:08:02.0557 0804 flpydisk - ok
      21:08:02.0588 0804 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
      21:08:02.0603 0804 FltMgr - ok
      21:08:02.0650 0804 [ B4447F606BB19FD8AD0BAFB59B90F5D9 ] FontCache C:\Windows\system32\FntCache.dll
      21:08:02.0728 0804 FontCache - ok
      21:08:02.0791 0804 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
      21:08:02.0791 0804 FontCache3.0.0.0 - ok
      21:08:02.0837 0804 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
      21:08:02.0853 0804 FsDepends - ok
      21:08:02.0884 0804 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
      21:08:02.0900 0804 Fs_Rec - ok
      21:08:02.0931 0804 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
      21:08:02.0947 0804 fvevol - ok
      21:08:02.0962 0804 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
      21:08:02.0978 0804 gagp30kx - ok
      21:08:03.0025 0804 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
      21:08:03.0087 0804 gpsvc - ok
      21:08:03.0165 0804 [ C1B577B2169900F4CF7190C39F085794 ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
      21:08:03.0181 0804 gusvc - ok
      21:08:03.0212 0804 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
      21:08:03.0274 0804 hcw85cir - ok
      21:08:03.0352 0804 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
      21:08:03.0383 0804 HdAudAddService - ok
      21:08:03.0430 0804 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
      21:08:03.0461 0804 HDAudBus - ok
      21:08:03.0493 0804 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
      21:08:03.0508 0804 HidBatt - ok
      21:08:03.0539 0804 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\drivers\hidbth.sys
      21:08:03.0571 0804 HidBth - ok
      21:08:03.0617 0804 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\drivers\hidir.sys
      21:08:03.0664 0804 HidIr - ok
      21:08:03.0695 0804 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
      21:08:03.0742 0804 hidserv - ok
      21:08:03.0805 0804 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\drivers\hidusb.sys
      21:08:03.0805 0804 HidUsb - ok
      21:08:03.0836 0804 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
      21:08:03.0898 0804 hkmsvc - ok
      21:08:03.0929 0804 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
      21:08:03.0992 0804 HomeGroupListener - ok
      21:08:04.0023 0804 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
      21:08:04.0054 0804 HomeGroupProvider - ok
      21:08:04.0101 0804 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
      21:08:04.0101 0804 HpSAMD - ok
      21:08:04.0148 0804 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
      21:08:04.0210 0804 HTTP - ok
      21:08:04.0241 0804 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
      21:08:04.0241 0804 hwpolicy - ok
      21:08:04.0273 0804 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
      21:08:04.0288 0804 i8042prt - ok
      21:08:04.0319 0804 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
      21:08:04.0335 0804 iaStorV - ok
      21:08:04.0382 0804 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
      21:08:04.0429 0804 idsvc - ok
      21:08:04.0460 0804 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\drivers\iirsp.sys
      21:08:04.0475 0804 iirsp - ok
      21:08:04.0522 0804 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
      21:08:04.0600 0804 IKEEXT - ok
      21:08:04.0647 0804 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
      21:08:04.0663 0804 intelide - ok
      21:08:04.0694 0804 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
      21:08:04.0725 0804 intelppm - ok
      21:08:04.0787 0804 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
      21:08:04.0819 0804 IPBusEnum - ok
      21:08:04.0834 0804 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
      21:08:04.0881 0804 IpFilterDriver - ok
      21:08:04.0975 0804 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
      21:08:05.0037 0804 iphlpsvc - ok
      21:08:05.0068 0804 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
      21:08:05.0084 0804 IPMIDRV - ok
      21:08:05.0115 0804 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
      21:08:05.0162 0804 IPNAT - ok
      21:08:05.0209 0804 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
      21:08:05.0240 0804 IRENUM - ok
      21:08:05.0287 0804 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
      21:08:05.0302 0804 isapnp - ok
      21:08:05.0333 0804 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
      21:08:05.0349 0804 iScsiPrt - ok
      21:08:05.0380 0804 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
      21:08:05.0380 0804 kbdclass - ok
      21:08:05.0411 0804 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
      21:08:05.0443 0804 kbdhid - ok
      21:08:05.0474 0804 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
      21:08:05.0474 0804 KeyIso - ok
      21:08:05.0489 0804 [ DA1E991A61CFDD755A589E206B97644B ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
      21:08:05.0505 0804 KSecDD - ok
      21:08:05.0536 0804 [ 7E33198D956943A4F11A5474C1E9106F ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
      21:08:05.0552 0804 KSecPkg - ok
      21:08:05.0567 0804 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
      21:08:05.0630 0804 ksthunk - ok
      21:08:05.0692 0804 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
      21:08:05.0739 0804 KtmRm - ok
      21:08:05.0786 0804 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
      21:08:05.0833 0804 LanmanServer - ok
      21:08:05.0879 0804 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
      21:08:05.0926 0804 LanmanWorkstation - ok
      21:08:05.0973 0804 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
      21:08:06.0020 0804 lltdio - ok
      21:08:06.0067 0804 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
      21:08:06.0113 0804 lltdsvc - ok
      21:08:06.0129 0804 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
      21:08:06.0176 0804 lmhosts - ok
      21:08:06.0223 0804 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
      21:08:06.0238 0804 LSI_FC - ok
      21:08:06.0254 0804 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
      21:08:06.0269 0804 LSI_SAS - ok
      21:08:06.0301 0804 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
      21:08:06.0301 0804 LSI_SAS2 - ok
      21:08:06.0332 0804 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
      21:08:06.0347 0804 LSI_SCSI - ok
      21:08:06.0379 0804 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
      21:08:06.0441 0804 luafv - ok
      21:08:06.0472 0804 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
      21:08:06.0488 0804 Mcx2Svc - ok
      21:08:06.0503 0804 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\drivers\megasas.sys
      21:08:06.0503 0804 megasas - ok
      21:08:06.0535 0804 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
      21:08:06.0550 0804 MegaSR - ok
      21:08:06.0644 0804 [ 033B947AF4A997820E86FCB070B1F450 ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
      21:08:06.0659 0804 Microsoft Office Groove Audit Service - ok
      21:08:06.0691 0804 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
      21:08:06.0737 0804 MMCSS - ok
      21:08:06.0784 0804 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
      21:08:06.0831 0804 Modem - ok
      21:08:06.0862 0804 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
      21:08:06.0878 0804 monitor - ok
      21:08:06.0925 0804 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
      21:08:06.0940 0804 mouclass - ok
      21:08:06.0956 0804 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\drivers\mouhid.sys
      21:08:06.0971 0804 mouhid - ok
      21:08:07.0049 0804 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
      21:08:07.0049 0804 mountmgr - ok
      21:08:07.0081 0804 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
      21:08:07.0096 0804 mpio - ok
      21:08:07.0112 0804 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
      21:08:07.0112 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\mpsdrv.sys. md5: 6C38C9E45AE0EA2FA5E551F2ED5E978F
      21:08:07.0112 0804 mpsdrv ( LockedFile.Multi.Generic ) - warning
      21:08:07.0112 0804 mpsdrv - detected LockedFile.Multi.Generic (1)
      21:08:07.0205 0804 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
      21:08:07.0268 0804 MpsSvc - ok
      21:08:07.0299 0804 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
      21:08:07.0299 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\mrxdav.sys. md5: DC722758B8261E1ABAFD31A3C0A66380
      21:08:07.0299 0804 MRxDAV ( LockedFile.Multi.Generic ) - warning
      21:08:07.0299 0804 MRxDAV - detected LockedFile.Multi.Generic (1)
      21:08:07.0346 0804 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
      21:08:07.0346 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\mrxsmb.sys. md5: A5D9106A73DC88564C825D317CAC68AC
      21:08:07.0346 0804 mrxsmb ( LockedFile.Multi.Generic ) - warning
      21:08:07.0346 0804 mrxsmb - detected LockedFile.Multi.Generic (1)
      21:08:07.0377 0804 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
      21:08:07.0377 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\mrxsmb10.sys. md5: D711B3C1D5F42C0C2415687BE09FC163
      21:08:07.0377 0804 mrxsmb10 ( LockedFile.Multi.Generic ) - warning
      21:08:07.0377 0804 mrxsmb10 - detected LockedFile.Multi.Generic (1)
      21:08:07.0439 0804 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
      21:08:07.0439 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\mrxsmb20.sys. md5: 9423E9D355C8D303E76B8CFBD8A5C30C
      21:08:07.0439 0804 mrxsmb20 ( LockedFile.Multi.Generic ) - warning
      21:08:07.0439 0804 mrxsmb20 - detected LockedFile.Multi.Generic (1)
      21:08:07.0471 0804 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
      21:08:07.0471 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\msahci.sys. md5: C25F0BAFA182CBCA2DD3C851C2E75796
      21:08:07.0471 0804 msahci ( LockedFile.Multi.Generic ) - warning
      21:08:07.0471 0804 msahci - detected LockedFile.Multi.Generic (1)
      21:08:07.0502 0804 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
      21:08:07.0502 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\msdsm.sys. md5: DB801A638D011B9633829EB6F663C900
      21:08:07.0502 0804 msdsm ( LockedFile.Multi.Generic ) - warning
      21:08:07.0502 0804 msdsm - detected LockedFile.Multi.Generic (1)
      21:08:07.0533 0804 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
      21:08:07.0580 0804 MSDTC - ok
      21:08:07.0642 0804 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
      21:08:07.0642 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\Msfs.sys. md5: AA3FB40E17CE1388FA1BEDAB50EA8F96
      21:08:07.0658 0804 Msfs ( LockedFile.Multi.Generic ) - warning
      21:08:07.0658 0804 Msfs - detected LockedFile.Multi.Generic (1)
      21:08:07.0673 0804 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
      21:08:07.0673 0804 Suspicious file (NoAccess): C:\Windows\System32\drivers\mshidkmdf.sys. md5: F9D215A46A8B9753F61767FA72A20326
      21:08:07.0673 0804 mshidkmdf ( LockedFile.Multi.Generic ) - warning
      21:08:07.0673 0804 mshidkmdf - detected LockedFile.Multi.Generic (1)
      21:08:07.0705 0804 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
      21:08:07.0705 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\msisadrv.sys. md5: D916874BBD4F8B07BFB7FA9B3CCAE29D
      21:08:07.0705 0804 msisadrv ( LockedFile.Multi.Generic ) - warning
      21:08:07.0705 0804 msisadrv - detected LockedFile.Multi.Generic (1)
      21:08:07.0751 0804 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
      21:08:07.0798 0804 MSiSCSI - ok
      21:08:07.0814 0804 msiserver - ok
      21:08:07.0861 0804 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
      21:08:07.0861 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\MSKSSRV.sys. md5: 49CCF2C4FEA34FFAD8B1B59D49439366
      21:08:07.0892 0804 MSKSSRV ( LockedFile.Multi.Generic ) - warning
      21:08:07.0892 0804 MSKSSRV - detected LockedFile.Multi.Generic (1)
      21:08:07.0923 0804 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
      21:08:07.0923 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\MSPCLOCK.sys. md5: BDD71ACE35A232104DDD349EE70E1AB3
      21:08:07.0923 0804 MSPCLOCK ( LockedFile.Multi.Generic ) - warning
      21:08:07.0923 0804 MSPCLOCK - detected LockedFile.Multi.Generic (1)
      21:08:07.0954 0804 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
      21:08:07.0954 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\MSPQM.sys. md5: 4ED981241DB27C3383D72092B618A1D0
      21:08:07.0954 0804 MSPQM ( LockedFile.Multi.Generic ) - warning
      21:08:07.0954 0804 MSPQM - detected LockedFile.Multi.Generic (1)
      21:08:07.0985 0804 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
      21:08:07.0985 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\MsRPC.sys. md5: 759A9EEB0FA9ED79DA1FB7D4EF78866D
      21:08:07.0985 0804 MsRPC ( LockedFile.Multi.Generic ) - warning
      21:08:07.0985 0804 MsRPC - detected LockedFile.Multi.Generic (1)
      21:08:08.0017 0804 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
      21:08:08.0017 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\mssmbios.sys. md5: 0EED230E37515A0EAEE3C2E1BC97B288
      21:08:08.0017 0804 mssmbios ( LockedFile.Multi.Generic ) - warning
      21:08:08.0017 0804 mssmbios - detected LockedFile.Multi.Generic (1)
      21:08:08.0032 0804 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
      21:08:08.0032 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\MSTEE.sys. md5: 2E66F9ECB30B4221A318C92AC2250779
      21:08:08.0048 0804 MSTEE ( LockedFile.Multi.Generic ) - warning
      21:08:08.0048 0804 MSTEE - detected LockedFile.Multi.Generic (1)
      21:08:08.0063 0804 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
      21:08:08.0063 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\MTConfig.sys. md5: 7EA404308934E675BFFDE8EDF0757BCD
      21:08:08.0063 0804 MTConfig ( LockedFile.Multi.Generic ) - warning
      21:08:08.0063 0804 MTConfig - detected LockedFile.Multi.Generic (1)
      21:08:08.0095 0804 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
      21:08:08.0095 0804 Suspicious file (NoAccess): C:\Windows\system32\Drivers\mup.sys. md5: F9A18612FD3526FE473C1BDA678D61C8
      21:08:08.0095 0804 Mup ( LockedFile.Multi.Generic ) - warning
      21:08:08.0095 0804 Mup - detected LockedFile.Multi.Generic (1)
      21:08:08.0141 0804 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
      21:08:08.0188 0804 napagent - ok
      21:08:08.0251 0804 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
      21:08:08.0251 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\nwifi.sys. md5: 1EA3749C4114DB3E3161156FFFFA6B33
      21:08:08.0282 0804 NativeWifiP ( LockedFile.Multi.Generic ) - warning
      21:08:08.0282 0804 NativeWifiP - detected LockedFile.Multi.Generic (1)
      21:08:08.0360 0804 [ 934BB0D23A25C8C136570800A5A149B6 ] NAUpdate C:\Program Files (x86)\Nero\Update\NASvc.exe
      21:08:08.0375 0804 NAUpdate - ok
      21:08:08.0453 0804 [ 79B47FD40D9A817E932F9D26FAC0A81C ] NDIS C:\Windows\system32\drivers\ndis.sys
      21:08:08.0500 0804 NDIS - ok
      21:08:08.0547 0804 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
      21:08:08.0547 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\ndiscap.sys. md5: 9F9A1F53AAD7DA4D6FEF5BB73AB811AC
      21:08:08.0563 0804 NdisCap ( LockedFile.Multi.Generic ) - warning
      21:08:08.0563 0804 NdisCap - detected LockedFile.Multi.Generic (1)
      21:08:08.0609 0804 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
      21:08:08.0609 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\ndistapi.sys. md5: 30639C932D9FEF22B31268FE25A1B6E5
      21:08:08.0609 0804 NdisTapi ( LockedFile.Multi.Generic ) - warning
      21:08:08.0609 0804 NdisTapi - detected LockedFile.Multi.Generic (1)
      21:08:08.0641 0804 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
      21:08:08.0641 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\ndisuio.sys. md5: 136185F9FB2CC61E573E676AA5402356
      21:08:08.0656 0804 Ndisuio ( LockedFile.Multi.Generic ) - warning
      21:08:08.0656 0804 Ndisuio - detected LockedFile.Multi.Generic (1)
      21:08:08.0672 0804 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
      21:08:08.0672 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\ndiswan.sys. md5: 53F7305169863F0A2BDDC49E116C2E11
      21:08:08.0672 0804 NdisWan ( LockedFile.Multi.Generic ) - warning
      21:08:08.0672 0804 NdisWan - detected LockedFile.Multi.Generic (1)
      21:08:08.0703 0804 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
      21:08:08.0703 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\NDProxy.sys. md5: 015C0D8E0E0421B4CFD48CFFE2825879
      21:08:08.0703 0804 NDProxy ( LockedFile.Multi.Generic ) - warning
      21:08:08.0703 0804 NDProxy - detected LockedFile.Multi.Generic (1)
      21:08:08.0719 0804 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
      21:08:08.0719 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\netbios.sys. md5: 86743D9F5D2B1048062B14B1D84501C4
      21:08:08.0734 0804 NetBIOS ( LockedFile.Multi.Generic ) - warning
      21:08:08.0734 0804 NetBIOS - detected LockedFile.Multi.Generic (1)
      21:08:08.0781 0804 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
      21:08:08.0781 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\netbt.sys. md5: 09594D1089C523423B32A4229263F068
      21:08:08.0797 0804 NetBT ( LockedFile.Multi.Generic ) - warning
      21:08:08.0797 0804 NetBT - detected LockedFile.Multi.Generic (1)
      21:08:08.0828 0804 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
      21:08:08.0828 0804 Netlogon - ok
      21:08:08.0875 0804 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
      21:08:08.0921 0804 Netman - ok
      21:08:08.0968 0804 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
      21:08:08.0999 0804 netprofm - ok
      21:08:09.0077 0804 [ EED1FBDE98CF5F6D5C0C5B27AB1F68EC ] netr28ux C:\Windows\system32\DRIVERS\Dnetr28ux.sys
      21:08:09.0077 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\Dnetr28ux.sys. md5: EED1FBDE98CF5F6D5C0C5B27AB1F68EC
      21:08:09.0093 0804 netr28ux ( LockedFile.Multi.Generic ) - warning
      21:08:09.0093 0804 netr28ux - detected LockedFile.Multi.Generic (1)
      21:08:09.0109 0804 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
      21:08:09.0124 0804 NetTcpPortSharing - ok
      21:08:09.0155 0804 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
      21:08:09.0155 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\nfrd960.sys. md5: 77889813BE4D166CDAB78DDBA990DA92
      21:08:09.0171 0804 nfrd960 ( LockedFile.Multi.Generic ) - warning
      21:08:09.0171 0804 nfrd960 - detected LockedFile.Multi.Generic (1)
      21:08:09.0218 0804 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
      21:08:09.0265 0804 NlaSvc - ok
      21:08:09.0311 0804 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
      21:08:09.0311 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\Npfs.sys. md5: 1E4C4AB5C9B8DD13179BBDC75A2A01F7
      21:08:09.0311 0804 Npfs ( LockedFile.Multi.Generic ) - warning
      21:08:09.0311 0804 Npfs - detected LockedFile.Multi.Generic (1)
      21:08:09.0327 0804 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
      21:08:09.0374 0804 nsi - ok
      21:08:09.0405 0804 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
      21:08:09.0405 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\nsiproxy.sys. md5: E7F5AE18AF4168178A642A9247C63001
      21:08:09.0405 0804 nsiproxy ( LockedFile.Multi.Generic ) - warning
      21:08:09.0405 0804 nsiproxy - detected LockedFile.Multi.Generic (1)
      21:08:09.0483 0804 [ A2F74975097F52A00745F9637451FDD8 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
      21:08:09.0483 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\Ntfs.sys. md5: A2F74975097F52A00745F9637451FDD8
      21:08:09.0499 0804 Ntfs ( LockedFile.Multi.Generic ) - warning
      21:08:09.0499 0804 Ntfs - detected LockedFile.Multi.Generic (1)
      21:08:09.0530 0804 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
      21:08:09.0530 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\Null.sys. md5: 9899284589F75FA8724FF3D16AED75C1
      21:08:09.0545 0804 Null ( LockedFile.Multi.Generic ) - warning
      21:08:09.0545 0804 Null - detected LockedFile.Multi.Generic (1)
      21:08:09.0748 0804 [ DD81FBC57AB9134CDDC5CE90880BFD80 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
      21:08:09.0748 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\nvlddmkm.sys. md5: DD81FBC57AB9134CDDC5CE90880BFD80
      21:08:09.0779 0804 nvlddmkm ( LockedFile.Multi.Generic ) - warning
      21:08:09.0779 0804 nvlddmkm - detected LockedFile.Multi.Generic (1)
      21:08:09.0826 0804 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
      21:08:09.0826 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\nvraid.sys. md5: 0A92CB65770442ED0DC44834632F66AD
      21:08:09.0842 0804 nvraid ( LockedFile.Multi.Generic ) - warning
      21:08:09.0842 0804 nvraid - detected LockedFile.Multi.Generic (1)
      21:08:09.0857 0804 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
      21:08:09.0857 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\nvstor.sys. md5: DAB0E87525C10052BF65F06152F37E4A
      21:08:09.0857 0804 nvstor ( LockedFile.Multi.Generic ) - warning
      21:08:09.0857 0804 nvstor - detected LockedFile.Multi.Generic (1)
      21:08:09.0889 0804 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
      21:08:09.0889 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\nv_agp.sys. md5: 270D7CD42D6E3979F6DD0146650F0E05
      21:08:09.0889 0804 nv_agp ( LockedFile.Multi.Generic ) - warning
      21:08:09.0889 0804 nv_agp - detected LockedFile.Multi.Generic (1)
      21:08:09.0982 0804 [ E54AA592A65F317390EEE386A8821692 ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
      21:08:09.0998 0804 odserv - ok
      21:08:10.0045 0804 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
      21:08:10.0045 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\ohci1394.sys. md5: 3589478E4B22CE21B41FA1BFC0B8B8A0
      21:08:10.0060 0804 ohci1394 ( LockedFile.Multi.Generic ) - warning
      21:08:10.0060 0804 ohci1394 - detected LockedFile.Multi.Generic (1)
      21:08:10.0123 0804 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
      21:08:10.0138 0804 ose - ok
      21:08:10.0201 0804 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
      21:08:10.0216 0804 p2pimsvc - ok
      21:08:10.0247 0804 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
      21:08:10.0294 0804 p2psvc - ok
      21:08:10.0325 0804 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\drivers\parport.sys
      21:08:10.0325 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\parport.sys. md5: 0086431C29C35BE1DBC43F52CC273887
      21:08:10.0341 0804 Parport ( LockedFile.Multi.Generic ) - warning
      21:08:10.0341 0804 Parport - detected LockedFile.Multi.Generic (1)
      21:08:10.0388 0804 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
      21:08:10.0388 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\partmgr.sys. md5: E9766131EEADE40A27DC27D2D68FBA9C
      21:08:10.0388 0804 partmgr ( LockedFile.Multi.Generic ) - warning
      21:08:10.0388 0804 partmgr - detected LockedFile.Multi.Generic (1)
      21:08:10.0450 0804 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
      21:08:10.0481 0804 PcaSvc - ok
      21:08:10.0513 0804 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
      21:08:10.0528 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\pci.sys. md5: 94575C0571D1462A0F70BDE6BD6EE6B3
      21:08:10.0528 0804 pci ( LockedFile.Multi.Generic ) - warning
      21:08:10.0528 0804 pci - detected LockedFile.Multi.Generic (1)
      21:08:10.0544 0804 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
      21:08:10.0544 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\pciide.sys. md5: B5B8B5EF2E5CB34DF8DCF8831E3534FA
      21:08:10.0544 0804 pciide ( LockedFile.Multi.Generic ) - warning
      21:08:10.0544 0804 pciide - detected LockedFile.Multi.Generic (1)
      21:08:10.0591 0804 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
      21:08:10.0591 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\pcmcia.sys. md5: B2E81D4E87CE48589F98CB8C05B01F2F
      21:08:10.0591 0804 pcmcia ( LockedFile.Multi.Generic ) - warning
      21:08:10.0591 0804 pcmcia - detected LockedFile.Multi.Generic (1)
      21:08:10.0622 0804 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
      21:08:10.0622 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\pcw.sys. md5: D6B9C2E1A11A3A4B26A182FFEF18F603
      21:08:10.0622 0804 pcw ( LockedFile.Multi.Generic ) - warning
      21:08:10.0622 0804 pcw - detected LockedFile.Multi.Generic (1)
      21:08:10.0653 0804 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
      21:08:10.0653 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\peauth.sys. md5: 68769C3356B3BE5D1C732C97B9A80D6E
      21:08:10.0653 0804 PEAUTH ( LockedFile.Multi.Generic ) - warning
      21:08:10.0653 0804 PEAUTH - detected LockedFile.Multi.Generic (1)
      21:08:10.0715 0804 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
      21:08:10.0778 0804 PeerDistSvc - ok
      21:08:10.0871 0804 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
      21:08:10.0887 0804 PerfHost - ok
      21:08:10.0996 0804 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
      21:08:11.0074 0804 pla - ok
      21:08:11.0121 0804 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
      21:08:11.0168 0804 PlugPlay - ok
      21:08:11.0199 0804 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
      21:08:11.0230 0804 PNRPAutoReg - ok
      21:08:11.0277 0804 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
      21:08:11.0293 0804 PNRPsvc - ok
      21:08:11.0339 0804 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
      21:08:11.0386 0804 PolicyAgent - ok
      21:08:11.0449 0804 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
      21:08:11.0511 0804 Power - ok
      21:08:11.0542 0804 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
      21:08:11.0542 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\raspptp.sys. md5: F92A2C41117A11A00BE01CA01A7FCDE9
      21:08:11.0558 0804 PptpMiniport ( LockedFile.Multi.Generic ) - warning
      21:08:11.0558 0804 PptpMiniport - detected LockedFile.Multi.Generic (1)
      21:08:11.0589 0804 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\drivers\processr.sys
      21:08:11.0589 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\processr.sys. md5: 0D922E23C041EFB1C3FAC2A6F943C9BF
      21:08:11.0589 0804 Processor ( LockedFile.Multi.Generic ) - warning
      21:08:11.0589 0804 Processor - detected LockedFile.Multi.Generic (1)
      21:08:11.0636 0804 [ 5C78838B4D166D1A27DB3A8A820C799A ] ProfSvc C:\Windows\system32\profsvc.dll
      21:08:11.0698 0804 ProfSvc - ok
      21:08:11.0729 0804 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
      21:08:11.0745 0804 ProtectedStorage - ok
      21:08:11.0776 0804 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
      21:08:11.0776 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\pacer.sys. md5: 0557CF5A2556BD58E26384169D72438D
      21:08:11.0792 0804 Psched ( LockedFile.Multi.Generic ) - warning
      21:08:11.0792 0804 Psched - detected LockedFile.Multi.Generic (1)
      21:08:11.0854 0804 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
      21:08:11.0854 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\ql2300.sys. md5: A53A15A11EBFD21077463EE2C7AFEEF0
      21:08:11.0870 0804 ql2300 ( LockedFile.Multi.Generic ) - warning
      21:08:11.0870 0804 ql2300 - detected LockedFile.Multi.Generic (1)
      21:08:11.0885 0804 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
      21:08:11.0885 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\ql40xx.sys. md5: 4F6D12B51DE1AAEFF7DC58C4D75423C8
      21:08:11.0885 0804 ql40xx ( LockedFile.Multi.Generic ) - warning
      21:08:11.0885 0804 ql40xx - detected LockedFile.Multi.Generic (1)
      21:08:11.0917 0804 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
      21:08:11.0948 0804 QWAVE - ok
      21:08:11.0963 0804 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
      21:08:11.0963 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\qwavedrv.sys. md5: 76707BB36430888D9CE9D705398ADB6C
      21:08:11.0979 0804 QWAVEdrv ( LockedFile.Multi.Generic ) - warning
      21:08:11.0979 0804 QWAVEdrv - detected LockedFile.Multi.Generic (1)
      21:08:11.0995 0804 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
      21:08:11.0995 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\rasacd.sys. md5: 5A0DA8AD5762FA2D91678A8A01311704
      21:08:11.0995 0804 RasAcd ( LockedFile.Multi.Generic ) - warning
      21:08:11.0995 0804 RasAcd - detected LockedFile.Multi.Generic (1)
      21:08:12.0041 0804 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
      21:08:12.0041 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\AgileVpn.sys. md5: 7ECFF9B22276B73F43A99A15A6094E90
      21:08:12.0041 0804 RasAgileVpn ( LockedFile.Multi.Generic ) - warning
      21:08:12.0041 0804 RasAgileVpn - detected LockedFile.Multi.Generic (1)
      21:08:12.0073 0804 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
      21:08:12.0119 0804 RasAuto - ok
      21:08:12.0166 0804 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
      21:08:12.0166 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\rasl2tp.sys. md5: 471815800AE33E6F1C32FB1B97C490CA
      21:08:12.0182 0804 Rasl2tp ( LockedFile.Multi.Generic ) - warning
      21:08:12.0182 0804 Rasl2tp - detected LockedFile.Multi.Generic (1)
      21:08:12.0213 0804 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
      21:08:12.0275 0804 RasMan - ok
      21:08:12.0322 0804 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
      21:08:12.0322 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\raspppoe.sys. md5: 855C9B1CD4756C5E9A2AA58A15F58C25
      21:08:12.0322 0804 RasPppoe ( LockedFile.Multi.Generic ) - warning
      21:08:12.0322 0804 RasPppoe - detected LockedFile.Multi.Generic (1)
      21:08:12.0353 0804 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
      21:08:12.0353 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\rassstp.sys. md5: E8B1E447B008D07FF47D016C2B0EEECB
      21:08:12.0353 0804 RasSstp ( LockedFile.Multi.Generic ) - warning
      21:08:12.0353 0804 RasSstp - detected LockedFile.Multi.Generic (1)
      21:08:12.0385 0804 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
      21:08:12.0385 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\rdbss.sys. md5: 77F665941019A1594D887A74F301FA2F
      21:08:12.0385 0804 rdbss ( LockedFile.Multi.Generic ) - warning
      21:08:12.0385 0804 rdbss - detected LockedFile.Multi.Generic (1)
      21:08:12.0416 0804 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
      21:08:12.0416 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\rdpbus.sys. md5: 302DA2A0539F2CF54D7C6CC30C1F2D8D
      21:08:12.0416 0804 rdpbus ( LockedFile.Multi.Generic ) - warning
      21:08:12.0416 0804 rdpbus - detected LockedFile.Multi.Generic (1)
      21:08:12.0431 0804 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
      21:08:12.0431 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\RDPCDD.sys. md5: CEA6CC257FC9B7715F1C2B4849286D24
      21:08:12.0447 0804 RDPCDD ( LockedFile.Multi.Generic ) - warning
      21:08:12.0447 0804 RDPCDD - detected LockedFile.Multi.Generic (1)
      21:08:12.0478 0804 [ 1B6163C503398B23FF8B939C67747683 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
      21:08:12.0478 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\rdpdr.sys. md5: 1B6163C503398B23FF8B939C67747683
      21:08:12.0478 0804 RDPDR ( LockedFile.Multi.Generic ) - warning
      21:08:12.0478 0804 RDPDR - detected LockedFile.Multi.Generic (1)
      21:08:12.0525 0804 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
      21:08:12.0525 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\rdpencdd.sys. md5: BB5971A4F00659529A5C44831AF22365
      21:08:12.0525 0804 RDPENCDD ( LockedFile.Multi.Generic ) - warning
      21:08:12.0525 0804 RDPENCDD - detected LockedFile.Multi.Generic (1)
      21:08:12.0572 0804 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
      21:08:12.0572 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\rdprefmp.sys. md5: 216F3FA57533D98E1F74DED70113177A
      21:08:12.0587 0804 RDPREFMP ( LockedFile.Multi.Generic ) - warning
      21:08:12.0587 0804 RDPREFMP - detected LockedFile.Multi.Generic (1)
      21:08:12.0619 0804 [ 70CBA1A0C98600A2AA1863479B35CB90 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
      21:08:12.0634 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\rdpvideominiport.sys. md5: 70CBA1A0C98600A2AA1863479B35CB90
      21:08:12.0634 0804 RdpVideoMiniport ( LockedFile.Multi.Generic ) - warning
      21:08:12.0634 0804 RdpVideoMiniport - detected LockedFile.Multi.Generic (1)
      21:08:12.0665 0804 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
      21:08:12.0665 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\RDPWD.sys. md5: E61608AA35E98999AF9AAEEEA6114B0A
      21:08:12.0665 0804 RDPWD ( LockedFile.Multi.Generic ) - warning
      21:08:12.0665 0804 RDPWD - detected LockedFile.Multi.Generic (1)
      21:08:12.0712 0804 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
      21:08:12.0712 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\rdyboost.sys. md5: 34ED295FA0121C241BFEF24764FC4520
      21:08:12.0712 0804 rdyboost ( LockedFile.Multi.Generic ) - warning
      21:08:12.0712 0804 rdyboost - detected LockedFile.Multi.Generic (1)
      21:08:12.0775 0804 RelevantKnowledge - ok
      21:08:12.0821 0804 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
      21:08:12.0884 0804 RemoteAccess - ok
      21:08:12.0931 0804 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
      21:08:12.0962 0804 RemoteRegistry - ok
      21:08:12.0993 0804 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
      21:08:13.0040 0804 RpcEptMapper - ok
      21:08:13.0071 0804 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
      21:08:13.0087 0804 RpcLocator - ok
      21:08:13.0118 0804 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
      21:08:13.0165 0804 RpcSs - ok
      21:08:13.0211 0804 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
      21:08:13.0211 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\rspndr.sys. md5: DDC86E4F8E7456261E637E3552E804FF
      21:08:13.0211 0804 rspndr ( LockedFile.Multi.Generic ) - warning
      21:08:13.0211 0804 rspndr - detected LockedFile.Multi.Generic (1)
      21:08:13.0243 0804 [ BAEFEE35D27A5440D35092CE10267BEC ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
      21:08:13.0243 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\Rt64win7.sys. md5: BAEFEE35D27A5440D35092CE10267BEC
      21:08:13.0243 0804 RTL8167 ( LockedFile.Multi.Generic ) - warning
      21:08:13.0243 0804 RTL8167 - detected LockedFile.Multi.Generic (1)
      21:08:13.0289 0804 [ E60C0A09F997826C7627B244195AB581 ] s3cap C:\Windows\system32\drivers\vms3cap.sys
      21:08:13.0289 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\vms3cap.sys. md5: E60C0A09F997826C7627B244195AB581
      21:08:13.0289 0804 s3cap ( LockedFile.Multi.Generic ) - warning
      21:08:13.0289 0804 s3cap - detected LockedFile.Multi.Generic (1)
      21:08:13.0321 0804 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
      21:08:13.0336 0804 SamSs - ok
      21:08:13.0430 0804 [ 9D19E17449C8E8759D6872F662104321 ] SamsungAllShareV2.0 C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\AllShareDMS.exe
      21:08:13.0445 0804 SamsungAllShareV2.0 - ok
      21:08:13.0477 0804 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
      21:08:13.0477 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\sbp2port.sys. md5: AC03AF3329579FFFB455AA2DAABBE22B
      21:08:13.0492 0804 sbp2port ( LockedFile.Multi.Generic ) - warning
      21:08:13.0492 0804 sbp2port - detected LockedFile.Multi.Generic (1)
      21:08:13.0523 0804 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
      21:08:13.0586 0804 SCardSvr - ok
      21:08:13.0648 0804 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
      21:08:13.0648 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\scfilter.sys. md5: 253F38D0D7074C02FF8DEB9836C97D2B
      21:08:13.0648 0804 scfilter ( LockedFile.Multi.Generic ) - warning
      21:08:13.0664 0804 scfilter - detected LockedFile.Multi.Generic (1)
      21:08:13.0711 0804 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
      21:08:13.0789 0804 Schedule - ok
      21:08:13.0835 0804 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
      21:08:13.0851 0804 SCPolicySvc - ok
      21:08:13.0882 0804 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
      21:08:13.0945 0804 SDRSVC - ok

