• Registrarse
  • Iniciar sesión


  • Página 1 de 2 12 ÚltimoÚltimo
    Resultados 1 al 10 de 13

    PC infectado por Troyanos (archivos "desktop.ini" i "services.exe")

    Buenos días, llevo siguiendo este foro desde hace tiempo, aunque este es mi primer tema en el. La qüestión es que desde que me descargue un archivo mediante torrent, el Panda Cloud Antivirus me empezó ...

    1. #1
      Usuario Avatar de Maties360
      Registrado
      nov 2011
      Ubicación
      Mallorca (Sant Llorenç des Cardassar)
      Mensajes
      9

      PC infectado por Troyanos (archivos "desktop.ini" i "services.exe")

      Buenos días,

      llevo siguiendo este foro desde hace tiempo, aunque este es mi primer tema en el. La qüestión es que desde que me descargue un archivo mediante torrent, el Panda Cloud Antivirus me empezó a detectar varios virus de tipo Troyano, entre los cuales hay tres que no pudo neutralizar. Realizé el análisis completo del equipo, y me detectó estos tres troyanos:

      - Nombre del virus: Trj/CI.A. Ubicación: "C:\windows\assembly\GAC_32\desktop.ini".
      - N. del virus: Trj/CI.A. Ubicación: "C:\windows\assembly\GAC_64\desktop.ini".
      - N. del virus: desconocido. Ubicación: "C:\windows\system32\services.exe".

      Desde que me detectó estos tres virus, cuando abro el Google Chrome, el uso del CPU es del 100%, y el PC me va muy relentizado. Además, siguiendo los consejos del antivirus, me fui al directorio donde se encuentran los archivos ".ini", y los intenté eliminar como administrador, y me resultó imposible. Siguendo la Guía de Detección y Eliminación de Malware, ejecuté el Rkill, analizé el PC con Malwarebytes Anti-Malware, y después pasé el CCleaner. Pero el Panda Cloud Antivirus me los seguía detectando. Pero esta vez ponia como solución, que después del reinicio del ordenador, estos se eliminarían. Lo reinicié, y con el último análisis completo del ordenador, ahora no me detecta los troyanos Trj/CI.A, pero el "services.exe" me lo sigue detectando. Y el Panda me recomienda que a los archivos ".exe" los elimine directamente. Pero viendo que es un archivo ubicado en la carpeta Windows, no me atrevo a borrarlo si antes consultar a expertos.

      Estaria muy agradecido si me guiarais, y me resolvierais la duda. Decir que desde que los Trj/CI.A se han eliminado, el CPU funciona, aparentemente, de forma correcta. Pero el troyano desconocido, que ha infectado el archivo "services.exe" sigue ahí.

      Gracias de antemano,

      Maties Alzina Soler
      Última edición por Maties360 fecha: 25/11/12 a las 10:24:05

    2. #2
      Usuario Avatar de Maties360
      Registrado
      nov 2011
      Ubicación
      Mallorca (Sant Llorenç des Cardassar)
      Mensajes
      9

      Re: PC infectado por Troyanos (archivos "desktop.ini" i "services.exe")

      Corrección. El Panda Cloud Antivirus los elimina al reiniciar el ordenador, pero se vuelven a infectar los archivos ".ini". En este caso de la ubicación siguiente: "c:\windows\assembly\gac_64\desktop.ini". Y me pide que reinicie el ordenador.

    3. #3
      Moderador
      Avatar de @DavidG_EB
      Registrado
      jul 2009
      Ubicación
      Mexico
      Mensajes
      10.633

      Re: PC infectado por Troyanos (archivos "desktop.ini" i "services.exe")

      Hola Maties360
      Y bienvenid al foro de InfoSpyware

      Temas de interes y utilidad:
      Porfavor, no te autorespondas ya que tu mensaje no aparecera con 0 respuestas y pensaremos que estas siendo ayudado cuando no es asi Si quieres añadir informacion usa el boton editar y no responder

      Si te parece realiza lo que se menciona en este enlace:
      Nos traerias el reporte de Malwarebytes de la pestaña Registros y de TDSSKiller (C:\TDSSKiller_[Versión]_[Fecha]_[Hora].txt)comentandonos como sigue el problema.

      Saludo
      ErdrickBass
      No importa lo fuerte que sea tu oponente. Lo importante es que estés de pie ante él

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    4. #4
      Usuario Avatar de Maties360
      Registrado
      nov 2011
      Ubicación
      Mallorca (Sant Llorenç des Cardassar)
      Mensajes
      9

      Re: PC infectado por Troyanos (archivos "desktop.ini" i "services.exe")

      Buenas,

      en primer lugar gracias por contestar. Lo siento por la autorespuesta, pues no sabía que podría crear confusión.

      He realizado todos los pasos que me ha sugerido, siguento el enlace. El TDSSKiller me encuentra el Rootkit.ZeroAccesss, pero despues no lo puede curar. Se puede ver en el registro, como la cura falla. Analizo el PC con el Malwarebytes Anti-Malware, y no me encuentra ningún archivo malicioso. Por último, he ejecutado el ServicesRepair.exe, todo correcto, y he reiniciado el PC. Pero una vez reiniciado, he seguido los mismos pasos para combrobar la existencia del virus, y el TDSSKiller me sigue detectando el RootKit.ZeroAccess en la ubicación del "Services.exe".

      Decir que el PC ahora parece funcionar bien, y el CPU actúa normalmente cuando inicio el navegador. Pero el Panda Cloud Antivirus me sigue detectando infecciones en los archivos "desktop.ini" en las rutas "C:\system\assembly\GAC_32\" y el correspondiente "C:\...\GAC_64\".

      He aquí el registro del TDSSKiller:

      19:21:27.0565 6116 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
      19:21:27.0830 6116 ============================================================
      19:21:27.0830 6116 Current date / time: 2012/11/25 19:21:27.0830
      19:21:27.0830 6116 SystemInfo:
      19:21:27.0830 6116
      19:21:27.0830 6116 OS Version: 6.1.7601 ServicePack: 1.0
      19:21:27.0830 6116 Product type: Workstation
      19:21:27.0830 6116 ComputerName: MATIES-PC
      19:21:27.0830 6116 UserName: Maties
      19:21:27.0830 6116 Windows directory: C:\Windows
      19:21:27.0830 6116 System windows directory: C:\Windows
      19:21:27.0830 6116 Running under WOW64
      19:21:27.0830 6116 Processor architecture: Intel x64
      19:21:27.0830 6116 Number of processors: 2
      19:21:27.0830 6116 Page size: 0x1000
      19:21:27.0830 6116 Boot type: Normal boot
      19:21:27.0830 6116 ============================================================
      19:21:28.0891 6116 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
      19:21:28.0891 6116 ============================================================
      19:21:28.0891 6116 \Device\Harddisk0\DR0:
      19:21:28.0891 6116 MBR partitions:
      19:21:28.0891 6116 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1C00800, BlocksNum 0x32000
      19:21:28.0891 6116 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1C32800, BlocksNum 0x38753000
      19:21:28.0891 6116 ============================================================
      19:21:28.0922 6116 C: <-> \Device\Harddisk0\DR0\Partition2
      19:21:28.0922 6116 ============================================================
      19:21:28.0922 6116 Initialize success
      19:21:28.0922 6116 ============================================================
      19:21:30.0576 2328 ============================================================
      19:21:30.0576 2328 Scan started
      19:21:30.0576 2328 Mode: Manual;
      19:21:30.0576 2328 ============================================================
      19:21:31.0418 2328 ================ Scan system memory ========================
      19:21:31.0418 2328 System memory - ok
      19:21:31.0418 2328 ================ Scan services =============================
      19:21:31.0777 2328 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
      19:21:31.0777 2328 1394ohci - ok
      19:21:31.0839 2328 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
      19:21:31.0839 2328 ACPI - ok
      19:21:31.0902 2328 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
      19:21:31.0902 2328 AcpiPmi - ok
      19:21:31.0995 2328 [ 34400005DE52842C4D6D4EE978B4D7CE ] AdobeActiveFileMonitor8.0 c:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe
      19:21:32.0011 2328 AdobeActiveFileMonitor8.0 - ok
      19:21:32.0151 2328 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
      19:21:32.0151 2328 AdobeARMservice - ok
      19:21:32.0307 2328 [ 0CB0AA071C7B86A64F361DCFDF357329 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
      19:21:32.0307 2328 AdobeFlashPlayerUpdateSvc - ok
      19:21:32.0370 2328 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
      19:21:32.0370 2328 adp94xx - ok
      19:21:32.0401 2328 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
      19:21:32.0416 2328 adpahci - ok
      19:21:32.0448 2328 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
      19:21:32.0448 2328 adpu320 - ok
      19:21:32.0479 2328 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
      19:21:32.0479 2328 AeLookupSvc - ok
      19:21:32.0541 2328 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
      19:21:32.0541 2328 AFD - ok
      19:21:32.0604 2328 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
      19:21:32.0604 2328 agp440 - ok
      19:21:32.0619 2328 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
      19:21:32.0619 2328 ALG - ok
      19:21:32.0650 2328 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
      19:21:32.0650 2328 aliide - ok
      19:21:32.0697 2328 [ D865F8ABFF031563E860D16A38BD5A35 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
      19:21:32.0697 2328 AMD External Events Utility - ok
      19:21:32.0713 2328 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
      19:21:32.0713 2328 amdide - ok
      19:21:32.0744 2328 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
      19:21:32.0760 2328 AmdK8 - ok
      19:21:32.0884 2328 [ 83418F6EE5A81DDDD8E248FCBFC99AF6 ] amdkmdag C:\Windows\system32\DRIVERS\atipmdag.sys
      19:21:32.0931 2328 amdkmdag - ok
      19:21:32.0978 2328 [ 7E58B5E1DEAA70BD46997068DF06B4E3 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
      19:21:32.0978 2328 amdkmdap - ok
      19:21:32.0994 2328 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
      19:21:33.0009 2328 AmdPPM - ok
      19:21:33.0056 2328 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
      19:21:33.0056 2328 amdsata - ok
      19:21:33.0103 2328 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
      19:21:33.0103 2328 amdsbs - ok
      19:21:33.0118 2328 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
      19:21:33.0118 2328 amdxata - ok
      19:21:33.0181 2328 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
      19:21:33.0181 2328 AppID - ok
      19:21:33.0196 2328 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
      19:21:33.0196 2328 AppIDSvc - ok
      19:21:33.0243 2328 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
      19:21:33.0259 2328 Appinfo - ok
      19:21:33.0290 2328 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
      19:21:33.0290 2328 arc - ok
      19:21:33.0306 2328 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
      19:21:33.0306 2328 arcsas - ok
      19:21:33.0321 2328 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
      19:21:33.0321 2328 AsyncMac - ok
      19:21:33.0368 2328 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
      19:21:33.0368 2328 atapi - ok
      19:21:33.0446 2328 [ 70260C7C98CC0101316F5B2650C3BB44 ] athr C:\Windows\system32\DRIVERS\athrx.sys
      19:21:33.0446 2328 athr - ok
      19:21:33.0524 2328 [ C07A040D6B5A42DD41EE386CF90974C8 ] AtiPcie C:\Windows\system32\DRIVERS\AtiPcie.sys
      19:21:33.0524 2328 AtiPcie - ok
      19:21:33.0586 2328 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
      19:21:33.0586 2328 AudioEndpointBuilder - ok
      19:21:33.0618 2328 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
      19:21:33.0618 2328 AudioSrv - ok
      19:21:33.0727 2328 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
      19:21:33.0742 2328 AxInstSV - ok
      19:21:33.0774 2328 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
      19:21:33.0774 2328 b06bdrv - ok
      19:21:33.0836 2328 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
      19:21:33.0836 2328 b57nd60a - ok
      19:21:33.0883 2328 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
      19:21:33.0883 2328 BDESVC - ok
      19:21:33.0945 2328 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
      19:21:33.0945 2328 Beep - ok
      19:21:33.0976 2328 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
      19:21:33.0992 2328 blbdrive - ok
      19:21:34.0054 2328 [ 3F56903E124E820AEECE6D471583C6C1 ] Bonjour Service C:\Program Files (x86)\Bonjour\mDNSResponder.exe
      19:21:34.0070 2328 Bonjour Service - ok
      19:21:34.0117 2328 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
      19:21:34.0117 2328 bowser - ok
      19:21:34.0148 2328 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
      19:21:34.0148 2328 BrFiltLo - ok
      19:21:34.0164 2328 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
      19:21:34.0164 2328 BrFiltUp - ok
      19:21:34.0226 2328 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
      19:21:34.0226 2328 Browser - ok
      19:21:34.0242 2328 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
      19:21:34.0242 2328 Brserid - ok
      19:21:34.0257 2328 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
      19:21:34.0257 2328 BrSerWdm - ok
      19:21:34.0273 2328 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
      19:21:34.0273 2328 BrUsbMdm - ok
      19:21:34.0304 2328 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
      19:21:34.0304 2328 BrUsbSer - ok
      19:21:34.0320 2328 [ FF7C57973EEAD140062238C5A0B7D455 ] BTCFilterService C:\Windows\system32\DRIVERS\motfilt.sys
      19:21:34.0320 2328 BTCFilterService - ok
      19:21:34.0335 2328 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
      19:21:34.0335 2328 BTHMODEM - ok
      19:21:34.0382 2328 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
      19:21:34.0382 2328 bthserv - ok
      19:21:34.0398 2328 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
      19:21:34.0398 2328 cdfs - ok
      19:21:34.0476 2328 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
      19:21:34.0476 2328 cdrom - ok
      19:21:34.0538 2328 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
      19:21:34.0538 2328 CertPropSvc - ok
      19:21:34.0569 2328 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
      19:21:34.0569 2328 circlass - ok
      19:21:34.0600 2328 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
      19:21:34.0600 2328 CLFS - ok
      19:21:34.0663 2328 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
      19:21:34.0663 2328 clr_optimization_v2.0.50727_32 - ok
      19:21:34.0694 2328 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
      19:21:34.0694 2328 clr_optimization_v2.0.50727_64 - ok
      19:21:34.0772 2328 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
      19:21:34.0772 2328 clr_optimization_v4.0.30319_32 - ok
      19:21:34.0788 2328 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
      19:21:34.0803 2328 clr_optimization_v4.0.30319_64 - ok
      19:21:34.0834 2328 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
      19:21:34.0834 2328 CmBatt - ok
      19:21:34.0881 2328 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
      19:21:34.0881 2328 cmdide - ok
      19:21:34.0944 2328 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
      19:21:34.0944 2328 CNG - ok
      19:21:34.0959 2328 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
      19:21:34.0959 2328 Compbatt - ok
      19:21:35.0006 2328 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
      19:21:35.0006 2328 CompositeBus - ok
      19:21:35.0022 2328 COMSysApp - ok
      19:21:35.0053 2328 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
      19:21:35.0053 2328 crcdisk - ok
      19:21:35.0100 2328 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
      19:21:35.0100 2328 CryptSvc - ok
      19:21:35.0162 2328 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
      19:21:35.0162 2328 DcomLaunch - ok
      19:21:35.0193 2328 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
      19:21:35.0193 2328 defragsvc - ok
      19:21:35.0256 2328 [ 59D90B6A7FBC4CC712DD7C5868618480 ] DeviceMonitorService C:\Program Files (x86)\Motorola Media Link\Lite\NServiceEntry.exe
      19:21:35.0256 2328 DeviceMonitorService - ok
      19:21:35.0302 2328 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
      19:21:35.0302 2328 DfsC - ok
      19:21:35.0349 2328 [ 867FA8B9E9E3078F68C4089904BBF4B0 ] dgderdrv C:\Windows\system32\drivers\dgderdrv.sys
      19:21:35.0349 2328 dgderdrv - ok
      19:21:35.0412 2328 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
      19:21:35.0412 2328 Dhcp - ok
      19:21:35.0458 2328 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
      19:21:35.0458 2328 discache - ok
      19:21:35.0490 2328 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
      19:21:35.0505 2328 Disk - ok
      19:21:35.0536 2328 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
      19:21:35.0536 2328 Dnscache - ok
      19:21:35.0599 2328 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
      19:21:35.0599 2328 dot3svc - ok
      19:21:35.0646 2328 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
      19:21:35.0646 2328 DPS - ok
      19:21:35.0677 2328 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
      19:21:35.0677 2328 drmkaud - ok
      19:21:35.0724 2328 [ 61E894FE1E9CC720C909E6E343351794 ] DsiWMIService C:\Program Files (x86)\Launch Manager\dsiwmis.exe
      19:21:35.0724 2328 DsiWMIService - ok
      19:21:35.0802 2328 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
      19:21:35.0802 2328 DXGKrnl - ok
      19:21:35.0848 2328 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
      19:21:35.0848 2328 EapHost - ok
      19:21:35.0942 2328 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
      19:21:35.0958 2328 ebdrv - ok
      19:21:36.0020 2328 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
      19:21:36.0020 2328 EFS - ok
      19:21:36.0098 2328 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
      19:21:36.0114 2328 ehRecvr - ok
      19:21:36.0145 2328 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
      19:21:36.0145 2328 ehSched - ok
      19:21:36.0192 2328 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
      19:21:36.0207 2328 elxstor - ok
      19:21:36.0285 2328 [ 91C2E6234F6884C6FEEF9658D8EDE6B6 ] ePowerSvc C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe
      19:21:36.0301 2328 ePowerSvc - ok
      19:21:36.0410 2328 [ B5581646636759D0DAFA8B008881C079 ] EPSON_EB_RPCV4_01 C:\ProgramData\EPSON\EPW!3 SSRP\E_S40STB.EXE
      19:21:36.0426 2328 EPSON_EB_RPCV4_01 - ok
      19:21:36.0472 2328 [ 1E345F2A2D95DA3190596E691CDE9342 ] EPSON_PM_RPCV4_01 C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.EXE
      19:21:36.0472 2328 EPSON_PM_RPCV4_01 - ok
      19:21:36.0535 2328 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
      19:21:36.0535 2328 ErrDev - ok
      19:21:36.0582 2328 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
      19:21:36.0582 2328 EventSystem - ok
      19:21:36.0613 2328 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
      19:21:36.0613 2328 exfat - ok
      19:21:36.0628 2328 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
      19:21:36.0628 2328 fastfat - ok
      19:21:36.0753 2328 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
      19:21:36.0753 2328 Fax - ok
      19:21:36.0769 2328 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
      19:21:36.0769 2328 fdc - ok
      19:21:36.0800 2328 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
      19:21:36.0800 2328 fdPHost - ok
      19:21:36.0816 2328 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
      19:21:36.0816 2328 FDResPub - ok
      19:21:36.0831 2328 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
      19:21:36.0831 2328 FileInfo - ok
      19:21:36.0847 2328 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
      19:21:36.0847 2328 Filetrace - ok
      19:21:36.0925 2328 [ ABEDFD48AC042C6AAAD32452E77217A1 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
      19:21:36.0925 2328 FLEXnet Licensing Service - ok
      19:21:36.0956 2328 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
      19:21:36.0972 2328 flpydisk - ok
      19:21:37.0003 2328 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
      19:21:37.0003 2328 FltMgr - ok
      19:21:37.0081 2328 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
      19:21:37.0081 2328 FontCache - ok
      19:21:37.0143 2328 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
      19:21:37.0143 2328 FontCache3.0.0.0 - ok
      19:21:37.0159 2328 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
      19:21:37.0159 2328 FsDepends - ok
      19:21:37.0221 2328 [ 6C06701BF1DB05405804D7EB610991CE ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
      19:21:37.0221 2328 fssfltr - ok
      19:21:37.0330 2328 [ 4CE9DAC1518FF7E77BD213E6394B9D77 ] fsssvc C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
      19:21:37.0346 2328 fsssvc - ok
      19:21:37.0408 2328 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
      19:21:37.0408 2328 Fs_Rec - ok
      19:21:37.0486 2328 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
      19:21:37.0486 2328 fvevol - ok
      19:21:37.0518 2328 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
      19:21:37.0518 2328 gagp30kx - ok
      19:21:37.0580 2328 [ 1FDA0DF739234C4023851A282DD28704 ] GameConsoleService C:\Program Files (x86)\Packard Bell Games\Packard Bell Game Console\GameConsoleService.exe
      19:21:37.0580 2328 GameConsoleService - ok
      19:21:37.0642 2328 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
      19:21:37.0658 2328 gpsvc - ok
      19:21:37.0689 2328 [ 0191DEE9B9EB7902AF2CF4F67301095D ] GREGService C:\Program Files (x86)\Packard Bell\Registration\GREGsvc.exe
      19:21:37.0689 2328 GREGService - ok
      19:21:37.0752 2328 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
      19:21:37.0752 2328 gupdate - ok
      19:21:37.0783 2328 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
      19:21:37.0783 2328 gupdatem - ok
      19:21:37.0814 2328 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
      19:21:37.0814 2328 hcw85cir - ok
      19:21:37.0876 2328 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
      19:21:37.0892 2328 HdAudAddService - ok
      19:21:37.0908 2328 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
      19:21:37.0923 2328 HDAudBus - ok
      19:21:37.0923 2328 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
      19:21:37.0923 2328 HidBatt - ok
      19:21:37.0954 2328 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
      19:21:37.0954 2328 HidBth - ok
      19:21:37.0970 2328 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
      19:21:37.0970 2328 HidIr - ok
      19:21:38.0001 2328 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
      19:21:38.0001 2328 hidserv - ok
      19:21:38.0048 2328 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
      19:21:38.0048 2328 HidUsb - ok
      19:21:38.0095 2328 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
      19:21:38.0095 2328 hkmsvc - ok
      19:21:38.0142 2328 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
      19:21:38.0142 2328 HomeGroupListener - ok
      19:21:38.0204 2328 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
      19:21:38.0204 2328 HomeGroupProvider - ok
      19:21:38.0251 2328 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
      19:21:38.0251 2328 HpSAMD - ok
      19:21:38.0313 2328 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
      19:21:38.0329 2328 HTTP - ok
      19:21:38.0376 2328 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
      19:21:38.0376 2328 hwpolicy - ok
      19:21:38.0438 2328 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
      19:21:38.0438 2328 i8042prt - ok
      19:21:38.0500 2328 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
      19:21:38.0500 2328 iaStorV - ok
      19:21:38.0578 2328 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
      19:21:38.0578 2328 idsvc - ok
      19:21:38.0625 2328 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
      19:21:38.0625 2328 iirsp - ok
      19:21:38.0688 2328 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
      19:21:38.0688 2328 IKEEXT - ok
      19:21:38.0766 2328 [ FEADC18677A85A123E95A9B976101120 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
      19:21:38.0781 2328 IntcAzAudAddService - ok
      19:21:38.0828 2328 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
      19:21:38.0828 2328 intelide - ok
      19:21:38.0859 2328 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
      19:21:38.0859 2328 intelppm - ok
      19:21:38.0890 2328 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
      19:21:38.0890 2328 IPBusEnum - ok
      19:21:38.0922 2328 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
      19:21:38.0922 2328 IpFilterDriver - ok
      19:21:38.0968 2328 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
      19:21:38.0968 2328 IPMIDRV - ok
      19:21:39.0015 2328 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
      19:21:39.0015 2328 IPNAT - ok
      19:21:39.0046 2328 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
      19:21:39.0046 2328 IRENUM - ok
      19:21:39.0093 2328 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
      19:21:39.0093 2328 isapnp - ok
      19:21:39.0140 2328 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
      19:21:39.0140 2328 iScsiPrt - ok
      19:21:39.0187 2328 [ C9B4ECC187581E5BF3F76648884B7829 ] k57nd60a C:\Windows\system32\DRIVERS\k57nd60a.sys
      19:21:39.0187 2328 k57nd60a - ok
      19:21:39.0187 2328 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
      19:21:39.0187 2328 kbdclass - ok
      19:21:39.0218 2328 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
      19:21:39.0218 2328 kbdhid - ok
      19:21:39.0234 2328 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
      19:21:39.0234 2328 KeyIso - ok
      19:21:39.0265 2328 KMService - ok
      19:21:39.0312 2328 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
      19:21:39.0312 2328 KSecDD - ok
      19:21:39.0358 2328 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
      19:21:39.0358 2328 KSecPkg - ok
      19:21:39.0374 2328 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
      19:21:39.0390 2328 ksthunk - ok
      19:21:39.0405 2328 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
      19:21:39.0421 2328 KtmRm - ok
      19:21:39.0499 2328 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
      19:21:39.0499 2328 LanmanServer - ok
      19:21:39.0546 2328 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
      19:21:39.0546 2328 LanmanWorkstation - ok
      19:21:39.0577 2328 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
      19:21:39.0592 2328 lltdio - ok
      19:21:39.0624 2328 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
      19:21:39.0624 2328 lltdsvc - ok
      19:21:39.0639 2328 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
      19:21:39.0639 2328 lmhosts - ok
      19:21:39.0686 2328 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
      19:21:39.0686 2328 LSI_FC - ok
      19:21:39.0702 2328 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
      19:21:39.0717 2328 LSI_SAS - ok
      19:21:39.0717 2328 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
      19:21:39.0717 2328 LSI_SAS2 - ok
      19:21:39.0733 2328 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
      19:21:39.0733 2328 LSI_SCSI - ok
      19:21:39.0764 2328 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
      19:21:39.0764 2328 luafv - ok
      19:21:39.0842 2328 [ 024DA28053D57E9E32BEE52600576BBB ] MarvinBus C:\Windows\system32\DRIVERS\MarvinBus64.sys
      19:21:39.0842 2328 MarvinBus - ok
      19:21:39.0889 2328 [ A8FE8F2783B2929B56F5370A89356CE9 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
      19:21:39.0889 2328 MBAMProtector - ok
      19:21:39.0982 2328 [ 85B16A92B117A5A800032ECD904B86DB ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
      19:21:39.0982 2328 MBAMScheduler - ok
      19:21:40.0060 2328 [ 20E2469DB709FC675E655CEAA11BE312 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
      19:21:40.0076 2328 MBAMService - ok
      19:21:40.0107 2328 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
      19:21:40.0123 2328 Mcx2Svc - ok
      19:21:40.0138 2328 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
      19:21:40.0138 2328 megasas - ok
      19:21:40.0170 2328 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
      19:21:40.0170 2328 MegaSR - ok
      19:21:40.0279 2328 Microsoft SharePoint Workspace Audit Service - ok
      19:21:40.0310 2328 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
      19:21:40.0310 2328 MMCSS - ok
      19:21:40.0326 2328 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
      19:21:40.0326 2328 Modem - ok
      19:21:40.0341 2328 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
      19:21:40.0357 2328 monitor - ok
      19:21:40.0388 2328 [ 43E754047C6DEE50666554D3C66D6279 ] motccgp C:\Windows\system32\DRIVERS\motccgp.sys
      19:21:40.0388 2328 motccgp - ok
      19:21:40.0404 2328 [ 577399C75CF85AC68E7830EB150F45EF ] motccgpfl C:\Windows\system32\DRIVERS\motccgpfl.sys
      19:21:40.0404 2328 motccgpfl - ok
      19:21:40.0419 2328 motmodem - ok
      19:21:40.0544 2328 [ 11AAA0083D30F4677AD2B218EE7F5CE9 ] Motorola Device Manager C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe
      19:21:40.0544 2328 Motorola Device Manager - ok
      19:21:40.0575 2328 [ 19BC2161C3FCCED802F1BCD9B78C3466 ] MotoSwitchService C:\Windows\system32\DRIVERS\motswch.sys
      19:21:40.0575 2328 MotoSwitchService - ok
      19:21:40.0606 2328 [ C4F1495598C7E1FEF53BCFD84A5BD53E ] Motousbnet C:\Windows\system32\DRIVERS\Motousbnet.sys
      19:21:40.0606 2328 Motousbnet - ok
      19:21:40.0622 2328 [ D075B1D964A314D240F5498773EE89DF ] motusbdevice C:\Windows\system32\DRIVERS\motusbdevice.sys
      19:21:40.0622 2328 motusbdevice - ok
      19:21:40.0638 2328 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
      19:21:40.0653 2328 mouclass - ok
      19:21:40.0684 2328 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
      19:21:40.0684 2328 mouhid - ok
      19:21:40.0731 2328 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
      19:21:40.0731 2328 mountmgr - ok
      19:21:40.0762 2328 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
      19:21:40.0778 2328 mpio - ok
      19:21:40.0778 2328 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
      19:21:40.0794 2328 mpsdrv - ok
      19:21:40.0825 2328 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
      19:21:40.0840 2328 MRxDAV - ok
      19:21:40.0887 2328 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
      19:21:40.0887 2328 mrxsmb - ok
      19:21:40.0934 2328 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
      19:21:40.0934 2328 mrxsmb10 - ok
      19:21:40.0950 2328 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
      19:21:40.0950 2328 mrxsmb20 - ok
      19:21:40.0996 2328 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
      19:21:40.0996 2328 msahci - ok
      19:21:41.0012 2328 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
      19:21:41.0012 2328 msdsm - ok
      19:21:41.0043 2328 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
      19:21:41.0043 2328 MSDTC - ok
      19:21:41.0074 2328 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
      19:21:41.0074 2328 Msfs - ok
      19:21:41.0090 2328 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
      19:21:41.0090 2328 mshidkmdf - ok
      19:21:41.0121 2328 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
      19:21:41.0121 2328 msisadrv - ok
      19:21:41.0152 2328 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
      19:21:41.0152 2328 MSiSCSI - ok
      19:21:41.0168 2328 msiserver - ok
      19:21:41.0199 2328 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
      19:21:41.0199 2328 MSKSSRV - ok
      19:21:41.0230 2328 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
      19:21:41.0230 2328 MSPCLOCK - ok
      19:21:41.0246 2328 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
      19:21:41.0246 2328 MSPQM - ok
      19:21:41.0293 2328 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
      19:21:41.0293 2328 MsRPC - ok
      19:21:41.0340 2328 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
      19:21:41.0340 2328 mssmbios - ok
      19:21:41.0355 2328 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
      19:21:41.0355 2328 MSTEE - ok
      19:21:41.0371 2328 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
      19:21:41.0371 2328 MTConfig - ok
      19:21:41.0402 2328 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
      19:21:41.0402 2328 Mup - ok
      19:21:41.0496 2328 [ 9821F54FD943D9E8A5BA56AEBF6297AC ] NanoServiceMain C:\Program Files (x86)\Panda Security\Panda Cloud Antivirus\PSANHost.exe
      19:21:41.0496 2328 NanoServiceMain - ok
      19:21:41.0558 2328 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
      19:21:41.0558 2328 napagent - ok
      19:21:41.0589 2328 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
      19:21:41.0589 2328 NativeWifiP - ok
      19:21:41.0667 2328 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
      19:21:41.0667 2328 NDIS - ok
      19:21:41.0683 2328 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
      19:21:41.0683 2328 NdisCap - ok
      19:21:41.0714 2328 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
      19:21:41.0714 2328 NdisTapi - ok
      19:21:41.0761 2328 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
      19:21:41.0761 2328 Ndisuio - ok
      19:21:41.0808 2328 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
      19:21:41.0808 2328 NdisWan - ok
      19:21:41.0854 2328 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
      19:21:41.0854 2328 NDProxy - ok
      19:21:41.0932 2328 [ 7D2633295EB6FF2B938185874884059D ] Nero BackItUp Scheduler 4.0 C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
      19:21:41.0932 2328 Nero BackItUp Scheduler 4.0 - ok
      19:21:41.0948 2328 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
      19:21:41.0948 2328 NetBIOS - ok
      19:21:42.0010 2328 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
      19:21:42.0010 2328 NetBT - ok
      19:21:42.0026 2328 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
      19:21:42.0026 2328 Netlogon - ok
      19:21:42.0057 2328 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
      19:21:42.0057 2328 Netman - ok
      19:21:42.0088 2328 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
      19:21:42.0088 2328 netprofm - ok
      19:21:42.0104 2328 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
      19:21:42.0104 2328 NetTcpPortSharing - ok
      19:21:42.0135 2328 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
      19:21:42.0135 2328 nfrd960 - ok
      19:21:42.0198 2328 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
      19:21:42.0198 2328 NlaSvc - ok
      19:21:42.0244 2328 [ A82F339386766C585C3CF0C10AA9A002 ] NNSALPC C:\Windows\system32\DRIVERS\NNSAlpc.sys
      19:21:42.0244 2328 NNSALPC - ok
      19:21:42.0276 2328 [ 2A0C5D3890FC56254CBFA8D2A2DFA62C ] NNSHTTP C:\Windows\system32\DRIVERS\NNSHttp.sys
      19:21:42.0276 2328 NNSHTTP - ok
      19:21:42.0291 2328 [ 27F12CE54A0319527E599ACD193B86F5 ] NNSIDS C:\Windows\system32\DRIVERS\NNSIds.sys
      19:21:42.0291 2328 NNSIDS - ok
      19:21:42.0338 2328 [ 02D6C70D0CA4040C81698A2014019E0A ] NNSNAHSL C:\Windows\system32\DRIVERS\NNSNAHSL.sys
      19:21:42.0338 2328 NNSNAHSL - ok
      19:21:42.0385 2328 [ 488A615DDA26640FBEAC945678208E23 ] NNSPICC C:\Windows\system32\DRIVERS\NNSPicc.sys
      19:21:42.0385 2328 NNSPICC - ok
      19:21:42.0478 2328 [ 7A07299FB6BCE5F563B852FE930B5311 ] NNSPIHSW C:\Windows\system32\DRIVERS\NNSPihsw.sys
      19:21:42.0478 2328 NNSPIHSW - ok
      19:21:42.0494 2328 [ 643FE52EA4C41E806B6906CF0C786D24 ] NNSPOP3 C:\Windows\system32\DRIVERS\NNSPop3.sys
      19:21:42.0494 2328 NNSPOP3 - ok
      19:21:42.0525 2328 [ A5DFD37B6E05E976DD70DF5D202C9BCA ] NNSPROT C:\Windows\system32\DRIVERS\NNSProt.sys
      19:21:42.0525 2328 NNSPROT - ok
      19:21:42.0541 2328 [ A0C7A228D06B1E9FC5AB4AC7B50FE612 ] NNSPRV C:\Windows\system32\DRIVERS\NNSPrv.sys
      19:21:42.0541 2328 NNSPRV - ok
      19:21:42.0556 2328 [ F41B212F242B02AE54317E073CC9D02E ] NNSSMTP C:\Windows\system32\DRIVERS\NNSSmtp.sys
      19:21:42.0556 2328 NNSSMTP - ok
      19:21:42.0572 2328 [ B6D8243E45687B3791CBDABBE2697699 ] NNSSTRM C:\Windows\system32\DRIVERS\NNSStrm.sys
      19:21:42.0572 2328 NNSSTRM - ok
      19:21:42.0588 2328 [ 1257C0FB4765B6D33F9EAEA326995ABA ] NNSTLSC C:\Windows\system32\DRIVERS\NNSTlsc.sys
      19:21:42.0588 2328 NNSTLSC - ok
      19:21:42.0634 2328 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
      19:21:42.0634 2328 Npfs - ok
      19:21:42.0650 2328 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
      19:21:42.0650 2328 nsi - ok
      19:21:42.0666 2328 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
      19:21:42.0666 2328 nsiproxy - ok
      19:21:42.0744 2328 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
      19:21:42.0759 2328 Ntfs - ok
      19:21:42.0837 2328 [ 5B3CE960C62DBE864BE9A0BD043A3E30 ] NTI IScheduleSvc C:\Program Files (x86)\NewTech Infosystems\Packard Bell MyBackup\IScheduleSvc.exe
      19:21:42.0837 2328 NTI IScheduleSvc - ok
      19:21:42.0868 2328 [ 64DDD0DEE976302F4BD93E5EFCC2F013 ] NTIDrvr C:\Windows\system32\drivers\NTIDrvr.sys
      19:21:42.0884 2328 NTIDrvr - ok
      19:21:42.0884 2328 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
      19:21:42.0884 2328 Null - ok
      19:21:42.0915 2328 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
      19:21:42.0931 2328 nvraid - ok
      19:21:42.0962 2328 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
      19:21:42.0962 2328 nvstor - ok
      19:21:42.0978 2328 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
      19:21:42.0993 2328 nv_agp - ok
      19:21:43.0040 2328 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
      19:21:43.0040 2328 ohci1394 - ok
      19:21:43.0102 2328 [ 2B8E4C792BED0E5882702720BC528AE5 ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
      19:21:43.0102 2328 ose - ok
      19:21:43.0336 2328 [ FE9C0029E1AF26350D9985D00520E5C8 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
      19:21:43.0368 2328 osppsvc - ok
      19:21:43.0414 2328 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
      19:21:43.0414 2328 p2pimsvc - ok
      19:21:43.0461 2328 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
      19:21:43.0461 2328 p2psvc - ok
      19:21:43.0492 2328 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
      19:21:43.0492 2328 Parport - ok
      19:21:43.0539 2328 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
      19:21:43.0555 2328 partmgr - ok
      19:21:43.0570 2328 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
      19:21:43.0570 2328 PcaSvc - ok
      19:21:43.0617 2328 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
      19:21:43.0617 2328 pci - ok
      19:21:43.0664 2328 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
      19:21:43.0664 2328 pciide - ok
      19:21:43.0680 2328 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
      19:21:43.0680 2328 pcmcia - ok
      19:21:43.0695 2328 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
      19:21:43.0695 2328 pcw - ok
      19:21:43.0726 2328 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
      19:21:43.0726 2328 PEAUTH - ok
      19:21:43.0836 2328 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
      19:21:43.0836 2328 PerfHost - ok
      19:21:43.0914 2328 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
      19:21:43.0929 2328 pla - ok
      19:21:43.0992 2328 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
      19:21:43.0992 2328 PlugPlay - ok
      19:21:44.0007 2328 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
      19:21:44.0007 2328 PNRPAutoReg - ok
      19:21:44.0023 2328 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
      19:21:44.0038 2328 PNRPsvc - ok
      19:21:44.0085 2328 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
      19:21:44.0085 2328 PolicyAgent - ok
      19:21:44.0116 2328 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
      19:21:44.0116 2328 Power - ok
      19:21:44.0163 2328 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
      19:21:44.0163 2328 PptpMiniport - ok
      19:21:44.0226 2328 [ 0264B15F628C8C7DBF439FD7AB4108F5 ] Printer Control C:\Windows\system32\PrintCtrl.exe
      19:21:44.0226 2328 Printer Control - ok
      19:21:44.0257 2328 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
      19:21:44.0257 2328 Processor - ok
      19:21:44.0288 2328 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
      19:21:44.0288 2328 ProfSvc - ok
      19:21:44.0319 2328 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
      19:21:44.0319 2328 ProtectedStorage - ok
      19:21:44.0335 2328 PsBoot - ok
      19:21:44.0382 2328 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
      19:21:44.0382 2328 Psched - ok
      19:21:44.0428 2328 [ A564E693CC1023D8FA3F0B591F613A49 ] PSINAflt C:\Windows\system32\DRIVERS\PSINAflt.sys
      19:21:44.0428 2328 PSINAflt - ok
      19:21:44.0444 2328 [ 0A1C6F42FB5CDB9AE6B957088D5F38AA ] PSINFile C:\Windows\system32\DRIVERS\PSINFile.sys
      19:21:44.0444 2328 PSINFile - ok
      19:21:44.0491 2328 [ B966E8F3B53272FEA149DF7B52B0F4D7 ] PSINKNC C:\Windows\system32\DRIVERS\psinknc.sys
      19:21:44.0491 2328 PSINKNC - ok
      19:21:44.0506 2328 [ 8A11A8C152AD0FE717808C48805098A5 ] PSINProc C:\Windows\system32\DRIVERS\PSINProc.sys
      19:21:44.0506 2328 PSINProc - ok
      19:21:44.0522 2328 [ 9714E9F7D4BED5C90E9A34960415AC9F ] PSINProt C:\Windows\system32\DRIVERS\PSINProt.sys
      19:21:44.0522 2328 PSINProt - ok
      19:21:44.0569 2328 [ E437C22DD66BA8F763F01D02C9713F8D ] PSKMAD C:\Windows\system32\DRIVERS\PSKMAD.sys
      19:21:44.0569 2328 PSKMAD - ok
      19:21:44.0662 2328 [ EA735BF6DF13A857A83C99BF27A422AD ] PST Service C:\Program Files (x86)\Motorola\MotForwardDaemon\ForwardDaemon.exe
      19:21:44.0662 2328 PST Service - ok
      19:21:44.0709 2328 [ 86C00481DAE67613C59E32A335D3E363 ] PSUAService C:\Program Files (x86)\Panda Security\Panda Cloud Antivirus\PSUAService.exe
      19:21:44.0709 2328 PSUAService - ok
      19:21:44.0740 2328 [ 87B04878A6D59D6C79251DC960C674C1 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
      19:21:44.0740 2328 PxHlpa64 - ok
      19:21:44.0787 2328 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
      19:21:44.0803 2328 ql2300 - ok
      19:21:44.0818 2328 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
      19:21:44.0834 2328 ql40xx - ok
      19:21:44.0850 2328 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
      19:21:44.0850 2328 QWAVE - ok
      19:21:44.0865 2328 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
      19:21:44.0865 2328 QWAVEdrv - ok
      19:21:44.0896 2328 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
      19:21:44.0896 2328 RasAcd - ok
      19:21:44.0912 2328 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
      19:21:44.0912 2328 RasAgileVpn - ok
      19:21:44.0928 2328 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
      19:21:44.0928 2328 RasAuto - ok
      19:21:44.0974 2328 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
      19:21:44.0974 2328 Rasl2tp - ok
      19:21:45.0021 2328 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
      19:21:45.0021 2328 RasMan - ok
      19:21:45.0052 2328 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
      19:21:45.0052 2328 RasPppoe - ok
      19:21:45.0068 2328 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
      19:21:45.0084 2328 RasSstp - ok
      19:21:45.0115 2328 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
      19:21:45.0130 2328 rdbss - ok
      19:21:45.0146 2328 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
      19:21:45.0146 2328 rdpbus - ok
      19:21:45.0162 2328 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
      19:21:45.0162 2328 RDPCDD - ok
      19:21:45.0193 2328 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
      19:21:45.0193 2328 RDPENCDD - ok
      19:21:45.0193 2328 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
      19:21:45.0193 2328 RDPREFMP - ok
      19:21:45.0240 2328 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
      19:21:45.0240 2328 RDPWD - ok
      19:21:45.0286 2328 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
      19:21:45.0286 2328 rdyboost - ok
      19:21:45.0318 2328 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
      19:21:45.0318 2328 RemoteAccess - ok
      19:21:45.0349 2328 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
      19:21:45.0349 2328 RemoteRegistry - ok
      19:21:45.0411 2328 [ 7B04C9843921AB1F695FB395422C5360 ] RimUsb C:\Windows\system32\Drivers\RimUsb_AMD64.sys
      19:21:45.0411 2328 RimUsb - ok
      19:21:45.0442 2328 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
      19:21:45.0442 2328 RpcEptMapper - ok
      19:21:45.0458 2328 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
      19:21:45.0458 2328 RpcLocator - ok
      19:21:45.0505 2328 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
      19:21:45.0520 2328 RpcSs - ok
      19:21:45.0552 2328 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
      19:21:45.0552 2328 rspndr - ok
      19:21:45.0630 2328 [ 3CEEE53BBF8BA284FF44585CEC0162FE ] RSUSBSTOR C:\Windows\system32\Drivers\RtsUStor.sys
      19:21:45.0630 2328 RSUSBSTOR - ok
      19:21:45.0661 2328 [ 4E821C740A675F6D040BE41D59A62B1D ] RTHDMIAzAudService C:\Windows\system32\drivers\RtHDMIVX.sys
      19:21:45.0661 2328 RTHDMIAzAudService - ok
      19:21:45.0708 2328 [ 6C90231046FB9FC4123C42179832817F ] s117bus C:\Windows\system32\DRIVERS\s117bus.sys
      19:21:45.0708 2328 s117bus - ok
      19:21:45.0739 2328 [ 3279341C90EF8F226AF77623039F4495 ] s117mdfl C:\Windows\system32\DRIVERS\s117mdfl.sys
      19:21:45.0739 2328 s117mdfl - ok
      19:21:45.0754 2328 [ 73E331F555279E753B312675DDAF4516 ] s117mdm C:\Windows\system32\DRIVERS\s117mdm.sys
      19:21:45.0754 2328 s117mdm - ok
      19:21:45.0817 2328 [ D420731FD2880F0F40F20771EFAAD671 ] s117mgmt C:\Windows\system32\DRIVERS\s117mgmt.sys
      19:21:45.0817 2328 s117mgmt - ok
      19:21:45.0848 2328 [ 98236CA5A9A77D0983AC3F6D6527C796 ] s117nd5 C:\Windows\system32\DRIVERS\s117nd5.sys
      19:21:45.0848 2328 s117nd5 - ok
      19:21:45.0864 2328 [ 1DD613909477AE298C98E86617EC356B ] s117obex C:\Windows\system32\DRIVERS\s117obex.sys
      19:21:45.0864 2328 s117obex - ok
      19:21:45.0895 2328 [ 9A22DF5FE9B6BE279D820776A6ADB56F ] s117unic C:\Windows\system32\DRIVERS\s117unic.sys
      19:21:45.0895 2328 s117unic - ok
      19:21:45.0910 2328 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
      19:21:45.0910 2328 SamSs - ok
      19:21:45.0957 2328 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
      19:21:45.0957 2328 sbp2port - ok
      19:21:45.0988 2328 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
      19:21:45.0988 2328 SCardSvr - ok
      19:21:46.0035 2328 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
      19:21:46.0035 2328 scfilter - ok
      19:21:46.0113 2328 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
      19:21:46.0113 2328 Schedule - ok
      19:21:46.0160 2328 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
      19:21:46.0160 2328 SCPolicySvc - ok
      19:21:46.0176 2328 ScreamBAudioSvc - ok
      19:21:46.0238 2328 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
      19:21:46.0238 2328 SDRSVC - ok
      19:21:46.0269 2328 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
      19:21:46.0269 2328 secdrv - ok
      19:21:46.0316 2328 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
      19:21:46.0316 2328 seclogon - ok
      19:21:46.0347 2328 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
      19:21:46.0347 2328 SENS - ok
      19:21:46.0363 2328 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
      19:21:46.0363 2328 SensrSvc - ok
      19:21:46.0378 2328 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
      19:21:46.0378 2328 Serenum - ok
      19:21:46.0394 2328 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
      19:21:46.0394 2328 Serial - ok
      19:21:46.0425 2328 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
      19:21:46.0425 2328 sermouse - ok
      19:21:46.0488 2328 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
      19:21:46.0488 2328 SessionEnv - ok
      19:21:46.0534 2328 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
      19:21:46.0550 2328 sffdisk - ok
      19:21:46.0566 2328 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
      19:21:46.0566 2328 sffp_mmc - ok
      19:21:46.0581 2328 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
      19:21:46.0581 2328 sffp_sd - ok
      19:21:46.0612 2328 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
      19:21:46.0612 2328 sfloppy - ok
      19:21:46.0675 2328 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
      19:21:46.0675 2328 ShellHWDetection - ok
      19:21:46.0706 2328 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
      19:21:46.0706 2328 SiSRaid2 - ok
      19:21:46.0737 2328 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
      19:21:46.0737 2328 SiSRaid4 - ok
      19:21:46.0846 2328 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
      19:21:46.0846 2328 SkypeUpdate - ok
      19:21:46.0862 2328 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
      19:21:46.0878 2328 Smb - ok
      19:21:46.0924 2328 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
      19:21:46.0924 2328 SNMPTRAP - ok
      19:21:46.0956 2328 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
      19:21:46.0956 2328 spldr - ok
      19:21:47.0002 2328 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
      19:21:47.0018 2328 Spooler - ok
      19:21:47.0127 2328 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
      19:21:47.0158 2328 sppsvc - ok
      19:21:47.0190 2328 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
      19:21:47.0190 2328 sppuinotify - ok
      19:21:47.0252 2328 [ 602884696850C86434530790B110E8EB ] sptd C:\Windows\system32\Drivers\sptd.sys
      19:21:47.0252 2328 Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: 602884696850C86434530790B110E8EB
      19:21:47.0252 2328 sptd ( LockedFile.Multi.Generic ) - warning
      19:21:47.0252 2328 sptd - detected LockedFile.Multi.Generic (1)
      19:21:47.0314 2328 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
      19:21:47.0314 2328 srv - ok
      19:21:47.0346 2328 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
      19:21:47.0346 2328 srv2 - ok
      19:21:47.0361 2328 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
      19:21:47.0361 2328 srvnet - ok
      19:21:47.0392 2328 [ F74634F46692C8315E7F37F698AF3225 ] sscebus C:\Windows\system32\DRIVERS\sscebus.sys
      19:21:47.0392 2328 sscebus - ok
      19:21:47.0424 2328 [ 82732B391EFD69B0548044BE9CB37BFC ] sscemdfl C:\Windows\system32\DRIVERS\sscemdfl.sys
      19:21:47.0424 2328 sscemdfl - ok
      19:21:47.0439 2328 [ 43D56ACE4469D90F9790E8352D87D9B5 ] sscemdm C:\Windows\system32\DRIVERS\sscemdm.sys
      19:21:47.0455 2328 sscemdm - ok
      19:21:47.0517 2328 [ DB504EF6D73F6B8AB5CF8A18560C4E2A ] ssceserd C:\Windows\system32\DRIVERS\ssceserd.sys
      19:21:47.0517 2328 ssceserd - ok
      19:21:47.0548 2328 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
      19:21:47.0548 2328 SSDPSRV - ok
      19:21:47.0564 2328 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
      19:21:47.0564 2328 SstpSvc - ok
      19:21:47.0595 2328 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
      19:21:47.0595 2328 stexstor - ok
      19:21:47.0642 2328 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
      19:21:47.0658 2328 stisvc - ok
      19:21:47.0704 2328 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
      19:21:47.0704 2328 swenum - ok
      19:21:47.0845 2328 [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
      19:21:47.0845 2328 SwitchBoard - ok
      19:21:47.0892 2328 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
      19:21:47.0892 2328 swprv - ok
      19:21:47.0938 2328 [ 064A2530A4A7C7CEC1BE6A1945645BE4 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
      19:21:47.0938 2328 SynTP - ok
      19:21:48.0016 2328 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
      19:21:48.0032 2328 SysMain - ok
      19:21:48.0110 2328 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
      19:21:48.0110 2328 TabletInputService - ok
      19:21:48.0157 2328 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
      19:21:48.0157 2328 TapiSrv - ok
      19:21:48.0188 2328 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
      19:21:48.0188 2328 TBS - ok
      19:21:48.0282 2328 [ 37608401DFDB388CAF66917F6B2D6FB0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
      19:21:48.0282 2328 Tcpip - ok
      19:21:48.0391 2328 [ 37608401DFDB388CAF66917F6B2D6FB0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
      19:21:48.0406 2328 TCPIP6 - ok
      19:21:48.0453 2328 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
      19:21:48.0453 2328 tcpipreg - ok
      19:21:48.0484 2328 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
      19:21:48.0484 2328 TDPIPE - ok
      19:21:48.0531 2328 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
      19:21:48.0531 2328 TDTCP - ok
      19:21:48.0562 2328 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
      19:21:48.0562 2328 tdx - ok
      19:21:48.0609 2328 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
      19:21:48.0609 2328 TermDD - ok
      19:21:48.0672 2328 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
      19:21:48.0687 2328 TermService - ok
      19:21:48.0718 2328 [ CE4B6956E4E12492715A53076E58761F ] TFsExDisk C:\Windows\System32\Drivers\TFsExDisk.sys
      19:21:48.0718 2328 TFsExDisk - ok
      19:21:48.0750 2328 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
      19:21:48.0750 2328 Themes - ok
      19:21:48.0765 2328 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
      19:21:48.0781 2328 THREADORDER - ok
      19:21:48.0796 2328 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
      19:21:48.0796 2328 TrkWks - ok
      19:21:48.0859 2328 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
      19:21:48.0859 2328 TrustedInstaller - ok
      19:21:48.0906 2328 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
      19:21:48.0906 2328 tssecsrv - ok
      19:21:48.0952 2328 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
      19:21:48.0952 2328 TsUsbFlt - ok
      19:21:49.0015 2328 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
      19:21:49.0015 2328 tunnel - ok
      19:21:49.0046 2328 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
      19:21:49.0046 2328 uagp35 - ok
      19:21:49.0062 2328 [ 2E22C1FD397A5A9FFEF55E9D1FC96C00 ] UBHelper C:\Windows\system32\drivers\UBHelper.sys
      19:21:49.0062 2328 UBHelper - ok
      19:21:49.0108 2328 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
      19:21:49.0108 2328 udfs - ok
      19:21:49.0155 2328 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
      19:21:49.0155 2328 UI0Detect - ok
      19:21:49.0171 2328 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
      19:21:49.0171 2328 uliagpkx - ok
      19:21:49.0218 2328 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
      19:21:49.0218 2328 umbus - ok
      19:21:49.0249 2328 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
      19:21:49.0249 2328 UmPass - ok
      19:21:49.0327 2328 [ F9EC9ACD504D823D9B9CA98A4F8D3CA2 ] Updater Service C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe
      19:21:49.0327 2328 Updater Service - ok
      19:21:49.0358 2328 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
      19:21:49.0358 2328 upnphost - ok
      19:21:49.0405 2328 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
      19:21:49.0405 2328 usbccgp - ok
      19:21:49.0467 2328 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
      19:21:49.0467 2328 usbcir - ok
      19:21:49.0514 2328 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
      19:21:49.0514 2328 usbehci - ok
      19:21:49.0561 2328 [ 2C780746DC44A28FE67004DC58173F05 ] usbfilter C:\Windows\system32\DRIVERS\usbfilter.sys
      19:21:49.0561 2328 usbfilter - ok
      19:21:49.0576 2328 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
      19:21:49.0592 2328 usbhub - ok
      19:21:49.0592 2328 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
      19:21:49.0592 2328 usbohci - ok
      19:21:49.0623 2328 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
      19:21:49.0623 2328 usbprint - ok
      19:21:49.0670 2328 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
      19:21:49.0670 2328 usbscan - ok
      19:21:49.0701 2328 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
      19:21:49.0701 2328 USBSTOR - ok
      19:21:49.0732 2328 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
      19:21:49.0732 2328 usbuhci - ok
      19:21:49.0779 2328 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
      19:21:49.0795 2328 usbvideo - ok
      19:21:49.0810 2328 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
      19:21:49.0810 2328 UxSms - ok
      19:21:49.0826 2328 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
      19:21:49.0826 2328 VaultSvc - ok
      19:21:49.0842 2328 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
      19:21:49.0842 2328 vdrvroot - ok
      19:21:49.0904 2328 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
      19:21:49.0904 2328 vds - ok
      19:21:49.0951 2328 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
      19:21:49.0951 2328 vga - ok
      19:21:49.0966 2328 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
      19:21:49.0966 2328 VgaSave - ok
      19:21:50.0013 2328 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
      19:21:50.0013 2328 vhdmp - ok
      19:21:50.0076 2328 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
      19:21:50.0076 2328 viaide - ok
      19:21:50.0107 2328 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
      19:21:50.0107 2328 volmgr - ok
      19:21:50.0154 2328 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
      19:21:50.0154 2328 volmgrx - ok
      19:21:50.0169 2328 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
      19:21:50.0169 2328 volsnap - ok
      19:21:50.0216 2328 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
      19:21:50.0216 2328 vsmraid - ok
      19:21:50.0294 2328 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
      19:21:50.0310 2328 VSS - ok
      19:21:50.0325 2328 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
      19:21:50.0325 2328 vwifibus - ok
      19:21:50.0356 2328 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
      19:21:50.0356 2328 vwififlt - ok
      19:21:50.0388 2328 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
      19:21:50.0388 2328 W32Time - ok
      19:21:50.0403 2328 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
      19:21:50.0403 2328 WacomPen - ok
      19:21:50.0450 2328 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
      19:21:50.0450 2328 WANARP - ok
      19:21:50.0450 2328 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
      19:21:50.0450 2328 Wanarpv6 - ok
      19:21:50.0528 2328 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
      19:21:50.0544 2328 WatAdminSvc - ok
      19:21:50.0606 2328 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
      19:21:50.0622 2328 wbengine - ok
      19:21:50.0668 2328 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
      19:21:50.0668 2328 WbioSrvc - ok
      19:21:50.0731 2328 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
      19:21:50.0731 2328 wcncsvc - ok
      19:21:50.0746 2328 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
      19:21:50.0746 2328 WcsPlugInService - ok
      19:21:50.0778 2328 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
      19:21:50.0778 2328 Wd - ok
      19:21:50.0840 2328 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
      19:21:50.0840 2328 Wdf01000 - ok
      19:21:50.0871 2328 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
      19:21:50.0871 2328 WdiServiceHost - ok
      19:21:50.0871 2328 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
      19:21:50.0871 2328 WdiSystemHost - ok
      19:21:50.0934 2328 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
      19:21:50.0934 2328 WebClient - ok
      19:21:50.0949 2328 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
      19:21:50.0949 2328 Wecsvc - ok
      19:21:50.0965 2328 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
      19:21:50.0965 2328 wercplsupport - ok
      19:21:50.0996 2328 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
      19:21:50.0996 2328 WerSvc - ok
      19:21:51.0027 2328 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
      19:21:51.0027 2328 WfpLwf - ok
      19:21:51.0043 2328 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
      19:21:51.0043 2328 WIMMount - ok
      19:21:51.0058 2328 WinHttpAutoProxySvc - ok
      19:21:51.0105 2328 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
      19:21:51.0105 2328 Winmgmt - ok
      19:21:51.0199 2328 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
      19:21:51.0214 2328 WinRM - ok
      19:21:51.0277 2328 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
      19:21:51.0277 2328 WinUsb - ok
      19:21:51.0324 2328 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
      19:21:51.0339 2328 Wlansvc - ok
      19:21:51.0417 2328 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
      19:21:51.0417 2328 wlcrasvc - ok
      19:21:51.0542 2328 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
      19:21:51.0558 2328 wlidsvc - ok
      19:21:51.0636 2328 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
      19:21:51.0636 2328 WmiAcpi - ok
      19:21:51.0667 2328 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
      19:21:51.0667 2328 wmiApSrv - ok
      19:21:51.0698 2328 WMPNetworkSvc - ok
      19:21:51.0729 2328 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
      19:21:51.0729 2328 WPCSvc - ok
      19:21:51.0776 2328 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
      19:21:51.0776 2328 WPDBusEnum - ok
      19:21:51.0807 2328 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
      19:21:51.0807 2328 ws2ifsl - ok
      19:21:51.0807 2328 WSearch - ok
      19:21:51.0854 2328 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
      19:21:51.0854 2328 WudfPf - ok
      19:21:51.0932 2328 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
      19:21:51.0932 2328 WUDFRd - ok
      19:21:51.0963 2328 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
      19:21:51.0979 2328 wudfsvc - ok
      19:21:52.0010 2328 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
      19:21:52.0010 2328 WwanSvc - ok
      19:21:52.0041 2328 ================ Scan global ===============================
      19:21:52.0072 2328 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
      19:21:52.0104 2328 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
      19:21:52.0119 2328 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
      19:21:52.0135 2328 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
      19:21:52.0182 2328 [ 50BEA589F7D7958BDD2528A8F69D05CC ] C:\Windows\system32\services.exe
      19:21:52.0182 2328 C:\Windows\system32\services.exe ( Virus.Win64.ZAccess.a ) - infected
      19:21:52.0182 2328 C:\Windows\system32\services.exe - detected Virus.Win64.ZAccess.a (0)
      19:21:52.0182 2328 ================ Scan MBR ==================================
      19:21:52.0197 2328 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
      19:21:52.0478 2328 \Device\Harddisk0\DR0 - ok
      19:21:52.0478 2328 ================ Scan VBR ==================================
      19:21:52.0478 2328 [ 10FF361BDA371F73C2D879595C44557E ] \Device\Harddisk0\DR0\Partition1
      19:21:52.0478 2328 \Device\Harddisk0\DR0\Partition1 - ok
      19:21:52.0509 2328 [ FE56A3BB3072637805CBE1C2EDB88B5A ] \Device\Harddisk0\DR0\Partition2
      19:21:52.0509 2328 \Device\Harddisk0\DR0\Partition2 - ok
      19:21:52.0509 2328 ============================================================
      19:21:52.0509 2328 Scan finished
      19:21:52.0509 2328 ============================================================
      19:21:52.0509 5108 Detected object count: 2
      19:21:52.0509 5108 Actual detected object count: 2
      19:22:04.0615 5108 sptd ( LockedFile.Multi.Generic ) - skipped by user
      19:22:04.0615 5108 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
      19:22:04.0677 5108 C:\Windows\system32\services.exe - copied to quarantine
      19:22:04.0724 5108 C:\Windows\assembly\GAC_32\desktop.ini - copied to quarantine
      19:22:04.0724 5108 C:\Windows\assembly\GAC_64\desktop.ini - copied to quarantine
      19:22:04.0724 5108 C:\Windows\installer\{2dd097e3-5e65-5050-d9fd-6eabeb98847b}\@ - copied to quarantine
      19:22:04.0724 5108 C:\Windows\installer\{2dd097e3-5e65-5050-d9fd-6eabeb98847b}\L\[email protected] - copied to quarantine
      19:22:04.0740 5108 C:\Windows\installer\{2dd097e3-5e65-5050-d9fd-6eabeb98847b}\L\201d3dde - copied to quarantine
      19:22:07.0532 5108 Backup copy not found, trying to cure infected file..
      19:22:07.0532 5108 C:\Windows\system32\services.exe - Cure failed (FFFFFFFF)
      19:22:07.0532 5108 C:\Windows\system32\services.exe - processing error
      19:22:07.0532 5108 C:\Windows\system32\services.exe ( Virus.Win64.ZAccess.a ) - User select action: Cure
      19:24:00.0351 5620 Deinitialize success