    2. #12
      Usuario Avatar de frarina
      Registrado
      nov 2012
      Ubicación
      españa
      Mensajes
      16

      Re: Windows Update: falta el servicio de transferencia inteligente

      21:08:13.0976 0804 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
      21:08:13.0976 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\secdrv.sys. md5: 3EA8A16169C26AFBEB544E0E48421186
      21:08:13.0991 0804 secdrv ( LockedFile.Multi.Generic ) - warning
      21:08:13.0991 0804 secdrv - detected LockedFile.Multi.Generic (1)
      21:08:14.0007 0804 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
      21:08:14.0038 0804 seclogon - ok
      21:08:14.0069 0804 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
      21:08:14.0116 0804 SENS - ok
      21:08:14.0163 0804 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
      21:08:14.0210 0804 SensrSvc - ok
      21:08:14.0241 0804 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
      21:08:14.0241 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\serenum.sys. md5: CB624C0035412AF0DEBEC78C41F5CA1B
      21:08:14.0257 0804 Serenum ( LockedFile.Multi.Generic ) - warning
      21:08:14.0257 0804 Serenum - detected LockedFile.Multi.Generic (1)
      21:08:14.0288 0804 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
      21:08:14.0288 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\serial.sys. md5: C1D8E28B2C2ADFAEC4BA89E9FDA69BD6
      21:08:14.0303 0804 Serial ( LockedFile.Multi.Generic ) - warning
      21:08:14.0303 0804 Serial - detected LockedFile.Multi.Generic (1)
      21:08:14.0335 0804 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\drivers\sermouse.sys
      21:08:14.0335 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\sermouse.sys. md5: 1C545A7D0691CC4A027396535691C3E3
      21:08:14.0335 0804 sermouse ( LockedFile.Multi.Generic ) - warning
      21:08:14.0335 0804 sermouse - detected LockedFile.Multi.Generic (1)
      21:08:14.0381 0804 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
      21:08:14.0428 0804 SessionEnv - ok
      21:08:14.0459 0804 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
      21:08:14.0459 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\sffdisk.sys. md5: A554811BCD09279536440C964AE35BBF
      21:08:14.0459 0804 sffdisk ( LockedFile.Multi.Generic ) - warning
      21:08:14.0459 0804 sffdisk - detected LockedFile.Multi.Generic (1)
      21:08:14.0475 0804 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
      21:08:14.0475 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\sffp_mmc.sys. md5: FF414F0BAEFEBA59BC6C04B3DB0B87BF
      21:08:14.0491 0804 sffp_mmc ( LockedFile.Multi.Generic ) - warning
      21:08:14.0491 0804 sffp_mmc - detected LockedFile.Multi.Generic (1)
      21:08:14.0506 0804 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
      21:08:14.0506 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\sffp_sd.sys. md5: DD85B78243A19B59F0637DCF284DA63C
      21:08:14.0506 0804 sffp_sd ( LockedFile.Multi.Generic ) - warning
      21:08:14.0506 0804 sffp_sd - detected LockedFile.Multi.Generic (1)
      21:08:14.0537 0804 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
      21:08:14.0537 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\sfloppy.sys. md5: A9D601643A1647211A1EE2EC4E433FF4
      21:08:14.0537 0804 sfloppy ( LockedFile.Multi.Generic ) - warning
      21:08:14.0537 0804 sfloppy - detected LockedFile.Multi.Generic (1)
      21:08:14.0615 0804 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
      21:08:14.0662 0804 SharedAccess - ok
      21:08:14.0709 0804 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
      21:08:14.0771 0804 ShellHWDetection - ok
      21:08:14.0849 0804 [ 1435BF57B18B3FD2C28060EF4374E704 ] SimpleSlideShowServer C:\Program Files (x86)\Samsung\AllShare\AllShareSlideShowService.exe
      21:08:14.0865 0804 SimpleSlideShowServer - ok
      21:08:14.0896 0804 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
      21:08:14.0896 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\SiSRaid2.sys. md5: 843CAF1E5FDE1FFD5FF768F23A51E2E1
      21:08:14.0912 0804 SiSRaid2 ( LockedFile.Multi.Generic ) - warning
      21:08:14.0912 0804 SiSRaid2 - detected LockedFile.Multi.Generic (1)
      21:08:14.0927 0804 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
      21:08:14.0927 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\sisraid4.sys. md5: 6A6C106D42E9FFFF8B9FCB4F754F6DA4
      21:08:14.0927 0804 SiSRaid4 ( LockedFile.Multi.Generic ) - warning
      21:08:14.0927 0804 SiSRaid4 - detected LockedFile.Multi.Generic (1)
      21:08:14.0959 0804 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
      21:08:14.0959 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\smb.sys. md5: 548260A7B8654E024DC30BF8A7C5BAA4
      21:08:14.0974 0804 Smb ( LockedFile.Multi.Generic ) - warning
      21:08:14.0974 0804 Smb - detected LockedFile.Multi.Generic (1)
      21:08:15.0005 0804 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
      21:08:15.0037 0804 SNMPTRAP - ok
      21:08:15.0083 0804 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
      21:08:15.0083 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\spldr.sys. md5: B9E31E5CACDFE584F34F730A677803F9
      21:08:15.0083 0804 spldr ( LockedFile.Multi.Generic ) - warning
      21:08:15.0083 0804 spldr - detected LockedFile.Multi.Generic (1)
      21:08:15.0115 0804 [ B96C17B5DC1424D56EEA3A99E97428CD ] Spooler C:\Windows\System32\spoolsv.exe
      21:08:15.0146 0804 Spooler - ok
      21:08:15.0239 0804 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
      21:08:15.0364 0804 sppsvc - ok
      21:08:15.0395 0804 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
      21:08:15.0458 0804 sppuinotify - ok
      21:08:15.0520 0804 [ 88E5162E58C8919CC873F5D8946197CF ] sptd C:\Windows\system32\Drivers\sptd.sys
      21:08:15.0520 0804 Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: 88E5162E58C8919CC873F5D8946197CF
      21:08:15.0536 0804 sptd ( LockedFile.Multi.Generic ) - warning
      21:08:15.0536 0804 sptd - detected LockedFile.Multi.Generic (1)
      21:08:15.0567 0804 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
      21:08:15.0567 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\srv.sys. md5: 441FBA48BFF01FDB9D5969EBC1838F0B
      21:08:15.0567 0804 srv ( LockedFile.Multi.Generic ) - warning
      21:08:15.0567 0804 srv - detected LockedFile.Multi.Generic (1)
      21:08:15.0598 0804 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
      21:08:15.0598 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\srv2.sys. md5: B4ADEBBF5E3677CCE9651E0F01F7CC28
      21:08:15.0614 0804 srv2 ( LockedFile.Multi.Generic ) - warning
      21:08:15.0614 0804 srv2 - detected LockedFile.Multi.Generic (1)
      21:08:15.0629 0804 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
      21:08:15.0629 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\srvnet.sys. md5: 27E461F0BE5BFF5FC737328F749538C3
      21:08:15.0645 0804 srvnet ( LockedFile.Multi.Generic ) - warning
      21:08:15.0645 0804 srvnet - detected LockedFile.Multi.Generic (1)
      21:08:15.0676 0804 [ 8F8324ED1DE63FFC7B1A02CD2D963C72 ] ssadbus C:\Windows\system32\DRIVERS\ssadbus.sys
      21:08:15.0676 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\ssadbus.sys. md5: 8F8324ED1DE63FFC7B1A02CD2D963C72
      21:08:15.0692 0804 ssadbus ( LockedFile.Multi.Generic ) - warning
      21:08:15.0692 0804 ssadbus - detected LockedFile.Multi.Generic (1)
      21:08:15.0739 0804 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
      21:08:15.0770 0804 SSDPSRV - ok
      21:08:15.0817 0804 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
      21:08:15.0848 0804 SstpSvc - ok
      21:08:15.0926 0804 [ B1691AF4A072CB674D600DB16DD7308E ] StarWindServiceAE C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
      21:08:15.0957 0804 StarWindServiceAE ( UnsignedFile.Multi.Generic ) - warning
      21:08:15.0957 0804 StarWindServiceAE - detected UnsignedFile.Multi.Generic (1)
      21:08:16.0004 0804 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\drivers\stexstor.sys
      21:08:16.0004 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\stexstor.sys. md5: F3817967ED533D08327DC73BC4D5542A
      21:08:16.0004 0804 stexstor ( LockedFile.Multi.Generic ) - warning
      21:08:16.0004 0804 stexstor - detected LockedFile.Multi.Generic (1)
      21:08:16.0051 0804 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
      21:08:16.0097 0804 stisvc - ok
      21:08:16.0144 0804 [ 7785DC213270D2FC066538DAF94087E7 ] storflt C:\Windows\system32\drivers\vmstorfl.sys
      21:08:16.0144 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\vmstorfl.sys. md5: 7785DC213270D2FC066538DAF94087E7
      21:08:16.0144 0804 storflt ( LockedFile.Multi.Generic ) - warning
      21:08:16.0144 0804 storflt - detected LockedFile.Multi.Generic (1)
      21:08:16.0175 0804 [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc C:\Windows\system32\drivers\storvsc.sys
      21:08:16.0175 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\storvsc.sys. md5: D34E4943D5AC096C8EDEEBFD80D76E23
      21:08:16.0175 0804 storvsc ( LockedFile.Multi.Generic ) - warning
      21:08:16.0175 0804 storvsc - detected LockedFile.Multi.Generic (1)
      21:08:16.0207 0804 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
      21:08:16.0207 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\swenum.sys. md5: D01EC09B6711A5F8E7E6564A4D0FBC90
      21:08:16.0222 0804 swenum ( LockedFile.Multi.Generic ) - warning
      21:08:16.0222 0804 swenum - detected LockedFile.Multi.Generic (1)
      21:08:16.0269 0804 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
      21:08:16.0300 0804 swprv - ok
      21:08:16.0347 0804 [ C3A39C4079305480972D29C44B868C78 ] Synth3dVsc C:\Windows\system32\drivers\synth3dvsc.sys
      21:08:16.0347 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\synth3dvsc.sys. md5: C3A39C4079305480972D29C44B868C78
      21:08:16.0347 0804 Synth3dVsc ( LockedFile.Multi.Generic ) - warning
      21:08:16.0347 0804 Synth3dVsc - detected LockedFile.Multi.Generic (1)
      21:08:16.0456 0804 [ CBCF28435251D2AFE54BFDCB9A79D2A1 ] syshost32 C:\Windows\Installer\{5F0EE7C6-A802-B7D0-1CA4-6052FC7A6D45}\syshost.exe
      21:08:16.0456 0804 Suspicious file (NoAccess): C:\Windows\Installer\{5F0EE7C6-A802-B7D0-1CA4-6052FC7A6D45}\syshost.exe. md5: CBCF28435251D2AFE54BFDCB9A79D2A1
      21:08:16.0456 0804 syshost32 ( LockedFile.Multi.Generic ) - warning
      21:08:16.0456 0804 syshost32 - detected LockedFile.Multi.Generic (1)
      21:08:16.0519 0804 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
      21:08:16.0597 0804 SysMain - ok
      21:08:16.0628 0804 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
      21:08:16.0643 0804 TabletInputService - ok
      21:08:16.0690 0804 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
      21:08:16.0737 0804 TapiSrv - ok
      21:08:16.0768 0804 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
      21:08:16.0799 0804 TBS - ok
      21:08:16.0862 0804 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
      21:08:16.0877 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\tcpip.sys. md5: ACB82BDA8F46C84F465C1AFA517DC4B9
      21:08:16.0909 0804 Tcpip ( LockedFile.Multi.Generic ) - warning
      21:08:16.0909 0804 Tcpip - detected LockedFile.Multi.Generic (1)
      21:08:16.0955 0804 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
      21:08:16.0955 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\tcpip.sys. md5: ACB82BDA8F46C84F465C1AFA517DC4B9
      21:08:16.0971 0804 TCPIP6 ( LockedFile.Multi.Generic ) - warning
      21:08:16.0971 0804 TCPIP6 - detected LockedFile.Multi.Generic (1)
      21:08:17.0049 0804 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
      21:08:17.0049 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\tcpipreg.sys. md5: DF687E3D8836BFB04FCC0615BF15A519
      21:08:17.0049 0804 tcpipreg ( LockedFile.Multi.Generic ) - warning
      21:08:17.0049 0804 tcpipreg - detected LockedFile.Multi.Generic (1)
      21:08:17.0080 0804 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
      21:08:17.0080 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\tdpipe.sys. md5: 3371D21011695B16333A3934340C4E7C
      21:08:17.0080 0804 TDPIPE ( LockedFile.Multi.Generic ) - warning
      21:08:17.0080 0804 TDPIPE - detected LockedFile.Multi.Generic (1)
      21:08:17.0143 0804 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
      21:08:17.0143 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\tdtcp.sys. md5: 51C5ECEB1CDEE2468A1748BE550CFBC8
      21:08:17.0143 0804 TDTCP ( LockedFile.Multi.Generic ) - warning
      21:08:17.0143 0804 TDTCP - detected LockedFile.Multi.Generic (1)
      21:08:17.0189 0804 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
      21:08:17.0189 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\tdx.sys. md5: DDAD5A7AB24D8B65F8D724F5C20FD806
      21:08:17.0189 0804 tdx ( LockedFile.Multi.Generic ) - warning
      21:08:17.0189 0804 tdx - detected LockedFile.Multi.Generic (1)
      21:08:17.0221 0804 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
      21:08:17.0221 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\termdd.sys. md5: 561E7E1F06895D78DE991E01DD0FB6E5
      21:08:17.0221 0804 TermDD ( LockedFile.Multi.Generic ) - warning
      21:08:17.0221 0804 TermDD - detected LockedFile.Multi.Generic (1)
      21:08:17.0236 0804 [ 2B5BDFF688EC9871D7EC5837833374E9 ] terminpt C:\Windows\system32\drivers\terminpt.sys
      21:08:17.0236 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\terminpt.sys. md5: 2B5BDFF688EC9871D7EC5837833374E9
      21:08:17.0252 0804 terminpt ( LockedFile.Multi.Generic ) - warning
      21:08:17.0252 0804 terminpt - detected LockedFile.Multi.Generic (1)
      21:08:17.0283 0804 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
      21:08:17.0361 0804 TermService - ok
      21:08:17.0377 0804 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
      21:08:17.0392 0804 Themes - ok
      21:08:17.0423 0804 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
      21:08:17.0455 0804 THREADORDER - ok
      21:08:17.0548 0804 [ E319535A8124F25C1C9C5288CACF3101 ] TomTomHOMEService C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
      21:08:17.0564 0804 TomTomHOMEService - ok
      21:08:17.0611 0804 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
      21:08:17.0657 0804 TrkWks - ok
      21:08:17.0720 0804 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
      21:08:17.0751 0804 TrustedInstaller - ok
      21:08:17.0782 0804 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
      21:08:17.0782 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\tssecsrv.sys. md5: CE18B2CDFC837C99E5FAE9CA6CBA5D30
      21:08:17.0798 0804 tssecsrv ( LockedFile.Multi.Generic ) - warning
      21:08:17.0798 0804 tssecsrv - detected LockedFile.Multi.Generic (1)
      21:08:17.0829 0804 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
      21:08:17.0829 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\tsusbflt.sys. md5: D11C783E3EF9A3C52C0EBE83CC5000E9
      21:08:17.0829 0804 TsUsbFlt ( LockedFile.Multi.Generic ) - warning
      21:08:17.0829 0804 TsUsbFlt - detected LockedFile.Multi.Generic (1)
      21:08:17.0845 0804 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
      21:08:17.0845 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\TsUsbGD.sys. md5: 9CC2CCAE8A84820EAECB886D477CBCB8
      21:08:17.0860 0804 TsUsbGD ( LockedFile.Multi.Generic ) - warning
      21:08:17.0860 0804 TsUsbGD - detected LockedFile.Multi.Generic (1)
      21:08:17.0891 0804 [ E1748D04AE40118B62BC18AC86032192 ] tsusbhub C:\Windows\system32\drivers\tsusbhub.sys
      21:08:17.0891 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\tsusbhub.sys. md5: E1748D04AE40118B62BC18AC86032192
      21:08:17.0891 0804 tsusbhub ( LockedFile.Multi.Generic ) - warning
      21:08:17.0891 0804 tsusbhub - detected LockedFile.Multi.Generic (1)
      21:08:17.0938 0804 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
      21:08:17.0938 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\tunnel.sys. md5: 3566A8DAAFA27AF944F5D705EAA64894
      21:08:17.0938 0804 tunnel ( LockedFile.Multi.Generic ) - warning
      21:08:17.0938 0804 tunnel - detected LockedFile.Multi.Generic (1)
      21:08:17.0969 0804 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
      21:08:17.0969 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\uagp35.sys. md5: B4DD609BD7E282BFC683CEC7EAAAAD67
      21:08:17.0969 0804 uagp35 ( LockedFile.Multi.Generic ) - warning
      21:08:17.0969 0804 uagp35 - detected LockedFile.Multi.Generic (1)
      21:08:18.0016 0804 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
      21:08:18.0016 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\udfs.sys. md5: FF4232A1A64012BAA1FD97C7B67DF593
      21:08:18.0016 0804 udfs ( LockedFile.Multi.Generic ) - warning
      21:08:18.0016 0804 udfs - detected LockedFile.Multi.Generic (1)
      21:08:18.0063 0804 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
      21:08:18.0094 0804 UI0Detect - ok
      21:08:18.0110 0804 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
      21:08:18.0110 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\uliagpkx.sys. md5: 4BFE1BC28391222894CBF1E7D0E42320
      21:08:18.0125 0804 uliagpkx ( LockedFile.Multi.Generic ) - warning
      21:08:18.0125 0804 uliagpkx - detected LockedFile.Multi.Generic (1)
      21:08:18.0157 0804 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
      21:08:18.0157 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\umbus.sys. md5: DC54A574663A895C8763AF0FA1FF7561
      21:08:18.0172 0804 umbus ( LockedFile.Multi.Generic ) - warning
      21:08:18.0172 0804 umbus - detected LockedFile.Multi.Generic (1)
      21:08:18.0203 0804 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
      21:08:18.0203 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\umpass.sys. md5: B2E8E8CB557B156DA5493BBDDCC1474D
      21:08:18.0203 0804 UmPass ( LockedFile.Multi.Generic ) - warning
      21:08:18.0203 0804 UmPass - detected LockedFile.Multi.Generic (1)
      21:08:18.0235 0804 [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService C:\Windows\System32\umrdp.dll
      21:08:18.0281 0804 UmRdpService - ok
      21:08:18.0344 0804 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
      21:08:18.0391 0804 upnphost - ok
      21:08:18.0437 0804 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\drivers\usbccgp.sys
      21:08:18.0437 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\usbccgp.sys. md5: 6F1A3157A1C89435352CEB543CDB359C
      21:08:18.0453 0804 usbccgp ( LockedFile.Multi.Generic ) - warning
      21:08:18.0453 0804 usbccgp - detected LockedFile.Multi.Generic (1)
      21:08:18.0484 0804 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
      21:08:18.0484 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\usbcir.sys. md5: AF0892A803FDDA7492F595368E3B68E7
      21:08:18.0484 0804 usbcir ( LockedFile.Multi.Generic ) - warning
      21:08:18.0484 0804 usbcir - detected LockedFile.Multi.Generic (1)
      21:08:18.0515 0804 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
      21:08:18.0515 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\usbehci.sys. md5: C025055FE7B87701EB042095DF1A2D7B
      21:08:18.0515 0804 usbehci ( LockedFile.Multi.Generic ) - warning
      21:08:18.0515 0804 usbehci - detected LockedFile.Multi.Generic (1)
      21:08:18.0562 0804 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
      21:08:18.0562 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\usbhub.sys. md5: 287C6C9410B111B68B52CA298F7B8C24
      21:08:18.0562 0804 usbhub ( LockedFile.Multi.Generic ) - warning
      21:08:18.0562 0804 usbhub - detected LockedFile.Multi.Generic (1)
      21:08:18.0578 0804 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
      21:08:18.0578 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\usbohci.sys. md5: 9840FC418B4CBD632D3D0A667A725C31
      21:08:18.0578 0804 usbohci ( LockedFile.Multi.Generic ) - warning
      21:08:18.0578 0804 usbohci - detected LockedFile.Multi.Generic (1)
      21:08:18.0609 0804 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\drivers\usbprint.sys
      21:08:18.0609 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\usbprint.sys. md5: 73188F58FB384E75C4063D29413CEE3D
      21:08:18.0609 0804 usbprint ( LockedFile.Multi.Generic ) - warning
      21:08:18.0609 0804 usbprint - detected LockedFile.Multi.Generic (1)
      21:08:18.0640 0804 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
      21:08:18.0640 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\USBSTOR.SYS. md5: FED648B01349A3C8395A5169DB5FB7D6
      21:08:18.0640 0804 USBSTOR ( LockedFile.Multi.Generic ) - warning
      21:08:18.0640 0804 USBSTOR - detected LockedFile.Multi.Generic (1)
      21:08:18.0656 0804 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
      21:08:18.0656 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\usbuhci.sys. md5: 62069A34518BCF9C1FD9E74B3F6DB7CD
      21:08:18.0656 0804 usbuhci ( LockedFile.Multi.Generic ) - warning
      21:08:18.0656 0804 usbuhci - detected LockedFile.Multi.Generic (1)
      21:08:18.0687 0804 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
      21:08:18.0734 0804 UxSms - ok
      21:08:18.0781 0804 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
      21:08:18.0796 0804 VaultSvc - ok
      21:08:18.0827 0804 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
      21:08:18.0827 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\vdrvroot.sys. md5: C5C876CCFC083FF3B128F933823E87BD
      21:08:18.0843 0804 vdrvroot ( LockedFile.Multi.Generic ) - warning
      21:08:18.0843 0804 vdrvroot - detected LockedFile.Multi.Generic (1)
      21:08:18.0890 0804 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
      21:08:18.0952 0804 vds - ok
      21:08:18.0999 0804 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
      21:08:18.0999 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\vgapnp.sys. md5: DA4DA3F5E02943C2DC8C6ED875DE68DD
      21:08:19.0030 0804 vga ( LockedFile.Multi.Generic ) - warning
      21:08:19.0030 0804 vga - detected LockedFile.Multi.Generic (1)
      21:08:19.0061 0804 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
      21:08:19.0061 0804 Suspicious file (NoAccess): C:\Windows\System32\drivers\vga.sys. md5: 53E92A310193CB3C03BEA963DE7D9CFC
      21:08:19.0077 0804 VgaSave ( LockedFile.Multi.Generic ) - warning
      21:08:19.0077 0804 VgaSave - detected LockedFile.Multi.Generic (1)
      21:08:19.0077 0804 VGPU - ok
      21:08:19.0108 0804 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
      21:08:19.0108 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\vhdmp.sys. md5: 2CE2DF28C83AEAF30084E1B1EB253CBB
      21:08:19.0108 0804 vhdmp ( LockedFile.Multi.Generic ) - warning
      21:08:19.0108 0804 vhdmp - detected LockedFile.Multi.Generic (1)
      21:08:19.0139 0804 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
      21:08:19.0139 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\viaide.sys. md5: E5689D93FFE4E5D66C0178761240DD54
      21:08:19.0139 0804 viaide ( LockedFile.Multi.Generic ) - warning
      21:08:19.0139 0804 viaide - detected LockedFile.Multi.Generic (1)
      21:08:19.0186 0804 [ 86EA3E79AE350FEA5331A1303054005F ] vmbus C:\Windows\system32\drivers\vmbus.sys
      21:08:19.0186 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\vmbus.sys. md5: 86EA3E79AE350FEA5331A1303054005F
      21:08:19.0186 0804 vmbus ( LockedFile.Multi.Generic ) - warning
      21:08:19.0186 0804 vmbus - detected LockedFile.Multi.Generic (1)
      21:08:19.0202 0804 [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
      21:08:19.0202 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\VMBusHID.sys. md5: 7DE90B48F210D29649380545DB45A187
      21:08:19.0217 0804 VMBusHID ( LockedFile.Multi.Generic ) - warning
      21:08:19.0217 0804 VMBusHID - detected LockedFile.Multi.Generic (1)
      21:08:19.0249 0804 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
      21:08:19.0249 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\volmgr.sys. md5: D2AAFD421940F640B407AEFAAEBD91B0
      21:08:19.0249 0804 volmgr ( LockedFile.Multi.Generic ) - warning
      21:08:19.0249 0804 volmgr - detected LockedFile.Multi.Generic (1)
      21:08:19.0280 0804 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
      21:08:19.0280 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\volmgrx.sys. md5: A255814907C89BE58B79EF2F189B843B
      21:08:19.0280 0804 volmgrx ( LockedFile.Multi.Generic ) - warning
      21:08:19.0280 0804 volmgrx - detected LockedFile.Multi.Generic (1)
      21:08:19.0311 0804 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
      21:08:19.0311 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\volsnap.sys. md5: 0D08D2F3B3FF84E433346669B5E0F639
      21:08:19.0311 0804 volsnap ( LockedFile.Multi.Generic ) - warning
      21:08:19.0311 0804 volsnap - detected LockedFile.Multi.Generic (1)
      21:08:19.0342 0804 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
      21:08:19.0342 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\vsmraid.sys. md5: 5E2016EA6EBACA03C04FEAC5F330D997
      21:08:19.0342 0804 vsmraid ( LockedFile.Multi.Generic ) - warning
      21:08:19.0342 0804 vsmraid - detected LockedFile.Multi.Generic (1)
      21:08:19.0405 0804 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
      21:08:19.0483 0804 VSS - ok
      21:08:19.0529 0804 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
      21:08:19.0529 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\vwifibus.sys. md5: 36D4720B72B5C5D9CB2B9C29E9DF67A1
      21:08:19.0545 0804 vwifibus ( LockedFile.Multi.Generic ) - warning
      21:08:19.0545 0804 vwifibus - detected LockedFile.Multi.Generic (1)
      21:08:19.0592 0804 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
      21:08:19.0592 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\vwififlt.sys. md5: 6A3D66263414FF0D6FA754C646612F3F
      21:08:19.0592 0804 vwififlt ( LockedFile.Multi.Generic ) - warning
      21:08:19.0592 0804 vwififlt - detected LockedFile.Multi.Generic (1)
      21:08:19.0639 0804 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
      21:08:19.0685 0804 W32Time - ok
      21:08:19.0717 0804 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\drivers\wacompen.sys
      21:08:19.0717 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\wacompen.sys. md5: 4E9440F4F152A7B944CB1663D3935A3E
      21:08:19.0748 0804 WacomPen ( LockedFile.Multi.Generic ) - warning
      21:08:19.0748 0804 WacomPen - detected LockedFile.Multi.Generic (1)
      21:08:19.0779 0804 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
      21:08:19.0779 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\wanarp.sys. md5: 356AFD78A6ED4457169241AC3965230C
      21:08:19.0779 0804 WANARP ( LockedFile.Multi.Generic ) - warning
      21:08:19.0779 0804 WANARP - detected LockedFile.Multi.Generic (1)
      21:08:19.0795 0804 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
      21:08:19.0795 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\wanarp.sys. md5: 356AFD78A6ED4457169241AC3965230C
      21:08:19.0795 0804 Wanarpv6 ( LockedFile.Multi.Generic ) - warning
      21:08:19.0795 0804 Wanarpv6 - detected LockedFile.Multi.Generic (1)
      21:08:19.0857 0804 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
      21:08:19.0904 0804 WatAdminSvc - ok
      21:08:19.0966 0804 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
      21:08:20.0044 0804 wbengine - ok
      21:08:20.0060 0804 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
      21:08:20.0091 0804 WbioSrvc - ok