      A continuación el registro generado por Malwarebytes Anti-Malware:

      Malwarebytes Anti-Malware 1.65.1.1000
      Malwarebytes : Free anti-malware download

      Versión de la Base de Datos: v2012.11.24.11

      Windows 7 Service Pack 1 x64 NTFS
      Internet Explorer 8.0.7601.17514
      Maties :: MATIES-PC [administrador]

      25/11/2012 19:24:18
      mbam-log-2012-11-25 (19-24-18).txt

      Tipos de Análisis: Análisis Rápido
      Opciones de análisis activado: Memoria | Inicio | Registro | Sistema de archivos | Heurística/Extra | Heurística/Shuriken | PUP | PUM
      Opciones de análisis desactivados: P2P
      Objetos examinados: 214616
      Tiempo transcurrido: 4 minuto(s), 13 segundo(s)

      Procesos en Memoria Detectados: 0
      (No se han detectado elementos maliciosos)

      Módulos de Memoria Detectados: 0
      (No se han detectado elementos maliciosos)

      Claves del Registro Detectados: 0
      (No se han detectado elementos maliciosos)

      Valores del Registro Detectados: 0
      (No se han detectado elementos maliciosos)

      Elementos de Datos del Registro Detectados: 0
      (No se han detectado elementos maliciosos)

      Carpetas Detectadas: 0
      (No se han detectado elementos maliciosos)

      Archivos Detectados: 0
      (No se han detectado elementos maliciosos)

      fin)




      Muchas gracias.
      Última edición por Maties360 fecha: 25/11/12 a las 14:59:20

    5. #5
      Moderador
      Avatar de @DavidG_EB
      Registrado
      jul 2009
      Ubicación
      Mexico
      Mensajes
      10.633

      Re: PC infectado por Troyanos (archivos "desktop.ini" i "services.exe")

      Buenas

      Repite el procedimiento pero realizando ahora un escaneo Completo de Malwarebytes, y de ser posible desde modo seguro.

      Nos comentas.

      Saludos
      ErdrickBass
      No importa lo fuerte que sea tu oponente. Lo importante es que estés de pie ante él

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    6. #6
      Usuario Avatar de Maties360
      Registrado
      nov 2011
      Ubicación
      Mallorca (Sant Llorenç des Cardassar)
      Mensajes
      9

      Re: PC infectado por Troyanos (archivos "desktop.ini" i "services.exe")

      Buenas,

      he repetido el proceso en Modo Seguro con funciones de red, y el TDSSKiller me detecta igualmente el RootKit.ZAccess, y sigue sin poder eliminarlo. Ésta vez, el Malwarebytes Anti-Malware, realizando el análisis completo, me detecta una serie de archivos maliciosos, que los elimina con éxito. Pero ninguno coincide con el RootKit.ZAcces en el archivo "services.exe".

      Además, el Panda Cloud Antivirus me sigue detectando, cada vez que se reinicia el equipo, los archivos infectados "desktop.ini", y el PC me va relentizado, con el uso del CPU constantemente alto. Y consultando el Administrador de Tareas, puedo observar como es el proceso "services.exe" que usa en exceso el CPU. Y cuando finalizo el proceso, me sale una ventana emergente alertandome de que Windows ha dectado un problema, y que se reiniciará en 1 minuto. El virus parece que actua de forma intermitente (a ratos), ya que a ratos el proceso consume totalmente la CPU, y a veces está inactivo.


      Aquí el registro del TDSSKiller en modo seguro:

      00:48:47.0778 1980 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
      00:48:48.0137 1980 ============================================================
      00:48:48.0137 1980 Current date / time: 2012/11/26 00:48:48.0137
      00:48:48.0137 1980 SystemInfo:
      00:48:48.0137 1980
      00:48:48.0137 1980 OS Version: 6.1.7601 ServicePack: 1.0
      00:48:48.0137 1980 Product type: Workstation
      00:48:48.0137 1980 ComputerName: MATIES-PC
      00:48:48.0137 1980 UserName: Maties
      00:48:48.0137 1980 Windows directory: C:\Windows
      00:48:48.0137 1980 System windows directory: C:\Windows
      00:48:48.0137 1980 Running under WOW64
      00:48:48.0137 1980 Processor architecture: Intel x64
      00:48:48.0137 1980 Number of processors: 2
      00:48:48.0137 1980 Page size: 0x1000
      00:48:48.0137 1980 Boot type: Safe boot with network
      00:48:48.0137 1980 ============================================================
      00:48:48.0402 1980 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
      00:48:48.0402 1980 ============================================================
      00:48:48.0402 1980 \Device\Harddisk0\DR0:
      00:48:48.0402 1980 MBR partitions:
      00:48:48.0402 1980 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1C00800, BlocksNum 0x32000
      00:48:48.0402 1980 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1C32800, BlocksNum 0x38753000
      00:48:48.0402 1980 ============================================================
      00:48:48.0434 1980 C: <-> \Device\Harddisk0\DR0\Partition2
      00:48:48.0434 1980 ============================================================
      00:48:48.0434 1980 Initialize success
      00:48:48.0434 1980 ============================================================
      00:48:49.0416 2024 ============================================================
      00:48:49.0416 2024 Scan started
      00:48:49.0416 2024 Mode: Manual;
      00:48:49.0416 2024 ============================================================
      00:48:50.0306 2024 ================ Scan system memory ========================
      00:48:50.0306 2024 System memory - ok
      00:48:50.0306 2024 ================ Scan services =============================
      00:48:50.0602 2024 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
      00:48:50.0602 2024 1394ohci - ok
      00:48:50.0680 2024 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
      00:48:50.0680 2024 ACPI - ok
      00:48:50.0727 2024 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
      00:48:50.0742 2024 AcpiPmi - ok
      00:48:50.0836 2024 [ 34400005DE52842C4D6D4EE978B4D7CE ] AdobeActiveFileMonitor8.0 c:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe
      00:48:50.0836 2024 AdobeActiveFileMonitor8.0 - ok
      00:48:51.0023 2024 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
      00:48:51.0023 2024 AdobeARMservice - ok
      00:48:51.0273 2024 [ 0CB0AA071C7B86A64F361DCFDF357329 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
      00:48:51.0273 2024 AdobeFlashPlayerUpdateSvc - ok
      00:48:51.0366 2024 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
      00:48:51.0366 2024 adp94xx - ok
      00:48:51.0413 2024 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
      00:48:51.0429 2024 adpahci - ok
      00:48:51.0491 2024 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
      00:48:51.0491 2024 adpu320 - ok
      00:48:51.0522 2024 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
      00:48:51.0522 2024 AeLookupSvc - ok
      00:48:51.0616 2024 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
      00:48:51.0616 2024 AFD - ok
      00:48:51.0663 2024 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
      00:48:51.0663 2024 agp440 - ok
      00:48:51.0694 2024 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
      00:48:51.0694 2024 ALG - ok
      00:48:51.0725 2024 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
      00:48:51.0741 2024 aliide - ok
      00:48:51.0788 2024 [ D865F8ABFF031563E860D16A38BD5A35 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
      00:48:51.0788 2024 AMD External Events Utility - ok
      00:48:51.0819 2024 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
      00:48:51.0819 2024 amdide - ok
      00:48:51.0881 2024 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
      00:48:51.0881 2024 AmdK8 - ok
      00:48:52.0178 2024 [ 83418F6EE5A81DDDD8E248FCBFC99AF6 ] amdkmdag C:\Windows\system32\DRIVERS\atipmdag.sys
      00:48:52.0224 2024 amdkmdag - ok
      00:48:52.0256 2024 [ 7E58B5E1DEAA70BD46997068DF06B4E3 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
      00:48:52.0256 2024 amdkmdap - ok
      00:48:52.0287 2024 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
      00:48:52.0287 2024 AmdPPM - ok
      00:48:52.0349 2024 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
      00:48:52.0349 2024 amdsata - ok
      00:48:52.0380 2024 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
      00:48:52.0396 2024 amdsbs - ok
      00:48:52.0427 2024 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
      00:48:52.0427 2024 amdxata - ok
      00:48:52.0490 2024 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
      00:48:52.0490 2024 AppID - ok
      00:48:52.0505 2024 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
      00:48:52.0505 2024 AppIDSvc - ok
      00:48:52.0568 2024 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
      00:48:52.0568 2024 Appinfo - ok
      00:48:52.0599 2024 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
      00:48:52.0599 2024 arc - ok
      00:48:52.0630 2024 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
      00:48:52.0630 2024 arcsas - ok
      00:48:52.0646 2024 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
      00:48:52.0646 2024 AsyncMac - ok
      00:48:52.0724 2024 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
      00:48:52.0724 2024 atapi - ok
      00:48:52.0817 2024 [ 70260C7C98CC0101316F5B2650C3BB44 ] athr C:\Windows\system32\DRIVERS\athrx.sys
      00:48:52.0833 2024 athr - ok
      00:48:52.0880 2024 [ C07A040D6B5A42DD41EE386CF90974C8 ] AtiPcie C:\Windows\system32\DRIVERS\AtiPcie.sys
      00:48:52.0880 2024 AtiPcie - ok
      00:48:52.0942 2024 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
      00:48:52.0942 2024 AudioEndpointBuilder - ok
      00:48:52.0973 2024 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
      00:48:52.0973 2024 AudioSrv - ok
      00:48:53.0051 2024 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
      00:48:53.0051 2024 AxInstSV - ok
      00:48:53.0098 2024 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
      00:48:53.0098 2024 b06bdrv - ok
      00:48:53.0145 2024 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
      00:48:53.0160 2024 b57nd60a - ok
      00:48:53.0192 2024 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
      00:48:53.0192 2024 BDESVC - ok
      00:48:53.0223 2024 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
      00:48:53.0223 2024 Beep - ok
      00:48:53.0332 2024 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
      00:48:53.0332 2024 BFE - ok
      00:48:53.0363 2024 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
      00:48:53.0363 2024 blbdrive - ok
      00:48:53.0457 2024 [ 3F56903E124E820AEECE6D471583C6C1 ] Bonjour Service C:\Program Files (x86)\Bonjour\mDNSResponder.exe
      00:48:53.0457 2024 Bonjour Service - ok
      00:48:53.0504 2024 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
      00:48:53.0504 2024 bowser - ok
      00:48:53.0550 2024 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
      00:48:53.0550 2024 BrFiltLo - ok
      00:48:53.0566 2024 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
      00:48:53.0566 2024 BrFiltUp - ok
      00:48:53.0644 2024 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
      00:48:53.0644 2024 Browser - ok
      00:48:53.0675 2024 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
      00:48:53.0675 2024 Brserid - ok
      00:48:53.0691 2024 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
      00:48:53.0691 2024 BrSerWdm - ok
      00:48:53.0706 2024 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
      00:48:53.0706 2024 BrUsbMdm - ok
      00:48:53.0738 2024 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
      00:48:53.0738 2024 BrUsbSer - ok
      00:48:53.0816 2024 [ FF7C57973EEAD140062238C5A0B7D455 ] BTCFilterService C:\Windows\system32\DRIVERS\motfilt.sys
      00:48:53.0816 2024 BTCFilterService - ok
      00:48:53.0847 2024 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
      00:48:53.0847 2024 BTHMODEM - ok
      00:48:53.0894 2024 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
      00:48:53.0894 2024 bthserv - ok
      00:48:53.0925 2024 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
      00:48:53.0925 2024 cdfs - ok
      00:48:53.0987 2024 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
      00:48:53.0987 2024 cdrom - ok
      00:48:54.0034 2024 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
      00:48:54.0050 2024 CertPropSvc - ok
      00:48:54.0081 2024 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
      00:48:54.0096 2024 circlass - ok
      00:48:54.0128 2024 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
      00:48:54.0128 2024 CLFS - ok
      00:48:54.0190 2024 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
      00:48:54.0190 2024 clr_optimization_v2.0.50727_32 - ok
      00:48:54.0221 2024 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
      00:48:54.0221 2024 clr_optimization_v2.0.50727_64 - ok
      00:48:54.0315 2024 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
      00:48:54.0315 2024 clr_optimization_v4.0.30319_32 - ok
      00:48:54.0362 2024 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
      00:48:54.0362 2024 clr_optimization_v4.0.30319_64 - ok
      00:48:54.0393 2024 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
      00:48:54.0393 2024 CmBatt - ok
      00:48:54.0455 2024 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
      00:48:54.0455 2024 cmdide - ok
      00:48:54.0502 2024 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
      00:48:54.0502 2024 CNG - ok
      00:48:54.0564 2024 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
      00:48:54.0564 2024 Compbatt - ok
      00:48:54.0611 2024 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
      00:48:54.0611 2024 CompositeBus - ok
      00:48:54.0627 2024 COMSysApp - ok
      00:48:54.0642 2024 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
      00:48:54.0642 2024 crcdisk - ok
      00:48:54.0705 2024 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
      00:48:54.0705 2024 CryptSvc - ok
      00:48:54.0752 2024 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
      00:48:54.0767 2024 DcomLaunch - ok
      00:48:54.0798 2024 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
      00:48:54.0798 2024 defragsvc - ok
      00:48:54.0845 2024 [ 59D90B6A7FBC4CC712DD7C5868618480 ] DeviceMonitorService C:\Program Files (x86)\Motorola Media Link\Lite\NServiceEntry.exe
      00:48:54.0845 2024 DeviceMonitorService - ok
      00:48:54.0908 2024 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
      00:48:54.0908 2024 DfsC - ok
      00:48:54.0939 2024 [ 867FA8B9E9E3078F68C4089904BBF4B0 ] dgderdrv C:\Windows\system32\drivers\dgderdrv.sys
      00:48:54.0939 2024 dgderdrv - ok
      00:48:55.0001 2024 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
      00:48:55.0017 2024 Dhcp - ok
      00:48:55.0048 2024 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
      00:48:55.0048 2024 discache - ok
      00:48:55.0079 2024 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
      00:48:55.0079 2024 Disk - ok
      00:48:55.0126 2024 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
      00:48:55.0126 2024 Dnscache - ok
      00:48:55.0188 2024 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
      00:48:55.0188 2024 dot3svc - ok
      00:48:55.0235 2024 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
      00:48:55.0235 2024 DPS - ok
      00:48:55.0282 2024 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
      00:48:55.0282 2024 drmkaud - ok
      00:48:55.0313 2024 [ 61E894FE1E9CC720C909E6E343351794 ] DsiWMIService C:\Program Files (x86)\Launch Manager\dsiwmis.exe
      00:48:55.0313 2024 DsiWMIService - ok
      00:48:55.0376 2024 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
      00:48:55.0391 2024 DXGKrnl - ok
      00:48:55.0422 2024 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
      00:48:55.0422 2024 EapHost - ok
      00:48:55.0532 2024 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
      00:48:55.0547 2024 ebdrv - ok
      00:48:55.0594 2024 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
      00:48:55.0594 2024 EFS - ok
      00:48:55.0672 2024 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
      00:48:55.0672 2024 ehRecvr - ok
      00:48:55.0703 2024 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
      00:48:55.0703 2024 ehSched - ok
      00:48:55.0750 2024 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
      00:48:55.0750 2024 elxstor - ok
      00:48:55.0844 2024 [ 91C2E6234F6884C6FEEF9658D8EDE6B6 ] ePowerSvc C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe
      00:48:55.0859 2024 ePowerSvc - ok
      00:48:55.0968 2024 [ B5581646636759D0DAFA8B008881C079 ] EPSON_EB_RPCV4_01 C:\ProgramData\EPSON\EPW!3 SSRP\E_S40STB.EXE
      00:48:55.0968 2024 EPSON_EB_RPCV4_01 - ok
      00:48:56.0031 2024 [ 1E345F2A2D95DA3190596E691CDE9342 ] EPSON_PM_RPCV4_01 C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.EXE
      00:48:56.0031 2024 EPSON_PM_RPCV4_01 - ok
      00:48:56.0078 2024 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
      00:48:56.0078 2024 ErrDev - ok
      00:48:56.0140 2024 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
      00:48:56.0140 2024 EventSystem - ok
      00:48:56.0171 2024 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
      00:48:56.0171 2024 exfat - ok
      00:48:56.0202 2024 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
      00:48:56.0202 2024 fastfat - ok
      00:48:56.0280 2024 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
      00:48:56.0280 2024 Fax - ok
      00:48:56.0312 2024 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
      00:48:56.0312 2024 fdc - ok
      00:48:56.0343 2024 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
      00:48:56.0343 2024 fdPHost - ok
      00:48:56.0358 2024 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
      00:48:56.0358 2024 FDResPub - ok
      00:48:56.0374 2024 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
      00:48:56.0374 2024 FileInfo - ok
      00:48:56.0405 2024 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
      00:48:56.0405 2024 Filetrace - ok
      00:48:56.0514 2024 [ ABEDFD48AC042C6AAAD32452E77217A1 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
      00:48:56.0514 2024 FLEXnet Licensing Service - ok
      00:48:56.0546 2024 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
      00:48:56.0546 2024 flpydisk - ok
      00:48:56.0592 2024 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
      00:48:56.0592 2024 FltMgr - ok
      00:48:56.0655 2024 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
      00:48:56.0670 2024 FontCache - ok
      00:48:56.0733 2024 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
      00:48:56.0733 2024 FontCache3.0.0.0 - ok
      00:48:56.0748 2024 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
      00:48:56.0748 2024 FsDepends - ok
      00:48:56.0811 2024 [ 6C06701BF1DB05405804D7EB610991CE ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
      00:48:56.0811 2024 fssfltr - ok
      00:48:56.0920 2024 [ 4CE9DAC1518FF7E77BD213E6394B9D77 ] fsssvc C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
      00:48:56.0936 2024 fsssvc - ok
      00:48:56.0998 2024 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
      00:48:56.0998 2024 Fs_Rec - ok
      00:48:57.0060 2024 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
      00:48:57.0060 2024 fvevol - ok
      00:48:57.0092 2024 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
      00:48:57.0092 2024 gagp30kx - ok
      00:48:57.0170 2024 [ 1FDA0DF739234C4023851A282DD28704 ] GameConsoleService C:\Program Files (x86)\Packard Bell Games\Packard Bell Game Console\GameConsoleService.exe
      00:48:57.0170 2024 GameConsoleService - ok
      00:48:57.0248 2024 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
      00:48:57.0248 2024 gpsvc - ok
      00:48:57.0294 2024 [ 0191DEE9B9EB7902AF2CF4F67301095D ] GREGService C:\Program Files (x86)\Packard Bell\Registration\GREGsvc.exe
      00:48:57.0294 2024 GREGService - ok
      00:48:57.0357 2024 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
      00:48:57.0357 2024 gupdate - ok
      00:48:57.0388 2024 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
      00:48:57.0404 2024 gupdatem - ok
      00:48:57.0435 2024 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
      00:48:57.0435 2024 hcw85cir - ok
      00:48:57.0497 2024 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
      00:48:57.0513 2024 HdAudAddService - ok
      00:48:57.0544 2024 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
      00:48:57.0544 2024 HDAudBus - ok
      00:48:57.0575 2024 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
      00:48:57.0575 2024 HidBatt - ok
      00:48:57.0606 2024 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
      00:48:57.0606 2024 HidBth - ok
      00:48:57.0638 2024 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
      00:48:57.0638 2024 HidIr - ok
      00:48:57.0653 2024 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
      00:48:57.0653 2024 hidserv - ok
      00:48:57.0700 2024 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
      00:48:57.0700 2024 HidUsb - ok
      00:48:57.0747 2024 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
      00:48:57.0747 2024 hkmsvc - ok
      00:48:57.0809 2024 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
      00:48:57.0809 2024 HomeGroupListener - ok
      00:48:57.0856 2024 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
      00:48:57.0856 2024 HomeGroupProvider - ok
      00:48:57.0887 2024 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
      00:48:57.0887 2024 HpSAMD - ok
      00:48:57.0965 2024 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
      00:48:57.0965 2024 HTTP - ok
      00:48:58.0012 2024 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
      00:48:58.0012 2024 hwpolicy - ok
      00:48:58.0074 2024 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
      00:48:58.0074 2024 i8042prt - ok
      00:48:58.0137 2024 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
      00:48:58.0137 2024 iaStorV - ok
      00:48:58.0199 2024 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
      00:48:58.0199 2024 idsvc - ok
      00:48:58.0277 2024 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
      00:48:58.0277 2024 iirsp - ok
      00:48:58.0340 2024 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
      00:48:58.0340 2024 IKEEXT - ok
      00:48:58.0433 2024 [ FEADC18677A85A123E95A9B976101120 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
      00:48:58.0449 2024 IntcAzAudAddService - ok
      00:48:58.0480 2024 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
      00:48:58.0480 2024 intelide - ok
      00:48:58.0511 2024 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
      00:48:58.0511 2024 intelppm - ok
      00:48:58.0542 2024 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
      00:48:58.0542 2024 IPBusEnum - ok
      00:48:58.0589 2024 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
      00:48:58.0589 2024 IpFilterDriver - ok
      00:48:58.0683 2024 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
      00:48:58.0699 2024 iphlpsvc - ok
      00:48:58.0761 2024 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
      00:48:58.0761 2024 IPMIDRV - ok
      00:48:58.0823 2024 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
      00:48:58.0823 2024 IPNAT - ok
      00:48:58.0839 2024 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
      00:48:58.0839 2024 IRENUM - ok
      00:48:58.0901 2024 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
      00:48:58.0901 2024 isapnp - ok
      00:48:58.0948 2024 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
      00:48:58.0948 2024 iScsiPrt - ok
      00:48:58.0979 2024 [ C9B4ECC187581E5BF3F76648884B7829 ] k57nd60a C:\Windows\system32\DRIVERS\k57nd60a.sys
      00:48:58.0979 2024 k57nd60a - ok
      00:48:59.0011 2024 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
      00:48:59.0011 2024 kbdclass - ok
      00:48:59.0042 2024 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
      00:48:59.0042 2024 kbdhid - ok
      00:48:59.0057 2024 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
      00:48:59.0057 2024 KeyIso - ok
      00:48:59.0089 2024 KMService - ok
      00:48:59.0167 2024 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
      00:48:59.0167 2024 KSecDD - ok
      00:48:59.0213 2024 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
      00:48:59.0229 2024 KSecPkg - ok
      00:48:59.0245 2024 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
      00:48:59.0245 2024 ksthunk - ok
      00:48:59.0291 2024 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
      00:48:59.0291 2024 KtmRm - ok
      00:48:59.0354 2024 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
      00:48:59.0369 2024 LanmanServer - ok
      00:48:59.0416 2024 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
      00:48:59.0432 2024 LanmanWorkstation - ok
      00:48:59.0479 2024 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
      00:48:59.0479 2024 lltdio - ok
      00:48:59.0494 2024 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
      00:48:59.0494 2024 lltdsvc - ok
      00:48:59.0541 2024 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
      00:48:59.0541 2024 lmhosts - ok
      00:48:59.0588 2024 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
      00:48:59.0588 2024 LSI_FC - ok
      00:48:59.0635 2024 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
      00:48:59.0635 2024 LSI_SAS - ok
      00:48:59.0650 2024 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
      00:48:59.0650 2024 LSI_SAS2 - ok
      00:48:59.0650 2024 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
      00:48:59.0666 2024 LSI_SCSI - ok
      00:48:59.0697 2024 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
      00:48:59.0697 2024 luafv - ok
      00:48:59.0759 2024 [ 024DA28053D57E9E32BEE52600576BBB ] MarvinBus C:\Windows\system32\DRIVERS\MarvinBus64.sys
      00:48:59.0759 2024 MarvinBus - ok
      00:48:59.0806 2024 [ A8FE8F2783B2929B56F5370A89356CE9 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
      00:48:59.0806 2024 MBAMProtector - ok
      00:48:59.0915 2024 [ 85B16A92B117A5A800032ECD904B86DB ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
      00:48:59.0915 2024 MBAMScheduler - ok
      00:48:59.0993 2024 [ 20E2469DB709FC675E655CEAA11BE312 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
      00:49:00.0009 2024 MBAMService - ok
      00:49:00.0040 2024 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
      00:49:00.0056 2024 Mcx2Svc - ok
      00:49:00.0071 2024 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
      00:49:00.0071 2024 megasas - ok
      00:49:00.0103 2024 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
      00:49:00.0103 2024 MegaSR - ok
      00:49:00.0212 2024 Microsoft SharePoint Workspace Audit Service - ok
      00:49:00.0243 2024 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
      00:49:00.0259 2024 MMCSS - ok
      00:49:00.0274 2024 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
      00:49:00.0274 2024 Modem - ok
      00:49:00.0305 2024 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
      00:49:00.0305 2024 monitor - ok
      00:49:00.0352 2024 [ 43E754047C6DEE50666554D3C66D6279 ] motccgp C:\Windows\system32\DRIVERS\motccgp.sys
      00:49:00.0352 2024 motccgp - ok
      00:49:00.0368 2024 [ 577399C75CF85AC68E7830EB150F45EF ] motccgpfl C:\Windows\system32\DRIVERS\motccgpfl.sys
      00:49:00.0368 2024 motccgpfl - ok
      00:49:00.0383 2024 motmodem - ok
      00:49:00.0508 2024 [ 11AAA0083D30F4677AD2B218EE7F5CE9 ] Motorola Device Manager C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe
      00:49:00.0508 2024 Motorola Device Manager - ok
      00:49:00.0539 2024 [ 19BC2161C3FCCED802F1BCD9B78C3466 ] MotoSwitchService C:\Windows\system32\DRIVERS\motswch.sys
      00:49:00.0539 2024 MotoSwitchService - ok
      00:49:00.0571 2024 [ C4F1495598C7E1FEF53BCFD84A5BD53E ] Motousbnet C:\Windows\system32\DRIVERS\Motousbnet.sys
      00:49:00.0586 2024 Motousbnet - ok
      00:49:00.0602 2024 [ D075B1D964A314D240F5498773EE89DF ] motusbdevice C:\Windows\system32\DRIVERS\motusbdevice.sys
      00:49:00.0602 2024 motusbdevice - ok
      00:49:00.0617 2024 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
      00:49:00.0617 2024 mouclass - ok
      00:49:00.0664 2024 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
      00:49:00.0664 2024 mouhid - ok
      00:49:00.0727 2024 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
      00:49:00.0727 2024 mountmgr - ok
      00:49:00.0773 2024 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
      00:49:00.0773 2024 mpio - ok
      00:49:00.0789 2024 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
      00:49:00.0789 2024 mpsdrv - ok
      00:49:00.0867 2024 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
      00:49:00.0883 2024 MpsSvc - ok
      00:49:00.0929 2024 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
      00:49:00.0929 2024 MRxDAV - ok
      00:49:00.0976 2024 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
      00:49:00.0976 2024 mrxsmb - ok
      00:49:01.0039 2024 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
      00:49:01.0039 2024 mrxsmb10 - ok
      00:49:01.0054 2024 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
      00:49:01.0054 2024 mrxsmb20 - ok
      00:49:01.0101 2024 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
      00:49:01.0101 2024 msahci - ok
      00:49:01.0132 2024 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
      00:49:01.0132 2024 msdsm - ok
      00:49:01.0163 2024 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
      00:49:01.0163 2024 MSDTC - ok
      00:49:01.0210 2024 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
      00:49:01.0210 2024 Msfs - ok
      00:49:01.0241 2024 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
      00:49:01.0241 2024 mshidkmdf - ok
      00:49:01.0288 2024 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
      00:49:01.0288 2024 msisadrv - ok
      00:49:01.0351 2024 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
      00:49:01.0351 2024 MSiSCSI - ok
      00:49:01.0351 2024 msiserver - ok
      00:49:01.0382 2024 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
      00:49:01.0382 2024 MSKSSRV - ok
      00:49:01.0413 2024 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
      00:49:01.0413 2024 MSPCLOCK - ok
      00:49:01.0429 2024 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
      00:49:01.0429 2024 MSPQM - ok
      00:49:01.0475 2024 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
      00:49:01.0475 2024 MsRPC - ok
      00:49:01.0538 2024 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
      00:49:01.0538 2024 mssmbios - ok
      00:49:01.0553 2024 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
      00:49:01.0553 2024 MSTEE - ok
      00:49:01.0569 2024 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
      00:49:01.0569 2024 MTConfig - ok
      00:49:01.0585 2024 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
      00:49:01.0585 2024 Mup - ok
      00:49:01.0694 2024 [ 9821F54FD943D9E8A5BA56AEBF6297AC ] NanoServiceMain C:\Program Files (x86)\Panda Security\Panda Cloud Antivirus\PSANHost.exe
      00:49:01.0709 2024 NanoServiceMain - ok
      00:49:01.0756 2024 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
      00:49:01.0756 2024 napagent - ok
      00:49:01.0819 2024 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
      00:49:01.0819 2024 NativeWifiP - ok
      00:49:01.0912 2024 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
      00:49:01.0912 2024 NDIS - ok
      00:49:01.0943 2024 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
      00:49:01.0943 2024 NdisCap - ok
      00:49:01.0975 2024 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
      00:49:01.0975 2024 NdisTapi - ok
      00:49:02.0021 2024 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
      00:49:02.0021 2024 Ndisuio - ok
      00:49:02.0068 2024 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
      00:49:02.0068 2024 NdisWan - ok
      00:49:02.0115 2024 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
      00:49:02.0115 2024 NDProxy - ok
      00:49:02.0224 2024 [ 7D2633295EB6FF2B938185874884059D ] Nero BackItUp Scheduler 4.0 C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
      00:49:02.0224 2024 Nero BackItUp Scheduler 4.0 - ok
      00:49:02.0255 2024 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
      00:49:02.0255 2024 NetBIOS - ok
      00:49:02.0302 2024 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
      00:49:02.0302 2024 NetBT - ok
      00:49:02.0318 2024 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
      00:49:02.0333 2024 Netlogon - ok
      00:49:02.0365 2024 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
      00:49:02.0365 2024 Netman - ok
      00:49:02.0427 2024 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
      00:49:02.0427 2024 netprofm - ok
      00:49:02.0458 2024 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
      00:49:02.0458 2024 NetTcpPortSharing - ok
      00:49:02.0474 2024 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
      00:49:02.0474 2024 nfrd960 - ok
      00:49:02.0521 2024 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
      00:49:02.0521 2024 NlaSvc - ok
      00:49:02.0567 2024 [ A82F339386766C585C3CF0C10AA9A002 ] NNSALPC C:\Windows\system32\DRIVERS\NNSAlpc.sys
      00:49:02.0567 2024 NNSALPC - ok
      00:49:02.0599 2024 [ 2A0C5D3890FC56254CBFA8D2A2DFA62C ] NNSHTTP C:\Windows\system32\DRIVERS\NNSHttp.sys
      00:49:02.0599 2024 NNSHTTP - ok
      00:49:02.0614 2024 [ 27F12CE54A0319527E599ACD193B86F5 ] NNSIDS C:\Windows\system32\DRIVERS\NNSIds.sys
      00:49:02.0614 2024 NNSIDS - ok
      00:49:02.0645 2024 [ 02D6C70D0CA4040C81698A2014019E0A ] NNSNAHSL C:\Windows\system32\DRIVERS\NNSNAHSL.sys
      00:49:02.0661 2024 NNSNAHSL - ok
      00:49:02.0708 2024 [ 488A615DDA26640FBEAC945678208E23 ] NNSPICC C:\Windows\system32\DRIVERS\NNSPicc.sys
      00:49:02.0708 2024 NNSPICC - ok
      00:49:02.0801 2024 [ 7A07299FB6BCE5F563B852FE930B5311 ] NNSPIHSW C:\Windows\system32\DRIVERS\NNSPihsw.sys
      00:49:02.0801 2024 NNSPIHSW - ok
      00:49:02.0833 2024 [ 643FE52EA4C41E806B6906CF0C786D24 ] NNSPOP3 C:\Windows\system32\DRIVERS\NNSPop3.sys
      00:49:02.0833 2024 NNSPOP3 - ok
      00:49:02.0848 2024 [ A5DFD37B6E05E976DD70DF5D202C9BCA ] NNSPROT C:\Windows\system32\DRIVERS\NNSProt.sys
      00:49:02.0848 2024 NNSPROT - ok
      00:49:02.0864 2024 [ A0C7A228D06B1E9FC5AB4AC7B50FE612 ] NNSPRV C:\Windows\system32\DRIVERS\NNSPrv.sys
      00:49:02.0864 2024 NNSPRV - ok
      00:49:02.0879 2024 [ F41B212F242B02AE54317E073CC9D02E ] NNSSMTP C:\Windows\system32\DRIVERS\NNSSmtp.sys
      00:49:02.0879 2024 NNSSMTP - ok
      00:49:02.0911 2024 [ B6D8243E45687B3791CBDABBE2697699 ] NNSSTRM C:\Windows\system32\DRIVERS\NNSStrm.sys
      00:49:02.0911 2024 NNSSTRM - ok
      00:49:02.0926 2024 [ 1257C0FB4765B6D33F9EAEA326995ABA ] NNSTLSC C:\Windows\system32\DRIVERS\NNSTlsc.sys
      00:49:02.0926 2024 NNSTLSC - ok
      00:49:02.0957 2024 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
      00:49:02.0957 2024 Npfs - ok
      00:49:02.0989 2024 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
      00:49:02.0989 2024 nsi - ok
      00:49:03.0004 2024 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
      00:49:03.0004 2024 nsiproxy - ok
      00:49:03.0082 2024 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
      00:49:03.0098 2024 Ntfs - ok
      00:49:03.0145 2024 [ 5B3CE960C62DBE864BE9A0BD043A3E30 ] NTI IScheduleSvc C:\Program Files (x86)\NewTech Infosystems\Packard Bell MyBackup\IScheduleSvc.exe
      00:49:03.0145 2024 NTI IScheduleSvc - ok
      00:49:03.0191 2024 [ 64DDD0DEE976302F4BD93E5EFCC2F013 ] NTIDrvr C:\Windows\system32\drivers\NTIDrvr.sys
      00:49:03.0191 2024 NTIDrvr - ok
      00:49:03.0207 2024 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
      00:49:03.0207 2024 Null - ok
      00:49:03.0269 2024 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
      00:49:03.0269 2024 nvraid - ok
      00:49:03.0332 2024 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
      00:49:03.0332 2024 nvstor - ok
      00:49:03.0347 2024 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
      00:49:03.0347 2024 nv_agp - ok
      00:49:03.0410 2024 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
      00:49:03.0410 2024 ohci1394 - ok
      00:49:03.0488 2024 [ 2B8E4C792BED0E5882702720BC528AE5 ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
      00:49:03.0488 2024 ose - ok
      00:49:03.0706 2024 [ FE9C0029E1AF26350D9985D00520E5C8 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
      00:49:03.0737 2024 osppsvc - ok
      00:49:03.0769 2024 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
      00:49:03.0784 2024 p2pimsvc - ok
      00:49:03.0831 2024 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
      00:49:03.0831 2024 p2psvc - ok
      00:49:03.0847 2024 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
      00:49:03.0862 2024 Parport - ok
      00:49:03.0909 2024 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
      00:49:03.0909 2024 partmgr - ok
      00:49:03.0940 2024 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
      00:49:03.0940 2024 PcaSvc - ok
      00:49:03.0987 2024 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
      00:49:03.0987 2024 pci - ok
      00:49:04.0034 2024 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
      00:49:04.0034 2024 pciide - ok
      00:49:04.0065 2024 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
      00:49:04.0065 2024 pcmcia - ok
      00:49:04.0096 2024 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
      00:49:04.0096 2024 pcw - ok
      00:49:04.0127 2024 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
      00:49:04.0127 2024 PEAUTH - ok
      00:49:04.0205 2024 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
      00:49:04.0205 2024 PerfHost - ok
      00:49:04.0315 2024 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
      00:49:04.0330 2024 pla - ok
      00:49:04.0377 2024 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
      00:49:04.0393 2024 PlugPlay - ok
      00:49:04.0393 2024 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
      00:49:04.0408 2024 PNRPAutoReg - ok
      00:49:04.0424 2024 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
      00:49:04.0424 2024 PNRPsvc - ok
      00:49:04.0471 2024 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
      00:49:04.0471 2024 PolicyAgent - ok
      00:49:04.0502 2024 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
      00:49:04.0502 2024 Power - ok
      00:49:04.0549 2024 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
      00:49:04.0549 2024 PptpMiniport - ok
      00:49:04.0611 2024 [ 0264B15F628C8C7DBF439FD7AB4108F5 ] Printer Control C:\Windows\system32\PrintCtrl.exe
      00:49:04.0611 2024 Printer Control - ok
      00:49:04.0642 2024 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
      00:49:04.0642 2024 Processor - ok
      00:49:04.0673 2024 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
      00:49:04.0689 2024 ProfSvc - ok
      00:49:04.0705 2024 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
      00:49:04.0705 2024 ProtectedStorage - ok
      00:49:04.0751 2024 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
      00:49:04.0751 2024 Psched - ok
      00:49:04.0798 2024 [ A564E693CC1023D8FA3F0B591F613A49 ] PSINAflt C:\Windows\system32\DRIVERS\PSINAflt.sys
      00:49:04.0798 2024 PSINAflt - ok
      00:49:04.0814 2024 [ 0A1C6F42FB5CDB9AE6B957088D5F38AA ] PSINFile C:\Windows\system32\DRIVERS\PSINFile.sys
      00:49:04.0814 2024 PSINFile - ok
      00:49:04.0861 2024 [ B966E8F3B53272FEA149DF7B52B0F4D7 ] PSINKNC C:\Windows\system32\DRIVERS\psinknc.sys
      00:49:04.0861 2024 PSINKNC - ok
      00:49:04.0892 2024 [ 8A11A8C152AD0FE717808C48805098A5 ] PSINProc C:\Windows\system32\DRIVERS\PSINProc.sys
      00:49:04.0892 2024 PSINProc - ok
      00:49:04.0939 2024 [ 9714E9F7D4BED5C90E9A34960415AC9F ] PSINProt C:\Windows\system32\DRIVERS\PSINProt.sys
      00:49:04.0939 2024 PSINProt - ok
      00:49:04.0970 2024 [ E437C22DD66BA8F763F01D02C9713F8D ] PSKMAD C:\Windows\system32\DRIVERS\PSKMAD.sys
      00:49:04.0970 2024 PSKMAD - ok
      00:49:05.0079 2024 [ EA735BF6DF13A857A83C99BF27A422AD ] PST Service C:\Program Files (x86)\Motorola\MotForwardDaemon\ForwardDaemon.exe
      00:49:05.0079 2024 PST Service - ok
      00:49:05.0126 2024 [ 86C00481DAE67613C59E32A335D3E363 ] PSUAService C:\Program Files (x86)\Panda Security\Panda Cloud Antivirus\PSUAService.exe
      00:49:05.0126 2024 PSUAService - ok
      00:49:05.0157 2024 [ 87B04878A6D59D6C79251DC960C674C1 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
      00:49:05.0157 2024 PxHlpa64 - ok
      00:49:05.0204 2024 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
      00:49:05.0219 2024 ql2300 - ok
      00:49:05.0235 2024 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
      00:49:05.0235 2024 ql40xx - ok
      00:49:05.0266 2024 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
      00:49:05.0266 2024 QWAVE - ok
      00:49:05.0282 2024 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
      00:49:05.0282 2024 QWAVEdrv - ok
      00:49:05.0313 2024 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
      00:49:05.0313 2024 RasAcd - ok
      00:49:05.0329 2024 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
      00:49:05.0329 2024 RasAgileVpn - ok
      00:49:05.0375 2024 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
      00:49:05.0375 2024 RasAuto - ok
      00:49:05.0422 2024 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
      00:49:05.0422 2024 Rasl2tp - ok
      00:49:05.0485 2024 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
      00:49:05.0485 2024 RasMan - ok
      00:49:05.0516 2024 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
      00:49:05.0516 2024 RasPppoe - ok
      00:49:05.0547 2024 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
      00:49:05.0547 2024 RasSstp - ok
      00:49:05.0609 2024 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
      00:49:05.0609 2024 rdbss - ok
      00:49:05.0641 2024 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
      00:49:05.0641 2024 rdpbus - ok
      00:49:05.0641 2024 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
      00:49:05.0641 2024 RDPCDD - ok
      00:49:05.0672 2024 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
      00:49:05.0672 2024 RDPENCDD - ok
      00:49:05.0703 2024 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
      00:49:05.0719 2024 RDPREFMP - ok
      00:49:05.0750 2024 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
      00:49:05.0750 2024 RDPWD - ok
      00:49:05.0828 2024 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
      00:49:05.0828 2024 rdyboost - ok
      00:49:05.0859 2024 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
      00:49:05.0875 2024 RemoteAccess - ok
      00:49:05.0890 2024 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
      00:49:05.0890 2024 RemoteRegistry - ok
      00:49:05.0953 2024 [ 7B04C9843921AB1F695FB395422C5360 ] RimUsb C:\Windows\system32\Drivers\RimUsb_AMD64.sys
      00:49:05.0953 2024 RimUsb - ok
      00:49:05.0999 2024 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
      00:49:05.0999 2024 RpcEptMapper - ok
      00:49:06.0015 2024 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
      00:49:06.0015 2024 RpcLocator - ok
      00:49:06.0062 2024 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
      00:49:06.0077 2024 RpcSs - ok
      00:49:06.0109 2024 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
      00:49:06.0109 2024 rspndr - ok
      00:49:06.0171 2024 [ 3CEEE53BBF8BA284FF44585CEC0162FE ] RSUSBSTOR C:\Windows\system32\Drivers\RtsUStor.sys
      00:49:06.0171 2024 RSUSBSTOR - ok
      00:49:06.0218 2024 [ 4E821C740A675F6D040BE41D59A62B1D ] RTHDMIAzAudService C:\Windows\system32\drivers\RtHDMIVX.sys
      00:49:06.0218 2024 RTHDMIAzAudService - ok
      00:49:06.0265 2024 [ 6C90231046FB9FC4123C42179832817F ] s117bus C:\Windows\system32\DRIVERS\s117bus.sys
      00:49:06.0265 2024 s117bus - ok
      00:49:06.0280 2024 [ 3279341C90EF8F226AF77623039F4495 ] s117mdfl C:\Windows\system32\DRIVERS\s117mdfl.sys
      00:49:06.0280 2024 s117mdfl - ok
      00:49:06.0296 2024 [ 73E331F555279E753B312675DDAF4516 ] s117mdm C:\Windows\system32\DRIVERS\s117mdm.sys
      00:49:06.0296 2024 s117mdm - ok
      00:49:06.0374 2024 [ D420731FD2880F0F40F20771EFAAD671 ] s117mgmt C:\Windows\system32\DRIVERS\s117mgmt.sys
      00:49:06.0374 2024 s117mgmt - ok
      00:49:06.0405 2024 [ 98236CA5A9A77D0983AC3F6D6527C796 ] s117nd5 C:\Windows\system32\DRIVERS\s117nd5.sys
      00:49:06.0405 2024 s117nd5 - ok
      00:49:06.0421 2024 [ 1DD613909477AE298C98E86617EC356B ] s117obex C:\Windows\system32\DRIVERS\s117obex.sys
      00:49:06.0421 2024 s117obex - ok
      00:49:06.0483 2024 [ 9A22DF5FE9B6BE279D820776A6ADB56F ] s117unic C:\Windows\system32\DRIVERS\s117unic.sys
      00:49:06.0499 2024 s117unic - ok
      00:49:06.0514 2024 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
      00:49:06.0514 2024 SamSs - ok
      00:49:06.0561 2024 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
      00:49:06.0561 2024 sbp2port - ok
      00:49:06.0592 2024 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
      00:49:06.0592 2024 SCardSvr - ok
      00:49:06.0655 2024 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
      00:49:06.0655 2024 scfilter - ok
      00:49:06.0733 2024 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
      00:49:06.0733 2024 Schedule - ok
      00:49:06.0779 2024 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
      00:49:06.0779 2024 SCPolicySvc - ok
      00:49:06.0826 2024 ScreamBAudioSvc - ok
      00:49:06.0873 2024 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
      00:49:06.0873 2024 SDRSVC - ok
      00:49:06.0920 2024 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
      00:49:06.0920 2024 secdrv - ok
      00:49:06.0967 2024 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
      00:49:06.0967 2024 seclogon - ok
      00:49:06.0982 2024 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
      00:49:06.0982 2024 SENS - ok
      00:49:06.0998 2024 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
      00:49:06.0998 2024 SensrSvc - ok
      00:49:07.0029 2024 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
      00:49:07.0029 2024 Serenum - ok
      00:49:07.0045 2024 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
      00:49:07.0045 2024 Serial - ok
      00:49:07.0107 2024 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
      00:49:07.0107 2024 sermouse - ok
      00:49:07.0169 2024 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
      00:49:07.0169 2024 SessionEnv - ok
      00:49:07.0216 2024 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
      00:49:07.0216 2024 sffdisk - ok
      00:49:07.0232 2024 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
      00:49:07.0247 2024 sffp_mmc - ok
      00:49:07.0247 2024 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
      00:49:07.0247 2024 sffp_sd - ok
      00:49:07.0279 2024 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
      00:49:07.0294 2024 sfloppy - ok
      00:49:07.0372 2024 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
      00:49:07.0372 2024 SharedAccess - ok
      00:49:07.0435 2024 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
      00:49:07.0450 2024 ShellHWDetection - ok
      00:49:07.0481 2024 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
      00:49:07.0481 2024 SiSRaid2 - ok
      00:49:07.0513 2024 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
      00:49:07.0513 2024 SiSRaid4 - ok
      00:49:07.0622 2024 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
      00:49:07.0622 2024 SkypeUpdate - ok
      00:49:07.0653 2024 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
      00:49:07.0653 2024 Smb - ok
      00:49:07.0715 2024 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
      00:49:07.0715 2024 SNMPTRAP - ok
      00:49:07.0747 2024 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
      00:49:07.0747 2024 spldr - ok
      00:49:07.0809 2024 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
      00:49:07.0809 2024 Spooler - ok
      00:49:07.0949 2024 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
      00:49:07.0965 2024 sppsvc - ok
      00:49:07.0996 2024 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
      00:49:07.0996 2024 sppuinotify - ok
      00:49:08.0090 2024 [ 602884696850C86434530790B110E8EB ] sptd C:\Windows\system32\Drivers\sptd.sys
      00:49:08.0090 2024 sptd - ok
      00:49:08.0152 2024 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
      00:49:08.0152 2024 srv - ok
      00:49:08.0168 2024 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
      00:49:08.0183 2024 srv2 - ok
      00:49:08.0199 2024 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
      00:49:08.0199 2024 srvnet - ok
      00:49:08.0230 2024 [ F74634F46692C8315E7F37F698AF3225 ] sscebus C:\Windows\system32\DRIVERS\sscebus.sys
      00:49:08.0230 2024 sscebus - ok
      00:49:08.0261 2024 [ 82732B391EFD69B0548044BE9CB37BFC ] sscemdfl C:\Windows\system32\DRIVERS\sscemdfl.sys
      00:49:08.0261 2024 sscemdfl - ok
      00:49:08.0308 2024 [ 43D56ACE4469D90F9790E8352D87D9B5 ] sscemdm C:\Windows\system32\DRIVERS\sscemdm.sys
      00:49:08.0308 2024 sscemdm - ok
      00:49:08.0371 2024 [ DB504EF6D73F6B8AB5CF8A18560C4E2A ] ssceserd C:\Windows\system32\DRIVERS\ssceserd.sys
      00:49:08.0371 2024 ssceserd - ok
      00:49:08.0417 2024 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
      00:49:08.0417 2024 SSDPSRV - ok
      00:49:08.0433 2024 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
      00:49:08.0433 2024 SstpSvc - ok
      00:49:08.0495 2024 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
      00:49:08.0495 2024 stexstor - ok
      00:49:08.0573 2024 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
      00:49:08.0573 2024 stisvc - ok
      00:49:08.0620 2024 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
      00:49:08.0620 2024 swenum - ok
      00:49:08.0776 2024 [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
      00:49:08.0776 2024 SwitchBoard - ok
      00:49:08.0807 2024 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
      00:49:08.0807 2024 swprv - ok
      00:49:08.0854 2024 [ 064A2530A4A7C7CEC1BE6A1945645BE4 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
      00:49:08.0854 2024 SynTP - ok
      00:49:08.0963 2024 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
      00:49:08.0963 2024 SysMain - ok
      00:49:09.0010 2024 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
      00:49:09.0010 2024 TabletInputService - ok
      00:49:09.0073 2024 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
      00:49:09.0073 2024 TapiSrv - ok
      00:49:09.0104 2024 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
      00:49:09.0104 2024 TBS - ok
      00:49:09.0182 2024 [ 37608401DFDB388CAF66917F6B2D6FB0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
      00:49:09.0197 2024 Tcpip - ok
      00:49:09.0260 2024 [ 37608401DFDB388CAF66917F6B2D6FB0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
      00:49:09.0275 2024 TCPIP6 - ok
      00:49:09.0322 2024 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
      00:49:09.0322 2024 tcpipreg - ok
      00:49:09.0353 2024 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
      00:49:09.0353 2024 TDPIPE - ok
      00:49:09.0416 2024 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
      00:49:09.0416 2024 TDTCP - ok
      00:49:09.0447 2024 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
      00:49:09.0447 2024 tdx - ok
      00:49:09.0494 2024 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
      00:49:09.0494 2024 TermDD - ok
      00:49:09.0556 2024 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
      00:49:09.0556 2024 TermService - ok
      00:49:09.0603 2024 [ CE4B6956E4E12492715A53076E58761F ] TFsExDisk C:\Windows\System32\Drivers\TFsExDisk.sys
      00:49:09.0603 2024 TFsExDisk - ok
      00:49:09.0619 2024 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
      00:49:09.0634 2024 Themes - ok
      00:49:09.0665 2024 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
      00:49:09.0665 2024 THREADORDER - ok
      00:49:09.0681 2024 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
      00:49:09.0681 2024 TrkWks - ok
      00:49:09.0743 2024 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
      00:49:09.0743 2024 TrustedInstaller - ok
      00:49:09.0790 2024 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
      00:49:09.0790 2024 tssecsrv - ok
      00:49:09.0837 2024 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
      00:49:09.0837 2024 TsUsbFlt - ok
      00:49:09.0899 2024 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
      00:49:09.0899 2024 tunnel - ok
      00:49:09.0962 2024 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
      00:49:09.0962 2024 uagp35 - ok
      00:49:09.0977 2024 [ 2E22C1FD397A5A9FFEF55E9D1FC96C00 ] UBHelper C:\Windows\system32\drivers\UBHelper.sys
      00:49:09.0977 2024 UBHelper - ok
      00:49:10.0024 2024 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
      00:49:10.0024 2024 udfs - ok
      00:49:10.0055 2024 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
      00:49:10.0055 2024 UI0Detect - ok
      00:49:10.0102 2024 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
      00:49:10.0102 2024 uliagpkx - ok
      00:49:10.0149 2024 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
      00:49:10.0149 2024 umbus - ok
      00:49:10.0180 2024 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
      00:49:10.0180 2024 UmPass - ok
      00:49:10.0258 2024 [ F9EC9ACD504D823D9B9CA98A4F8D3CA2 ] Updater Service C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe
      00:49:10.0258 2024 Updater Service - ok
      00:49:10.0289 2024 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
      00:49:10.0289 2024 upnphost - ok
      00:49:10.0336 2024 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
      00:49:10.0336 2024 usbccgp - ok
      00:49:10.0399 2024 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
      00:49:10.0399 2024 usbcir - ok
      00:49:10.0445 2024 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
      00:49:10.0445 2024 usbehci - ok
      00:49:10.0508 2024 [ 2C780746DC44A28FE67004DC58173F05 ] usbfilter C:\Windows\system32\DRIVERS\usbfilter.sys
      00:49:10.0508 2024 usbfilter - ok
      00:49:10.0555 2024 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
      00:49:10.0555 2024 usbhub - ok
      00:49:10.0555 2024 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
      00:49:10.0570 2024 usbohci - ok
      00:49:10.0586 2024 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
      00:49:10.0586 2024 usbprint - ok
      00:49:10.0648 2024 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
      00:49:10.0648 2024 usbscan - ok
      00:49:10.0679 2024 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
      00:49:10.0679 2024 USBSTOR - ok
      00:49:10.0726 2024 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
      00:49:10.0726 2024 usbuhci - ok
      00:49:10.0789 2024 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
      00:49:10.0789 2024 usbvideo - ok
      00:49:10.0820 2024 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
      00:49:10.0820 2024 UxSms - ok
      00:49:10.0820 2024 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
      00:49:10.0820 2024 VaultSvc - ok
      00:49:10.0851 2024 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
      00:49:10.0851 2024 vdrvroot - ok
      00:49:10.0913 2024 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
      00:49:10.0913 2024 vds - ok
      00:49:10.0945 2024 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
      00:49:10.0945 2024 vga - ok
      00:49:10.0960 2024 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
      00:49:10.0960 2024 VgaSave - ok
      00:49:11.0023 2024 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
      00:49:11.0023 2024 vhdmp - ok
      00:49:11.0085 2024 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
      00:49:11.0085 2024 viaide - ok
      00:49:11.0132 2024 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
      00:49:11.0132 2024 volmgr - ok
      00:49:11.0179 2024 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
      00:49:11.0179 2024 volmgrx - ok
      00:49:11.0194 2024 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
      00:49:11.0194 2024 volsnap - ok
      00:49:11.0225 2024 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
      00:49:11.0225 2024 vsmraid - ok
      00:49:11.0319 2024 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
      00:49:11.0335 2024 VSS - ok
      00:49:11.0335 2024 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
      00:49:11.0335 2024 vwifibus - ok
      00:49:11.0381 2024 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
      00:49:11.0381 2024 vwififlt - ok
      00:49:11.0413 2024 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
      00:49:11.0413 2024 W32Time - ok
      00:49:11.0428 2024 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
      00:49:11.0428 2024 WacomPen - ok
      00:49:11.0491 2024 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
      00:49:11.0491 2024 WANARP - ok
      00:49:11.0491 2024 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
      00:49:11.0491 2024 Wanarpv6 - ok
      00:49:11.0569 2024 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
      00:49:11.0569 2024 WatAdminSvc - ok
      00:49:11.0647 2024 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
      00:49:11.0662 2024 wbengine - ok
      00:49:11.0678 2024 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
      00:49:11.0693 2024 WbioSrvc - ok
      00:49:11.0756 2024 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
      00:49:11.0756 2024 wcncsvc - ok
      00:49:11.0803 2024 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
      00:49:11.0803 2024 WcsPlugInService - ok
      00:49:11.0818 2024 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
      00:49:11.0818 2024 Wd - ok
      00:49:11.0912 2024 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
      00:49:11.0912 2024 Wdf01000 - ok
      00:49:11.0927 2024 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
      00:49:11.0943 2024 WdiServiceHost - ok
      00:49:11.0943 2024 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
      00:49:11.0943 2024 WdiSystemHost - ok
      00:49:11.0990 2024 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
      00:49:11.0990 2024 WebClient - ok
      00:49:12.0005 2024 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
      00:49:12.0005 2024 Wecsvc - ok
      00:49:12.0021 2024 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
      00:49:12.0021 2024 wercplsupport - ok
      00:49:12.0052 2024 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
      00:49:12.0052 2024 WerSvc - ok
      00:49:12.0083 2024 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
      00:49:12.0083 2024 WfpLwf - ok
      00:49:12.0099 2024 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
      00:49:12.0099 2024 WIMMount - ok
      00:49:12.0146 2024 WinDefend - ok
      00:49:12.0161 2024 WinHttpAutoProxySvc - ok
      00:49:12.0208 2024 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
      00:49:12.0208 2024 Winmgmt - ok
      00:49:12.0302 2024 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
      00:49:12.0302 2024 WinRM - ok
      00:49:12.0411 2024 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
      00:49:12.0411 2024 WinUsb - ok
      00:49:12.0458 2024 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
      00:49:12.0473 2024 Wlansvc - ok
      00:49:12.0567 2024 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
      00:49:12.0567 2024 wlcrasvc - ok
      00:49:12.0692 2024 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
      00:49:12.0707 2024 wlidsvc - ok
      00:49:12.0754 2024 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
      00:49:12.0754 2024 WmiAcpi - ok
      00:49:12.0832 2024 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
      00:49:12.0832 2024 wmiApSrv - ok
      00:49:12.0863 2024 WMPNetworkSvc - ok
      00:49:12.0895 2024 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
      00:49:12.0895 2024 WPCSvc - ok
      00:49:12.0941 2024 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
      00:49:12.0941 2024 WPDBusEnum - ok
      00:49:12.0973 2024 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
      00:49:12.0973 2024 ws2ifsl - ok
      00:49:13.0035 2024 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
      00:49:13.0035 2024 wscsvc - ok
      00:49:13.0051 2024 WSearch - ok
      00:49:13.0097 2024 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
      00:49:13.0097 2024 WudfPf - ok
      00:49:13.0144 2024 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
      00:49:13.0144 2024 WUDFRd - ok
      00:49:13.0175 2024 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
      00:49:13.0175 2024 wudfsvc - ok
      00:49:13.0222 2024 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
      00:49:13.0222 2024 WwanSvc - ok
      00:49:13.0269 2024 ================ Scan global ===============================
      00:49:13.0285 2024 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
      00:49:13.0347 2024 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
      00:49:13.0363 2024 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
      00:49:13.0378 2024 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
      00:49:13.0425 2024 [ 50BEA589F7D7958BDD2528A8F69D05CC ] C:\Windows\system32\services.exe
      00:49:13.0441 2024 C:\Windows\system32\services.exe ( Virus.Win64.ZAccess.a ) - infected
      00:49:13.0441 2024 C:\Windows\system32\services.exe - detected Virus.Win64.ZAccess.a (0)
      00:49:13.0441 2024 ================ Scan MBR ==================================
      00:49:13.0441 2024 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
      00:49:13.0721 2024 \Device\Harddisk0\DR0 - ok
      00:49:13.0721 2024 ================ Scan VBR ==================================
      00:49:13.0721 2024 [ 10FF361BDA371F73C2D879595C44557E ] \Device\Harddisk0\DR0\Partition1
      00:49:13.0721 2024 \Device\Harddisk0\DR0\Partition1 - ok
      00:49:13.0737 2024 [ FE56A3BB3072637805CBE1C2EDB88B5A ] \Device\Harddisk0\DR0\Partition2
      00:49:13.0737 2024 \Device\Harddisk0\DR0\Partition2 - ok
      00:49:13.0737 2024 ============================================================
      00:49:13.0737 2024 Scan finished
      00:49:13.0737 2024 ============================================================
      00:49:13.0768 0776 Detected object count: 1
      00:49:13.0768 0776 Actual detected object count: 1
      00:49:18.0511 0776 C:\Windows\system32\services.exe - copied to quarantine
      00:49:18.0589 0776 C:\Windows\assembly\GAC_32\desktop.ini - copied to quarantine
      00:49:18.0635 0776 C:\Windows\assembly\GAC_64\desktop.ini - copied to quarantine
      00:49:18.0635 0776 C:\Windows\installer\{2dd097e3-5e65-5050-d9fd-6eabeb98847b}\@ - copied to quarantine
      00:49:18.0651 0776 C:\Windows\installer\{2dd097e3-5e65-5050-d9fd-6eabeb98847b}\L\[email protected] - copied to quarantine
      00:49:18.0682 0776 C:\Windows\installer\{2dd097e3-5e65-5050-d9fd-6eabeb98847b}\L\201d3dde - copied to quarantine
      00:49:18.0682 0776 C:\Windows\installer\{2dd097e3-5e65-5050-d9fd-6eabeb98847b}\U\[email protected] - copied to quarantine
      00:49:18.0760 0776 C:\Windows\installer\{2dd097e3-5e65-5050-d9fd-6eabeb98847b}\U\[email protected] - copied to quarantine
      00:49:18.0760 0776 C:\Windows\installer\{2dd097e3-5e65-5050-d9fd-6eabeb98847b}\U\[email protected] - copied to quarantine
      00:49:18.0791 0776 C:\Windows\installer\{2dd097e3-5e65-5050-d9fd-6eabeb98847b}\U\[email protected] - copied to quarantine
      00:49:18.0869 0776 C:\Windows\installer\{2dd097e3-5e65-5050-d9fd-6eabeb98847b}\U\[email protected] - copied to quarantine
      00:49:18.0901 0776 C:\Windows\installer\{2dd097e3-5e65-5050-d9fd-6eabeb98847b}\U\[email protected] - copied to quarantine
      00:49:22.0598 0776 Backup copy not found, trying to cure infected file..
      00:49:22.0598 0776 C:\Windows\system32\services.exe - Cure failed (FFFFFFFF)
      00:49:22.0598 0776 C:\Windows\system32\services.exe - processing error
      00:49:22.0598 0776 C:\Windows\system32\services.exe ( Virus.Win64.ZAccess.a ) - User select action: Cure
      00:49:35.0873 1972 Deinitialize success
      Última edición por Maties360 fecha: 26/11/12 a las 11:10:51

    7. #7
      Usuario Avatar de Maties360
      Registrado
      nov 2011
      Ubicación
      Mallorca (Sant Llorenç des Cardassar)
      Mensajes
      9

      Re: PC infectado por Troyanos (archivos "desktop.ini" i "services.exe")

      A continuación el registro del Malwarebytes Anti-Malware en modo seguro:



      Malwarebytes Anti-Malware 1.65.1.1000
      Malwarebytes : Free anti-malware download

      Versión de la Base de Datos: v2012.11.24.11

      Windows 7 Service Pack 1 x64 NTFS (Modo Seguro/Red)
      Internet Explorer 8.0.7601.17514
      Maties :: MATIES-PC [administrador]

      26/11/2012 0:50:12
      mbam-log-2012-11-26 (00-50-12).txt

      Tipos de Análisis: Análisis Completo (C:\|)
      Opciones de análisis activado: Memoria | Inicio | Registro | Sistema de archivos | Heurística/Extra | Heurística/Shuriken | PUP | PUM
      Opciones de análisis desactivados: P2P
      Objetos examinados: 472755
      Tiempo transcurrido: 1 hora(s), 19 minuto(s), 35 segundo(s)

      Procesos en Memoria Detectados: 0
      (No se han detectado elementos maliciosos)

      Módulos de Memoria Detectados: 0
      (No se han detectado elementos maliciosos)

      Claves del Registro Detectados: 0
      (No se han detectado elementos maliciosos)

      Valores del Registro Detectados: 0
      (No se han detectado elementos maliciosos)

      Elementos de Datos del Registro Detectados: 0
      (No se han detectado elementos maliciosos)

      Carpetas Detectadas: 0
      (No se han detectado elementos maliciosos)

      Archivos Detectados: 15
      C:\TDSSKiller_Quarantine\25.11.2012_19.18.18\zasubsys0000\file0000\tsk0000.dta (Rootkit.0Access) -> En cuarentena y eliminado con éxito.
      C:\TDSSKiller_Quarantine\25.11.2012_19.21.27\zasubsys0000\file0000\tsk0000.dta (Rootkit.0Access) -> En cuarentena y eliminado con éxito.
      C:\TDSSKiller_Quarantine\25.11.2012_19.38.21\zasubsys0000\file0000\tsk0000.dta (Rootkit.0Access) -> En cuarentena y eliminado con éxito.
      C:\TDSSKiller_Quarantine\26.11.2012_00.44.51\zasubsys0000\file0000\tsk0000.dta (Rootkit.0Access) -> En cuarentena y eliminado con éxito.
      C:\TDSSKiller_Quarantine\26.11.2012_00.44.51\zasubsys0000\zafs0000\tsk0006.dta (Trojan.Dropper.BCMiner) -> En cuarentena y eliminado con éxito.
      C:\TDSSKiller_Quarantine\26.11.2012_00.44.51\zasubsys0000\zafs0000\tsk0007.dta (Rootkit.0Access) -> En cuarentena y eliminado con éxito.
      C:\TDSSKiller_Quarantine\26.11.2012_00.44.51\zasubsys0000\zafs0000\tsk0009.dta (Rootkit.0Access) -> En cuarentena y eliminado con éxito.
      C:\TDSSKiller_Quarantine\26.11.2012_00.48.48\zasubsys0000\file0000\tsk0000.dta (Rootkit.0Access) -> En cuarentena y eliminado con éxito.
      C:\TDSSKiller_Quarantine\26.11.2012_00.48.48\zasubsys0000\zafs0000\tsk0006.dta (Trojan.Dropper.BCMiner) -> En cuarentena y eliminado con éxito.
      C:\TDSSKiller_Quarantine\26.11.2012_00.48.48\zasubsys0000\zafs0000\tsk0007.dta (Rootkit.0Access) -> En cuarentena y eliminado con éxito.
      C:\TDSSKiller_Quarantine\26.11.2012_00.48.48\zasubsys0000\zafs0000\tsk0009.dta (Rootkit.0Access) -> En cuarentena y eliminado con éxito.
      C:\Users\Maties\Desktop\Maties\Sygic\keygen\Keygen.exe (Trojan.Agent.H) -> En cuarentena y eliminado con éxito.
      C:\Windows\Installer\{2dd097e3-5e65-5050-d9fd-6eabeb98847b}\U\[email protected] (Trojan.Dropper.BCMiner) -> En cuarentena y eliminado con éxito.
      C:\Windows\Installer\{2dd097e3-5e65-5050-d9fd-6eabeb98847b}\U\[email protected] (Rootkit.0Access) -> En cuarentena y eliminado con éxito.
      C:\Windows\Installer\{2dd097e3-5e65-5050-d9fd-6eabeb98847b}\U\[email protected] (Rootkit.0Access) -> En cuarentena y eliminado con éxito.

      fin)


      Perdon por las molestias,

      Maties Alzina Soler

    8. #8
      Ex-Colaborador Avatar de RevesdeLiberte
      Registrado
      feb 2010
      Ubicación
      México
      Mensajes
      7.976

      Re: PC infectado por Troyanos (archivos "desktop.ini" i "services.exe")

      Buenas.


      Con permiso chicos. @Maties360


      Realiza lo siguiente:


      - Descarga la herramienta ComboFix.exe y guárdala en tu escritorio.


      • *Nota* Mientras CF este trabajando no mover el mouse ya que pararía su proceso.
      • *Nota* CF puede reiniciar automáticamente el PC para completar el proceso de eliminación.
      • *Nota* Si recibes el mensaje "Intento de operacion ilegal en una clave del registro que estaba marcada para su eliminacion" reinicia el ordenador.

      ¡Atención! No use ComboFix a menos que se le haya indicado específicamente en su mensaje por un integrante de nuestro Staff. Es una herramienta de gran alcance destinada por su creador a ser usada bajo la orientación y supervisión de un experto, no para uso privado. El uso de ComboFix incorrectamente podría generar problemas en su sistema. Por favor, lea las "Negaciones de la Garantía" de ComboFix.


      • Se generará un reporte en C:\ComboFix.txt, del cual debes pegar todo el contenido en tu siguiente respuesta.



      Saludos.
      La paciencia es un árbol de raíces amargas, pero de frutos dulces.

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    9. #9
      Usuario Avatar de Maties360
      Registrado
      nov 2011
      Ubicación
      Mallorca (Sant Llorenç des Cardassar)
      Mensajes
      9

      Re: PC infectado por Troyanos (archivos "desktop.ini" i "services.exe")

      Buenas otra vez,

      he ejecutado el Combofix siguiendo todas las instrucciones, y por fin me ha eliminado el RootKit.ZAcces que había infectado el archivo "services.exe". Ahora la CPU funciona correctamente de momento. Pero el antivirus (Panda Cloud Antivirus) me sigue detectando un virus, relacionado con los archivos "desktop.ini" en la ubicación "C:\windows\assembly\GAC_32 (i GAC_64)\desktop.ini". Me pide el reinicio del equipo para eliminar dichos archivos, pero cuando el PC se vuelve a reiniciar, la infección vuelve a aparecer. Aparentemente, esta infección no me provoca ningún problema a nivel del funcionamiento del PC. Os agradecería se me pudieses aconsejar respecto esta infecció.

      Por otro lado, estoy muy agradecido por vuestro ayuda i implicación, de verdad. Muchas gracias!

      Aquí os dejo el registro del Combofix:

      ComboFix 12-11-26.02 - Maties 27/11/2012 0:47.1.2 - x64
      Microsoft Windows 7 Home Premium 6.1.7601.1.1252.34.3082.18.3835.2710 [GMT 1:00]
      Running from: c:\users\Maties\Desktop\ComboFix.exe
      AV: Panda Cloud Antivirus *Enabled/Updated* {3456760B-FDAA-FFFD-06C2-7BB528D2066C}
      FW: Cloud Antivirus Firewall *Disabled* {0C6DF72E-B7C5-FEA5-2D9D-D280D6014117}
      SP: Panda Cloud Antivirus *Enabled/Updated* {8F3797EF-DB90-F073-3C72-40C753554CD1}
      SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
      .
      .
      ((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
      .
      .
      c:\program files (x86)\AutocompletePro
      c:\program files (x86)\AutocompletePro\AcRemoteUpdate.exe
      c:\program files (x86)\AutocompletePro\AutocompletePro.dll
      c:\program files (x86)\AutocompletePro\InstTracker.exe
      c:\program files (x86)\AutocompletePro\[email protected]\chrome.manifest
      c:\program files (x86)\AutocompletePro\[email protected]\chrome\content\browserOverlay.xul
      c:\program files (x86)\AutocompletePro\[email protected]\chrome\content\options.js
      c:\program files (x86)\AutocompletePro\[email protected]\chrome\content\options.xul
      c:\program files (x86)\AutocompletePro\[email protected]\chrome\content\utils.js
      c:\program files (x86)\AutocompletePro\[email protected]\defaults\preferences\predictad.js
      c:\program files (x86)\AutocompletePro\[email protected]\install.rdf
      c:\program files (x86)\AutocompletePro\TaskScheduler.dll
      c:\program files (x86)\AutocompletePro\unins000.dat
      c:\program files (x86)\AutocompletePro\unins000.exe
      c:\programdata\1320344092.bdinstall.bin
      c:\programdata\1321201414.bdinstall.bin
      c:\programdata\1321376525.bdinstall.bin
      c:\programdata\Codecv
      c:\programdata\Codecv\ajhcekcffkpnaednoeoegnmnjdlnjjmg.crx
      c:\programdata\Codecv\background.html
      c:\programdata\Codecv\content.js
      c:\programdata\Codecv\data\content.js
      c:\programdata\Codecv\data\jsondb.js
      c:\programdata\Codecv\settings.ini
      c:\programdata\Codecv\uninstall.exe
      c:\users\Maties\AppData\Roaming\OfferBox
      c:\users\Maties\AppData\Roaming\OfferBox\config.xml
      c:\users\Maties\AppData\Roaming\OfferBox\run.log
      c:\windows\Installer\{2dd097e3-5e65-5050-d9fd-6eabeb98847b}\@
      c:\windows\Installer\{2dd097e3-5e65-5050-d9fd-6eabeb98847b}\L\[email protected]
      c:\windows\Installer\{2dd097e3-5e65-5050-d9fd-6eabeb98847b}\L\201d3dde
      c:\windows\Installer\{2dd097e3-5e65-5050-d9fd-6eabeb98847b}\U\[email protected]
      c:\windows\Installer\{2dd097e3-5e65-5050-d9fd-6eabeb98847b}\U\[email protected]
      c:\windows\Installer\{2dd097e3-5e65-5050-d9fd-6eabeb98847b}\U\[email protected]
      c:\windows\Installer\{2dd097e3-5e65-5050-d9fd-6eabeb98847b}\U\[email protected]
      c:\windows\Installer\{2dd097e3-5e65-5050-d9fd-6eabeb98847b}\U\[email protected]
      c:\windows\Installer\{2dd097e3-5e65-5050-d9fd-6eabeb98847b}\U\[email protected]
      c:\windows\security\Database\tmp.edb
      c:\windows\SysWow64\System32\MASetupCleaner.exe
      c:\windows\SysWow64\System32\muzapp.exe
      .
      Infected copy of c:\windows\system32\services.exe was found and disinfected
      Restored copy from - c:\windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\services.exe
      .
      .
      ((((((((((((((((((((((((( Files Created from 2012-10-26 to 2012-11-26 )))))))))))))))))))))))))))))))
      .
      .
      2012-11-26 23:59 . 2012-11-26 23:59 -------- d-----w- c:\users\Default\AppData\Local\temp
      2012-11-26 23:37 . 2011-12-12 11:19 37128 ----a-w- c:\windows\system32\drivers\PsBoot.sys
      2012-11-26 23:37 . 2012-11-26 23:37 76232 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{CC2DB8E8-15D8-4163-87D4-C3A9BDB1AF7B}\offreg.dll
      2012-11-25 18:19 . 2012-11-26 09:27 -------- d-----w- C:\TDSSKiller_Quarantine
      2012-11-23 22:33 . 2012-11-23 22:33 -------- d-sh--w- c:\windows\SysWow64\%APPDATA%
      2012-11-23 21:45 . 2012-11-23 21:45 -------- d-----w- c:\program files (x86)\Mega Codec Pack
      2012-11-23 12:47 . 2012-11-08 17:24 9125352 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{CC2DB8E8-15D8-4163-87D4-C3A9BDB1AF7B}\mpengine.dll
      2012-11-18 15:14 . 2012-11-18 15:14 -------- d-----w- c:\users\Maties\AppData\Roaming\FileMaker Pro Advanced
      2012-11-18 15:12 . 2012-11-18 15:14 -------- d-----w- c:\users\Maties\AppData\Local\FileMaker
      2012-11-18 14:50 . 2012-11-18 14:50 -------- d-----w- c:\program files (x86)\Bonjour
      2012-11-18 14:50 . 2012-11-18 14:50 -------- d-----w- c:\program files\Bonjour
      2012-11-18 14:48 . 2012-11-18 14:48 -------- d-----w- c:\users\Maties\AppData\Roaming\Leadertech
      2012-11-18 14:39 . 2012-11-18 14:39 -------- d-----w- c:\programdata\FileMaker
      2012-11-18 14:38 . 2012-11-18 14:38 -------- d-----w- c:\program files (x86)\FileMaker
      2012-11-18 14:38 . 2012-11-18 14:38 -------- d-----w- c:\users\Maties\AppData\Roaming\FileMaker
      2012-11-16 13:56 . 2012-11-16 13:56 -------- d-----w- c:\program files (x86)\MSECache
      2012-11-16 13:17 . 2012-11-16 13:17 -------- d-----w- c:\programdata\regid.1991-06.com.microsoft
      2012-11-16 13:15 . 2012-11-16 13:17 -------- d-----w- c:\program files (x86)\Microsoft SQL Server
      2012-11-16 02:18 . 2012-07-26 05:05 2560 ----a-w- c:\windows\system32\drivers\es-ES\wdf01000.sys.mui
      2012-11-16 02:18 . 2012-07-26 04:55 785512 ----a-w- c:\windows\system32\drivers\Wdf01000.sys
      2012-11-16 02:18 . 2012-07-26 04:55 54376 ----a-w- c:\windows\system32\drivers\WdfLdr.sys
      2012-11-16 02:18 . 2012-07-26 02:36 9728 ----a-w- c:\windows\system32\Wdfres.dll
      2012-11-16 02:03 . 2012-07-26 02:26 87040 ----a-w- c:\windows\system32\drivers\WUDFPf.sys
      2012-11-16 02:03 . 2012-07-26 02:26 198656 ----a-w- c:\windows\system32\drivers\WUDFRd.sys
      2012-11-16 02:03 . 2012-07-26 03:08 84992 ----a-w- c:\windows\system32\WUDFSvc.dll
      2012-11-16 02:03 . 2012-07-26 03:08 194048 ----a-w- c:\windows\system32\WUDFPlatform.dll
      2012-11-16 02:03 . 2012-07-26 03:08 229888 ----a-w- c:\windows\system32\WUDFHost.exe
      2012-11-16 02:03 . 2012-07-26 03:08 744448 ----a-w- c:\windows\system32\WUDFx.dll
      2012-11-16 02:03 . 2012-07-26 03:08 45056 ----a-w- c:\windows\system32\WUDFCoinstaller.dll
      2012-11-16 01:17 . 2012-11-16 01:17 -------- d-----w- c:\program files (x86)\Vuze_Remote
      2012-11-15 10:05 . 2012-10-09 18:17 55296 ----a-w- c:\windows\system32\dhcpcsvc6.dll
      2012-11-15 10:05 . 2012-10-09 18:17 226816 ----a-w- c:\windows\system32\dhcpcore6.dll
      2012-11-15 10:05 . 2012-10-09 17:40 44032 ----a-w- c:\windows\SysWow64\dhcpcsvc6.dll
      2012-11-15 10:05 . 2012-10-09 17:40 193536 ----a-w- c:\windows\SysWow64\dhcpcore6.dll
      2012-11-15 10:05 . 2012-10-18 18:25 3149824 ----a-w- c:\windows\system32\win32k.sys
      2012-11-15 09:58 . 2012-10-03 17:56 1914248 ----a-w- c:\windows\system32\drivers\tcpip.sys
      2012-11-15 09:58 . 2012-10-03 17:44 303104 ----a-w- c:\windows\system32\nlasvc.dll
      2012-11-15 09:58 . 2012-10-03 17:44 246272 ----a-w- c:\windows\system32\netcorehc.dll
      2012-11-15 09:58 . 2012-10-03 17:44 216576 ----a-w- c:\windows\system32\ncsi.dll
      2012-11-15 09:58 . 2012-10-03 17:42 569344 ----a-w- c:\windows\system32\iphlpsvc.dll
      2012-11-15 09:58 . 2012-10-03 16:42 156672 ----a-w- c:\windows\SysWow64\ncsi.dll
      2012-11-15 09:58 . 2012-10-03 17:44 70656 ----a-w- c:\windows\system32\nlaapi.dll
      2012-11-15 09:58 . 2012-10-03 17:44 18944 ----a-w- c:\windows\system32\netevent.dll
      2012-11-15 09:58 . 2012-10-03 16:42 18944 ----a-w- c:\windows\SysWow64\netevent.dll
      2012-11-15 09:58 . 2012-10-03 16:42 175104 ----a-w- c:\windows\SysWow64\netcorehc.dll
      2012-11-15 09:58 . 2012-10-03 16:07 45568 ----a-w- c:\windows\system32\drivers\tcpipreg.sys
      2012-11-15 09:58 . 2012-01-13 07:12 52224 ----a-w- c:\windows\SysWow64\nlaapi.dll
      2012-11-15 09:11 . 2012-09-25 22:47 78336 ----a-w- c:\windows\SysWow64\synceng.dll
      2012-11-15 09:11 . 2012-09-25 22:46 95744 ----a-w- c:\windows\system32\synceng.dll
      2012-11-06 12:40 . 2012-11-06 12:57 -------- d-----w- c:\program files\ZalmanFrisbee
      2012-11-06 12:39 . 2012-11-06 13:25 -------- d-----w- c:\program files (x86)\SweetIM
      2012-10-29 21:44 . 2012-10-29 21:44 -------- d-----w- c:\users\Maties\AppData\Local\Facebook
      .
      .
      .
      (((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
      .
      2012-11-24 11:19 . 2012-08-23 09:32 697272 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
      2012-11-24 11:19 . 2012-08-23 09:32 73656 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
      2012-11-16 02:05 . 2010-08-31 20:02 66395536 ----a-w- c:\windows\system32\MRT.exe
      2012-10-26 13:08 . 2012-06-17 10:58 5 ----a-w- c:\windows\SysWow64\lMMLDeleteUserData42107612FX.tmp
      2012-10-06 08:33 . 2012-10-06 08:33 95208 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
      2012-10-06 08:33 . 2012-06-30 12:54 821736 ----a-w- c:\windows\SysWow64\npDeployJava1.dll
      2012-10-06 08:33 . 2011-01-22 16:42 746984 ----a-w- c:\windows\SysWow64\deployJava1.dll
      2012-10-01 19:34 . 2012-10-01 19:34 31888 ----a-w- c:\windows\SysWow64\FM20ENU.DLL
      2012-10-01 19:32 . 2012-10-01 19:32 862664 ----a-w- c:\windows\SysWow64\msvcr110.dll
      2012-10-01 19:32 . 2012-10-01 19:32 534480 ----a-w- c:\windows\SysWow64\msvcp110.dll
      2012-10-01 19:32 . 2012-10-01 19:32 251864 ----a-w- c:\windows\SysWow64\vccorlib110.dll
      2012-10-01 19:32 . 2012-10-01 19:32 153536 ----a-w- c:\windows\SysWow64\atl110.dll
      2012-10-01 19:31 . 2012-10-01 19:31 1158256 ----a-w- c:\windows\SysWow64\FM20.DLL
      2012-09-29 18:54 . 2011-11-03 18:31 25928 ----a-w- c:\windows\system32\drivers\mbam.sys
      2012-09-14 19:19 . 2012-10-10 04:53 2048 ----a-w- c:\windows\system32\tzres.dll
      2012-09-14 18:28 . 2012-10-10 04:53 2048 ----a-w- c:\windows\SysWow64\tzres.dll
      2012-08-31 18:19 . 2012-10-10 04:53 1659760 ----a-w- c:\windows\system32\drivers\ntfs.sys
      2012-08-30 18:03 . 2012-10-10 04:53 5559664 ----a-w- c:\windows\system32\ntoskrnl.exe
      2012-08-30 17:12 . 2012-10-10 04:53 3914096 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
      2012-08-30 17:12 . 2012-10-10 04:53 3968880 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
      .
      .
      ((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
      .
      .
      *Note* empty entries & legit default entries are not shown
      REGEDIT4
      .
      [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
      "{ba14329e-9550-4989-b3f2-9732e92d17cc}"= "c:\program files (x86)\Vuze_Remote\prxtbVuze.dll" [2011-05-09 176936]
      "{EEE6C35D-6118-11DC-9C72-001320C79847}"= "c:\program files (x86)\SweetIM\Toolbars\Internet Explorer\mgHelper.dll" [2012-06-04 130904]
      .
      [HKEY_CLASSES_ROOT\clsid\{ba14329e-9550-4989-b3f2-9732e92d17cc}]
      .
      [HKEY_CLASSES_ROOT\clsid\{eee6c35d-6118-11dc-9c72-001320c79847}]
      [HKEY_CLASSES_ROOT\SweetIM_URLSearchHook.ToolbarURLSearchHook.1]
      [HKEY_CLASSES_ROOT\TypeLib\{EEE6C35F-6118-11DC-9C72-001320C79847}]
      [HKEY_CLASSES_ROOT\SweetIM_URLSearchHook.ToolbarURLSearchHook]
      .
      [HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{ba14329e-9550-4989-b3f2-9732e92d17cc}]
      2011-05-09 09:49 176936 ----a-w- c:\program files (x86)\Vuze_Remote\prxtbVuze.dll
      .
      [HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847}]
      2012-06-04 15:12 1310040 ----a-w- c:\program files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar]
      "{EEE6C35B-6118-11DC-9C72-001320C79847}"= "c:\program files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll" [2012-06-04 1310040]
      "{ba14329e-9550-4989-b3f2-9732e92d17cc}"= "c:\program files (x86)\Vuze_Remote\prxtbVuze.dll" [2011-05-09 176936]
      .
      [HKEY_CLASSES_ROOT\clsid\{eee6c35b-6118-11dc-9c72-001320c79847}]
      [HKEY_CLASSES_ROOT\SWEETIE.IEToolbar.1]
      [HKEY_CLASSES_ROOT\TypeLib\{EEE6C35E-6118-11DC-9C72-001320C79847}]
      [HKEY_CLASSES_ROOT\SWEETIE.IEToolbar]
      .
      [HKEY_CLASSES_ROOT\clsid\{ba14329e-9550-4989-b3f2-9732e92d17cc}]
      .
      [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro1 (ErrorConflict)]
      @="{8BA85C75-763B-4103-94EB-9470F12FE0F7}"
      [HKEY_CLASSES_ROOT\CLSID\{8BA85C75-763B-4103-94EB-9470F12FE0F7}]
      2012-10-01 19:33 1720976 ----a-w- c:\progra~2\MICROS~1\Office15\GROOVEEX.DLL
      .
      [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro2 (SyncInProgress)]
      @="{CD55129A-B1A1-438E-A425-CEBC7DC684EE}"
      [HKEY_CLASSES_ROOT\CLSID\{CD55129A-B1A1-438E-A425-CEBC7DC684EE}]
      2012-10-01 19:33 1720976 ----a-w- c:\progra~2\MICROS~1\Office15\GROOVEEX.DLL
      .
      [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro3 (InSync)]
      @="{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}"
      [HKEY_CLASSES_ROOT\CLSID\{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}]
      2012-10-01 19:33 1720976 ----a-w- c:\progra~2\MICROS~1\Office15\GROOVEEX.DLL
      .
      [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
      @="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
      [HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
      2011-02-18 05:12 94208 ----a-w- c:\users\Maties\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
      .
      [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
      @="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
      [HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
      2011-02-18 05:12 94208 ----a-w- c:\users\Maties\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
      .
      [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
      @="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
      [HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
      2011-02-18 05:12 94208 ----a-w- c:\users\Maties\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
      .
      [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
      "Pando Media Booster"="c:\program files (x86)\Pando Networks\Media Booster\PMB.exe" [2011-07-05 3077528]
      "Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1475584]
      "Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2012-07-13 17418928]
      "Spotify Web Helper"="c:\users\Maties\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" [2012-10-26 1199576]
      "MotoCast"="c:\program files (x86)\Motorola Mobility\MotoCast\MotoLauncher.lnk" [2012-10-26 2067]
      "Facebook Update"="c:\users\Maties\AppData\Local\Facebook\Update\FacebookUpdate.exe" [2012-10-29 138096]
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
      "BackupManagerTray"="c:\program files (x86)\NewTech Infosystems\Packard Bell MyBackup\BackupManagerTray.exe" [2010-03-08 258560]
      "StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-03-29 98304]
      "LManager"="c:\program files (x86)\Launch Manager\LManager.exe" [2010-03-03 1300560]
      "VideoWebCamera"="c:\program files (x86)\VideoWebCamera\VideoWebCamera.exe" [2010-03-11 1541472]
      "DivXUpdate"="c:\program files (x86)\DivX\DivX Update\DivXUpdate.exe" [2010-09-16 1164584]
      "AdobeCS5ServiceManager"="c:\program files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" [2010-02-22 406992]
      "BCSSync"="c:\program files (x86)\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 91520]
      "SwitchBoard"="c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]
      "AdobeCS5.5ServiceManager"="c:\program files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" [2011-01-12 1523360]
      "Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-07-27 919008]
      "APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2011-09-27 59240]
      "QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2011-10-24 421888]
      "KeePass 2 PreLoad"="c:\program files (x86)\KeePass Password Safe 2\KeePass.exe" [2011-07-12 1764352]
      "SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848]
      "PSUAMain"="c:\program files (x86)\Panda Security\Panda Cloud Antivirus\PSUAMain.exe" [2012-08-26 37152]
      "AdobeCS6ServiceManager"="c:\program files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" [2012-03-09 1073312]
      .
      c:\users\Maties\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
      Dropbox.lnk - c:\users\Maties\AppData\Roaming\Dropbox\bin\Dropbox.exe [2012-5-24 27112840]
      Send to OneNote.lnk - c:\program files (x86)\Microsoft Office\Office15\ONENOTEM.EXE [2012-10-1 158344]
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
      "ConsentPromptBehaviorAdmin"= 5 (0x5)
      "ConsentPromptBehaviorUser"= 3 (0x3)
      "EnableUIADesktopToggle"= 0 (0x0)
      .
      [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
      "LoadAppInit_DLLs"=1 (0x1)
      "RequireSignedAppInit_DLLs"=0 (0x0)
      .
      [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
      "aux1"=wdmaud.drv
      .
      R0 PsBoot;Panda boot driver;c:\windows\system32\Drivers\PsBoot.sys [2011-12-12 37128]
      R1 fpwncazk;fpwncazk;c:\windows\system32\drivers\fpwncazk.sys [x]
      R1 NNSNAHSL;Network Activity Hook Server LightWeight Filter Driver;c:\windows\system32\DRIVERS\NNSNAHSL.sys [2012-06-27 33320]
      R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
      R2 KMService;KMService;c:\windows\system32\srvany.exe [x]
      R2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-09-29 676936]
      R2 NanoServiceMain;Panda Cloud Antivirus Service;c:\program files (x86)\Panda Security\Panda Cloud Antivirus\PSANHost.exe [2012-08-26 140064]
      R2 Printer Control;Printer Control;c:\windows\system32\PrintCtrl.exe [2009-06-16 77824]
      R2 PSUAService;Panda Product Service;c:\program files (x86)\Panda Security\Panda Cloud Antivirus\PSUAService.exe [2012-08-26 36640]
      R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2012-07-13 160944]
      R3 BTCFilterService;USB Networking Driver Filter Service;c:\windows\system32\DRIVERS\motfilt.sys [2009-01-29 6144]
      R3 dgderdrv;dgderdrv;c:\windows\system32\drivers\dgderdrv.sys [2010-07-26 20568]
      R3 motccgp;Motorola USB Composite Device Driver;c:\windows\system32\DRIVERS\motccgp.sys [2012-06-11 22016]
      R3 motccgpfl;MotCcgpFlService;c:\windows\system32\DRIVERS\motccgpfl.sys [2012-01-25 9728]
      R3 Motousbnet;Motorola USB Networking Driver Service;c:\windows\system32\DRIVERS\Motousbnet.sys [2012-06-08 27136]
      R3 motusbdevice;Motorola USB Dev Driver;c:\windows\system32\DRIVERS\motusbdevice.sys [2011-11-08 11776]
      R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys [2010-02-08 239136]
      R3 ScreamBAudioSvc;ScreamBee Audio;c:\windows\system32\drivers\ScreamingBAudio64.sys [x]
      R3 sscebus;SAMSUNG USB Composite Device V2 driver (WDM);c:\windows\system32\DRIVERS\sscebus.sys [2010-04-27 127488]
      R3 sscemdfl;SAMSUNG Mobile Modem V2 Filter;c:\windows\system32\DRIVERS\sscemdfl.sys [2010-04-27 18944]
      R3 sscemdm;SAMSUNG Mobile Modem V2 Drivers;c:\windows\system32\DRIVERS\sscemdm.sys [2010-04-27 161280]
      R3 ssceserd;SAMSUNG Mobile Modem Diagnostic Serial Port V2 (WDM);c:\windows\system32\DRIVERS\ssceserd.sys [2010-04-27 129024]
      R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
      R3 TFsExDisk;TFsExDisk;c:\windows\System32\Drivers\TFsExDisk.sys [2010-07-26 16392]
      R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
      R3 WatAdminSvc;Servicio de tecnologías de activación de Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2010-09-02 1255736]
      R4 NNSPIHSW;NNSPIHSW;c:\windows\system32\DRIVERS\NNSPihsw.sys [2012-06-27 68648]
      R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 57184]
      S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys [2010-07-12 55856]
      S0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [2010-11-10 834544]
      S1 NNSALPC;NNSALPC;c:\windows\system32\DRIVERS\NNSAlpc.sys [2012-06-27 89128]
      S1 NNSHTTP;NNSHTTP;c:\windows\system32\DRIVERS\NNSHttp.sys [2012-06-27 116776]
      S1 NNSIDS;NNSIDS;c:\windows\system32\DRIVERS\NNSIds.sys [2012-06-27 113192]
      S1 NNSPICC;NNSPICC;c:\windows\system32\DRIVERS\NNSPicc.sys [2012-06-27 93224]
      S1 NNSPOP3;NNSPOP3;c:\windows\system32\DRIVERS\NNSPop3.sys [2012-06-27 116776]
      S1 NNSPROT;NNSPROT;c:\windows\system32\DRIVERS\NNSProt.sys [2012-06-27 304680]
      S1 NNSPRV;NNSPRV;c:\windows\system32\DRIVERS\NNSPrv.sys [2012-06-27 109096]
      S1 NNSSMTP;NNSSMTP;c:\windows\system32\DRIVERS\NNSSmtp.sys [2012-06-27 112680]
      S1 NNSSTRM;NNSSTRM;c:\windows\system32\DRIVERS\NNSStrm.sys [2012-07-12 219688]
      S1 NNSTLSC;NNSTLSC;c:\windows\system32\DRIVERS\NNSTlsc.sys [2012-06-27 105000]
      S1 PSINKNC;PSINKNC;c:\windows\system32\DRIVERS\psinknc.sys [2012-08-26 205352]
      S2 AdobeActiveFileMonitor8.0;Adobe Active File Monitor V8;c:\program files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe [2009-10-09 169312]
      S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2010-03-29 202752]
      S2 DeviceMonitorService;DeviceMonitorService;c:\program files (x86)\Motorola Media Link\Lite\NServiceEntry.exe [2012-09-07 87992]
      S2 DsiWMIService;Dritek WMI Service;c:\program files (x86)\Launch Manager\dsiwmis.exe [2010-03-03 325200]
      S2 ePowerSvc;Acer ePower Service;c:\program files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe [2010-03-17 866336]
      S2 GREGService;GREGService;c:\program files (x86)\Packard Bell\Registration\GREGsvc.exe [2010-01-08 23584]
      S2 MBAMScheduler;MBAMScheduler;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2012-09-29 399432]
      S2 Motorola Device Manager;Motorola Device Manager Service;c:\program files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe [2012-10-02 120728]
      S2 NTI IScheduleSvc;NTI IScheduleSvc;c:\program files (x86)\NewTech Infosystems\Packard Bell MyBackup\IScheduleSvc.exe [2010-03-08 250368]
      S2 PSINAflt;PSINAflt;c:\windows\system32\DRIVERS\PSINAflt.sys [2012-08-26 168488]
      S2 PSINFile;PSINFile;c:\windows\system32\DRIVERS\PSINFile.sys [2012-08-26 120872]
      S2 PSINProc;PSINProc;c:\windows\system32\DRIVERS\PSINProc.sys [2012-08-26 124456]
      S2 PSINProt;PSINProt;c:\windows\system32\DRIVERS\PSINProt.sys [2012-08-26 130088]
      S2 PST Service;PST Service;c:\program files (x86)\Motorola\MotForwardDaemon\ForwardDaemon.exe [2011-09-02 65657]
      S2 Updater Service;Updater Service;c:\program files\Packard Bell\Packard Bell Updater\UpdaterService.exe [2010-01-28 243232]
      S3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0;c:\windows\system32\DRIVERS\k57nd60a.sys [2010-03-20 321064]
      S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2012-09-29 25928]
      S3 usbfilter;AMD USB Filter Driver;c:\windows\system32\DRIVERS\usbfilter.sys [2009-12-22 38456]
      .
      .
      --- Other Services/Drivers In Memory ---
      .
      *Deregistered* - PSKMAD
      .
      Contents of the 'Scheduled Tasks' folder
      .
      2012-11-26 c:\windows\Tasks\Adobe Flash Player Updater.job
      - c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-08-23 11:19]
      .
      2012-11-26 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-4119208643-3980669054-3530581424-1000Core.job
      - c:\users\Maties\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-10-29 21:44]
      .
      2012-11-26 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-4119208643-3980669054-3530581424-1000UA.job
      - c:\users\Maties\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-10-29 21:44]
      .
      2012-11-26 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
      - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-08-31 11:22]
      .
      2012-11-26 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
      - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-08-31 11:22]
      .
      2012-11-26 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4119208643-3980669054-3530581424-1000Core.job
      - c:\users\Maties\AppData\Local\Google\Update\GoogleUpdate.exe [2010-11-14 11:28]
      .
      2012-11-26 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4119208643-3980669054-3530581424-1000UA.job
      - c:\users\Maties\AppData\Local\Google\Update\GoogleUpdate.exe [2010-11-14 11:28]
      .
      .
      --------- X64 Entries -----------
      .
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro1 (ErrorConflict)]
      @="{8BA85C75-763B-4103-94EB-9470F12FE0F7}"
      [HKEY_CLASSES_ROOT\CLSID\{8BA85C75-763B-4103-94EB-9470F12FE0F7}]
      2012-10-01 19:47 2322576 ----a-w- c:\progra~1\MICROS~2\Office15\GROOVEEX.DLL
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro2 (SyncInProgress)]
      @="{CD55129A-B1A1-438E-A425-CEBC7DC684EE}"
      [HKEY_CLASSES_ROOT\CLSID\{CD55129A-B1A1-438E-A425-CEBC7DC684EE}]
      2012-10-01 19:47 2322576 ----a-w- c:\progra~1\MICROS~2\Office15\GROOVEEX.DLL
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro3 (InSync)]
      @="{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}"
      [HKEY_CLASSES_ROOT\CLSID\{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}]
      2012-10-01 19:47 2322576 ----a-w- c:\progra~1\MICROS~2\Office15\GROOVEEX.DLL
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
      @="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
      [HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
      2011-02-18 05:12 97792 ----a-w- c:\users\Maties\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
      @="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
      [HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
      2011-02-18 05:12 97792 ----a-w- c:\users\Maties\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
      @="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
      [HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
      2011-02-18 05:12 97792 ----a-w- c:\users\Maties\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
      @="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
      [HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
      2011-02-18 05:12 97792 ----a-w- c:\users\Maties\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
      "RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2009-12-15 9644576]
      "PLFSetI"="c:\windows\PLFSetI.exe" [2009-12-16 206208]
      "Acer ePower Management"="c:\program files\Packard Bell\Packard Bell Power Management\ePowerTray.exe" [2010-03-17 860704]
      "PrintDisp"="c:\windows\system32\PrintDisp.exe" [2009-08-21 878080]
      "AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2012-10-31 446392]
      .
      ------- Supplementary Scan -------
      .
      uStart Page = https://isearch.avg.com/?cid={032AB241-8050-483E-BD91-380D28A7B62B}&mid=2ffb9cf28be747d0a1ef59e75bb93861-27a5277fa0b34827d290fa9036700bd763df85f9&lang=es-es&ds=gm011&pr=sa&d=2012-05-04 13:34&v=12.2.5.32&sap=hp
      uLocal Page = c:\windows\system32\blank.htm
      mDefault_Page_URL = hxxp://homepage.packardbell.com/rdr.aspx?b=ACPW&l=0c0a&m=easynote_tm94&r=27360810i715l0404z1h5f46n2d286
      mStart Page = hxxp://homepage.packardbell.com/rdr.aspx?b=ACPW&l=0c0a&m=easynote_tm94&r=27360810i715l0404z1h5f46n2d286
      mLocal Page = c:\windows\SysWOW64\blank.htm
      uInternet Settings,ProxyServer = proxy.alumnes.udl.cat:8080
      mSearchAssistant =
      IE: &Enviar a OneNote - c:\progra~2\MICROS~1\Office14\ONBttnIE.dll/105
      IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~1\Office15\EXCEL.EXE/3000
      IE: E&xportar a Microsoft Excel - c:\progra~2\MICROS~1\Office14\EXCEL.EXE/3000
      IE: Se&nd to OneNote - c:\progra~2\MICROS~1\Office15\ONBttnIE.dll/105
      TCP: DhcpNameServer = 80.58.61.250 80.58.61.254
      Filter: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - c:\program files (x86)\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL
      FF - ProfilePath - c:\users\Maties\AppData\Roaming\Mozilla\Firefox\Profiles\vaf353er.default\
      FF - prefs.js: browser.search.selectedEngine - AVG Secure Search
      FF - prefs.js: browser.startup.homepage - hxxp://www.searchnu.com/406
      FF - prefs.js: keyword.URL - hxxp://dts.search-results.com/sr?src=ffb&appid=397&systemid=406&sr=0&q=
      FF - user.js: extensions.BabylonToolbar_i.id - 923717b900000000000088ae1d5dd192
      FF - user.js: extensions.BabylonToolbar_i.hardId - 923717b900000000000088ae1d5dd192
      FF - user.js: extensions.BabylonToolbar_i.instlDay - 15382
      FF - user.js: extensions.BabylonToolbar_i.vrsn - 1.5.3.17
      FF - user.js: extensions.BabylonToolbar_i.vrsni - 1.5.3.17
      FF - user.js: extensions.BabylonToolbar_i.prtnrId - babylon
      FF - user.js: extensions.BabylonToolbar_i.prdct - BabylonToolbar
      FF - user.js: extensions.BabylonToolbar_i.aflt - babsst
      FF - user.js: extensions.BabylonToolbar_i.tlbrId - tb9
      FF - user.js: extensions.BabylonToolbar_i.instlRef - sst
      FF - user.js: extensions.BabylonToolbar_i.babTrack - affID=19317&tt=3012_1
      FF - user.js: extensions.BabylonToolbar_i.babExt -
      FF - user.js: extensions.BabylonToolbar_i.srcExt - ss
      FF - user.js: extensions.BabylonToolbar.tlbrSrchUrl - hxxp://www.google.com/search?babsrc=TB_ggl&q=
      FF - user.js: extensions.BabylonToolbar.id - 923717b900000000000088ae1d5dd192
      FF - user.js: extensions.BabylonToolbar.instlDay - 15548
      FF - user.js: extensions.BabylonToolbar.vrsn - 1.5.29.1
      FF - user.js: extensions.BabylonToolbar.vrsni - 1.5.29.1
      FF - user.js: extensions.BabylonToolbar_i.vrsnTs - 1.5.29.118:31
      FF - user.js: extensions.BabylonToolbar.prtnrId - babylon
      FF - user.js: extensions.BabylonToolbar.prdct - BabylonToolbar
      FF - user.js: extensions.BabylonToolbar.aflt - babsst
      FF - user.js: extensions.BabylonToolbar_i.smplGrp - none
      FF - user.js: extensions.BabylonToolbar.tlbrId - base
      FF - user.js: extensions.BabylonToolbar.instlRef - sst
      FF - user.js: extensions.BabylonToolbar.dfltLng - en
      FF - user.js: extensions.BabylonToolbar.excTlbr - false
      FF - user.js: extensions.BabylonToolbar.admin - false
      FF - user.js: extensions.autoDisableScopes - 14
      .
      - - - - ORPHANS REMOVED - - - -
      .
      Toolbar-Locked - (no file)
      Toolbar-10 - (no file)
      ShellIconOverlayIdentifiers-{1EC23CFF-4C58-458f-924C-8519AEF61B32} - (no file)
      Wow6432Node-HKCU-Run-AdobeBridge - (no file)
      Toolbar-Locked - (no file)
      Toolbar-10 - (no file)
      WebBrowser-{977AE9CC-AF83-45E8-9E03-E2798216E2D5} - (no file)
      WebBrowser-{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - (no file)
      WebBrowser-{BA14329E-9550-4989-B3F2-9732E92D17CC} - (no file)
      WebBrowser-{EEE6C35B-6118-11DC-9C72-001320C79847} - (no file)
      HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe
      AddRemove-Adobe Shockwave Player - c:\windows\system32\Adobe\Shockwave 11\uninstaller.exe
      AddRemove-AutocompletePro2_is1 - c:\program files (x86)\AutocompletePro\unins000.exe
      AddRemove-{2EF17083-57D4-4D64-AE4F-55F32A2C4571} - c:\programdata\Codecv\uninstall.exe
      .
      .
      .
      --------------------- LOCKED REGISTRY KEYS ---------------------
      .
      [HKEY_USERS\.Default\Software\SetId\Internal]
      @Denied: (A 2) (LocalSystem)
      "DEVICE2"="vrfIyq7KygA="
      "DATA2"="<settings accountStatus=\"4\" oldDevice=\"\" timeDiff=\"1106312873\" expireTime=\"1309830893\" productStatus=\"1\" obSize=\"0\" InstallIS=\"1289332796\" isSubsc=\"0\" authStat_is=\"0\" version=\"14.1\" keyType=\"194\" prodId=\"2\" moduleId1=\"8\" moduleId2=\"0\" relType=\"1\" />"
      .
      [HKEY_USERS\S-1-5-21-4119208643-3980669054-3530581424-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.eml\UserChoice]
      @Denied: (2) (LocalSystem)
      "Progid"="WindowsLiveMail.Email.1"
      .
      [HKEY_USERS\S-1-5-21-4119208643-3980669054-3530581424-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.vcf\UserChoice]
      @Denied: (2) (LocalSystem)
      "Progid"="WindowsLiveMail.VCard.1"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
      @Denied: (A 2) (Everyone)
      @="FlashBroker"
      "LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_5_502_110_ActiveX.exe,-101"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
      "Enabled"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
      @="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_5_502_110_ActiveX.exe"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
      @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
      @Denied: (A 2) (Everyone)
      @="IFlashBroker5"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
      @="{00020424-0000-0000-C000-000000000046}"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
      @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
      "Version"="1.0"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
      @Denied: (A 2) (Everyone)
      @="FlashBroker"
      "LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_5_502_110_ActiveX.exe,-101"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
      "Enabled"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
      @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_5_502_110_ActiveX.exe"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
      @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
      @Denied: (A 2) (Everyone)
      @="Shockwave Flash Object"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
      @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_110.ocx"
      "ThreadingModel"="Apartment"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
      @="0"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
      @="ShockwaveFlash.ShockwaveFlash.11"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
      @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_110.ocx, 1"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
      @="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
      @="1.0"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
      @="ShockwaveFlash.ShockwaveFlash"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
      @Denied: (A 2) (Everyone)
      @="Macromedia Flash Factory Object"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
      @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_110.ocx"
      "ThreadingModel"="Apartment"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
      @="FlashFactory.FlashFactory.1"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
      @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_110.ocx, 1"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
      @="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
      @="1.0"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
      @="FlashFactory.FlashFactory"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
      @Denied: (A 2) (Everyone)
      @="IFlashBroker5"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
      @="{00020424-0000-0000-C000-000000000046}"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
      @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
      "Version"="1.0"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\DbgagD\1*]
      "value"="?\03\01\1a\14.\0a?"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
      @Denied: (A) (Everyone)
      "Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
      @Denied: (A) (Everyone)
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
      "Key"="ActionsPane3"
      "Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
      .
      [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
      @Denied: (A) (Users)
      @Denied: (A) (Everyone)
      @Allowed: (B 1 2 3 4 5) (S-1-5-20)
      "BlindDial"=dword:00000000
      .
      [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
      @Denied: (A) (Users)
      @Denied: (A) (Everyone)
      @Allowed: (B 1 2 3 4 5) (S-1-5-20)
      "BlindDial"=dword:00000000
      .
      [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
      @Denied: (A) (Users)
      @Denied: (A) (Everyone)
      @Allowed: (B 1 2 3 4 5) (S-1-5-20)
      "BlindDial"=dword:00000000
      .
      [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
      @Denied: (A) (Users)
      @Denied: (A) (Everyone)
      @Allowed: (B 1 2 3 4 5) (S-1-5-20)
      "BlindDial"=dword:00000000
      .
      [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0004\AllUserSettings]
      @Denied: (A) (Users)
      @Denied: (A) (Everyone)
      @Allowed: (B 1 2 3 4 5) (S-1-5-20)
      "BlindDial"=dword:00000000
      .
      [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
      @Denied: (Full) (Everyone)
      .
      Completion time: 2012-11-27 01:02:22
      ComboFix-quarantined-files.txt 2012-11-27 00:02
      .
      Pre-Run: 72.529.641.472 bytes libres
      Post-Run: 72.013.807.616 bytes libres
      .
      - - End Of File - - A7EFB84BF9F36DBDDCBBF4CE36371ABC
      Última edición por Maties360 fecha: 28/11/12 a las 04:57:13

    10. #10
      Usuario Avatar de Maties360
      Registrado
      nov 2011
      Ubicación
      Mallorca (Sant Llorenç des Cardassar)
      Mensajes
      9

      Re: PC infectado por Troyanos (archivos "desktop.ini" i "services.exe")

      Aquí os dejo el registro del TDSSKiller, después de ejecutar el Combofix:


      11:13:02.0562 5808 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
      11:13:03.0036 5808 ============================================================
      11:13:03.0036 5808 Current date / time: 2012/11/27 11:13:03.0036
      11:13:03.0036 5808 SystemInfo:
      11:13:03.0036 5808
      11:13:03.0036 5808 OS Version: 6.1.7601 ServicePack: 1.0
      11:13:03.0036 5808 Product type: Workstation
      11:13:03.0036 5808 ComputerName: MATIES-PC
      11:13:03.0037 5808 UserName: Maties
      11:13:03.0037 5808 Windows directory: C:\Windows
      11:13:03.0037 5808 System windows directory: C:\Windows
      11:13:03.0037 5808 Running under WOW64
      11:13:03.0037 5808 Processor architecture: Intel x64
      11:13:03.0037 5808 Number of processors: 2
      11:13:03.0037 5808 Page size: 0x1000
      11:13:03.0037 5808 Boot type: Normal boot
      11:13:03.0037 5808 ============================================================
      11:13:04.0707 5808 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
      11:13:04.0711 5808 ============================================================
      11:13:04.0711 5808 \Device\Harddisk0\DR0:
      11:13:04.0712 5808 MBR partitions:
      11:13:04.0712 5808 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1C00800, BlocksNum 0x32000
      11:13:04.0712 5808 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1C32800, BlocksNum 0x38753000
      11:13:04.0712 5808 ============================================================
      11:13:04.0768 5808 C: <-> \Device\Harddisk0\DR0\Partition2
      11:13:04.0768 5808 ============================================================
      11:13:04.0768 5808 Initialize success
      11:13:04.0768 5808 ============================================================
      11:13:07.0198 6004 ============================================================
      11:13:07.0198 6004 Scan started
      11:13:07.0198 6004 Mode: Manual;
      11:13:07.0198 6004 ============================================================
      11:13:07.0863 6004 ================ Scan system memory ========================
      11:13:07.0863 6004 System memory - ok
      11:13:07.0864 6004 ================ Scan services =============================
      11:13:08.0178 6004 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
      11:13:08.0183 6004 1394ohci - ok
      11:13:08.0250 6004 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
      11:13:08.0255 6004 ACPI - ok
      11:13:08.0308 6004 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
      11:13:08.0310 6004 AcpiPmi - ok
      11:13:08.0409 6004 [ 34400005DE52842C4D6D4EE978B4D7CE ] AdobeActiveFileMonitor8.0 c:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe
      11:13:08.0412 6004 AdobeActiveFileMonitor8.0 - ok
      11:13:08.0560 6004 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
      11:13:08.0561 6004 AdobeARMservice - ok
      11:13:08.0716 6004 [ 0CB0AA071C7B86A64F361DCFDF357329 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
      11:13:08.0719 6004 AdobeFlashPlayerUpdateSvc - ok
      11:13:08.0779 6004 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
      11:13:08.0785 6004 adp94xx - ok
      11:13:08.0827 6004 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
      11:13:08.0832 6004 adpahci - ok
      11:13:08.0864 6004 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
      11:13:08.0867 6004 adpu320 - ok
      11:13:08.0900 6004 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
      11:13:08.0901 6004 AeLookupSvc - ok
      11:13:08.0962 6004 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
      11:13:08.0971 6004 AFD - ok
      11:13:09.0030 6004 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
      11:13:09.0033 6004 agp440 - ok
      11:13:09.0046 6004 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
      11:13:09.0049 6004 ALG - ok
      11:13:09.0084 6004 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
      11:13:09.0087 6004 aliide - ok
      11:13:09.0135 6004 [ D865F8ABFF031563E860D16A38BD5A35 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
      11:13:09.0138 6004 AMD External Events Utility - ok
      11:13:09.0152 6004 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
      11:13:09.0154 6004 amdide - ok
      11:13:09.0191 6004 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
      11:13:09.0194 6004 AmdK8 - ok
      11:13:09.0343 6004 [ 83418F6EE5A81DDDD8E248FCBFC99AF6 ] amdkmdag C:\Windows\system32\DRIVERS\atipmdag.sys
      11:13:09.0506 6004 amdkmdag - ok
      11:13:09.0745 6004 [ 7E58B5E1DEAA70BD46997068DF06B4E3 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
      11:13:09.0775 6004 amdkmdap - ok
      11:13:09.0874 6004 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
      11:13:09.0875 6004 AmdPPM - ok
      11:13:09.0988 6004 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
      11:13:09.0991 6004 amdsata - ok
      11:13:10.0049 6004 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
      11:13:10.0053 6004 amdsbs - ok
      11:13:10.0065 6004 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
      11:13:10.0067 6004 amdxata - ok
      11:13:10.0126 6004 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
      11:13:10.0129 6004 AppID - ok
      11:13:10.0158 6004 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
      11:13:10.0159 6004 AppIDSvc - ok
      11:13:10.0213 6004 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
      11:13:10.0215 6004 Appinfo - ok
      11:13:10.0268 6004 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
      11:13:10.0270 6004 arc - ok
      11:13:10.0286 6004 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
      11:13:10.0289 6004 arcsas - ok
      11:13:10.0310 6004 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
      11:13:10.0312 6004 AsyncMac - ok
      11:13:10.0350 6004 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
      11:13:10.0351 6004 atapi - ok
      11:13:10.0423 6004 [ 70260C7C98CC0101316F5B2650C3BB44 ] athr C:\Windows\system32\DRIVERS\athrx.sys
      11:13:10.0470 6004 athr - ok
      11:13:10.0514 6004 [ C07A040D6B5A42DD41EE386CF90974C8 ] AtiPcie C:\Windows\system32\DRIVERS\AtiPcie.sys
      11:13:10.0516 6004 AtiPcie - ok
      11:13:10.0581 6004 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
      11:13:10.0589 6004 AudioEndpointBuilder - ok
      11:13:10.0601 6004 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
      11:13:10.0606 6004 AudioSrv - ok
      11:13:10.0685 6004 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
      11:13:10.0688 6004 AxInstSV - ok
      11:13:10.0728 6004 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
      11:13:10.0735 6004 b06bdrv - ok
      11:13:10.0791 6004 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
      11:13:10.0795 6004 b57nd60a - ok
      11:13:10.0856 6004 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
      11:13:10.0858 6004 BDESVC - ok
      11:13:10.0916 6004 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
      11:13:10.0917 6004 Beep - ok
      11:13:11.0014 6004 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
      11:13:11.0023 6004 BFE - ok
      11:13:11.0183 6004 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\system32\qmgr.dll
      11:13:11.0209 6004 BITS - ok
      11:13:11.0246 6004 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
      11:13:11.0248 6004 blbdrive - ok
      11:13:11.0357 6004 [ 3F56903E124E820AEECE6D471583C6C1 ] Bonjour Service C:\Program Files (x86)\Bonjour\mDNSResponder.exe
      11:13:11.0359 6004 Bonjour Service - ok
      11:13:11.0411 6004 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
      11:13:11.0414 6004 bowser - ok
      11:13:11.0449 6004 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
      11:13:11.0450 6004 BrFiltLo - ok
      11:13:11.0466 6004 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
      11:13:11.0467 6004 BrFiltUp - ok
      11:13:11.0519 6004 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
      11:13:11.0521 6004 BridgeMP - ok
      11:13:11.0567 6004 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
      11:13:11.0569 6004 Browser - ok
      11:13:11.0587 6004 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
      11:13:11.0591 6004 Brserid - ok
      11:13:11.0613 6004 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
      11:13:11.0616 6004 BrSerWdm - ok
      11:13:11.0631 6004 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
      11:13:11.0633 6004 BrUsbMdm - ok
      11:13:11.0649 6004 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
      11:13:11.0651 6004 BrUsbSer - ok
      11:13:11.0685 6004 [ FF7C57973EEAD140062238C5A0B7D455 ] BTCFilterService C:\Windows\system32\DRIVERS\motfilt.sys
      11:13:11.0687 6004 BTCFilterService - ok
      11:13:11.0704 6004 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
      11:13:11.0706 6004 BTHMODEM - ok
      11:13:11.0738 6004 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
      11:13:11.0741 6004 bthserv - ok
      11:13:11.0795 6004 catchme - ok
      11:13:11.0816 6004 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
      11:13:11.0819 6004 cdfs - ok
      11:13:11.0888 6004 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
      11:13:11.0891 6004 cdrom - ok
      11:13:11.0948 6004 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
      11:13:11.0950 6004 CertPropSvc - ok
      11:13:11.0984 6004 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
      11:13:11.0986 6004 circlass - ok
      11:13:12.0019 6004 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
      11:13:12.0024 6004 CLFS - ok
      11:13:12.0103 6004 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
      11:13:12.0106 6004 clr_optimization_v2.0.50727_32 - ok
      11:13:12.0133 6004 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
      11:13:12.0136 6004 clr_optimization_v2.0.50727_64 - ok
      11:13:12.0208 6004 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
      11:13:12.0232 6004 clr_optimization_v4.0.30319_32 - ok
      11:13:12.0281 6004 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
      11:13:12.0283 6004 clr_optimization_v4.0.30319_64 - ok
      11:13:12.0325 6004 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
      11:13:12.0327 6004 CmBatt - ok
      11:13:12.0384 6004 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
      11:13:12.0385 6004 cmdide - ok
      11:13:12.0436 6004 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
      11:13:12.0442 6004 CNG - ok
      11:13:12.0461 6004 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
      11:13:12.0463 6004 Compbatt - ok
      11:13:12.0507 6004 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
      11:13:12.0509 6004 CompositeBus - ok
      11:13:12.0522 6004 COMSysApp - ok
      11:13:12.0543 6004 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
      11:13:12.0545 6004 crcdisk - ok
      11:13:12.0619 6004 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
      11:13:12.0621 6004 CryptSvc - ok
      11:13:12.0675 6004 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
      11:13:12.0682 6004 DcomLaunch - ok
      11:13:12.0724 6004 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
      11:13:12.0729 6004 defragsvc - ok
      11:13:12.0780 6004 [ 59D90B6A7FBC4CC712DD7C5868618480 ] DeviceMonitorService C:\Program Files (x86)\Motorola Media Link\Lite\NServiceEntry.exe
      11:13:12.0782 6004 DeviceMonitorService - ok
      11:13:12.0832 6004 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
      11:13:12.0835 6004 DfsC - ok
      11:13:12.0875 6004 [ 867FA8B9E9E3078F68C4089904BBF4B0 ] dgderdrv C:\Windows\system32\drivers\dgderdrv.sys
      11:13:12.0877 6004 dgderdrv - ok
      11:13:12.0937 6004 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
      11:13:12.0942 6004 Dhcp - ok
      11:13:12.0971 6004 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
      11:13:12.0973 6004 discache - ok
      11:13:13.0005 6004 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
      11:13:13.0007 6004 Disk - ok
      11:13:13.0060 6004 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
      11:13:13.0062 6004 Dnscache - ok
      11:13:13.0113 6004 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
      11:13:13.0117 6004 dot3svc - ok
      11:13:13.0157 6004 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
      11:13:13.0160 6004 DPS - ok
      11:13:13.0194 6004 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
      11:13:13.0195 6004 drmkaud - ok
      11:13:13.0242 6004 [ 61E894FE1E9CC720C909E6E343351794 ] DsiWMIService C:\Program Files (x86)\Launch Manager\dsiwmis.exe
      11:13:13.0246 6004 DsiWMIService - ok
      11:13:13.0341 6004 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
      11:13:13.0359 6004 DXGKrnl - ok
      11:13:13.0395 6004 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
      11:13:13.0397 6004 EapHost - ok
      11:13:13.0510 6004 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
      11:13:13.0574 6004 ebdrv - ok
      11:13:13.0643 6004 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
      11:13:13.0645 6004 EFS - ok
      11:13:13.0720 6004 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
      11:13:13.0729 6004 ehRecvr - ok
      11:13:13.0779 6004 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
      11:13:13.0782 6004 ehSched - ok
      11:13:13.0839 6004 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
      11:13:13.0846 6004 elxstor - ok
      11:13:13.0956 6004 [ 91C2E6234F6884C6FEEF9658D8EDE6B6 ] ePowerSvc C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe
      11:13:13.0966 6004 ePowerSvc - ok
      11:13:14.0113 6004 [ B5581646636759D0DAFA8B008881C079 ] EPSON_EB_RPCV4_01 C:\ProgramData\EPSON\EPW!3 SSRP\E_S40STB.EXE
      11:13:14.0116 6004 EPSON_EB_RPCV4_01 - ok
      11:13:14.0174 6004 [ 1E345F2A2D95DA3190596E691CDE9342 ] EPSON_PM_RPCV4_01 C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.EXE
      11:13:14.0177 6004 EPSON_PM_RPCV4_01 - ok
      11:13:14.0224 6004 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
      11:13:14.0226 6004 ErrDev - ok
      11:13:14.0272 6004 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
      11:13:14.0278 6004 EventSystem - ok
      11:13:14.0369 6004 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
      11:13:14.0373 6004 exfat - ok
      11:13:14.0392 6004 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
      11:13:14.0395 6004 fastfat - ok
      11:13:14.0466 6004 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
      11:13:14.0474 6004 Fax - ok
      11:13:14.0524 6004 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
      11:13:14.0525 6004 fdc - ok
      11:13:14.0551 6004 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
      11:13:14.0552 6004 fdPHost - ok
      11:13:14.0565 6004 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
      11:13:14.0566 6004 FDResPub - ok
      11:13:14.0585 6004 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
      11:13:14.0588 6004 FileInfo - ok
      11:13:14.0607 6004 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
      11:13:14.0609 6004 Filetrace - ok
      11:13:14.0684 6004 [ ABEDFD48AC042C6AAAD32452E77217A1 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
      11:13:14.0699 6004 FLEXnet Licensing Service - ok
      11:13:14.0760 6004 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
      11:13:14.0762 6004 flpydisk - ok
      11:13:14.0804 6004 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
      11:13:14.0809 6004 FltMgr - ok
      11:13:14.0881 6004 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
      11:13:14.0910 6004 FontCache - ok
      11:13:15.0172 6004 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
      11:13:15.0193 6004 FontCache3.0.0.0 - ok
      11:13:15.0266 6004 fpwncazk - ok
      11:13:15.0344 6004 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
      11:13:15.0346 6004 FsDepends - ok
      11:13:15.0406 6004 [ 6C06701BF1DB05405804D7EB610991CE ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
      11:13:15.0408 6004 fssfltr - ok
      11:13:15.0555 6004 [ 4CE9DAC1518FF7E77BD213E6394B9D77 ] fsssvc C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
      11:13:15.0589 6004 fsssvc - ok
      11:13:15.0647 6004 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
      11:13:15.0648 6004 Fs_Rec - ok
      11:13:15.0722 6004 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
      11:13:15.0726 6004 fvevol - ok
      11:13:15.0754 6004 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
      11:13:15.0756 6004 gagp30kx - ok
      11:13:15.0827 6004 [ 1FDA0DF739234C4023851A282DD28704 ] GameConsoleService C:\Program Files (x86)\Packard Bell Games\Packard Bell Game Console\GameConsoleService.exe
      11:13:15.0831 6004 GameConsoleService - ok
      11:13:15.0896 6004 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
      11:13:15.0911 6004 gpsvc - ok
      11:13:15.0970 6004 [ 0191DEE9B9EB7902AF2CF4F67301095D ] GREGService C:\Program Files (x86)\Packard Bell\Registration\GREGsvc.exe
      11:13:15.0972 6004 GREGService - ok
      11:13:16.0022 6004 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
      11:13:16.0025 6004 gupdate - ok
      11:13:16.0058 6004 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
      11:13:16.0059 6004 gupdatem - ok
      11:13:16.0091 6004 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
      11:13:16.0093 6004 hcw85cir - ok
      11:13:16.0156 6004 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
      11:13:16.0162 6004 HdAudAddService - ok
      11:13:16.0189 6004 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
      11:13:16.0192 6004 HDAudBus - ok
      11:13:16.0197 6004 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
      11:13:16.0200 6004 HidBatt - ok
      11:13:16.0216 6004 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
      11:13:16.0218 6004 HidBth - ok
      11:13:16.0251 6004 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
      11:13:16.0253 6004 HidIr - ok
      11:13:16.0273 6004 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll
      11:13:16.0275 6004 hidserv - ok
      11:13:16.0333 6004 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
      11:13:16.0336 6004 HidUsb - ok
      11:13:16.0382 6004 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
      11:13:16.0384 6004 hkmsvc - ok
      11:13:16.0432 6004 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
      11:13:16.0436 6004 HomeGroupListener - ok
      11:13:16.0486 6004 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
      11:13:16.0490 6004 HomeGroupProvider - ok
      11:13:16.0530 6004 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
      11:13:16.0532 6004 HpSAMD - ok
      11:13:16.0603 6004 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
      11:13:16.0613 6004 HTTP - ok
      11:13:16.0666 6004 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
      11:13:16.0668 6004 hwpolicy - ok
      11:13:16.0752 6004 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
      11:13:16.0754 6004 i8042prt - ok
      11:13:16.0818 6004 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
      11:13:16.0825 6004 iaStorV - ok
      11:13:16.0907 6004 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
      11:13:16.0921 6004 idsvc - ok
      11:13:16.0971 6004 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
      11:13:16.0973 6004 iirsp - ok
      11:13:17.0024 6004 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
      11:13:17.0039 6004 IKEEXT - ok
      11:13:17.0169 6004 [ FEADC18677A85A123E95A9B976101120 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
      11:13:17.0261 6004 IntcAzAudAddService - ok
      11:13:17.0280 6004 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
      11:13:17.0282 6004 intelide - ok
      11:13:17.0311 6004 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
      11:13:17.0313 6004 intelppm - ok
      11:13:17.0346 6004 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
      11:13:17.0349 6004 IPBusEnum - ok
      11:13:17.0394 6004 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
      11:13:17.0396 6004 IpFilterDriver - ok
      11:13:17.0472 6004 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
      11:13:17.0479 6004 iphlpsvc - ok
      11:13:17.0545 6004 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
      11:13:17.0548 6004 IPMIDRV - ok
      11:13:17.0606 6004 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
      11:13:17.0609 6004 IPNAT - ok
      11:13:17.0629 6004 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
      11:13:17.0631 6004 IRENUM - ok
      11:13:17.0671 6004 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
      11:13:17.0673 6004 isapnp - ok
      11:13:17.0727 6004 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
      11:13:17.0732 6004 iScsiPrt - ok
      11:13:17.0777 6004 [ C9B4ECC187581E5BF3F76648884B7829 ] k57nd60a C:\Windows\system32\DRIVERS\k57nd60a.sys
      11:13:17.0783 6004 k57nd60a - ok
      11:13:17.0811 6004 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
      11:13:17.0813 6004 kbdclass - ok
      11:13:17.0840 6004 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
      11:13:17.0841 6004 kbdhid - ok
      11:13:17.0854 6004 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
      11:13:17.0856 6004 KeyIso - ok
      11:13:17.0878 6004 KMService - ok
      11:13:17.0923 6004 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
      11:13:17.0926 6004 KSecDD - ok
      11:13:17.0972 6004 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
      11:13:17.0976 6004 KSecPkg - ok
      11:13:18.0000 6004 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
      11:13:18.0001 6004 ksthunk - ok
      11:13:18.0029 6004 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
      11:13:18.0035 6004 KtmRm - ok
      11:13:18.0112 6004 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\System32\srvsvc.dll
      11:13:18.0116 6004 LanmanServer - ok
      11:13:18.0164 6004 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
      11:13:18.0167 6004 LanmanWorkstation - ok
      11:13:18.0203 6004 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
      11:13:18.0205 6004 lltdio - ok
      11:13:18.0249 6004 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
      11:13:18.0255 6004 lltdsvc - ok
      11:13:18.0277 6004 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
      11:13:18.0279 6004 lmhosts - ok
      11:13:18.0319 6004 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
      11:13:18.0322 6004 LSI_FC - ok
      11:13:18.0350 6004 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
      11:13:18.0352 6004 LSI_SAS - ok
      11:13:18.0361 6004 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
      11:13:18.0364 6004 LSI_SAS2 - ok
      11:13:18.0376 6004 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
      11:13:18.0379 6004 LSI_SCSI - ok
      11:13:18.0405 6004 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
      11:13:18.0408 6004 luafv - ok
      11:13:18.0464 6004 [ 024DA28053D57E9E32BEE52600576BBB ] MarvinBus C:\Windows\system32\DRIVERS\MarvinBus64.sys
      11:13:18.0469 6004 MarvinBus - ok
      11:13:18.0517 6004 [ A8FE8F2783B2929B56F5370A89356CE9 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
      11:13:18.0519 6004 MBAMProtector - ok
      11:13:18.0609 6004 [ 85B16A92B117A5A800032ECD904B86DB ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
      11:13:18.0615 6004 MBAMScheduler - ok
      11:13:18.0695 6004 [ 20E2469DB709FC675E655CEAA11BE312 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
      11:13:18.0704 6004 MBAMService - ok
      11:13:18.0765 6004 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
      11:13:18.0768 6004 Mcx2Svc - ok
      11:13:18.0784 6004 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
      11:13:18.0786 6004 megasas - ok
      11:13:18.0863 6004 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
      11:13:18.0867 6004 MegaSR - ok
      11:13:18.0981 6004 Microsoft SharePoint Workspace Audit Service - ok
      11:13:19.0013 6004 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
      11:13:19.0015 6004 MMCSS - ok
      11:13:19.0031 6004 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
      11:13:19.0033 6004 Modem - ok
      11:13:19.0067 6004 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
      11:13:19.0068 6004 monitor - ok
      11:13:19.0104 6004 [ 43E754047C6DEE50666554D3C66D6279 ] motccgp C:\Windows\system32\DRIVERS\motccgp.sys
      11:13:19.0106 6004 motccgp - ok
      11:13:19.0135 6004 [ 577399C75CF85AC68E7830EB150F45EF ] motccgpfl C:\Windows\system32\DRIVERS\motccgpfl.sys
      11:13:19.0137 6004 motccgpfl - ok
      11:13:19.0151 6004 motmodem - ok
      11:13:19.0267 6004 [ 11AAA0083D30F4677AD2B218EE7F5CE9 ] Motorola Device Manager C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe
      11:13:19.0270 6004 Motorola Device Manager - ok
      11:13:19.0298 6004 [ 19BC2161C3FCCED802F1BCD9B78C3466 ] MotoSwitchService C:\Windows\system32\DRIVERS\motswch.sys
      11:13:19.0299 6004 MotoSwitchService - ok
      11:13:19.0330 6004 [ C4F1495598C7E1FEF53BCFD84A5BD53E ] Motousbnet C:\Windows\system32\DRIVERS\Motousbnet.sys
      11:13:19.0332 6004 Motousbnet - ok
      11:13:19.0367 6004 [ D075B1D964A314D240F5498773EE89DF ] motusbdevice C:\Windows\system32\DRIVERS\motusbdevice.sys
      11:13:19.0368 6004 motusbdevice - ok
      11:13:19.0386 6004 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
      11:13:19.0388 6004 mouclass - ok
      11:13:19.0429 6004 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
      11:13:19.0431 6004 mouhid - ok
      11:13:19.0477 6004 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
      11:13:19.0480 6004 mountmgr - ok
      11:13:19.0532 6004 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
      11:13:19.0536 6004 mpio - ok
      11:13:19.0559 6004 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
      11:13:19.0561 6004 mpsdrv - ok
      11:13:19.0633 6004 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
      11:13:19.0644 6004 MpsSvc - ok
      11:13:19.0706 6004 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
      11:13:19.0709 6004 MRxDAV - ok
      11:13:19.0756 6004 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
      11:13:19.0759 6004 mrxsmb - ok
      11:13:19.0807 6004 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
      11:13:19.0812 6004 mrxsmb10 - ok
      11:13:19.0847 6004 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
      11:13:19.0850 6004 mrxsmb20 - ok
      11:13:19.0893 6004 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
      11:13:19.0895 6004 msahci - ok
      11:13:19.0920 6004 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
      11:13:19.0923 6004 msdsm - ok
      11:13:19.0946 6004 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
      11:13:19.0950 6004 MSDTC - ok
      11:13:19.0978 6004 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
      11:13:19.0979 6004 Msfs - ok
      11:13:19.0990 6004 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
      11:13:19.0992 6004 mshidkmdf - ok
      11:13:20.0030 6004 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
      11:13:20.0032 6004 msisadrv - ok
      11:13:20.0065 6004 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
      11:13:20.0069 6004 MSiSCSI - ok
      11:13:20.0074 6004 msiserver - ok
      11:13:20.0101 6004 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
      11:13:20.0103 6004 MSKSSRV - ok
      11:13:20.0136 6004 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
      11:13:20.0137 6004 MSPCLOCK - ok
      11:13:20.0150 6004 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
      11:13:20.0151 6004 MSPQM - ok
      11:13:20.0198 6004 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
      11:13:20.0203 6004 MsRPC - ok
      11:13:20.0393 6004 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
      11:13:20.0394 6004 mssmbios - ok
      11:13:20.0413 6004 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
      11:13:20.0416 6004 MSTEE - ok
      11:13:20.0426 6004 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
      11:13:20.0428 6004 MTConfig - ok
      11:13:20.0462 6004 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
      11:13:20.0465 6004 Mup - ok
      11:13:20.0564 6004 [ 9821F54FD943D9E8A5BA56AEBF6297AC ] NanoServiceMain C:\Program Files (x86)\Panda Security\Panda Cloud Antivirus\PSANHost.exe
      11:13:20.0567 6004 NanoServiceMain - ok
      11:13:20.0620 6004 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
      11:13:20.0627 6004 napagent - ok
      11:13:20.0651 6004 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
      11:13:20.0656 6004 NativeWifiP - ok
      11:13:20.0735 6004 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
      11:13:20.0783 6004 NDIS - ok
      11:13:20.0829 6004 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
      11:13:20.0831 6004 NdisCap - ok
      11:13:20.0848 6004 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
      11:13:20.0850 6004 NdisTapi - ok
      11:13:20.0922 6004 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
      11:13:20.0924 6004 Ndisuio - ok
      11:13:20.0978 6004 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
      11:13:20.0981 6004 NdisWan - ok
      11:13:21.0028 6004 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
      11:13:21.0030 6004 NDProxy - ok
      11:13:21.0102 6004 [ 7D2633295EB6FF2B938185874884059D ] Nero BackItUp Scheduler 4.0 C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
      11:13:21.0134 6004 Nero BackItUp Scheduler 4.0 - ok
      11:13:21.0184 6004 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
      11:13:21.0186 6004 NetBIOS - ok
      11:13:21.0235 6004 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
      11:13:21.0240 6004 NetBT - ok
      11:13:21.0254 6004 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
      11:13:21.0256 6004 Netlogon - ok
      11:13:21.0287 6004 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
      11:13:21.0292 6004 Netman - ok
      11:13:21.0315 6004 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
      11:13:21.0321 6004 netprofm - ok
      11:13:21.0370 6004 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
      11:13:21.0373 6004 NetTcpPortSharing - ok
      11:13:21.0407 6004 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
      11:13:21.0410 6004 nfrd960 - ok
      11:13:21.0433 6004 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
      11:13:21.0439 6004 NlaSvc - ok
      11:13:21.0507 6004 [ A82F339386766C585C3CF0C10AA9A002 ] NNSALPC C:\Windows\system32\DRIVERS\NNSAlpc.sys
      11:13:21.0509 6004 NNSALPC - ok
      11:13:21.0537 6004 [ 2A0C5D3890FC56254CBFA8D2A2DFA62C ] NNSHTTP C:\Windows\system32\DRIVERS\NNSHttp.sys
      11:13:21.0540 6004 NNSHTTP - ok
      11:13:21.0555 6004 [ 27F12CE54A0319527E599ACD193B86F5 ] NNSIDS C:\Windows\system32\DRIVERS\NNSIds.sys
      11:13:21.0557 6004 NNSIDS - ok
      11:13:21.0593 6004 [ 02D6C70D0CA4040C81698A2014019E0A ] NNSNAHSL C:\Windows\system32\DRIVERS\NNSNAHSL.sys
      11:13:21.0595 6004 NNSNAHSL - ok
      11:13:21.0645 6004 [ 488A615DDA26640FBEAC945678208E23 ] NNSPICC C:\Windows\system32\DRIVERS\NNSPicc.sys
      11:13:21.0648 6004 NNSPICC - ok
      11:13:21.0745 6004 [ 7A07299FB6BCE5F563B852FE930B5311 ] NNSPIHSW C:\Windows\system32\DRIVERS\NNSPihsw.sys
      11:13:21.0747 6004 NNSPIHSW - ok
      11:13:21.0770 6004 [ 643FE52EA4C41E806B6906CF0C786D24 ] NNSPOP3 C:\Windows\system32\DRIVERS\NNSPop3.sys
      11:13:21.0773 6004 NNSPOP3 - ok
      11:13:21.0815 6004 [ A5DFD37B6E05E976DD70DF5D202C9BCA ] NNSPROT C:\Windows\system32\DRIVERS\NNSProt.sys
      11:13:21.0820 6004 NNSPROT - ok
      11:13:21.0861 6004 [ A0C7A228D06B1E9FC5AB4AC7B50FE612 ] NNSPRV C:\Windows\system32\DRIVERS\NNSPrv.sys
      11:13:21.0864 6004 NNSPRV - ok
      11:13:21.0876 6004 [ F41B212F242B02AE54317E073CC9D02E ] NNSSMTP C:\Windows\system32\DRIVERS\NNSSmtp.sys
      11:13:21.0879 6004 NNSSMTP - ok
      11:13:21.0902 6004 [ B6D8243E45687B3791CBDABBE2697699 ] NNSSTRM C:\Windows\system32\DRIVERS\NNSStrm.sys
      11:13:21.0907 6004 NNSSTRM - ok
      11:13:21.0921 6004 [ 1257C0FB4765B6D33F9EAEA326995ABA ] NNSTLSC C:\Windows\system32\DRIVERS\NNSTlsc.sys
      11:13:21.0923 6004 NNSTLSC - ok
      11:13:21.0957 6004 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
      11:13:21.0959 6004 Npfs - ok
      11:13:21.0985 6004 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
      11:13:21.0987 6004 nsi - ok
      11:13:21.0995 6004 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
      11:13:21.0996 6004 nsiproxy - ok
      11:13:22.0076 6004 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
      11:13:22.0117 6004 Ntfs - ok
      11:13:22.0176 6004 [ 5B3CE960C62DBE864BE9A0BD043A3E30 ] NTI IScheduleSvc C:\Program Files (x86)\NewTech Infosystems\Packard Bell MyBackup\IScheduleSvc.exe
      11:13:22.0180 6004 NTI IScheduleSvc - ok
      11:13:22.0216 6004 [ 64DDD0DEE976302F4BD93E5EFCC2F013 ] NTIDrvr C:\Windows\system32\drivers\NTIDrvr.sys
      11:13:22.0219 6004 NTIDrvr - ok
      11:13:22.0236 6004 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
      11:13:22.0237 6004 Null - ok
      11:13:22.0286 6004 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
      11:13:22.0289 6004 nvraid - ok
      11:13:22.0327 6004 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
      11:13:22.0331 6004 nvstor - ok
      11:13:22.0347 6004 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
      11:13:22.0350 6004 nv_agp - ok
      11:13:22.0401 6004 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
      11:13:22.0403 6004 ohci1394 - ok
      11:13:22.0478 6004 [ 2B8E4C792BED0E5882702720BC528AE5 ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
      11:13:22.0481 6004 ose - ok
      11:13:22.0703 6004 [ FE9C0029E1AF26350D9985D00520E5C8 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
      11:13:22.0843 6004 osppsvc - ok
      11:13:22.0880 6004 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
      11:13:22.0887 6004 p2pimsvc - ok
      11:13:22.0931 6004 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
      11:13:22.0937 6004 p2psvc - ok
      11:13:23.0005 6004 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
      11:13:23.0008 6004 Parport - ok
      11:13:23.0054 6004 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
      11:13:23.0056 6004 partmgr - ok
      11:13:23.0073 6004 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
      11:13:23.0076 6004 PcaSvc - ok
      11:13:23.0132 6004 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
      11:13:23.0136 6004 pci - ok
      11:13:23.0199 6004 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
      11:13:23.0200 6004 pciide - ok
      11:13:23.0221 6004 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
      11:13:23.0225 6004 pcmcia - ok
      11:13:23.0247 6004 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
      11:13:23.0249 6004 pcw - ok
      11:13:23.0272 6004 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
      11:13:23.0281 6004 PEAUTH - ok
      11:13:23.0371 6004 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
      11:13:23.0374 6004 PerfHost - ok
      11:13:23.0453 6004 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
      11:13:23.0488 6004 pla - ok
      11:13:23.0590 6004 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
      11:13:23.0596 6004 PlugPlay - ok
      11:13:23.0640 6004 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
      11:13:23.0643 6004 PNRPAutoReg - ok
      11:13:23.0658 6004 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
      11:13:23.0662 6004 PNRPsvc - ok
      11:13:23.0708 6004 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
      11:13:23.0715 6004 PolicyAgent - ok
      11:13:23.0806 6004 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
      11:13:23.0810 6004 Power - ok
      11:13:23.0852 6004 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
      11:13:23.0855 6004 PptpMiniport - ok
      11:13:23.0920 6004 [ 0264B15F628C8C7DBF439FD7AB4108F5 ] Printer Control C:\Windows\system32\PrintCtrl.exe
      11:13:23.0923 6004 Printer Control - ok
      11:13:23.0946 6004 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
      11:13:23.0949 6004 Processor - ok
      11:13:24.0032 6004 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
      11:13:24.0036 6004 ProfSvc - ok
      11:13:24.0053 6004 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
      11:13:24.0056 6004 ProtectedStorage - ok
      11:13:24.0087 6004 PsBoot - ok
      11:13:24.0130 6004 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
      11:13:24.0132 6004 Psched - ok
      11:13:24.0249 6004 [ A564E693CC1023D8FA3F0B591F613A49 ] PSINAflt C:\Windows\system32\DRIVERS\PSINAflt.sys
      11:13:24.0253 6004 PSINAflt - ok
      11:13:24.0301 6004 [ 0A1C6F42FB5CDB9AE6B957088D5F38AA ] PSINFile C:\Windows\system32\DRIVERS\PSINFile.sys
      11:13:24.0303 6004 PSINFile - ok
      11:13:24.0350 6004 [ B966E8F3B53272FEA149DF7B52B0F4D7 ] PSINKNC C:\Windows\system32\DRIVERS\psinknc.sys
      11:13:24.0354 6004 PSINKNC - ok
      11:13:24.0369 6004 [ 8A11A8C152AD0FE717808C48805098A5 ] PSINProc C:\Windows\system32\DRIVERS\PSINProc.sys
      11:13:24.0371 6004 PSINProc - ok
      11:13:24.0384 6004 [ 9714E9F7D4BED5C90E9A34960415AC9F ] PSINProt C:\Windows\system32\DRIVERS\PSINProt.sys
      11:13:24.0387 6004 PSINProt - ok
      11:13:24.0413 6004 [ E437C22DD66BA8F763F01D02C9713F8D ] PSKMAD C:\Windows\system32\DRIVERS\PSKMAD.sys
      11:13:24.0415 6004 PSKMAD - ok
      11:13:24.0547 6004 [ EA735BF6DF13A857A83C99BF27A422AD ] PST Service C:\Program Files (x86)\Motorola\MotForwardDaemon\ForwardDaemon.exe
      11:13:24.0549 6004 PST Service - ok
      11:13:24.0595 6004 [ 86C00481DAE67613C59E32A335D3E363 ] PSUAService C:\Program Files (x86)\Panda Security\Panda Cloud Antivirus\PSUAService.exe
      11:13:24.0597 6004 PSUAService - ok
      11:13:24.0620 6004 [ 87B04878A6D59D6C79251DC960C674C1 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
      11:13:24.0622 6004 PxHlpa64 - ok
      11:13:24.0672 6004 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
      11:13:24.0705 6004 ql2300 - ok
      11:13:24.0732 6004 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
      11:13:24.0735 6004 ql40xx - ok
      11:13:24.0761 6004 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
      11:13:24.0766 6004 QWAVE - ok
      11:13:24.0776 6004 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
      11:13:24.0778 6004 QWAVEdrv - ok
      11:13:24.0797 6004 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
      11:13:24.0798 6004 RasAcd - ok
      11:13:24.0818 6004 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
      11:13:24.0820 6004 RasAgileVpn - ok
      11:13:24.0831 6004 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
      11:13:24.0835 6004 RasAuto - ok
      11:13:24.0875 6004 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
      11:13:24.0878 6004 Rasl2tp - ok
      11:13:24.0928 6004 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
      11:13:24.0934 6004 RasMan - ok
      11:13:24.0983 6004 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
      11:13:24.0986 6004 RasPppoe - ok
      11:13:25.0004 6004 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
      11:13:25.0006 6004 RasSstp - ok
      11:13:25.0051 6004 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
      11:13:25.0056 6004 rdbss - ok
      11:13:25.0106 6004 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
      11:13:25.0108 6004 rdpbus - ok
      11:13:25.0119 6004 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
      11:13:25.0121 6004 RDPCDD - ok
      11:13:25.0150 6004 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
      11:13:25.0151 6004 RDPENCDD - ok
      11:13:25.0173 6004 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
      11:13:25.0175 6004 RDPREFMP - ok
      11:13:25.0214 6004 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
      11:13:25.0217 6004 RDPWD - ok
      11:13:25.0274 6004 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
      11:13:25.0278 6004 rdyboost - ok
      11:13:25.0305 6004 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
      11:13:25.0309 6004 RemoteAccess - ok
      11:13:25.0335 6004 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
      11:13:25.0340 6004 RemoteRegistry - ok
      11:13:25.0399 6004 [ 7B04C9843921AB1F695FB395422C5360 ] RimUsb C:\Windows\system32\Drivers\RimUsb_AMD64.sys
      11:13:25.0401 6004 RimUsb - ok
      11:13:25.0422 6004 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
      11:13:25.0426 6004 RpcEptMapper - ok
      11:13:25.0444 6004 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
      11:13:25.0446 6004 RpcLocator - ok
      11:13:25.0496 6004 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
      11:13:25.0501 6004 RpcSs - ok
      11:13:25.0529 6004 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
      11:13:25.0532 6004 rspndr - ok
      11:13:25.0599 6004 [ 3CEEE53BBF8BA284FF44585CEC0162FE ] RSUSBSTOR C:\Windows\system32\Drivers\RtsUStor.sys
      11:13:25.0603 6004 RSUSBSTOR - ok
      11:13:25.0639 6004 [ 4E821C740A675F6D040BE41D59A62B1D ] RTHDMIAzAudService C:\Windows\system32\drivers\RtHDMIVX.sys
      11:13:25.0643 6004 RTHDMIAzAudService - ok
      11:13:25.0687 6004 [ 6C90231046FB9FC4123C42179832817F ] s117bus C:\Windows\system32\DRIVERS\s117bus.sys
      11:13:25.0689 6004 s117bus - ok
      11:13:25.0702 6004 [ 3279341C90EF8F226AF77623039F4495 ] s117mdfl C:\Windows\system32\DRIVERS\s117mdfl.sys
      11:13:25.0704 6004 s117mdfl - ok
      11:13:25.0730 6004 [ 73E331F555279E753B312675DDAF4516 ] s117mdm C:\Windows\system32\DRIVERS\s117mdm.sys
      11:13:25.0733 6004 s117mdm - ok
      11:13:25.0784 6004 [ D420731FD2880F0F40F20771EFAAD671 ] s117mgmt C:\Windows\system32\DRIVERS\s117mgmt.sys
      11:13:25.0787 6004 s117mgmt - ok
      11:13:25.0816 6004 [ 98236CA5A9A77D0983AC3F6D6527C796 ] s117nd5 C:\Windows\system32\DRIVERS\s117nd5.sys
      11:13:25.0817 6004 s117nd5 - ok
      11:13:25.0839 6004 [ 1DD613909477AE298C98E86617EC356B ] s117obex C:\Windows\system32\DRIVERS\s117obex.sys
      11:13:25.0842 6004 s117obex - ok
      11:13:25.0863 6004 [ 9A22DF5FE9B6BE279D820776A6ADB56F ] s117unic C:\Windows\system32\DRIVERS\s117unic.sys
      11:13:25.0866 6004 s117unic - ok
      11:13:25.0887 6004 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
      11:13:25.0888 6004 SamSs - ok
      11:13:25.0929 6004 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
      11:13:25.0932 6004 sbp2port - ok
      11:13:25.0959 6004 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
      11:13:25.0964 6004 SCardSvr - ok
      11:13:26.0014 6004 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
      11:13:26.0015 6004 scfilter - ok
      11:13:26.0082 6004 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
      11:13:26.0114 6004 Schedule - ok
      11:13:26.0170 6004 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
      11:13:26.0172 6004 SCPolicySvc - ok
      11:13:26.0189 6004 ScreamBAudioSvc - ok
      11:13:26.0243 6004 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
      11:13:26.0247 6004 SDRSVC - ok
      11:13:26.0285 6004 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
      11:13:26.0287 6004 secdrv - ok
      11:13:26.0334 6004 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
      11:13:26.0337 6004 seclogon - ok
      11:13:26.0369 6004 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\system32\sens.dll
      11:13:26.0371 6004 SENS - ok
      11:13:26.0387 6004 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
      11:13:26.0390 6004 SensrSvc - ok
      11:13:26.0406 6004 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
      11:13:26.0408 6004 Serenum - ok
      11:13:26.0430 6004 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
      11:13:26.0433 6004 Serial - ok
      11:13:26.0504 6004 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
      11:13:26.0506 6004 sermouse - ok
      11:13:26.0577 6004 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
      11:13:26.0580 6004 SessionEnv - ok
      11:13:26.0637 6004 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
      11:13:26.0639 6004 sffdisk - ok
      11:13:26.0679 6004 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
      11:13:26.0682 6004 sffp_mmc - ok
      11:13:26.0694 6004 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
      11:13:26.0696 6004 sffp_sd - ok
      11:13:26.0727 6004 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
      11:13:26.0728 6004 sfloppy - ok
      11:13:26.0781 6004 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
      11:13:26.0787 6004 SharedAccess - ok
      11:13:26.0857 6004 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
      11:13:26.0863 6004 ShellHWDetection - ok
      11:13:26.0885 6004 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
      11:13:26.0887 6004 SiSRaid2 - ok
      11:13:26.0921 6004 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
      11:13:26.0923 6004 SiSRaid4 - ok
      11:13:27.0014 6004 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
      11:13:27.0017 6004 SkypeUpdate - ok
      11:13:27.0043 6004 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
      11:13:27.0046 6004 Smb - ok
      11:13:27.0097 6004 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
      11:13:27.0100 6004 SNMPTRAP - ok
      11:13:27.0126 6004 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
      11:13:27.0128 6004 spldr - ok
      11:13:27.0183 6004 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
      11:13:27.0192 6004 Spooler - ok
      11:13:27.0312 6004 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
      11:13:27.0405 6004 sppsvc - ok
      11:13:27.0422 6004 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
      11:13:27.0427 6004 sppuinotify - ok
      11:13:27.0517 6004 [ 602884696850C86434530790B110E8EB ] sptd C:\Windows\system32\Drivers\sptd.sys
      11:13:27.0517 6004 Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: 602884696850C86434530790B110E8EB
      11:13:27.0520 6004 sptd ( LockedFile.Multi.Generic ) - warning
      11:13:27.0520 6004 sptd - detected LockedFile.Multi.Generic (1)
      11:13:27.0588 6004 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
      11:13:27.0595 6004 srv - ok
      11:13:27.0638 6004 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
      11:13:27.0644 6004 srv2 - ok
      11:13:27.0689 6004 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
      11:13:27.0692 6004 srvnet - ok
      11:13:27.0716 6004 [ F74634F46692C8315E7F37F698AF3225 ] sscebus C:\Windows\system32\DRIVERS\sscebus.sys
      11:13:27.0719 6004 sscebus - ok
      11:13:27.0750 6004 [ 82732B391EFD69B0548044BE9CB37BFC ] sscemdfl C:\Windows\system32\DRIVERS\sscemdfl.sys
      11:13:27.0751 6004 sscemdfl - ok
      11:13:27.0775 6004 [ 43D56ACE4469D90F9790E8352D87D9B5 ] sscemdm C:\Windows\system32\DRIVERS\sscemdm.sys
      11:13:27.0779 6004 sscemdm - ok
      11:13:27.0840 6004 [ DB504EF6D73F6B8AB5CF8A18560C4E2A ] ssceserd C:\Windows\system32\DRIVERS\ssceserd.sys
      11:13:27.0842 6004 ssceserd - ok
      11:13:27.0884 6004 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
      11:13:27.0888 6004 SSDPSRV - ok
      11:13:27.0901 6004 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
      11:13:27.0904 6004 SstpSvc - ok
      11:13:27.0929 6004 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
      11:13:27.0931 6004 stexstor - ok
      11:13:27.0988 6004 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
      11:13:27.0997 6004 stisvc - ok
      11:13:28.0056 6004 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
      11:13:28.0058 6004 swenum - ok
      11:13:28.0198 6004 [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
      11:13:28.0204 6004 SwitchBoard - ok
      11:13:28.0269 6004 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
      11:13:28.0277 6004 swprv - ok
      11:13:28.0355 6004 [ 064A2530A4A7C7CEC1BE6A1945645BE4 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
      11:13:28.0359 6004 SynTP - ok
      11:13:28.0453 6004 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
      11:13:28.0487 6004 SysMain - ok
      11:13:28.0555 6004 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
      11:13:28.0558 6004 TabletInputService - ok
      11:13:28.0607 6004 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
      11:13:28.0613 6004 TapiSrv - ok
      11:13:28.0638 6004 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
      11:13:28.0641 6004 TBS - ok
      11:13:28.0727 6004 [ 37608401DFDB388CAF66917F6B2D6FB0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
      11:13:28.0774 6004 Tcpip - ok
      11:13:28.0816 6004 [ 37608401DFDB388CAF66917F6B2D6FB0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
      11:13:28.0829 6004 TCPIP6 - ok
      11:13:28.0879 6004 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
      11:13:28.0881 6004 tcpipreg - ok
      11:13:28.0919 6004 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
      11:13:28.0921 6004 TDPIPE - ok
      11:13:28.0971 6004 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
      11:13:28.0973 6004 TDTCP - ok
      11:13:29.0017 6004 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
      11:13:29.0020 6004 tdx - ok
      11:13:29.0066 6004 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
      11:13:29.0068 6004 TermDD - ok
      11:13:29.0140 6004 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
      11:13:29.0149 6004 TermService - ok
      11:13:29.0194 6004 [ CE4B6956E4E12492715A53076E58761F ] TFsExDisk C:\Windows\System32\Drivers\TFsExDisk.sys
      11:13:29.0196 6004 TFsExDisk - ok
      11:13:29.0231 6004 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
      11:13:29.0234 6004 Themes - ok
      11:13:29.0268 6004 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
      11:13:29.0270 6004 THREADORDER - ok
      11:13:29.0284 6004 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
      11:13:29.0287 6004 TrkWks - ok
      11:13:29.0359 6004 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
      11:13:29.0361 6004 TrustedInstaller - ok
      11:13:29.0406 6004 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
      11:13:29.0408 6004 tssecsrv - ok
      11:13:29.0459 6004 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
      11:13:29.0461 6004 TsUsbFlt - ok
      11:13:29.0524 6004 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
      11:13:29.0527 6004 tunnel - ok
      11:13:29.0555 6004 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
      11:13:29.0557 6004 uagp35 - ok
      11:13:29.0570 6004 [ 2E22C1FD397A5A9FFEF55E9D1FC96C00 ] UBHelper C:\Windows\system32\drivers\UBHelper.sys
      11:13:29.0572 6004 UBHelper - ok
      11:13:29.0619 6004 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
      11:13:29.0624 6004 udfs - ok
      11:13:29.0667 6004 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
      11:13:29.0671 6004 UI0Detect - ok
      11:13:29.0692 6004 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
      11:13:29.0694 6004 uliagpkx - ok
      11:13:29.0741 6004 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
      11:13:29.0743 6004 umbus - ok
      11:13:29.0769 6004 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
      11:13:29.0771 6004 UmPass - ok
      11:13:29.0840 6004 [ F9EC9ACD504D823D9B9CA98A4F8D3CA2 ] Updater Service C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe
      11:13:29.0843 6004 Updater Service - ok
      11:13:29.0883 6004 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
      11:13:29.0890 6004 upnphost - ok
      11:13:29.0949 6004 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
      11:13:29.0952 6004 usbccgp - ok
      11:13:30.0010 6004 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
      11:13:30.0013 6004 usbcir - ok
      11:13:30.0048 6004 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
      11:13:30.0050 6004 usbehci - ok
      11:13:30.0155 6004 [ 2C780746DC44A28FE67004DC58173F05 ] usbfilter C:\Windows\system32\DRIVERS\usbfilter.sys
      11:13:30.0157 6004 usbfilter - ok
      11:13:30.0179 6004 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
      11:13:30.0185 6004 usbhub - ok
      11:13:30.0236 6004 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
      11:13:30.0238 6004 usbohci - ok
      11:13:30.0260 6004 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
      11:13:30.0262 6004 usbprint - ok
      11:13:30.0305 6004 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
      11:13:30.0307 6004 usbscan - ok
      11:13:30.0348 6004 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
      11:13:30.0351 6004 USBSTOR - ok
      11:13:30.0371 6004 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
      11:13:30.0373 6004 usbuhci - ok
      11:13:30.0428 6004 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
      11:13:30.0431 6004 usbvideo - ok
      11:13:30.0454 6004 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
      11:13:30.0456 6004 UxSms - ok
      11:13:30.0465 6004 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
      11:13:30.0466 6004 VaultSvc - ok
      11:13:30.0485 6004 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
      11:13:30.0487 6004 vdrvroot - ok
      11:13:30.0541 6004 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
      11:13:30.0550 6004 vds - ok
      11:13:30.0619 6004 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
      11:13:30.0621 6004 vga - ok
      11:13:30.0639 6004 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
      11:13:30.0641 6004 VgaSave - ok
      11:13:30.0691 6004 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
      11:13:30.0695 6004 vhdmp - ok
      11:13:30.0743 6004 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
      11:13:30.0745 6004 viaide - ok
      11:13:30.0785 6004 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
      11:13:30.0788 6004 volmgr - ok
      11:13:30.0841 6004 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
      11:13:30.0847 6004 volmgrx - ok
      11:13:30.0901 6004 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
      11:13:30.0906 6004 volsnap - ok
      11:13:30.0956 6004 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
      11:13:30.0959 6004 vsmraid - ok
      11:13:31.0037 6004 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
      11:13:31.0084 6004 VSS - ok
      11:13:31.0102 6004 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
      11:13:31.0104 6004 vwifibus - ok
      11:13:31.0129 6004 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
      11:13:31.0131 6004 vwififlt - ok
      11:13:31.0157 6004 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
      11:13:31.0163 6004 W32Time - ok
      11:13:31.0181 6004 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
      11:13:31.0183 6004 WacomPen - ok
      11:13:31.0224 6004 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
      11:13:31.0227 6004 WANARP - ok
      11:13:31.0232 6004 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
      11:13:31.0233 6004 Wanarpv6 - ok
      11:13:31.0304 6004 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
      11:13:31.0339 6004 WatAdminSvc - ok
      11:13:31.0417 6004 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
      11:13:31.0451 6004 wbengine - ok
      11:13:31.0493 6004 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
      11:13:31.0498 6004 WbioSrvc - ok
      11:13:31.0554 6004 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
      11:13:31.0561 6004 wcncsvc - ok
      11:13:31.0616 6004 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
      11:13:31.0619 6004 WcsPlugInService - ok
      11:13:31.0651 6004 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
      11:13:31.0653 6004 Wd - ok
      11:13:31.0713 6004 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
      11:13:31.0723 6004 Wdf01000 - ok
      11:13:31.0741 6004 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
      11:13:31.0744 6004 WdiServiceHost - ok
      11:13:31.0749 6004 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
      11:13:31.0752 6004 WdiSystemHost - ok
      11:13:31.0812 6004 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
      11:13:31.0817 6004 WebClient - ok
      11:13:31.0838 6004 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
      11:13:31.0844 6004 Wecsvc - ok
      11:13:31.0865 6004 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
      11:13:31.0868 6004 wercplsupport - ok
      11:13:31.0920 6004 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
      11:13:31.0922 6004 WerSvc - ok
      11:13:31.0968 6004 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
      11:13:31.0970 6004 WfpLwf - ok
      11:13:31.0987 6004 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
      11:13:31.0989 6004 WIMMount - ok
      11:13:32.0024 6004 WinDefend - ok
      11:13:32.0032 6004 WinHttpAutoProxySvc - ok
      11:13:32.0096 6004 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
      11:13:32.0099 6004 Winmgmt - ok
      11:13:32.0191 6004 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
      11:13:32.0239 6004 WinRM - ok
      11:13:32.0323 6004 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
      11:13:32.0325 6004 WinUsb - ok
      11:13:32.0372 6004 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
      11:13:32.0388 6004 Wlansvc - ok
      11:13:32.0507 6004 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
      11:13:32.0509 6004 wlcrasvc - ok
      11:13:32.0626 6004 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
      11:13:32.0674 6004 wlidsvc - ok
      11:13:32.0722 6004 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
      11:13:32.0723 6004 WmiAcpi - ok
      11:13:32.0757 6004 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
      11:13:32.0760 6004 wmiApSrv - ok
      11:13:32.0786 6004 WMPNetworkSvc - ok
      11:13:32.0811 6004 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
      11:13:32.0814 6004 WPCSvc - ok
      11:13:32.0860 6004 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
      11:13:32.0864 6004 WPDBusEnum - ok
      11:13:32.0888 6004 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
      11:13:32.0890 6004 ws2ifsl - ok
      11:13:32.0915 6004 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\system32\wscsvc.dll
      11:13:32.0918 6004 wscsvc - ok
      11:13:32.0924 6004 WSearch - ok
      11:13:33.0051 6004 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
      11:13:33.0109 6004 wuauserv - ok
      11:13:33.0155 6004 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
      11:13:33.0157 6004 WudfPf - ok
      11:13:33.0225 6004 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
      11:13:33.0229 6004 WUDFRd - ok
      11:13:33.0276 6004 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
      11:13:33.0279 6004 wudfsvc - ok
      11:13:33.0313 6004 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
      11:13:33.0319 6004 WwanSvc - ok
      11:13:33.0346 6004 ================ Scan global ===============================
      11:13:33.0372 6004 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
      11:13:33.0412 6004 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
      11:13:33.0422 6004 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
      11:13:33.0446 6004 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
      11:13:33.0495 6004 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
      11:13:33.0499 6004 [Global] - ok
      11:13:33.0500 6004 ================ Scan MBR ==================================
      11:13:33.0518 6004 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
      11:13:33.0836 6004 \Device\Harddisk0\DR0 - ok
      11:13:33.0837 6004 ================ Scan VBR ==================================
      11:13:33.0840 6004 [ 10FF361BDA371F73C2D879595C44557E ] \Device\Harddisk0\DR0\Partition1
      11:13:33.0842 6004 \Device\Harddisk0\DR0\Partition1 - ok
      11:13:33.0876 6004 [ FE56A3BB3072637805CBE1C2EDB88B5A ] \Device\Harddisk0\DR0\Partition2
      11:13:33.0878 6004 \Device\Harddisk0\DR0\Partition2 - ok
      11:13:33.0878 6004 ============================================================
      11:13:33.0879 6004 Scan finished
      11:13:33.0879 6004 ============================================================
      11:13:33.0891 5944 Detected object count: 1
      11:13:33.0891 5944 Actual detected object count: 1
      11:13:42.0312 5944 sptd ( LockedFile.Multi.Generic ) - skipped by user
      11:13:42.0312 5944 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
      11:13:44.0696 3880 Deinitialize success