      21:08:20.0138 0804 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
      21:08:20.0185 0804 wcncsvc - ok
      21:08:20.0216 0804 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
      21:08:20.0231 0804 WcsPlugInService - ok
      21:08:20.0278 0804 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\drivers\wd.sys
      21:08:20.0278 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\wd.sys. md5: 72889E16FF12BA0F235467D6091B17DC
      21:08:20.0278 0804 Wd ( LockedFile.Multi.Generic ) - warning
      21:08:20.0278 0804 Wd - detected LockedFile.Multi.Generic (1)
      21:08:20.0325 0804 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
      21:08:20.0325 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\Wdf01000.sys. md5: 441BD2D7B4F98134C3A4F9FA570FD250
      21:08:20.0325 0804 Wdf01000 ( LockedFile.Multi.Generic ) - warning
      21:08:20.0325 0804 Wdf01000 - detected LockedFile.Multi.Generic (1)
      21:08:20.0341 0804 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
      21:08:20.0450 0804 WdiServiceHost - ok
      21:08:20.0481 0804 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
      21:08:20.0497 0804 WdiSystemHost - ok
      21:08:20.0637 0804 [ F4A9476AA49B69D28BE439C64F96C714 ] Web Assistant Updater C:\Program Files\Web Assistant\ExtensionUpdaterService.exe
      21:08:20.0637 0804 Web Assistant Updater - ok
      21:08:20.0699 0804 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
      21:08:20.0746 0804 WebClient - ok
      21:08:20.0824 0804 [ 688399FF25A4012AF16DA2E5C3DAF050 ] WebOptimizer C:\Windows\system32\dmwu.exe
      21:08:20.0855 0804 WebOptimizer - ok
      21:08:20.0887 0804 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
      21:08:20.0949 0804 Wecsvc - ok
      21:08:21.0011 0804 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
      21:08:21.0043 0804 wercplsupport - ok
      21:08:21.0074 0804 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
      21:08:21.0121 0804 WerSvc - ok
      21:08:21.0167 0804 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
      21:08:21.0167 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\wfplwf.sys. md5: 611B23304BF067451A9FDEE01FBDD725
      21:08:21.0183 0804 WfpLwf ( LockedFile.Multi.Generic ) - warning
      21:08:21.0183 0804 WfpLwf - detected LockedFile.Multi.Generic (1)
      21:08:21.0214 0804 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
      21:08:21.0214 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\wimmount.sys. md5: 05ECAEC3E4529A7153B3136CEB49F0EC
      21:08:21.0230 0804 WIMMount ( LockedFile.Multi.Generic ) - warning
      21:08:21.0230 0804 WIMMount - detected LockedFile.Multi.Generic (1)
      21:08:21.0277 0804 WinDefend - ok
      21:08:21.0292 0804 WinHttpAutoProxySvc - ok
      21:08:21.0370 0804 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
      21:08:21.0417 0804 Winmgmt - ok
      21:08:21.0495 0804 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
      21:08:21.0557 0804 WinRM - ok
      21:08:21.0651 0804 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
      21:08:21.0729 0804 Wlansvc - ok
      21:08:21.0776 0804 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
      21:08:21.0776 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\wmiacpi.sys. md5: F6FF8944478594D0E414D3F048F0D778
      21:08:21.0791 0804 WmiAcpi ( LockedFile.Multi.Generic ) - warning
      21:08:21.0791 0804 WmiAcpi - detected LockedFile.Multi.Generic (1)
      21:08:21.0838 0804 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
      21:08:21.0869 0804 wmiApSrv - ok
      21:08:21.0916 0804 WMPNetworkSvc - ok
      21:08:21.0947 0804 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
      21:08:21.0979 0804 WPCSvc - ok
      21:08:22.0010 0804 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
      21:08:22.0025 0804 WPDBusEnum - ok
      21:08:22.0088 0804 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
      21:08:22.0088 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\ws2ifsl.sys. md5: 6BCC1D7D2FD2453957C5479A32364E52
      21:08:22.0103 0804 ws2ifsl ( LockedFile.Multi.Generic ) - warning
      21:08:22.0103 0804 ws2ifsl - detected LockedFile.Multi.Generic (1)
      21:08:22.0150 0804 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
      21:08:22.0213 0804 wscsvc - ok
      21:08:22.0228 0804 WSearch - ok
      21:08:22.0322 0804 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
      21:08:22.0400 0804 wuauserv - ok
      21:08:22.0431 0804 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
      21:08:22.0431 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\WudfPf.sys. md5: D3381DC54C34D79B22CEE0D65BA91B7C
      21:08:22.0447 0804 WudfPf ( LockedFile.Multi.Generic ) - warning
      21:08:22.0447 0804 WudfPf - detected LockedFile.Multi.Generic (1)
      21:08:22.0478 0804 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
      21:08:22.0478 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\WUDFRd.sys. md5: CF8D590BE3373029D57AF80914190682
      21:08:22.0478 0804 WUDFRd ( LockedFile.Multi.Generic ) - warning
      21:08:22.0478 0804 WUDFRd - detected LockedFile.Multi.Generic (1)
      21:08:22.0525 0804 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
      21:08:22.0556 0804 wudfsvc - ok
      21:08:22.0587 0804 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
      21:08:22.0618 0804 WwanSvc - ok
      21:08:22.0649 0804 ================ Scan global ===============================
      21:08:22.0681 0804 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
      21:08:22.0696 0804 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
      21:08:22.0727 0804 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
      21:08:22.0743 0804 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
      21:08:22.0759 0804 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
      21:08:22.0759 0804 [Global] - ok
      21:08:22.0774 0804 ================ Scan MBR ==================================
      21:08:22.0790 0804 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
      21:08:23.0211 0804 \Device\Harddisk0\DR0 - ok
      21:08:23.0211 0804 ================ Scan VBR ==================================
      21:08:23.0227 0804 [ 906B37E2E43D06C1DC140CAEA42CC0DF ] \Device\Harddisk0\DR0\Partition1
      21:08:23.0227 0804 \Device\Harddisk0\DR0\Partition1 - ok
      21:08:23.0227 0804 ============================================================
      21:08:23.0227 0804 Scan finished
      21:08:23.0227 0804 ============================================================
      21:08:23.0242 0884 Detected object count: 147
      21:08:23.0242 0884 Actual detected object count: 147
      21:09:00.0854 0884 C:\Windows\System32\Drivers\93a7feacee08d566.sys - copied to quarantine
      21:09:00.0869 0884 HKLM\SYSTEM\ControlSet001\services\93a7feacee08d566 - will be deleted on reboot
      21:09:00.0932 0884 HKLM\SYSTEM\ControlSet002\services\93a7feacee08d566 - will be deleted on reboot
      21:09:01.0275 0884 C:\Windows\System32\Drivers\93a7feacee08d566.sys - will be deleted on reboot
      21:09:01.0275 0884 93a7feacee08d566 ( Rootkit.Win32.Necurs.gen ) - User select action: Delete
      21:09:01.0275 0884 D_Link_DWA-125 ( UnsignedFile.Multi.Generic ) - skipped by user
      21:09:01.0275 0884 D_Link_DWA-125 ( UnsignedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0291 0884 D_Link_DWA-125_WPS ( UnsignedFile.Multi.Generic ) - skipped by user
      21:09:01.0291 0884 D_Link_DWA-125_WPS ( UnsignedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0291 0884 EpsonBidirectionalService ( UnsignedFile.Multi.Generic ) - skipped by user
      21:09:01.0291 0884 EpsonBidirectionalService ( UnsignedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0291 0884 mpsdrv ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0291 0884 mpsdrv ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0291 0884 MRxDAV ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0291 0884 MRxDAV ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0291 0884 mrxsmb ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0291 0884 mrxsmb ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0291 0884 mrxsmb10 ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0291 0884 mrxsmb10 ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0306 0884 mrxsmb20 ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0306 0884 mrxsmb20 ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0306 0884 msahci ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0306 0884 msahci ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0306 0884 msdsm ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0306 0884 msdsm ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0306 0884 Msfs ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0306 0884 Msfs ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0306 0884 mshidkmdf ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0306 0884 mshidkmdf ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0306 0884 msisadrv ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0306 0884 msisadrv ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0306 0884 MSKSSRV ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0306 0884 MSKSSRV ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0322 0884 MSPCLOCK ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0322 0884 MSPCLOCK ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0322 0884 MSPQM ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0322 0884 MSPQM ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0322 0884 MsRPC ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0322 0884 MsRPC ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0322 0884 mssmbios ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0322 0884 mssmbios ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0322 0884 MSTEE ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0322 0884 MSTEE ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0322 0884 MTConfig ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0322 0884 MTConfig ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0337 0884 Mup ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0337 0884 Mup ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0337 0884 NativeWifiP ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0337 0884 NativeWifiP ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0337 0884 NdisCap ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0337 0884 NdisCap ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0337 0884 NdisTapi ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0337 0884 NdisTapi ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0337 0884 Ndisuio ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0337 0884 Ndisuio ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0353 0884 NdisWan ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0353 0884 NdisWan ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0353 0884 NDProxy ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0353 0884 NDProxy ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0353 0884 NetBIOS ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0353 0884 NetBIOS ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0353 0884 NetBT ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0353 0884 NetBT ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0353 0884 netr28ux ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0353 0884 netr28ux ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0353 0884 nfrd960 ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0353 0884 nfrd960 ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0353 0884 Npfs ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0353 0884 Npfs ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0369 0884 nsiproxy ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0369 0884 nsiproxy ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0369 0884 Ntfs ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0369 0884 Ntfs ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0369 0884 Null ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0369 0884 Null ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0369 0884 nvlddmkm ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0369 0884 nvlddmkm ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0369 0884 nvraid ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0369 0884 nvraid ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0369 0884 nvstor ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0369 0884 nvstor ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0384 0884 nv_agp ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0384 0884 nv_agp ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0384 0884 ohci1394 ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0384 0884 ohci1394 ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0384 0884 Parport ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0384 0884 Parport ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0384 0884 partmgr ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0384 0884 partmgr ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0384 0884 pci ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0384 0884 pci ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0384 0884 pciide ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0384 0884 pciide ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0400 0884 pcmcia ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0400 0884 pcmcia ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0400 0884 pcw ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0400 0884 pcw ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0400 0884 PEAUTH ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0400 0884 PEAUTH ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0400 0884 PptpMiniport ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0400 0884 PptpMiniport ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0400 0884 Processor ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0400 0884 Processor ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0415 0884 Psched ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0415 0884 Psched ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0415 0884 ql2300 ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0415 0884 ql2300 ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0415 0884 ql40xx ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0415 0884 ql40xx ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0415 0884 QWAVEdrv ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0415 0884 QWAVEdrv ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0415 0884 RasAcd ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0415 0884 RasAcd ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0415 0884 RasAgileVpn ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0415 0884 RasAgileVpn ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0431 0884 Rasl2tp ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0431 0884 Rasl2tp ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0431 0884 RasPppoe ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0431 0884 RasPppoe ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0431 0884 RasSstp ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0431 0884 RasSstp ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0431 0884 rdbss ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0431 0884 rdbss ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0431 0884 rdpbus ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0431 0884 rdpbus ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0431 0884 RDPCDD ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0431 0884 RDPCDD ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0447 0884 RDPDR ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0447 0884 RDPDR ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0447 0884 RDPENCDD ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0447 0884 RDPENCDD ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0447 0884 RDPREFMP ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0447 0884 RDPREFMP ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0447 0884 RdpVideoMiniport ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0447 0884 RdpVideoMiniport ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0447 0884 RDPWD ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0447 0884 RDPWD ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0447 0884 rdyboost ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0447 0884 rdyboost ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0447 0884 rspndr ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0447 0884 rspndr ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0462 0884 RTL8167 ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0462 0884 RTL8167 ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0462 0884 s3cap ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0462 0884 s3cap ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0462 0884 sbp2port ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0462 0884 sbp2port ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0462 0884 scfilter ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0462 0884 scfilter ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0462 0884 secdrv ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0478 0884 secdrv ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0478 0884 Serenum ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0478 0884 Serenum ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0478 0884 Serial ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0478 0884 Serial ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0478 0884 sermouse ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0478 0884 sermouse ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0478 0884 sffdisk ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0478 0884 sffdisk ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0478 0884 sffp_mmc ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0478 0884 sffp_mmc ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0478 0884 sffp_sd ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0478 0884 sffp_sd ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0493 0884 sfloppy ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0493 0884 sfloppy ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0493 0884 SiSRaid2 ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0493 0884 SiSRaid2 ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0493 0884 SiSRaid4 ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0493 0884 SiSRaid4 ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0493 0884 Smb ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0493 0884 Smb ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0493 0884 spldr ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0493 0884 spldr ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0493 0884 sptd ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0493 0884 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0509 0884 srv ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0509 0884 srv ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0509 0884 srv2 ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0509 0884 srv2 ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0509 0884 srvnet ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0509 0884 srvnet ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0509 0884 ssadbus ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0509 0884 ssadbus ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0525 0884 StarWindServiceAE ( UnsignedFile.Multi.Generic ) - skipped by user
      21:09:01.0525 0884 StarWindServiceAE ( UnsignedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0525 0884 stexstor ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0525 0884 stexstor ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0525 0884 storflt ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0525 0884 storflt ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0525 0884 storvsc ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0525 0884 storvsc ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0525 0884 swenum ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0525 0884 swenum ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0540 0884 Synth3dVsc ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0540 0884 Synth3dVsc ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0540 0884 syshost32 ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0540 0884 syshost32 ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0540 0884 Tcpip ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0540 0884 Tcpip ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0540 0884 TCPIP6 ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0540 0884 TCPIP6 ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0540 0884 tcpipreg ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0540 0884 tcpipreg ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0540 0884 TDPIPE ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0540 0884 TDPIPE ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0556 0884 TDTCP ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0556 0884 TDTCP ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0556 0884 tdx ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0556 0884 tdx ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0556 0884 TermDD ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0556 0884 TermDD ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0556 0884 terminpt ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0556 0884 terminpt ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0556 0884 tssecsrv ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0556 0884 tssecsrv ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0556 0884 TsUsbFlt ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0556 0884 TsUsbFlt ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0556 0884 TsUsbGD ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0556 0884 TsUsbGD ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0571 0884 tsusbhub ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0571 0884 tsusbhub ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0571 0884 tunnel ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0571 0884 tunnel ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0571 0884 uagp35 ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0571 0884 uagp35 ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0571 0884 udfs ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0571 0884 udfs ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0571 0884 uliagpkx ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0571 0884 uliagpkx ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0571 0884 umbus ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0571 0884 umbus ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0571 0884 UmPass ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0571 0884 UmPass ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0587 0884 usbccgp ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0587 0884 usbccgp ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0587 0884 usbcir ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0587 0884 usbcir ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0587 0884 usbehci ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0587 0884 usbehci ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0587 0884 usbhub ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0587 0884 usbhub ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0587 0884 usbohci ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0603 0884 usbohci ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0603 0884 usbprint ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0603 0884 usbprint ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0603 0884 USBSTOR ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0603 0884 USBSTOR ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0603 0884 usbuhci ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0603 0884 usbuhci ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0603 0884 vdrvroot ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0603 0884 vdrvroot ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0603 0884 vga ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0603 0884 vga ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0603 0884 VgaSave ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0603 0884 VgaSave ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0618 0884 vhdmp ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0618 0884 vhdmp ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0618 0884 viaide ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0618 0884 viaide ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0634 0884 vmbus ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0634 0884 vmbus ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0634 0884 VMBusHID ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0634 0884 VMBusHID ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0634 0884 volmgr ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0634 0884 volmgr ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0634 0884 volmgrx ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0634 0884 volmgrx ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0634 0884 volsnap ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0634 0884 volsnap ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0649 0884 vsmraid ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0649 0884 vsmraid ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0649 0884 vwifibus ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0649 0884 vwifibus ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0649 0884 vwififlt ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0649 0884 vwififlt ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0649 0884 WacomPen ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0649 0884 WacomPen ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0649 0884 WANARP ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0649 0884 WANARP ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0665 0884 Wanarpv6 ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0665 0884 Wanarpv6 ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0665 0884 Wd ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0665 0884 Wd ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0665 0884 Wdf01000 ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0665 0884 Wdf01000 ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0665 0884 WfpLwf ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0665 0884 WfpLwf ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0665 0884 WIMMount ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0665 0884 WIMMount ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0665 0884 WmiAcpi ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0665 0884 WmiAcpi ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0681 0884 ws2ifsl ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0681 0884 ws2ifsl ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0681 0884 WudfPf ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0681 0884 WudfPf ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0681 0884 WUDFRd ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0681 0884 WUDFRd ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:23.0879 1432 Deinitialize success

    3. #13
      Usuario Avatar de frarina
      Registrado
      nov 2012
      Ubicación
      españa
      Mensajes
      16

      Re: Windows Update: falta el servicio de transferencia inteligente

      no se si lo he hecho bien la verdad

    4. #14
      Ex-Colaborador Avatar de Superlucas
      Registrado
      sep 2011
      Ubicación
      Argentina
      Mensajes
      15.747

      Re: Windows Update: falta el servicio de transferencia inteligente

      Hola,

      si, lo hiciste bien

      Hace esto ahora:

      1. Descarga e instala los siguientes programas


      Ejecuta los programas de la siguiente manera:

      1. Abrí el programa Malwarebytes y anda a la pestaña actualizar y actualizas a la ultima versión y la ultima base de datos
      2. Anda a la pestaña Escáner y realizas un Análisis completo. seleccionando todos los discos conectados a tu pc
      3. Una vez finalizado, pulsa sobre "Mostrar los Resultados " y "Eliminar Seleccionadas" como se demuestra en esta imagen
      4. En el caso de que te pida reiniciar,reinicia.
      5. Peganos el reporte del escaneo del malwarebytes despues de reiniciar,esta en la pestaña Registros.
      1. Ejecutar CCleaner usando primero su opción de "Limpiador" para borrar cookies y temporales de Internet
      2. Usa su opción de "Registro" para limpiar todo el registro de Windows creando antes una copia de seguridad
      1. Realiza un análisis completo con Eset Nod32 online
      2. Lo abris
      3. Marcas las casillas de Eliminar las amenazas detectadas y analizar archivos.
      4. Haces clic en Configuración adicional y ahi marcas las casillas:

        Analizar en busca de aplicaciones potencialmente indeseables.
      5. Analizar en busca de aplicaciones potencialmente peligrosas.
      6. Activar la tecnolgía Anti-Stealth.
      7. Pulsas en Iniciar para que empiece a descargar la base firmas de virus y posteriormente empiece a analizar tu sistema.
      8. Cuando acabe haz clic en Finalizar
      9. Localiza y pega el reporte ubicado en C:\Archivos de programa\ESET\ESET Online Scanner\log
      Vas a correr o vas a pelear?- Muahy Thai

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    5. #15
      Usuario Avatar de frarina
      Registrado
      nov 2012
      Ubicación
      españa
      Mensajes
      16

      Re: Windows Update: falta el servicio de transferencia inteligente

      oh pense que ya lo habia mandado, algo he hecho mal , espera por fa

    6. #16
      Usuario Avatar de frarina
      Registrado
      nov 2012
      Ubicación
      españa
      Mensajes
      16

      Re: Windows Update: falta el servicio de transferencia inteligente

      21:07:36.0614 1440 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
      21:07:36.0645 1440 ============================================================
      21:07:36.0645 1440 Current date / time: 2012/11/23 21:07:36.0645
      21:07:36.0645 1440 SystemInfo:
      21:07:36.0645 1440
      21:07:36.0645 1440 OS Version: 6.1.7601 ServicePack: 1.0
      21:07:36.0645 1440 Product type: Workstation
      21:07:36.0645 1440 ComputerName: FRARINA-PC
      21:07:36.0645 1440 UserName: frarina
      21:07:36.0645 1440 Windows directory: C:\Windows
      21:07:36.0645 1440 System windows directory: C:\Windows
      21:07:36.0645 1440 Running under WOW64
      21:07:36.0645 1440 Processor architecture: Intel x64
      21:07:36.0645 1440 Number of processors: 2
      21:07:36.0645 1440 Page size: 0x1000
      21:07:36.0645 1440 Boot type: Safe boot with network
      21:07:36.0645 1440 ============================================================
      21:07:40.0249 1440 !crdlk
      21:07:40.0249 1440 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'A'
      21:07:40.0280 1440 ============================================================
      21:07:40.0280 1440 \Device\Harddisk0\DR0:
      21:07:40.0280 1440 MBR partitions:
      21:07:40.0280 1440 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1801F5F, BlocksNum 0x72F04651
      21:07:40.0280 1440 ============================================================
      21:07:40.0327 1440 C: <-> \Device\Harddisk0\DR0\Partition1
      21:07:40.0327 1440 ============================================================
      21:07:40.0327 1440 Initialize success
      21:07:40.0327 1440 ============================================================
      21:07:53.0587 0804 ============================================================
      21:07:53.0587 0804 Scan started
      21:07:53.0587 0804 Mode: Manual; SigCheck; TDLFS;
      21:07:53.0587 0804 ============================================================
      21:07:54.0117 0804 ================ Scan system memory ========================
      21:07:54.0117 0804 System memory - ok
      21:07:54.0117 0804 ================ Scan services =============================
      21:07:54.0257 0804 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
      21:07:54.0523 0804 1394ohci - ok
      21:07:54.0585 0804 Suspicious service (NoAccess): 93a7feacee08d566
      21:07:54.0601 0804 [ 059F730A9AE2CCA1399A9A5527BE2FBC ] 93a7feacee08d566 C:\Windows\System32\Drivers\93a7feacee08d566.sys
      21:07:54.0601 0804 Suspicious file (NoAccess): C:\Windows\System32\Drivers\93a7feacee08d566.sys. md5: 059F730A9AE2CCA1399A9A5527BE2FBC
      21:07:54.0772 0804 93a7feacee08d566 ( Rootkit.Win32.Necurs.gen ) - infected
      21:07:54.0772 0804 93a7feacee08d566 - detected Rootkit.Win32.Necurs.gen (0)
      21:07:54.0850 0804 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
      21:07:54.0866 0804 ACPI - ok
      21:07:54.0897 0804 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
      21:07:54.0975 0804 AcpiPmi - ok
      21:07:55.0069 0804 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
      21:07:55.0084 0804 AdobeARMservice - ok
      21:07:55.0131 0804 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
      21:07:55.0147 0804 adp94xx - ok
      21:07:55.0178 0804 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys
      21:07:55.0193 0804 adpahci - ok
      21:07:55.0225 0804 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
      21:07:55.0240 0804 adpu320 - ok
      21:07:55.0271 0804 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
      21:07:55.0396 0804 AeLookupSvc - ok
      21:07:55.0459 0804 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
      21:07:55.0521 0804 AFD - ok
      21:07:55.0552 0804 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
      21:07:55.0568 0804 agp440 - ok
      21:07:55.0583 0804 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
      21:07:55.0646 0804 ALG - ok
      21:07:55.0677 0804 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
      21:07:55.0677 0804 aliide - ok
      21:07:55.0693 0804 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
      21:07:55.0708 0804 amdide - ok
      21:07:55.0739 0804 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
      21:07:55.0771 0804 AmdK8 - ok
      21:07:55.0802 0804 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
      21:07:55.0833 0804 AmdPPM - ok
      21:07:55.0880 0804 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
      21:07:55.0880 0804 amdsata - ok
      21:07:55.0927 0804 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
      21:07:55.0942 0804 amdsbs - ok
      21:07:55.0958 0804 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
      21:07:55.0973 0804 amdxata - ok
      21:07:56.0005 0804 [ 4CCF421E6C4B2A4CBCE000715911F7CC ] anodlwf C:\Windows\system32\DRIVERS\anodlwfx.sys
      21:07:56.0067 0804 anodlwf - ok
      21:07:56.0114 0804 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
      21:07:56.0223 0804 AppID - ok
      21:07:56.0285 0804 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
      21:07:56.0332 0804 AppIDSvc - ok
      21:07:56.0395 0804 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
      21:07:56.0426 0804 Appinfo - ok
      21:07:56.0457 0804 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll
      21:07:56.0488 0804 AppMgmt - ok
      21:07:56.0519 0804 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys
      21:07:56.0535 0804 arc - ok
      21:07:56.0551 0804 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys
      21:07:56.0566 0804 arcsas - ok
      21:07:56.0597 0804 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
      21:07:56.0660 0804 AsyncMac - ok
      21:07:56.0691 0804 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
      21:07:56.0707 0804 atapi - ok
      21:07:56.0753 0804 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
      21:07:56.0847 0804 AudioEndpointBuilder - ok
      21:07:56.0863 0804 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
      21:07:56.0894 0804 AudioSrv - ok
      21:07:56.0925 0804 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
      21:07:57.0019 0804 AxInstSV - ok
      21:07:57.0065 0804 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
      21:07:57.0097 0804 b06bdrv - ok
      21:07:57.0128 0804 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
      21:07:57.0159 0804 b57nd60a - ok
      21:07:57.0221 0804 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
      21:07:57.0268 0804 BDESVC - ok
      21:07:57.0284 0804 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
      21:07:57.0346 0804 Beep - ok
      21:07:57.0409 0804 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
      21:07:57.0487 0804 BFE - ok
      21:07:57.0549 0804 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
      21:07:57.0627 0804 BITS - ok
      21:07:57.0674 0804 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
      21:07:57.0705 0804 blbdrive - ok
      21:07:57.0752 0804 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
      21:07:57.0799 0804 bowser - ok
      21:07:57.0830 0804 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
      21:07:57.0861 0804 BrFiltLo - ok
      21:07:57.0877 0804 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
      21:07:57.0892 0804 BrFiltUp - ok
      21:07:57.0955 0804 [ 8EF0D5C41EC907751B8429162B1239ED ] Browser C:\Windows\System32\browser.dll
      21:07:58.0001 0804 Browser - ok
      21:07:58.0079 0804 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
      21:07:58.0126 0804 Brserid - ok
      21:07:58.0157 0804 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
      21:07:58.0173 0804 BrSerWdm - ok
      21:07:58.0204 0804 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
      21:07:58.0235 0804 BrUsbMdm - ok
      21:07:58.0251 0804 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
      21:07:58.0282 0804 BrUsbSer - ok
      21:07:58.0313 0804 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
      21:07:58.0329 0804 BTHMODEM - ok
      21:07:58.0376 0804 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
      21:07:58.0423 0804 bthserv - ok
      21:07:58.0454 0804 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
      21:07:58.0485 0804 cdfs - ok
      21:07:58.0516 0804 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
      21:07:58.0547 0804 cdrom - ok
      21:07:58.0579 0804 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
      21:07:58.0625 0804 CertPropSvc - ok
      21:07:58.0657 0804 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\drivers\circlass.sys
      21:07:58.0703 0804 circlass - ok
      21:07:58.0750 0804 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys

    7. #17
      Usuario Avatar de frarina
      Registrado
      nov 2012
      Ubicación
      españa
      Mensajes
      16

      Re: Windows Update: falta el servicio de transferencia inteligente

      21:07:58.0766 0804 CLFS - ok
      21:07:58.0844 0804 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
      21:07:58.0875 0804 clr_optimization_v2.0.50727_32 - ok
      21:07:58.0906 0804 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
      21:07:58.0922 0804 clr_optimization_v2.0.50727_64 - ok
      21:07:59.0000 0804 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
      21:07:59.0078 0804 clr_optimization_v4.0.30319_32 - ok
      21:07:59.0125 0804 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
      21:07:59.0156 0804 clr_optimization_v4.0.30319_64 - ok
      21:07:59.0187 0804 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\drivers\CmBatt.sys
      21:07:59.0218 0804 CmBatt - ok
      21:07:59.0234 0804 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
      21:07:59.0249 0804 cmdide - ok
      21:07:59.0312 0804 [ C4943B6C962E4B82197542447AD599F4 ] CNG C:\Windows\system32\Drivers\cng.sys
      21:07:59.0343 0804 CNG - ok
      21:07:59.0390 0804 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
      21:07:59.0405 0804 Compbatt - ok
      21:07:59.0452 0804 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
      21:07:59.0483 0804 CompositeBus - ok
      21:07:59.0499 0804 COMSysApp - ok
      21:07:59.0546 0804 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
      21:07:59.0546 0804 crcdisk - ok
      21:07:59.0593 0804 [ 15597883FBE9B056F276ADA3AD87D9AF ] CryptSvc C:\Windows\system32\cryptsvc.dll
      21:07:59.0624 0804 CryptSvc - ok
      21:07:59.0686 0804 [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC C:\Windows\system32\drivers\csc.sys
      21:07:59.0749 0804 CSC - ok
      21:07:59.0795 0804 [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService C:\Windows\System32\cscsvc.dll
      21:07:59.0858 0804 CscService - ok
      21:07:59.0920 0804 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
      21:07:59.0967 0804 DcomLaunch - ok
      21:07:59.0998 0804 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
      21:08:00.0061 0804 defragsvc - ok
      21:08:00.0092 0804 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
      21:08:00.0123 0804 DfsC - ok
      21:08:00.0185 0804 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
      21:08:00.0232 0804 Dhcp - ok
      21:08:00.0263 0804 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
      21:08:00.0310 0804 discache - ok
      21:08:00.0357 0804 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\drivers\disk.sys
      21:08:00.0373 0804 Disk - ok
      21:08:00.0404 0804 [ 5DB085A8A6600BE6401F2B24EECB5415 ] dmvsc C:\Windows\system32\drivers\dmvsc.sys
      21:08:00.0466 0804 dmvsc - ok
      21:08:00.0497 0804 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
      21:08:00.0544 0804 Dnscache - ok
      21:08:00.0591 0804 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
      21:08:00.0638 0804 dot3svc - ok
      21:08:00.0669 0804 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
      21:08:00.0716 0804 DPS - ok
      21:08:00.0763 0804 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
      21:08:00.0794 0804 drmkaud - ok
      21:08:00.0856 0804 [ 46571ED73AE84469DCA53081D33CF3C8 ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys
      21:08:00.0872 0804 dtsoftbus01 - ok
      21:08:00.0934 0804 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
      21:08:00.0950 0804 DXGKrnl - ok
      21:08:01.0043 0804 [ F195FBC375342BD25C936982245A8FB0 ] D_Link_DWA-125 C:\Program Files (x86)\D-Link\DWA-125 revA\ANIWZCSdS.exe
      21:08:01.0043 0804 D_Link_DWA-125 ( UnsignedFile.Multi.Generic ) - warning
      21:08:01.0043 0804 D_Link_DWA-125 - detected UnsignedFile.Multi.Generic (1)
      21:08:01.0075 0804 [ 4DB0907D750E0810309F8D8FA36625A6 ] D_Link_DWA-125_WPS C:\Program Files (x86)\D-Link\DWA-125 revA\ANIWConnService.exe
      21:08:01.0075 0804 D_Link_DWA-125_WPS ( UnsignedFile.Multi.Generic ) - warning
      21:08:01.0075 0804 D_Link_DWA-125_WPS - detected UnsignedFile.Multi.Generic (1)
      21:08:01.0121 0804 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
      21:08:01.0184 0804 EapHost - ok
      21:08:01.0277 0804 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\drivers\evbda.sys
      21:08:01.0371 0804 ebdrv - ok
      21:08:01.0418 0804 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
      21:08:01.0465 0804 EFS - ok
      21:08:01.0511 0804 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
      21:08:01.0574 0804 ehRecvr - ok
      21:08:01.0605 0804 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
      21:08:01.0636 0804 ehSched - ok
      21:08:01.0683 0804 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys
      21:08:01.0699 0804 elxstor - ok
      21:08:01.0761 0804 [ ABDD5AD016AFFD34AD40E944CE94BF59 ] EpsonBidirectionalService C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSVC.exe
      21:08:01.0777 0804 EpsonBidirectionalService ( UnsignedFile.Multi.Generic ) - warning
      21:08:01.0777 0804 EpsonBidirectionalService - detected UnsignedFile.Multi.Generic (1)
      21:08:01.0792 0804 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
      21:08:01.0808 0804 ErrDev - ok
      21:08:01.0886 0804 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
      21:08:01.0933 0804 EventSystem - ok
      21:08:01.0964 0804 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
      21:08:02.0026 0804 exfat - ok
      21:08:02.0089 0804 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
      21:08:02.0135 0804 fastfat - ok
      21:08:02.0167 0804 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
      21:08:02.0213 0804 Fax - ok
      21:08:02.0245 0804 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\drivers\fdc.sys
      21:08:02.0245 0804 fdc - ok
      21:08:02.0276 0804 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
      21:08:02.0323 0804 fdPHost - ok
      21:08:02.0354 0804 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
      21:08:02.0385 0804 FDResPub - ok
      21:08:02.0432 0804 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
      21:08:02.0447 0804 FileInfo - ok
      21:08:02.0479 0804 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
      21:08:02.0510 0804 Filetrace - ok
      21:08:02.0541 0804 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
      21:08:02.0557 0804 flpydisk - ok
      21:08:02.0588 0804 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
      21:08:02.0603 0804 FltMgr - ok
      21:08:02.0650 0804 [ B4447F606BB19FD8AD0BAFB59B90F5D9 ] FontCache C:\Windows\system32\FntCache.dll
      21:08:02.0728 0804 FontCache - ok
      21:08:02.0791 0804 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
      21:08:02.0791 0804 FontCache3.0.0.0 - ok
      21:08:02.0837 0804 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
      21:08:02.0853 0804 FsDepends - ok
      21:08:02.0884 0804 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
      21:08:02.0900 0804 Fs_Rec - ok
      21:08:02.0931 0804 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
      21:08:02.0947 0804 fvevol - ok
      21:08:02.0962 0804 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
      21:08:02.0978 0804 gagp30kx - ok
      21:08:03.0025 0804 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
      21:08:03.0087 0804 gpsvc - ok
      21:08:03.0165 0804 [ C1B577B2169900F4CF7190C39F085794 ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
      21:08:03.0181 0804 gusvc - ok
      21:08:03.0212 0804 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
      21:08:03.0274 0804 hcw85cir - ok
      21:08:03.0352 0804 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
      21:08:03.0383 0804 HdAudAddService - ok
      21:08:03.0430 0804 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
      21:08:03.0461 0804 HDAudBus - ok
      21:08:03.0493 0804 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
      21:08:03.0508 0804 HidBatt - ok
      21:08:03.0539 0804 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\drivers\hidbth.sys
      21:08:03.0571 0804 HidBth - ok
      21:08:03.0617 0804 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\drivers\hidir.sys
      21:08:03.0664 0804 HidIr - ok
      21:08:03.0695 0804 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
      21:08:03.0742 0804 hidserv - ok
      21:08:03.0805 0804 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\drivers\hidusb.sys
      21:08:03.0805 0804 HidUsb - ok
      21:08:03.0836 0804 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
      21:08:03.0898 0804 hkmsvc - ok
      21:08:03.0929 0804 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
      21:08:03.0992 0804 HomeGroupListener - ok
      21:08:04.0023 0804 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
      21:08:04.0054 0804 HomeGroupProvider - ok
      21:08:04.0101 0804 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
      21:08:04.0101 0804 HpSAMD - ok
      21:08:04.0148 0804 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
      21:08:04.0210 0804 HTTP - ok
      21:08:04.0241 0804 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
      21:08:04.0241 0804 hwpolicy - ok
      21:08:04.0273 0804 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
      21:08:04.0288 0804 i8042prt - ok
      21:08:04.0319 0804 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
      21:08:04.0335 0804 iaStorV - ok
      21:08:04.0382 0804 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
      21:08:04.0429 0804 idsvc - ok
      21:08:04.0460 0804 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\drivers\iirsp.sys
      21:08:04.0475 0804 iirsp - ok
      21:08:04.0522 0804 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
      21:08:04.0600 0804 IKEEXT - ok
      21:08:04.0647 0804 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
      21:08:04.0663 0804 intelide - ok
      21:08:04.0694 0804 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
      21:08:04.0725 0804 intelppm - ok
      21:08:04.0787 0804 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
      21:08:04.0819 0804 IPBusEnum - ok
      21:08:04.0834 0804 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
      21:08:04.0881 0804 IpFilterDriver - ok
      21:08:04.0975 0804 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
      21:08:05.0037 0804 iphlpsvc - ok
      21:08:05.0068 0804 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
      21:08:05.0084 0804 IPMIDRV - ok
      21:08:05.0115 0804 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
      21:08:05.0162 0804 IPNAT - ok
      21:08:05.0209 0804 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
      21:08:05.0240 0804 IRENUM - ok
      21:08:05.0287 0804 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
      21:08:05.0302 0804 isapnp - ok
      21:08:05.0333 0804 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
      21:08:05.0349 0804 iScsiPrt - ok
      21:08:05.0380 0804 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
      21:08:05.0380 0804 kbdclass - ok
      21:08:05.0411 0804 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
      21:08:05.0443 0804 kbdhid - ok
      21:08:05.0474 0804 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
      21:08:05.0474 0804 KeyIso - ok
      21:08:05.0489 0804 [ DA1E991A61CFDD755A589E206B97644B ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
      21:08:05.0505 0804 KSecDD - ok
      21:08:05.0536 0804 [ 7E33198D956943A4F11A5474C1E9106F ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
      21:08:05.0552 0804 KSecPkg - ok
      21:08:05.0567 0804 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
      21:08:05.0630 0804 ksthunk - ok
      21:08:05.0692 0804 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
      21:08:05.0739 0804 KtmRm - ok
      21:08:05.0786 0804 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
      21:08:05.0833 0804 LanmanServer - ok
      21:08:05.0879 0804 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
      21:08:05.0926 0804 LanmanWorkstation - ok
      21:08:05.0973 0804 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
      21:08:06.0020 0804 lltdio - ok
      21:08:06.0067 0804 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
      21:08:06.0113 0804 lltdsvc - ok
      21:08:06.0129 0804 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
      21:08:06.0176 0804 lmhosts - ok
      21:08:06.0223 0804 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
      21:08:06.0238 0804 LSI_FC - ok
      21:08:06.0254 0804 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
      21:08:06.0269 0804 LSI_SAS - ok
      21:08:06.0301 0804 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
      21:08:06.0301 0804 LSI_SAS2 - ok
      21:08:06.0332 0804 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
      21:08:06.0347 0804 LSI_SCSI - ok
      21:08:06.0379 0804 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
      21:08:06.0441 0804 luafv - ok
      21:08:06.0472 0804 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
      21:08:06.0488 0804 Mcx2Svc - ok
      21:08:06.0503 0804 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\drivers\megasas.sys
      21:08:06.0503 0804 megasas - ok
      21:08:06.0535 0804 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
      21:08:06.0550 0804 MegaSR - ok
      21:08:06.0644 0804 [ 033B947AF4A997820E86FCB070B1F450 ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
      21:08:06.0659 0804 Microsoft Office Groove Audit Service - ok
      21:08:06.0691 0804 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
      21:08:06.0737 0804 MMCSS - ok
      21:08:06.0784 0804 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
      21:08:06.0831 0804 Modem - ok
      21:08:06.0862 0804 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
      21:08:06.0878 0804 monitor - ok
      21:08:06.0925 0804 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
      21:08:06.0940 0804 mouclass - ok
      21:08:06.0956 0804 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\drivers\mouhid.sys
      21:08:06.0971 0804 mouhid - ok
      21:08:07.0049 0804 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
      21:08:07.0049 0804 mountmgr - ok
      21:08:07.0081 0804 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
      21:08:07.0096 0804 mpio - ok
      21:08:07.0112 0804 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
      21:08:07.0112 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\mpsdrv.sys. md5: 6C38C9E45AE0EA2FA5E551F2ED5E978F
      21:08:07.0112 0804 mpsdrv ( LockedFile.Multi.Generic ) - warning
      21:08:07.0112 0804 mpsdrv - detected LockedFile.Multi.Generic (1)
      21:08:07.0205 0804 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
      21:08:07.0268 0804 MpsSvc - ok
      21:08:07.0299 0804 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
      21:08:07.0299 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\mrxdav.sys. md5: DC722758B8261E1ABAFD31A3C0A66380
      21:08:07.0299 0804 MRxDAV ( LockedFile.Multi.Generic ) - warning
      21:08:07.0299 0804 MRxDAV - detected LockedFile.Multi.Generic (1)
      21:08:07.0346 0804 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
      21:08:07.0346 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\mrxsmb.sys. md5: A5D9106A73DC88564C825D317CAC68AC
      21:08:07.0346 0804 mrxsmb ( LockedFile.Multi.Generic ) - warning
      21:08:07.0346 0804 mrxsmb - detected LockedFile.Multi.Generic (1)
      21:08:07.0377 0804 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
      21:08:07.0377 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\mrxsmb10.sys. md5: D711B3C1D5F42C0C2415687BE09FC163
      21:08:07.0377 0804 mrxsmb10 ( LockedFile.Multi.Generic ) - warning
      21:08:07.0377 0804 mrxsmb10 - detected LockedFile.Multi.Generic (1)
      21:08:07.0439 0804 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
      21:08:07.0439 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\mrxsmb20.sys. md5: 9423E9D355C8D303E76B8CFBD8A5C30C
      21:08:07.0439 0804 mrxsmb20 ( LockedFile.Multi.Generic ) - warning
      21:08:07.0439 0804 mrxsmb20 - detected LockedFile.Multi.Generic (1)
      21:08:07.0471 0804 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
      21:08:07.0471 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\msahci.sys. md5: C25F0BAFA182CBCA2DD3C851C2E75796
      21:08:07.0471 0804 msahci ( LockedFile.Multi.Generic ) - warning
      21:08:07.0471 0804 msahci - detected LockedFile.Multi.Generic (1)
      21:08:07.0502 0804 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
      21:08:07.0502 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\msdsm.sys. md5: DB801A638D011B9633829EB6F663C900
      21:08:07.0502 0804 msdsm ( LockedFile.Multi.Generic ) - warning
      21:08:07.0502 0804 msdsm - detected LockedFile.Multi.Generic (1)
      21:08:07.0533 0804 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
      21:08:07.0580 0804 MSDTC - ok

    8. #18
      Usuario Avatar de frarina
      Registrado
      nov 2012
      Ubicación
      españa
      Mensajes
      16