      Aquí el registro del análisis rápido del MalwareBytes Anti-Malware, en Modo Normal del PC:

      Malwarebytes Anti-Malware 1.65.1.1000
      Malwarebytes : Free anti-malware download

      Versión de la Base de Datos: v2012.11.24.11

      Windows 7 Service Pack 1 x64 NTFS
      Internet Explorer 8.0.7601.17514
      Maties :: MATIES-PC [administrador]

      27/11/2012 11:59:22
      mbam-log-2012-11-27 (11-59-22).txt

      Tipos de Análisis: Análisis Rápido
      Opciones de análisis activado: Memoria | Inicio | Registro | Sistema de archivos | Heurística/Extra | Heurística/Shuriken | PUP | PUM
      Opciones de análisis desactivados: P2P
      Objetos examinados: 218828
      Tiempo transcurrido: 4 minuto(s), 41 segundo(s)

      Procesos en Memoria Detectados: 0
      (No se han detectado elementos maliciosos)

      Módulos de Memoria Detectados: 0
      (No se han detectado elementos maliciosos)

      Claves del Registro Detectados: 0
      (No se han detectado elementos maliciosos)

      Valores del Registro Detectados: 0
      (No se han detectado elementos maliciosos)

      Elementos de Datos del Registro Detectados: 0
      (No se han detectado elementos maliciosos)

      Carpetas Detectadas: 0
      (No se han detectado elementos maliciosos)

      Archivos Detectados: 0
      (No se han detectado elementos maliciosos)

      fin)




      Atentamente,

      Maties Alzina Soler
      Última edición por Maties360 fecha: 28/11/12 a las 04:58:53

    Página 1 de 2 12 ÚltimoÚltimo