      Re: Windows Update: falta el servicio de transferencia inteligente

      21:08:07.0642 0804 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
      21:08:07.0642 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\Msfs.sys. md5: AA3FB40E17CE1388FA1BEDAB50EA8F96
      21:08:07.0658 0804 Msfs ( LockedFile.Multi.Generic ) - warning
      21:08:07.0658 0804 Msfs - detected LockedFile.Multi.Generic (1)
      21:08:07.0673 0804 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
      21:08:07.0673 0804 Suspicious file (NoAccess): C:\Windows\System32\drivers\mshidkmdf.sys. md5: F9D215A46A8B9753F61767FA72A20326
      21:08:07.0673 0804 mshidkmdf ( LockedFile.Multi.Generic ) - warning
      21:08:07.0673 0804 mshidkmdf - detected LockedFile.Multi.Generic (1)
      21:08:07.0705 0804 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
      21:08:07.0705 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\msisadrv.sys. md5: D916874BBD4F8B07BFB7FA9B3CCAE29D
      21:08:07.0705 0804 msisadrv ( LockedFile.Multi.Generic ) - warning
      21:08:07.0705 0804 msisadrv - detected LockedFile.Multi.Generic (1)
      21:08:07.0751 0804 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
      21:08:07.0798 0804 MSiSCSI - ok
      21:08:07.0814 0804 msiserver - ok
      21:08:07.0861 0804 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
      21:08:07.0861 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\MSKSSRV.sys. md5: 49CCF2C4FEA34FFAD8B1B59D49439366
      21:08:07.0892 0804 MSKSSRV ( LockedFile.Multi.Generic ) - warning
      21:08:07.0892 0804 MSKSSRV - detected LockedFile.Multi.Generic (1)
      21:08:07.0923 0804 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
      21:08:07.0923 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\MSPCLOCK.sys. md5: BDD71ACE35A232104DDD349EE70E1AB3
      21:08:07.0923 0804 MSPCLOCK ( LockedFile.Multi.Generic ) - warning
      21:08:07.0923 0804 MSPCLOCK - detected LockedFile.Multi.Generic (1)
      21:08:07.0954 0804 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
      21:08:07.0954 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\MSPQM.sys. md5: 4ED981241DB27C3383D72092B618A1D0
      21:08:07.0954 0804 MSPQM ( LockedFile.Multi.Generic ) - warning
      21:08:07.0954 0804 MSPQM - detected LockedFile.Multi.Generic (1)
      21:08:07.0985 0804 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
      21:08:07.0985 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\MsRPC.sys. md5: 759A9EEB0FA9ED79DA1FB7D4EF78866D
      21:08:07.0985 0804 MsRPC ( LockedFile.Multi.Generic ) - warning
      21:08:07.0985 0804 MsRPC - detected LockedFile.Multi.Generic (1)
      21:08:08.0017 0804 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
      21:08:08.0017 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\mssmbios.sys. md5: 0EED230E37515A0EAEE3C2E1BC97B288
      21:08:08.0017 0804 mssmbios ( LockedFile.Multi.Generic ) - warning
      21:08:08.0017 0804 mssmbios - detected LockedFile.Multi.Generic (1)
      21:08:08.0032 0804 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
      21:08:08.0032 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\MSTEE.sys. md5: 2E66F9ECB30B4221A318C92AC2250779
      21:08:08.0048 0804 MSTEE ( LockedFile.Multi.Generic ) - warning
      21:08:08.0048 0804 MSTEE - detected LockedFile.Multi.Generic (1)
      21:08:08.0063 0804 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
      21:08:08.0063 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\MTConfig.sys. md5: 7EA404308934E675BFFDE8EDF0757BCD
      21:08:08.0063 0804 MTConfig ( LockedFile.Multi.Generic ) - warning
      21:08:08.0063 0804 MTConfig - detected LockedFile.Multi.Generic (1)
      21:08:08.0095 0804 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
      21:08:08.0095 0804 Suspicious file (NoAccess): C:\Windows\system32\Drivers\mup.sys. md5: F9A18612FD3526FE473C1BDA678D61C8
      21:08:08.0095 0804 Mup ( LockedFile.Multi.Generic ) - warning
      21:08:08.0095 0804 Mup - detected LockedFile.Multi.Generic (1)
      21:08:08.0141 0804 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
      21:08:08.0188 0804 napagent - ok
      21:08:08.0251 0804 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
      21:08:08.0251 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\nwifi.sys. md5: 1EA3749C4114DB3E3161156FFFFA6B33
      21:08:08.0282 0804 NativeWifiP ( LockedFile.Multi.Generic ) - warning
      21:08:08.0282 0804 NativeWifiP - detected LockedFile.Multi.Generic (1)
      21:08:08.0360 0804 [ 934BB0D23A25C8C136570800A5A149B6 ] NAUpdate C:\Program Files (x86)\Nero\Update\NASvc.exe
      21:08:08.0375 0804 NAUpdate - ok
      21:08:08.0453 0804 [ 79B47FD40D9A817E932F9D26FAC0A81C ] NDIS C:\Windows\system32\drivers\ndis.sys
      21:08:08.0500 0804 NDIS - ok
      21:08:08.0547 0804 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
      21:08:08.0547 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\ndiscap.sys. md5: 9F9A1F53AAD7DA4D6FEF5BB73AB811AC
      21:08:08.0563 0804 NdisCap ( LockedFile.Multi.Generic ) - warning
      21:08:08.0563 0804 NdisCap - detected LockedFile.Multi.Generic (1)
      21:08:08.0609 0804 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
      21:08:08.0609 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\ndistapi.sys. md5: 30639C932D9FEF22B31268FE25A1B6E5
      21:08:08.0609 0804 NdisTapi ( LockedFile.Multi.Generic ) - warning
      21:08:08.0609 0804 NdisTapi - detected LockedFile.Multi.Generic (1)
      21:08:08.0641 0804 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
      21:08:08.0641 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\ndisuio.sys. md5: 136185F9FB2CC61E573E676AA5402356
      21:08:08.0656 0804 Ndisuio ( LockedFile.Multi.Generic ) - warning
      21:08:08.0656 0804 Ndisuio - detected LockedFile.Multi.Generic (1)
      21:08:08.0672 0804 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
      21:08:08.0672 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\ndiswan.sys. md5: 53F7305169863F0A2BDDC49E116C2E11
      21:08:08.0672 0804 NdisWan ( LockedFile.Multi.Generic ) - warning
      21:08:08.0672 0804 NdisWan - detected LockedFile.Multi.Generic (1)
      21:08:08.0703 0804 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
      21:08:08.0703 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\NDProxy.sys. md5: 015C0D8E0E0421B4CFD48CFFE2825879
      21:08:08.0703 0804 NDProxy ( LockedFile.Multi.Generic ) - warning
      21:08:08.0703 0804 NDProxy - detected LockedFile.Multi.Generic (1)
      21:08:08.0719 0804 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
      21:08:08.0719 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\netbios.sys. md5: 86743D9F5D2B1048062B14B1D84501C4
      21:08:08.0734 0804 NetBIOS ( LockedFile.Multi.Generic ) - warning
      21:08:08.0734 0804 NetBIOS - detected LockedFile.Multi.Generic (1)
      21:08:08.0781 0804 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
      21:08:08.0781 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\netbt.sys. md5: 09594D1089C523423B32A4229263F068
      21:08:08.0797 0804 NetBT ( LockedFile.Multi.Generic ) - warning
      21:08:08.0797 0804 NetBT - detected LockedFile.Multi.Generic (1)
      21:08:08.0828 0804 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
      21:08:08.0828 0804 Netlogon - ok
      21:08:08.0875 0804 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
      21:08:08.0921 0804 Netman - ok
      21:08:08.0968 0804 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
      21:08:08.0999 0804 netprofm - ok
      21:08:09.0077 0804 [ EED1FBDE98CF5F6D5C0C5B27AB1F68EC ] netr28ux C:\Windows\system32\DRIVERS\Dnetr28ux.sys
      21:08:09.0077 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\Dnetr28ux.sys. md5: EED1FBDE98CF5F6D5C0C5B27AB1F68EC
      21:08:09.0093 0804 netr28ux ( LockedFile.Multi.Generic ) - warning
      21:08:09.0093 0804 netr28ux - detected LockedFile.Multi.Generic (1)
      21:08:09.0109 0804 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
      21:08:09.0124 0804 NetTcpPortSharing - ok
      21:08:09.0155 0804 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
      21:08:09.0155 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\nfrd960.sys. md5: 77889813BE4D166CDAB78DDBA990DA92
      21:08:09.0171 0804 nfrd960 ( LockedFile.Multi.Generic ) - warning
      21:08:09.0171 0804 nfrd960 - detected LockedFile.Multi.Generic (1)
      21:08:09.0218 0804 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
      21:08:09.0265 0804 NlaSvc - ok
      21:08:09.0311 0804 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
      21:08:09.0311 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\Npfs.sys. md5: 1E4C4AB5C9B8DD13179BBDC75A2A01F7
      21:08:09.0311 0804 Npfs ( LockedFile.Multi.Generic ) - warning
      21:08:09.0311 0804 Npfs - detected LockedFile.Multi.Generic (1)
      21:08:09.0327 0804 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
      21:08:09.0374 0804 nsi - ok
      21:08:09.0405 0804 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
      21:08:09.0405 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\nsiproxy.sys. md5: E7F5AE18AF4168178A642A9247C63001
      21:08:09.0405 0804 nsiproxy ( LockedFile.Multi.Generic ) - warning
      21:08:09.0405 0804 nsiproxy - detected LockedFile.Multi.Generic (1)
      21:08:09.0483 0804 [ A2F74975097F52A00745F9637451FDD8 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
      21:08:09.0483 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\Ntfs.sys. md5: A2F74975097F52A00745F9637451FDD8
      21:08:09.0499 0804 Ntfs ( LockedFile.Multi.Generic ) - warning
      21:08:09.0499 0804 Ntfs - detected LockedFile.Multi.Generic (1)
      21:08:09.0530 0804 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
      21:08:09.0530 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\Null.sys. md5: 9899284589F75FA8724FF3D16AED75C1
      21:08:09.0545 0804 Null ( LockedFile.Multi.Generic ) - warning
      21:08:09.0545 0804 Null - detected LockedFile.Multi.Generic (1)
      21:08:09.0748 0804 [ DD81FBC57AB9134CDDC5CE90880BFD80 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
      21:08:09.0748 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\nvlddmkm.sys. md5: DD81FBC57AB9134CDDC5CE90880BFD80
      21:08:09.0779 0804 nvlddmkm ( LockedFile.Multi.Generic ) - warning
      21:08:09.0779 0804 nvlddmkm - detected LockedFile.Multi.Generic (1)
      21:08:09.0826 0804 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
      21:08:09.0826 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\nvraid.sys. md5: 0A92CB65770442ED0DC44834632F66AD
      21:08:09.0842 0804 nvraid ( LockedFile.Multi.Generic ) - warning
      21:08:09.0842 0804 nvraid - detected LockedFile.Multi.Generic (1)
      21:08:09.0857 0804 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
      21:08:09.0857 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\nvstor.sys. md5: DAB0E87525C10052BF65F06152F37E4A
      21:08:09.0857 0804 nvstor ( LockedFile.Multi.Generic ) - warning
      21:08:09.0857 0804 nvstor - detected LockedFile.Multi.Generic (1)
      21:08:09.0889 0804 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
      21:08:09.0889 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\nv_agp.sys. md5: 270D7CD42D6E3979F6DD0146650F0E05
      21:08:09.0889 0804 nv_agp ( LockedFile.Multi.Generic ) - warning
      21:08:09.0889 0804 nv_agp - detected LockedFile.Multi.Generic (1)
      21:08:09.0982 0804 [ E54AA592A65F317390EEE386A8821692 ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
      21:08:09.0998 0804 odserv - ok
      21:08:10.0045 0804 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
      21:08:10.0045 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\ohci1394.sys. md5: 3589478E4B22CE21B41FA1BFC0B8B8A0
      21:08:10.0060 0804 ohci1394 ( LockedFile.Multi.Generic ) - warning
      21:08:10.0060 0804 ohci1394 - detected LockedFile.Multi.Generic (1)
      21:08:10.0123 0804 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
      21:08:10.0138 0804 ose - ok
      21:08:10.0201 0804 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
      21:08:10.0216 0804 p2pimsvc - ok
      21:08:10.0247 0804 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
      21:08:10.0294 0804 p2psvc - ok
      21:08:10.0325 0804 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\drivers\parport.sys
      21:08:10.0325 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\parport.sys. md5: 0086431C29C35BE1DBC43F52CC273887
      21:08:10.0341 0804 Parport ( LockedFile.Multi.Generic ) - warning
      21:08:10.0341 0804 Parport - detected LockedFile.Multi.Generic (1)
      21:08:10.0388 0804 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
      21:08:10.0388 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\partmgr.sys. md5: E9766131EEADE40A27DC27D2D68FBA9C
      21:08:10.0388 0804 partmgr ( LockedFile.Multi.Generic ) - warning
      21:08:10.0388 0804 partmgr - detected LockedFile.Multi.Generic (1)
      21:08:10.0450 0804 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
      21:08:10.0481 0804 PcaSvc - ok
      21:08:10.0513 0804 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
      21:08:10.0528 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\pci.sys. md5: 94575C0571D1462A0F70BDE6BD6EE6B3
      21:08:10.0528 0804 pci ( LockedFile.Multi.Generic ) - warning
      21:08:10.0528 0804 pci - detected LockedFile.Multi.Generic (1)
      21:08:10.0544 0804 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
      21:08:10.0544 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\pciide.sys. md5: B5B8B5EF2E5CB34DF8DCF8831E3534FA
      21:08:10.0544 0804 pciide ( LockedFile.Multi.Generic ) - warning
      21:08:10.0544 0804 pciide - detected LockedFile.Multi.Generic (1)
      21:08:10.0591 0804 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
      21:08:10.0591 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\pcmcia.sys. md5: B2E81D4E87CE48589F98CB8C05B01F2F
      21:08:10.0591 0804 pcmcia ( LockedFile.Multi.Generic ) - warning
      21:08:10.0591 0804 pcmcia - detected LockedFile.Multi.Generic (1)
      21:08:10.0622 0804 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
      21:08:10.0622 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\pcw.sys. md5: D6B9C2E1A11A3A4B26A182FFEF18F603
      21:08:10.0622 0804 pcw ( LockedFile.Multi.Generic ) - warning
      21:08:10.0622 0804 pcw - detected LockedFile.Multi.Generic (1)
      21:08:10.0653 0804 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
      21:08:10.0653 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\peauth.sys. md5: 68769C3356B3BE5D1C732C97B9A80D6E
      21:08:10.0653 0804 PEAUTH ( LockedFile.Multi.Generic ) - warning
      21:08:10.0653 0804 PEAUTH - detected LockedFile.Multi.Generic (1)
      21:08:10.0715 0804 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
      21:08:10.0778 0804 PeerDistSvc - ok
      21:08:10.0871 0804 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
      21:08:10.0887 0804 PerfHost - ok
      21:08:10.0996 0804 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
      21:08:11.0074 0804 pla - ok
      21:08:11.0121 0804 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
      21:08:11.0168 0804 PlugPlay - ok
      21:08:11.0199 0804 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
      21:08:11.0230 0804 PNRPAutoReg - ok
      21:08:11.0277 0804 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
      21:08:11.0293 0804 PNRPsvc - ok
      21:08:11.0339 0804 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
      21:08:11.0386 0804 PolicyAgent - ok
      21:08:11.0449 0804 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
      21:08:11.0511 0804 Power - ok
      21:08:11.0542 0804 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
      21:08:11.0542 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\raspptp.sys. md5: F92A2C41117A11A00BE01CA01A7FCDE9
      21:08:11.0558 0804 PptpMiniport ( LockedFile.Multi.Generic ) - warning
      21:08:11.0558 0804 PptpMiniport - detected LockedFile.Multi.Generic (1)
      21:08:11.0589 0804 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\drivers\processr.sys
      21:08:11.0589 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\processr.sys. md5: 0D922E23C041EFB1C3FAC2A6F943C9BF
      21:08:11.0589 0804 Processor ( LockedFile.Multi.Generic ) - warning
      21:08:11.0589 0804 Processor - detected LockedFile.Multi.Generic (1)
      21:08:11.0636 0804 [ 5C78838B4D166D1A27DB3A8A820C799A ] ProfSvc C:\Windows\system32\profsvc.dll
      21:08:11.0698 0804 ProfSvc - ok
      21:08:11.0729 0804 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
      21:08:11.0745 0804 ProtectedStorage - ok
      21:08:11.0776 0804 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
      21:08:11.0776 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\pacer.sys. md5: 0557CF5A2556BD58E26384169D72438D
      21:08:11.0792 0804 Psched ( LockedFile.Multi.Generic ) - warning
      21:08:11.0792 0804 Psched - detected LockedFile.Multi.Generic (1)
      21:08:11.0854 0804 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
      21:08:11.0854 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\ql2300.sys. md5: A53A15A11EBFD21077463EE2C7AFEEF0
      21:08:11.0870 0804 ql2300 ( LockedFile.Multi.Generic ) - warning
      21:08:11.0870 0804 ql2300 - detected LockedFile.Multi.Generic (1)
      21:08:11.0885 0804 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
      21:08:11.0885 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\ql40xx.sys. md5: 4F6D12B51DE1AAEFF7DC58C4D75423C8
      21:08:11.0885 0804 ql40xx ( LockedFile.Multi.Generic ) - warning
      21:08:11.0885 0804 ql40xx - detected LockedFile.Multi.Generic (1)
      21:08:11.0917 0804 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
      21:08:11.0948 0804 QWAVE - ok
      21:08:11.0963 0804 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
      21:08:11.0963 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\qwavedrv.sys. md5: 76707BB36430888D9CE9D705398ADB6C
      21:08:11.0979 0804 QWAVEdrv ( LockedFile.Multi.Generic ) - warning
      21:08:11.0979 0804 QWAVEdrv - detected LockedFile.Multi.Generic (1)
      21:08:11.0995 0804 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
      21:08:11.0995 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\rasacd.sys. md5: 5A0DA8AD5762FA2D91678A8A01311704
      21:08:11.0995 0804 RasAcd ( LockedFile.Multi.Generic ) - warning
      21:08:11.0995 0804 RasAcd - detected LockedFile.Multi.Generic (1)
      21:08:12.0041 0804 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
      21:08:12.0041 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\AgileVpn.sys. md5: 7ECFF9B22276B73F43A99A15A6094E90
      21:08:12.0041 0804 RasAgileVpn ( LockedFile.Multi.Generic ) - warning
      21:08:12.0041 0804 RasAgileVpn - detected LockedFile.Multi.Generic (1)
      21:08:12.0073 0804 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
      21:08:12.0119 0804 RasAuto - ok
      21:08:12.0166 0804 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
      21:08:12.0166 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\rasl2tp.sys. md5: 471815800AE33E6F1C32FB1B97C490CA
      21:08:12.0182 0804 Rasl2tp ( LockedFile.Multi.Generic ) - warning
      21:08:12.0182 0804 Rasl2tp - detected LockedFile.Multi.Generic (1)
      21:08:12.0213 0804 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
      21:08:12.0275 0804 RasMan - ok
      21:08:12.0322 0804 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
      21:08:12.0322 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\raspppoe.sys. md5: 855C9B1CD4756C5E9A2AA58A15F58C25
      21:08:12.0322 0804 RasPppoe ( LockedFile.Multi.Generic ) - warning
      21:08:12.0322 0804 RasPppoe - detected LockedFile.Multi.Generic (1)
      21:08:12.0353 0804 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
      21:08:12.0353 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\rassstp.sys. md5: E8B1E447B008D07FF47D016C2B0EEECB
      21:08:12.0353 0804 RasSstp ( LockedFile.Multi.Generic ) - warning
      21:08:12.0353 0804 RasSstp - detected LockedFile.Multi.Generic (1)
      21:08:12.0385 0804 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
      21:08:12.0385 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\rdbss.sys. md5: 77F665941019A1594D887A74F301FA2F
      21:08:12.0385 0804 rdbss ( LockedFile.Multi.Generic ) - warning
      21:08:12.0385 0804 rdbss - detected LockedFile.Multi.Generic (1)
      21:08:12.0416 0804 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
      21:08:12.0416 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\rdpbus.sys. md5: 302DA2A0539F2CF54D7C6CC30C1F2D8D
      21:08:12.0416 0804 rdpbus ( LockedFile.Multi.Generic ) - warning
      21:08:12.0416 0804 rdpbus - detected LockedFile.Multi.Generic (1)
      21:08:12.0431 0804 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
      21:08:12.0431 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\RDPCDD.sys. md5: CEA6CC257FC9B7715F1C2B4849286D24
      21:08:12.0447 0804 RDPCDD ( LockedFile.Multi.Generic ) - warning
      21:08:12.0447 0804 RDPCDD - detected LockedFile.Multi.Generic (1)
      21:08:12.0478 0804 [ 1B6163C503398B23FF8B939C67747683 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
      21:08:12.0478 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\rdpdr.sys. md5: 1B6163C503398B23FF8B939C67747683
      21:08:12.0478 0804 RDPDR ( LockedFile.Multi.Generic ) - warning
      21:08:12.0478 0804 RDPDR - detected LockedFile.Multi.Generic (1)
      21:08:12.0525 0804 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
      21:08:12.0525 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\rdpencdd.sys. md5: BB5971A4F00659529A5C44831AF22365
      21:08:12.0525 0804 RDPENCDD ( LockedFile.Multi.Generic ) - warning
      21:08:12.0525 0804 RDPENCDD - detected LockedFile.Multi.Generic (1)
      21:08:12.0572 0804 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
      21:08:12.0572 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\rdprefmp.sys. md5: 216F3FA57533D98E1F74DED70113177A
      21:08:12.0587 0804 RDPREFMP ( LockedFile.Multi.Generic ) - warning
      21:08:12.0587 0804 RDPREFMP - detected LockedFile.Multi.Generic (1)
      21:08:12.0619 0804 [ 70CBA1A0C98600A2AA1863479B35CB90 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
      21:08:12.0634 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\rdpvideominiport.sys. md5: 70CBA1A0C98600A2AA1863479B35CB90
      21:08:12.0634 0804 RdpVideoMiniport ( LockedFile.Multi.Generic ) - warning
      21:08:12.0634 0804 RdpVideoMiniport - detected LockedFile.Multi.Generic (1)
      21:08:12.0665 0804 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
      21:08:12.0665 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\RDPWD.sys. md5: E61608AA35E98999AF9AAEEEA6114B0A
      21:08:12.0665 0804 RDPWD ( LockedFile.Multi.Generic ) - warning
      21:08:12.0665 0804 RDPWD - detected LockedFile.Multi.Generic (1)
      21:08:12.0712 0804 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
      21:08:12.0712 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\rdyboost.sys. md5: 34ED295FA0121C241BFEF24764FC4520
      21:08:12.0712 0804 rdyboost ( LockedFile.Multi.Generic ) - warning
      21:08:12.0712 0804 rdyboost - detected LockedFile.Multi.Generic (1)
      21:08:12.0775 0804 RelevantKnowledge - ok
      21:08:12.0821 0804 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
      21:08:12.0884 0804 RemoteAccess - ok
      21:08:12.0931 0804 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
      21:08:12.0962 0804 RemoteRegistry - ok
      21:08:12.0993 0804 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
      21:08:13.0040 0804 RpcEptMapper - ok
      21:08:13.0071 0804 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
      21:08:13.0087 0804 RpcLocator - ok
      21:08:13.0118 0804 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
      21:08:13.0165 0804 RpcSs - ok
      21:08:13.0211 0804 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
      21:08:13.0211 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\rspndr.sys. md5: DDC86E4F8E7456261E637E3552E804FF
      21:08:13.0211 0804 rspndr ( LockedFile.Multi.Generic ) - warning
      21:08:13.0211 0804 rspndr - detected LockedFile.Multi.Generic (1)
      21:08:13.0243 0804 [ BAEFEE35D27A5440D35092CE10267BEC ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
      21:08:13.0243 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\Rt64win7.sys. md5: BAEFEE35D27A5440D35092CE10267BEC
      21:08:13.0243 0804 RTL8167 ( LockedFile.Multi.Generic ) - warning
      21:08:13.0243 0804 RTL8167 - detected LockedFile.Multi.Generic (1)
      21:08:13.0289 0804 [ E60C0A09F997826C7627B244195AB581 ] s3cap C:\Windows\system32\drivers\vms3cap.sys
      21:08:13.0289 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\vms3cap.sys. md5: E60C0A09F997826C7627B244195AB581
      21:08:13.0289 0804 s3cap ( LockedFile.Multi.Generic ) - warning
      21:08:13.0289 0804 s3cap - detected LockedFile.Multi.Generic (1)
      21:08:13.0321 0804 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
      21:08:13.0336 0804 SamSs - ok
      21:08:13.0430 0804 [ 9D19E17449C8E8759D6872F662104321 ] SamsungAllShareV2.0 C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\AllShareDMS.exe
      21:08:13.0445 0804 SamsungAllShareV2.0 - ok
      21:08:13.0477 0804 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
      21:08:13.0477 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\sbp2port.sys. md5: AC03AF3329579FFFB455AA2DAABBE22B
      21:08:13.0492 0804 sbp2port ( LockedFile.Multi.Generic ) - warning
      21:08:13.0492 0804 sbp2port - detected LockedFile.Multi.Generic (1)
      21:08:13.0523 0804 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
      21:08:13.0586 0804 SCardSvr - ok
      21:08:13.0648 0804 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
      21:08:13.0648 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\scfilter.sys. md5: 253F38D0D7074C02FF8DEB9836C97D2B
      21:08:13.0648 0804 scfilter ( LockedFile.Multi.Generic ) - warning
      21:08:13.0664 0804 scfilter - detected LockedFile.Multi.Generic (1)
      21:08:13.0711 0804 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
      21:08:13.0789 0804 Schedule - ok
      21:08:13.0835 0804 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
      21:08:13.0851 0804 SCPolicySvc - ok
      21:08:13.0882 0804 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
      21:08:13.0945 0804 SDRSVC - ok
      21:08:13.0976 0804 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
      21:08:13.0976 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\secdrv.sys. md5: 3EA8A16169C26AFBEB544E0E48421186
      21:08:13.0991 0804 secdrv ( LockedFile.Multi.Generic ) - warning
      21:08:13.0991 0804 secdrv - detected LockedFile.Multi.Generic (1)
      21:08:14.0007 0804 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
      21:08:14.0038 0804 seclogon - ok
      21:08:14.0069 0804 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
      21:08:14.0116 0804 SENS - ok
      21:08:14.0163 0804 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
      21:08:14.0210 0804 SensrSvc - ok
      21:08:14.0241 0804 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
      21:08:14.0241 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\serenum.sys. md5: CB624C0035412AF0DEBEC78C41F5CA1B
      21:08:14.0257 0804 Serenum ( LockedFile.Multi.Generic ) - warning
      21:08:14.0257 0804 Serenum - detected LockedFile.Multi.Generic (1)
      21:08:14.0288 0804 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
      21:08:14.0288 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\serial.sys. md5: C1D8E28B2C2ADFAEC4BA89E9FDA69BD6
      21:08:14.0303 0804 Serial ( LockedFile.Multi.Generic ) - warning
      21:08:14.0303 0804 Serial - detected LockedFile.Multi.Generic (1)
      21:08:14.0335 0804 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\drivers\sermouse.sys
      21:08:14.0335 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\sermouse.sys. md5: 1C545A7D0691CC4A027396535691C3E3
      21:08:14.0335 0804 sermouse ( LockedFile.Multi.Generic ) - warning
      21:08:14.0335 0804 sermouse - detected LockedFile.Multi.Generic (1)
      21:08:14.0381 0804 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
      21:08:14.0428 0804 SessionEnv - ok
      21:08:14.0459 0804 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
      21:08:14.0459 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\sffdisk.sys. md5: A554811BCD09279536440C964AE35BBF
      21:08:14.0459 0804 sffdisk ( LockedFile.Multi.Generic ) - warning
      21:08:14.0459 0804 sffdisk - detected LockedFile.Multi.Generic (1)
      21:08:14.0475 0804 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
      21:08:14.0475 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\sffp_mmc.sys. md5: FF414F0BAEFEBA59BC6C04B3DB0B87BF
      21:08:14.0491 0804 sffp_mmc ( LockedFile.Multi.Generic ) - warning
      21:08:14.0491 0804 sffp_mmc - detected LockedFile.Multi.Generic (1)
      21:08:14.0506 0804 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
      21:08:14.0506 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\sffp_sd.sys. md5: DD85B78243A19B59F0637DCF284DA63C
      21:08:14.0506 0804 sffp_sd ( LockedFile.Multi.Generic ) - warning
      21:08:14.0506 0804 sffp_sd - detected LockedFile.Multi.Generic (1)
      21:08:14.0537 0804 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
      21:08:14.0537 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\sfloppy.sys. md5: A9D601643A1647211A1EE2EC4E433FF4
      21:08:14.0537 0804 sfloppy ( LockedFile.Multi.Generic ) - warning
      21:08:14.0537 0804 sfloppy - detected LockedFile.Multi.Generic (1)
      21:08:14.0615 0804 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
      21:08:14.0662 0804 SharedAccess - ok
      21:08:14.0709 0804 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
      21:08:14.0771 0804 ShellHWDetection - ok
      21:08:14.0849 0804 [ 1435BF57B18B3FD2C28060EF4374E704 ] SimpleSlideShowServer C:\Program Files (x86)\Samsung\AllShare\AllShareSlideShowService.exe
      21:08:14.0865 0804 SimpleSlideShowServer - ok
      21:08:14.0896 0804 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
      21:08:14.0896 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\SiSRaid2.sys. md5: 843CAF1E5FDE1FFD5FF768F23A51E2E1
      21:08:14.0912 0804 SiSRaid2 ( LockedFile.Multi.Generic ) - warning
      21:08:14.0912 0804 SiSRaid2 - detected LockedFile.Multi.Generic (1)
      21:08:14.0927 0804 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
      21:08:14.0927 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\sisraid4.sys. md5: 6A6C106D42E9FFFF8B9FCB4F754F6DA4
      21:08:14.0927 0804 SiSRaid4 ( LockedFile.Multi.Generic ) - warning
      21:08:14.0927 0804 SiSRaid4 - detected LockedFile.Multi.Generic (1)
      21:08:14.0959 0804 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
      21:08:14.0959 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\smb.sys. md5: 548260A7B8654E024DC30BF8A7C5BAA4
      21:08:14.0974 0804 Smb ( LockedFile.Multi.Generic ) - warning
      21:08:14.0974 0804 Smb - detected LockedFile.Multi.Generic (1)
      21:08:15.0005 0804 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
      21:08:15.0037 0804 SNMPTRAP - ok
      21:08:15.0083 0804 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
      21:08:15.0083 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\spldr.sys. md5: B9E31E5CACDFE584F34F730A677803F9
      21:08:15.0083 0804 spldr ( LockedFile.Multi.Generic ) - warning
      21:08:15.0083 0804 spldr - detected LockedFile.Multi.Generic (1)
      21:08:15.0115 0804 [ B96C17B5DC1424D56EEA3A99E97428CD ] Spooler C:\Windows\System32\spoolsv.exe
      21:08:15.0146 0804 Spooler - ok
      21:08:15.0239 0804 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
      21:08:15.0364 0804 sppsvc - ok
      21:08:15.0395 0804 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
      21:08:15.0458 0804 sppuinotify - ok
      21:08:15.0520 0804 [ 88E5162E58C8919CC873F5D8946197CF ] sptd C:\Windows\system32\Drivers\sptd.sys
      21:08:15.0520 0804 Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: 88E5162E58C8919CC873F5D8946197CF
      21:08:15.0536 0804 sptd ( LockedFile.Multi.Generic ) - warning
      21:08:15.0536 0804 sptd - detected LockedFile.Multi.Generic (1)
      21:08:15.0567 0804 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
      21:08:15.0567 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\srv.sys. md5: 441FBA48BFF01FDB9D5969EBC1838F0B
      21:08:15.0567 0804 srv ( LockedFile.Multi.Generic ) - warning
      21:08:15.0567 0804 srv - detected LockedFile.Multi.Generic (1)
      21:08:15.0598 0804 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
      21:08:15.0598 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\srv2.sys. md5: B4ADEBBF5E3677CCE9651E0F01F7CC28
      21:08:15.0614 0804 srv2 ( LockedFile.Multi.Generic ) - warning
      21:08:15.0614 0804 srv2 - detected LockedFile.Multi.Generic (1)
      21:08:15.0629 0804 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
      21:08:15.0629 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\srvnet.sys. md5: 27E461F0BE5BFF5FC737328F749538C3
      21:08:15.0645 0804 srvnet ( LockedFile.Multi.Generic ) - warning
      21:08:15.0645 0804 srvnet - detected LockedFile.Multi.Generic (1)
      21:08:15.0676 0804 [ 8F8324ED1DE63FFC7B1A02CD2D963C72 ] ssadbus C:\Windows\system32\DRIVERS\ssadbus.sys
      21:08:15.0676 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\ssadbus.sys. md5: 8F8324ED1DE63FFC7B1A02CD2D963C72
      21:08:15.0692 0804 ssadbus ( LockedFile.Multi.Generic ) - warning
      21:08:15.0692 0804 ssadbus - detected LockedFile.Multi.Generic (1)
      21:08:15.0739 0804 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
      21:08:15.0770 0804 SSDPSRV - ok
      21:08:15.0817 0804 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
      21:08:15.0848 0804 SstpSvc - ok

    9. #19
      Usuario Avatar de frarina
      Registrado
      nov 2012
      Ubicación
      españa
      Mensajes
      16

      Re: Windows Update: falta el servicio de transferencia inteligente

      21:08:15.0926 0804 [ B1691AF4A072CB674D600DB16DD7308E ] StarWindServiceAE C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
      21:08:15.0957 0804 StarWindServiceAE ( UnsignedFile.Multi.Generic ) - warning
      21:08:15.0957 0804 StarWindServiceAE - detected UnsignedFile.Multi.Generic (1)
      21:08:16.0004 0804 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\drivers\stexstor.sys
      21:08:16.0004 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\stexstor.sys. md5: F3817967ED533D08327DC73BC4D5542A
      21:08:16.0004 0804 stexstor ( LockedFile.Multi.Generic ) - warning
      21:08:16.0004 0804 stexstor - detected LockedFile.Multi.Generic (1)
      21:08:16.0051 0804 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
      21:08:16.0097 0804 stisvc - ok
      21:08:16.0144 0804 [ 7785DC213270D2FC066538DAF94087E7 ] storflt C:\Windows\system32\drivers\vmstorfl.sys
      21:08:16.0144 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\vmstorfl.sys. md5: 7785DC213270D2FC066538DAF94087E7
      21:08:16.0144 0804 storflt ( LockedFile.Multi.Generic ) - warning
      21:08:16.0144 0804 storflt - detected LockedFile.Multi.Generic (1)
      21:08:16.0175 0804 [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc C:\Windows\system32\drivers\storvsc.sys
      21:08:16.0175 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\storvsc.sys. md5: D34E4943D5AC096C8EDEEBFD80D76E23
      21:08:16.0175 0804 storvsc ( LockedFile.Multi.Generic ) - warning
      21:08:16.0175 0804 storvsc - detected LockedFile.Multi.Generic (1)
      21:08:16.0207 0804 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
      21:08:16.0207 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\swenum.sys. md5: D01EC09B6711A5F8E7E6564A4D0FBC90
      21:08:16.0222 0804 swenum ( LockedFile.Multi.Generic ) - warning
      21:08:16.0222 0804 swenum - detected LockedFile.Multi.Generic (1)
      21:08:16.0269 0804 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
      21:08:16.0300 0804 swprv - ok
      21:08:16.0347 0804 [ C3A39C4079305480972D29C44B868C78 ] Synth3dVsc C:\Windows\system32\drivers\synth3dvsc.sys
      21:08:16.0347 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\synth3dvsc.sys. md5: C3A39C4079305480972D29C44B868C78
      21:08:16.0347 0804 Synth3dVsc ( LockedFile.Multi.Generic ) - warning
      21:08:16.0347 0804 Synth3dVsc - detected LockedFile.Multi.Generic (1)
      21:08:16.0456 0804 [ CBCF28435251D2AFE54BFDCB9A79D2A1 ] syshost32 C:\Windows\Installer\{5F0EE7C6-A802-B7D0-1CA4-6052FC7A6D45}\syshost.exe
      21:08:16.0456 0804 Suspicious file (NoAccess): C:\Windows\Installer\{5F0EE7C6-A802-B7D0-1CA4-6052FC7A6D45}\syshost.exe. md5: CBCF28435251D2AFE54BFDCB9A79D2A1
      21:08:16.0456 0804 syshost32 ( LockedFile.Multi.Generic ) - warning
      21:08:16.0456 0804 syshost32 - detected LockedFile.Multi.Generic (1)
      21:08:16.0519 0804 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
      21:08:16.0597 0804 SysMain - ok
      21:08:16.0628 0804 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
      21:08:16.0643 0804 TabletInputService - ok
      21:08:16.0690 0804 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
      21:08:16.0737 0804 TapiSrv - ok
      21:08:16.0768 0804 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
      21:08:16.0799 0804 TBS - ok
      21:08:16.0862 0804 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
      21:08:16.0877 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\tcpip.sys. md5: ACB82BDA8F46C84F465C1AFA517DC4B9
      21:08:16.0909 0804 Tcpip ( LockedFile.Multi.Generic ) - warning
      21:08:16.0909 0804 Tcpip - detected LockedFile.Multi.Generic (1)
      21:08:16.0955 0804 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
      21:08:16.0955 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\tcpip.sys. md5: ACB82BDA8F46C84F465C1AFA517DC4B9
      21:08:16.0971 0804 TCPIP6 ( LockedFile.Multi.Generic ) - warning
      21:08:16.0971 0804 TCPIP6 - detected LockedFile.Multi.Generic (1)
      21:08:17.0049 0804 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
      21:08:17.0049 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\tcpipreg.sys. md5: DF687E3D8836BFB04FCC0615BF15A519
      21:08:17.0049 0804 tcpipreg ( LockedFile.Multi.Generic ) - warning
      21:08:17.0049 0804 tcpipreg - detected LockedFile.Multi.Generic (1)
      21:08:17.0080 0804 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
      21:08:17.0080 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\tdpipe.sys. md5: 3371D21011695B16333A3934340C4E7C
      21:08:17.0080 0804 TDPIPE ( LockedFile.Multi.Generic ) - warning
      21:08:17.0080 0804 TDPIPE - detected LockedFile.Multi.Generic (1)
      21:08:17.0143 0804 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
      21:08:17.0143 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\tdtcp.sys. md5: 51C5ECEB1CDEE2468A1748BE550CFBC8
      21:08:17.0143 0804 TDTCP ( LockedFile.Multi.Generic ) - warning
      21:08:17.0143 0804 TDTCP - detected LockedFile.Multi.Generic (1)
      21:08:17.0189 0804 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
      21:08:17.0189 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\tdx.sys. md5: DDAD5A7AB24D8B65F8D724F5C20FD806
      21:08:17.0189 0804 tdx ( LockedFile.Multi.Generic ) - warning
      21:08:17.0189 0804 tdx - detected LockedFile.Multi.Generic (1)
      21:08:17.0221 0804 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
      21:08:17.0221 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\termdd.sys. md5: 561E7E1F06895D78DE991E01DD0FB6E5
      21:08:17.0221 0804 TermDD ( LockedFile.Multi.Generic ) - warning
      21:08:17.0221 0804 TermDD - detected LockedFile.Multi.Generic (1)
      21:08:17.0236 0804 [ 2B5BDFF688EC9871D7EC5837833374E9 ] terminpt C:\Windows\system32\drivers\terminpt.sys
      21:08:17.0236 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\terminpt.sys. md5: 2B5BDFF688EC9871D7EC5837833374E9
      21:08:17.0252 0804 terminpt ( LockedFile.Multi.Generic ) - warning
      21:08:17.0252 0804 terminpt - detected LockedFile.Multi.Generic (1)
      21:08:17.0283 0804 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
      21:08:17.0361 0804 TermService - ok
      21:08:17.0377 0804 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
      21:08:17.0392 0804 Themes - ok
      21:08:17.0423 0804 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
      21:08:17.0455 0804 THREADORDER - ok
      21:08:17.0548 0804 [ E319535A8124F25C1C9C5288CACF3101 ] TomTomHOMEService C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
      21:08:17.0564 0804 TomTomHOMEService - ok
      21:08:17.0611 0804 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
      21:08:17.0657 0804 TrkWks - ok
      21:08:17.0720 0804 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
      21:08:17.0751 0804 TrustedInstaller - ok
      21:08:17.0782 0804 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
      21:08:17.0782 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\tssecsrv.sys. md5: CE18B2CDFC837C99E5FAE9CA6CBA5D30
      21:08:17.0798 0804 tssecsrv ( LockedFile.Multi.Generic ) - warning
      21:08:17.0798 0804 tssecsrv - detected LockedFile.Multi.Generic (1)
      21:08:17.0829 0804 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
      21:08:17.0829 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\tsusbflt.sys. md5: D11C783E3EF9A3C52C0EBE83CC5000E9
      21:08:17.0829 0804 TsUsbFlt ( LockedFile.Multi.Generic ) - warning
      21:08:17.0829 0804 TsUsbFlt - detected LockedFile.Multi.Generic (1)
      21:08:17.0845 0804 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
      21:08:17.0845 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\TsUsbGD.sys. md5: 9CC2CCAE8A84820EAECB886D477CBCB8
      21:08:17.0860 0804 TsUsbGD ( LockedFile.Multi.Generic ) - warning
      21:08:17.0860 0804 TsUsbGD - detected LockedFile.Multi.Generic (1)
      21:08:17.0891 0804 [ E1748D04AE40118B62BC18AC86032192 ] tsusbhub C:\Windows\system32\drivers\tsusbhub.sys
      21:08:17.0891 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\tsusbhub.sys. md5: E1748D04AE40118B62BC18AC86032192
      21:08:17.0891 0804 tsusbhub ( LockedFile.Multi.Generic ) - warning
      21:08:17.0891 0804 tsusbhub - detected LockedFile.Multi.Generic (1)
      21:08:17.0938 0804 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
      21:08:17.0938 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\tunnel.sys. md5: 3566A8DAAFA27AF944F5D705EAA64894
      21:08:17.0938 0804 tunnel ( LockedFile.Multi.Generic ) - warning
      21:08:17.0938 0804 tunnel - detected LockedFile.Multi.Generic (1)
      21:08:17.0969 0804 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
      21:08:17.0969 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\uagp35.sys. md5: B4DD609BD7E282BFC683CEC7EAAAAD67
      21:08:17.0969 0804 uagp35 ( LockedFile.Multi.Generic ) - warning
      21:08:17.0969 0804 uagp35 - detected LockedFile.Multi.Generic (1)
      21:08:18.0016 0804 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
      21:08:18.0016 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\udfs.sys. md5: FF4232A1A64012BAA1FD97C7B67DF593
      21:08:18.0016 0804 udfs ( LockedFile.Multi.Generic ) - warning
      21:08:18.0016 0804 udfs - detected LockedFile.Multi.Generic (1)
      21:08:18.0063 0804 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
      21:08:18.0094 0804 UI0Detect - ok
      21:08:18.0110 0804 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
      21:08:18.0110 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\uliagpkx.sys. md5: 4BFE1BC28391222894CBF1E7D0E42320
      21:08:18.0125 0804 uliagpkx ( LockedFile.Multi.Generic ) - warning
      21:08:18.0125 0804 uliagpkx - detected LockedFile.Multi.Generic (1)
      21:08:18.0157 0804 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
      21:08:18.0157 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\umbus.sys. md5: DC54A574663A895C8763AF0FA1FF7561
      21:08:18.0172 0804 umbus ( LockedFile.Multi.Generic ) - warning
      21:08:18.0172 0804 umbus - detected LockedFile.Multi.Generic (1)
      21:08:18.0203 0804 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
      21:08:18.0203 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\umpass.sys. md5: B2E8E8CB557B156DA5493BBDDCC1474D
      21:08:18.0203 0804 UmPass ( LockedFile.Multi.Generic ) - warning
      21:08:18.0203 0804 UmPass - detected LockedFile.Multi.Generic (1)
      21:08:18.0235 0804 [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService C:\Windows\System32\umrdp.dll
      21:08:18.0281 0804 UmRdpService - ok
      21:08:18.0344 0804 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
      21:08:18.0391 0804 upnphost - ok
      21:08:18.0437 0804 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\drivers\usbccgp.sys
      21:08:18.0437 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\usbccgp.sys. md5: 6F1A3157A1C89435352CEB543CDB359C
      21:08:18.0453 0804 usbccgp ( LockedFile.Multi.Generic ) - warning
      21:08:18.0453 0804 usbccgp - detected LockedFile.Multi.Generic (1)
      21:08:18.0484 0804 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
      21:08:18.0484 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\usbcir.sys. md5: AF0892A803FDDA7492F595368E3B68E7
      21:08:18.0484 0804 usbcir ( LockedFile.Multi.Generic ) - warning
      21:08:18.0484 0804 usbcir - detected LockedFile.Multi.Generic (1)
      21:08:18.0515 0804 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
      21:08:18.0515 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\usbehci.sys. md5: C025055FE7B87701EB042095DF1A2D7B
      21:08:18.0515 0804 usbehci ( LockedFile.Multi.Generic ) - warning
      21:08:18.0515 0804 usbehci - detected LockedFile.Multi.Generic (1)
      21:08:18.0562 0804 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
      21:08:18.0562 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\usbhub.sys. md5: 287C6C9410B111B68B52CA298F7B8C24
      21:08:18.0562 0804 usbhub ( LockedFile.Multi.Generic ) - warning
      21:08:18.0562 0804 usbhub - detected LockedFile.Multi.Generic (1)
      21:08:18.0578 0804 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
      21:08:18.0578 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\usbohci.sys. md5: 9840FC418B4CBD632D3D0A667A725C31
      21:08:18.0578 0804 usbohci ( LockedFile.Multi.Generic ) - warning
      21:08:18.0578 0804 usbohci - detected LockedFile.Multi.Generic (1)
      21:08:18.0609 0804 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\drivers\usbprint.sys
      21:08:18.0609 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\usbprint.sys. md5: 73188F58FB384E75C4063D29413CEE3D
      21:08:18.0609 0804 usbprint ( LockedFile.Multi.Generic ) - warning
      21:08:18.0609 0804 usbprint - detected LockedFile.Multi.Generic (1)
      21:08:18.0640 0804 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
      21:08:18.0640 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\USBSTOR.SYS. md5: FED648B01349A3C8395A5169DB5FB7D6
      21:08:18.0640 0804 USBSTOR ( LockedFile.Multi.Generic ) - warning
      21:08:18.0640 0804 USBSTOR - detected LockedFile.Multi.Generic (1)
      21:08:18.0656 0804 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
      21:08:18.0656 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\usbuhci.sys. md5: 62069A34518BCF9C1FD9E74B3F6DB7CD
      21:08:18.0656 0804 usbuhci ( LockedFile.Multi.Generic ) - warning
      21:08:18.0656 0804 usbuhci - detected LockedFile.Multi.Generic (1)
      21:08:18.0687 0804 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
      21:08:18.0734 0804 UxSms - ok
      21:08:18.0781 0804 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
      21:08:18.0796 0804 VaultSvc - ok
      21:08:18.0827 0804 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
      21:08:18.0827 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\vdrvroot.sys. md5: C5C876CCFC083FF3B128F933823E87BD
      21:08:18.0843 0804 vdrvroot ( LockedFile.Multi.Generic ) - warning
      21:08:18.0843 0804 vdrvroot - detected LockedFile.Multi.Generic (1)
      21:08:18.0890 0804 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
      21:08:18.0952 0804 vds - ok
      21:08:18.0999 0804 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
      21:08:18.0999 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\vgapnp.sys. md5: DA4DA3F5E02943C2DC8C6ED875DE68DD
      21:08:19.0030 0804 vga ( LockedFile.Multi.Generic ) - warning
      21:08:19.0030 0804 vga - detected LockedFile.Multi.Generic (1)
      21:08:19.0061 0804 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
      21:08:19.0061 0804 Suspicious file (NoAccess): C:\Windows\System32\drivers\vga.sys. md5: 53E92A310193CB3C03BEA963DE7D9CFC
      21:08:19.0077 0804 VgaSave ( LockedFile.Multi.Generic ) - warning
      21:08:19.0077 0804 VgaSave - detected LockedFile.Multi.Generic (1)
      21:08:19.0077 0804 VGPU - ok
      21:08:19.0108 0804 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
      21:08:19.0108 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\vhdmp.sys. md5: 2CE2DF28C83AEAF30084E1B1EB253CBB
      21:08:19.0108 0804 vhdmp ( LockedFile.Multi.Generic ) - warning
      21:08:19.0108 0804 vhdmp - detected LockedFile.Multi.Generic (1)
      21:08:19.0139 0804 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
      21:08:19.0139 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\viaide.sys. md5: E5689D93FFE4E5D66C0178761240DD54
      21:08:19.0139 0804 viaide ( LockedFile.Multi.Generic ) - warning
      21:08:19.0139 0804 viaide - detected LockedFile.Multi.Generic (1)
      21:08:19.0186 0804 [ 86EA3E79AE350FEA5331A1303054005F ] vmbus C:\Windows\system32\drivers\vmbus.sys
      21:08:19.0186 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\vmbus.sys. md5: 86EA3E79AE350FEA5331A1303054005F
      21:08:19.0186 0804 vmbus ( LockedFile.Multi.Generic ) - warning
      21:08:19.0186 0804 vmbus - detected LockedFile.Multi.Generic (1)
      21:08:19.0202 0804 [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
      21:08:19.0202 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\VMBusHID.sys. md5: 7DE90B48F210D29649380545DB45A187
      21:08:19.0217 0804 VMBusHID ( LockedFile.Multi.Generic ) - warning
      21:08:19.0217 0804 VMBusHID - detected LockedFile.Multi.Generic (1)
      21:08:19.0249 0804 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
      21:08:19.0249 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\volmgr.sys. md5: D2AAFD421940F640B407AEFAAEBD91B0
      21:08:19.0249 0804 volmgr ( LockedFile.Multi.Generic ) - warning
      21:08:19.0249 0804 volmgr - detected LockedFile.Multi.Generic (1)
      21:08:19.0280 0804 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
      21:08:19.0280 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\volmgrx.sys. md5: A255814907C89BE58B79EF2F189B843B
      21:08:19.0280 0804 volmgrx ( LockedFile.Multi.Generic ) - warning
      21:08:19.0280 0804 volmgrx - detected LockedFile.Multi.Generic (1)
      21:08:19.0311 0804 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
      21:08:19.0311 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\volsnap.sys. md5: 0D08D2F3B3FF84E433346669B5E0F639
      21:08:19.0311 0804 volsnap ( LockedFile.Multi.Generic ) - warning
      21:08:19.0311 0804 volsnap - detected LockedFile.Multi.Generic (1)
      21:08:19.0342 0804 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
      21:08:19.0342 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\vsmraid.sys. md5: 5E2016EA6EBACA03C04FEAC5F330D997
      21:08:19.0342 0804 vsmraid ( LockedFile.Multi.Generic ) - warning
      21:08:19.0342 0804 vsmraid - detected LockedFile.Multi.Generic (1)
      21:08:19.0405 0804 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
      21:08:19.0483 0804 VSS - ok
      21:08:19.0529 0804 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
      21:08:19.0529 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\vwifibus.sys. md5: 36D4720B72B5C5D9CB2B9C29E9DF67A1
      21:08:19.0545 0804 vwifibus ( LockedFile.Multi.Generic ) - warning
      21:08:19.0545 0804 vwifibus - detected LockedFile.Multi.Generic (1)
      21:08:19.0592 0804 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
      21:08:19.0592 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\vwififlt.sys. md5: 6A3D66263414FF0D6FA754C646612F3F
      21:08:19.0592 0804 vwififlt ( LockedFile.Multi.Generic ) - warning
      21:08:19.0592 0804 vwififlt - detected LockedFile.Multi.Generic (1)
      21:08:19.0639 0804 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
      21:08:19.0685 0804 W32Time - ok
      21:08:19.0717 0804 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\drivers\wacompen.sys
      21:08:19.0717 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\wacompen.sys. md5: 4E9440F4F152A7B944CB1663D3935A3E
      21:08:19.0748 0804 WacomPen ( LockedFile.Multi.Generic ) - warning
      21:08:19.0748 0804 WacomPen - detected LockedFile.Multi.Generic (1)
      21:08:19.0779 0804 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
      21:08:19.0779 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\wanarp.sys. md5: 356AFD78A6ED4457169241AC3965230C
      21:08:19.0779 0804 WANARP ( LockedFile.Multi.Generic ) - warning
      21:08:19.0779 0804 WANARP - detected LockedFile.Multi.Generic (1)
      21:08:19.0795 0804 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
      21:08:19.0795 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\wanarp.sys. md5: 356AFD78A6ED4457169241AC3965230C
      21:08:19.0795 0804 Wanarpv6 ( LockedFile.Multi.Generic ) - warning
      21:08:19.0795 0804 Wanarpv6 - detected LockedFile.Multi.Generic (1)
      21:08:19.0857 0804 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
      21:08:19.0904 0804 WatAdminSvc - ok
      21:08:19.0966 0804 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
      21:08:20.0044 0804 wbengine - ok
      21:08:20.0060 0804 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
      21:08:20.0091 0804 WbioSrvc - ok
      21:08:20.0138 0804 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
      21:08:20.0185 0804 wcncsvc - ok
      21:08:20.0216 0804 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
      21:08:20.0231 0804 WcsPlugInService - ok
      21:08:20.0278 0804 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\drivers\wd.sys
      21:08:20.0278 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\wd.sys. md5: 72889E16FF12BA0F235467D6091B17DC
      21:08:20.0278 0804 Wd ( LockedFile.Multi.Generic ) - warning
      21:08:20.0278 0804 Wd - detected LockedFile.Multi.Generic (1)
      21:08:20.0325 0804 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
      21:08:20.0325 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\Wdf01000.sys. md5: 441BD2D7B4F98134C3A4F9FA570FD250
      21:08:20.0325 0804 Wdf01000 ( LockedFile.Multi.Generic ) - warning
      21:08:20.0325 0804 Wdf01000 - detected LockedFile.Multi.Generic (1)
      21:08:20.0341 0804 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
      21:08:20.0450 0804 WdiServiceHost - ok
      21:08:20.0481 0804 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
      21:08:20.0497 0804 WdiSystemHost - ok
      21:08:20.0637 0804 [ F4A9476AA49B69D28BE439C64F96C714 ] Web Assistant Updater C:\Program Files\Web Assistant\ExtensionUpdaterService.exe
      21:08:20.0637 0804 Web Assistant Updater - ok
      21:08:20.0699 0804 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
      21:08:20.0746 0804 WebClient - ok
      21:08:20.0824 0804 [ 688399FF25A4012AF16DA2E5C3DAF050 ] WebOptimizer C:\Windows\system32\dmwu.exe
      21:08:20.0855 0804 WebOptimizer - ok
      21:08:20.0887 0804 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
      21:08:20.0949 0804 Wecsvc - ok
      21:08:21.0011 0804 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
      21:08:21.0043 0804 wercplsupport - ok
      21:08:21.0074 0804 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
      21:08:21.0121 0804 WerSvc - ok
      21:08:21.0167 0804 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
      21:08:21.0167 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\wfplwf.sys. md5: 611B23304BF067451A9FDEE01FBDD725
      21:08:21.0183 0804 WfpLwf ( LockedFile.Multi.Generic ) - warning
      21:08:21.0183 0804 WfpLwf - detected LockedFile.Multi.Generic (1)
      21:08:21.0214 0804 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
      21:08:21.0214 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\wimmount.sys. md5: 05ECAEC3E4529A7153B3136CEB49F0EC
      21:08:21.0230 0804 WIMMount ( LockedFile.Multi.Generic ) - warning
      21:08:21.0230 0804 WIMMount - detected LockedFile.Multi.Generic (1)
      21:08:21.0277 0804 WinDefend - ok
      21:08:21.0292 0804 WinHttpAutoProxySvc - ok
      21:08:21.0370 0804 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
      21:08:21.0417 0804 Winmgmt - ok
      21:08:21.0495 0804 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
      21:08:21.0557 0804 WinRM - ok
      21:08:21.0651 0804 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
      21:08:21.0729 0804 Wlansvc - ok
      21:08:21.0776 0804 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
      21:08:21.0776 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\wmiacpi.sys. md5: F6FF8944478594D0E414D3F048F0D778
      21:08:21.0791 0804 WmiAcpi ( LockedFile.Multi.Generic ) - warning
      21:08:21.0791 0804 WmiAcpi - detected LockedFile.Multi.Generic (1)
      21:08:21.0838 0804 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
      21:08:21.0869 0804 wmiApSrv - ok
      21:08:21.0916 0804 WMPNetworkSvc - ok
      21:08:21.0947 0804 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
      21:08:21.0979 0804 WPCSvc - ok
      21:08:22.0010 0804 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
      21:08:22.0025 0804 WPDBusEnum - ok
      21:08:22.0088 0804 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
      21:08:22.0088 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\ws2ifsl.sys. md5: 6BCC1D7D2FD2453957C5479A32364E52
      21:08:22.0103 0804 ws2ifsl ( LockedFile.Multi.Generic ) - warning
      21:08:22.0103 0804 ws2ifsl - detected LockedFile.Multi.Generic (1)
      21:08:22.0150 0804 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
      21:08:22.0213 0804 wscsvc - ok
      21:08:22.0228 0804 WSearch - ok
      21:08:22.0322 0804 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
      21:08:22.0400 0804 wuauserv - ok
      21:08:22.0431 0804 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
      21:08:22.0431 0804 Suspicious file (NoAccess): C:\Windows\system32\drivers\WudfPf.sys. md5: D3381DC54C34D79B22CEE0D65BA91B7C
      21:08:22.0447 0804 WudfPf ( LockedFile.Multi.Generic ) - warning
      21:08:22.0447 0804 WudfPf - detected LockedFile.Multi.Generic (1)
      21:08:22.0478 0804 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
      21:08:22.0478 0804 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\WUDFRd.sys. md5: CF8D590BE3373029D57AF80914190682
      21:08:22.0478 0804 WUDFRd ( LockedFile.Multi.Generic ) - warning
      21:08:22.0478 0804 WUDFRd - detected LockedFile.Multi.Generic (1)
      21:08:22.0525 0804 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
      21:08:22.0556 0804 wudfsvc - ok
      21:08:22.0587 0804 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
      21:08:22.0618 0804 WwanSvc - ok

    10. #20
      Usuario Avatar de frarina
      Registrado
      nov 2012
      Ubicación
      españa
      Mensajes
      16

      Re: Windows Update: falta el servicio de transferencia inteligente

      21:08:22.0649 0804 ================ Scan global ===============================
      21:08:22.0681 0804 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
      21:08:22.0696 0804 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
      21:08:22.0727 0804 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
      21:08:22.0743 0804 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
      21:08:22.0759 0804 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
      21:08:22.0759 0804 [Global] - ok
      21:08:22.0774 0804 ================ Scan MBR ==================================
      21:08:22.0790 0804 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
      21:08:23.0211 0804 \Device\Harddisk0\DR0 - ok
      21:08:23.0211 0804 ================ Scan VBR ==================================
      21:08:23.0227 0804 [ 906B37E2E43D06C1DC140CAEA42CC0DF ] \Device\Harddisk0\DR0\Partition1
      21:08:23.0227 0804 \Device\Harddisk0\DR0\Partition1 - ok
      21:08:23.0227 0804 ============================================================
      21:08:23.0227 0804 Scan finished
      21:08:23.0227 0804 ============================================================
      21:08:23.0242 0884 Detected object count: 147
      21:08:23.0242 0884 Actual detected object count: 147
      21:09:00.0854 0884 C:\Windows\System32\Drivers\93a7feacee08d566.sys - copied to quarantine
      21:09:00.0869 0884 HKLM\SYSTEM\ControlSet001\services\93a7feacee08d566 - will be deleted on reboot
      21:09:00.0932 0884 HKLM\SYSTEM\ControlSet002\services\93a7feacee08d566 - will be deleted on reboot
      21:09:01.0275 0884 C:\Windows\System32\Drivers\93a7feacee08d566.sys - will be deleted on reboot
      21:09:01.0275 0884 93a7feacee08d566 ( Rootkit.Win32.Necurs.gen ) - User select action: Delete
      21:09:01.0275 0884 D_Link_DWA-125 ( UnsignedFile.Multi.Generic ) - skipped by user
      21:09:01.0275 0884 D_Link_DWA-125 ( UnsignedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0291 0884 D_Link_DWA-125_WPS ( UnsignedFile.Multi.Generic ) - skipped by user
      21:09:01.0291 0884 D_Link_DWA-125_WPS ( UnsignedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0291 0884 EpsonBidirectionalService ( UnsignedFile.Multi.Generic ) - skipped by user
      21:09:01.0291 0884 EpsonBidirectionalService ( UnsignedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0291 0884 mpsdrv ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0291 0884 mpsdrv ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0291 0884 MRxDAV ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0291 0884 MRxDAV ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0291 0884 mrxsmb ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0291 0884 mrxsmb ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0291 0884 mrxsmb10 ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0291 0884 mrxsmb10 ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0306 0884 mrxsmb20 ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0306 0884 mrxsmb20 ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0306 0884 msahci ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0306 0884 msahci ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0306 0884 msdsm ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0306 0884 msdsm ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0306 0884 Msfs ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0306 0884 Msfs ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0306 0884 mshidkmdf ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0306 0884 mshidkmdf ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0306 0884 msisadrv ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0306 0884 msisadrv ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0306 0884 MSKSSRV ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0306 0884 MSKSSRV ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0322 0884 MSPCLOCK ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0322 0884 MSPCLOCK ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0322 0884 MSPQM ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0322 0884 MSPQM ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0322 0884 MsRPC ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0322 0884 MsRPC ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0322 0884 mssmbios ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0322 0884 mssmbios ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0322 0884 MSTEE ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0322 0884 MSTEE ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0322 0884 MTConfig ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0322 0884 MTConfig ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0337 0884 Mup ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0337 0884 Mup ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0337 0884 NativeWifiP ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0337 0884 NativeWifiP ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0337 0884 NdisCap ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0337 0884 NdisCap ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0337 0884 NdisTapi ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0337 0884 NdisTapi ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0337 0884 Ndisuio ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0337 0884 Ndisuio ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0353 0884 NdisWan ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0353 0884 NdisWan ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0353 0884 NDProxy ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0353 0884 NDProxy ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0353 0884 NetBIOS ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0353 0884 NetBIOS ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0353 0884 NetBT ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0353 0884 NetBT ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0353 0884 netr28ux ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0353 0884 netr28ux ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0353 0884 nfrd960 ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0353 0884 nfrd960 ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0353 0884 Npfs ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0353 0884 Npfs ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0369 0884 nsiproxy ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0369 0884 nsiproxy ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0369 0884 Ntfs ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0369 0884 Ntfs ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0369 0884 Null ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0369 0884 Null ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0369 0884 nvlddmkm ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0369 0884 nvlddmkm ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0369 0884 nvraid ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0369 0884 nvraid ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0369 0884 nvstor ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0369 0884 nvstor ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0384 0884 nv_agp ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0384 0884 nv_agp ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0384 0884 ohci1394 ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0384 0884 ohci1394 ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0384 0884 Parport ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0384 0884 Parport ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0384 0884 partmgr ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0384 0884 partmgr ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0384 0884 pci ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0384 0884 pci ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0384 0884 pciide ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0384 0884 pciide ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0400 0884 pcmcia ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0400 0884 pcmcia ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0400 0884 pcw ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0400 0884 pcw ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0400 0884 PEAUTH ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0400 0884 PEAUTH ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0400 0884 PptpMiniport ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0400 0884 PptpMiniport ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0400 0884 Processor ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0400 0884 Processor ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0415 0884 Psched ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0415 0884 Psched ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0415 0884 ql2300 ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0415 0884 ql2300 ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0415 0884 ql40xx ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0415 0884 ql40xx ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0415 0884 QWAVEdrv ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0415 0884 QWAVEdrv ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0415 0884 RasAcd ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0415 0884 RasAcd ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0415 0884 RasAgileVpn ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0415 0884 RasAgileVpn ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0431 0884 Rasl2tp ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0431 0884 Rasl2tp ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0431 0884 RasPppoe ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0431 0884 RasPppoe ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0431 0884 RasSstp ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0431 0884 RasSstp ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0431 0884 rdbss ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0431 0884 rdbss ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0431 0884 rdpbus ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0431 0884 rdpbus ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0431 0884 RDPCDD ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0431 0884 RDPCDD ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0447 0884 RDPDR ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0447 0884 RDPDR ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0447 0884 RDPENCDD ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0447 0884 RDPENCDD ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0447 0884 RDPREFMP ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0447 0884 RDPREFMP ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0447 0884 RdpVideoMiniport ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0447 0884 RdpVideoMiniport ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0447 0884 RDPWD ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0447 0884 RDPWD ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0447 0884 rdyboost ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0447 0884 rdyboost ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0447 0884 rspndr ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0447 0884 rspndr ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0462 0884 RTL8167 ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0462 0884 RTL8167 ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0462 0884 s3cap ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0462 0884 s3cap ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0462 0884 sbp2port ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0462 0884 sbp2port ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0462 0884 scfilter ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0462 0884 scfilter ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0462 0884 secdrv ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0478 0884 secdrv ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0478 0884 Serenum ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0478 0884 Serenum ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0478 0884 Serial ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0478 0884 Serial ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0478 0884 sermouse ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0478 0884 sermouse ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0478 0884 sffdisk ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0478 0884 sffdisk ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0478 0884 sffp_mmc ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0478 0884 sffp_mmc ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0478 0884 sffp_sd ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0478 0884 sffp_sd ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0493 0884 sfloppy ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0493 0884 sfloppy ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0493 0884 SiSRaid2 ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0493 0884 SiSRaid2 ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0493 0884 SiSRaid4 ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0493 0884 SiSRaid4 ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0493 0884 Smb ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0493 0884 Smb ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0493 0884 spldr ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0493 0884 spldr ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0493 0884 sptd ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0493 0884 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0509 0884 srv ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0509 0884 srv ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0509 0884 srv2 ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0509 0884 srv2 ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0509 0884 srvnet ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0509 0884 srvnet ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0509 0884 ssadbus ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0509 0884 ssadbus ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0525 0884 StarWindServiceAE ( UnsignedFile.Multi.Generic ) - skipped by user
      21:09:01.0525 0884 StarWindServiceAE ( UnsignedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0525 0884 stexstor ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0525 0884 stexstor ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0525 0884 storflt ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0525 0884 storflt ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0525 0884 storvsc ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0525 0884 storvsc ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0525 0884 swenum ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0525 0884 swenum ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0540 0884 Synth3dVsc ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0540 0884 Synth3dVsc ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0540 0884 syshost32 ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0540 0884 syshost32 ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0540 0884 Tcpip ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0540 0884 Tcpip ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0540 0884 TCPIP6 ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0540 0884 TCPIP6 ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0540 0884 tcpipreg ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0540 0884 tcpipreg ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0540 0884 TDPIPE ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0540 0884 TDPIPE ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0556 0884 TDTCP ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0556 0884 TDTCP ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0556 0884 tdx ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0556 0884 tdx ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0556 0884 TermDD ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0556 0884 TermDD ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0556 0884 terminpt ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0556 0884 terminpt ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0556 0884 tssecsrv ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0556 0884 tssecsrv ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0556 0884 TsUsbFlt ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0556 0884 TsUsbFlt ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0556 0884 TsUsbGD ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0556 0884 TsUsbGD ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0571 0884 tsusbhub ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0571 0884 tsusbhub ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0571 0884 tunnel ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0571 0884 tunnel ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0571 0884 uagp35 ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0571 0884 uagp35 ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0571 0884 udfs ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0571 0884 udfs ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0571 0884 uliagpkx ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0571 0884 uliagpkx ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0571 0884 umbus ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0571 0884 umbus ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0571 0884 UmPass ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0571 0884 UmPass ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0587 0884 usbccgp ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0587 0884 usbccgp ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0587 0884 usbcir ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0587 0884 usbcir ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0587 0884 usbehci ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0587 0884 usbehci ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0587 0884 usbhub ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0587 0884 usbhub ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0587 0884 usbohci ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0603 0884 usbohci ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0603 0884 usbprint ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0603 0884 usbprint ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0603 0884 USBSTOR ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0603 0884 USBSTOR ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0603 0884 usbuhci ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0603 0884 usbuhci ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0603 0884 vdrvroot ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0603 0884 vdrvroot ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0603 0884 vga ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0603 0884 vga ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0603 0884 VgaSave ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0603 0884 VgaSave ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0618 0884 vhdmp ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0618 0884 vhdmp ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0618 0884 viaide ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0618 0884 viaide ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0634 0884 vmbus ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0634 0884 vmbus ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0634 0884 VMBusHID ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0634 0884 VMBusHID ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0634 0884 volmgr ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0634 0884 volmgr ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0634 0884 volmgrx ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0634 0884 volmgrx ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0634 0884 volsnap ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0634 0884 volsnap ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0649 0884 vsmraid ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0649 0884 vsmraid ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0649 0884 vwifibus ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0649 0884 vwifibus ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0649 0884 vwififlt ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0649 0884 vwififlt ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0649 0884 WacomPen ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0649 0884 WacomPen ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0649 0884 WANARP ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0649 0884 WANARP ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0665 0884 Wanarpv6 ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0665 0884 Wanarpv6 ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0665 0884 Wd ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0665 0884 Wd ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0665 0884 Wdf01000 ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0665 0884 Wdf01000 ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0665 0884 WfpLwf ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0665 0884 WfpLwf ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0665 0884 WIMMount ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0665 0884 WIMMount ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0665 0884 WmiAcpi ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0665 0884 WmiAcpi ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0681 0884 ws2ifsl ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0681 0884 ws2ifsl ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0681 0884 WudfPf ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0681 0884 WudfPf ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:01.0681 0884 WUDFRd ( LockedFile.Multi.Generic ) - skipped by user
      21:09:01.0681 0884 WUDFRd ( LockedFile.Multi.Generic ) - User select action: Skip
      21:09:23.0879 1432 Deinitialize success