• Registrarse
  • Iniciar sesión


  • Resultados 1 al 6 de 6

    Infectado con 3 troyanos: Wigon.PB, Kryptik.AQED y Sirefef.AT

    Buenas, es la tercera vez que recurro a ustedes, pues nose que esta pasando con el Pc, cada vez que me salta la ventana de administrador para actualizar java o flash, se vuelve loco el ...

    1. #1
      Usuario Avatar de P.P.P
      Registrado
      ago 2008
      Ubicación
      spy
      Mensajes
      28

      Infectado con 3 troyanos: Wigon.PB, Kryptik.AQED y Sirefef.AT

      Buenas, es la tercera vez que recurro a ustedes, pues nose que esta pasando con el Pc, cada vez que me salta la ventana de administrador para actualizar java o flash, se vuelve loco el pc y se me cuelan troyanos de nose ni donde.
      Esta es la tercera vez que se me cuela un troyano en varios meses y tampoco me meto en paginas dudosas de ningun tipo.
      Ha saltado para instalar el flash, y no paraba a pesar de darle a cancelar de saltar la ventana de administrador continuamente.
      Pues el nod32 ahora me detecto que se me colaron estos tres troyanos a la vez!!!

      Una variante de win32/kryptik.AQED troyano
      Win64/Sirefef.AT Troyano
      Una variante de win32/Injector.ZYD troyano

      Las otras veces segui vuestros pasos y parecio que no hubiese mas problemas, pero es que esta es la tercera vez que el pc se me infecta de troyanos en varios meses y no se sabe de donde vienen.

      A ver si me comentan que pasos seguir esta vez para eliminar estos troyanos. La verdad que me tiene cansado el tema este.

    2. #2
      Ex-Colaborador Avatar de Superlucas
      Registrado
      sep 2011
      Ubicación
      Argentina
      Mensajes
      15.747

      Re: Infectado con 3 troyanos: Wigon.PB, Kryptik.AQED y Sirefef.AT

      Hola P.P.P:

      1. Descarga e instala Malwarebytes' Anti-Malware
      2. Abrí el programa Malwarebytes y anda a la pestaña actualizar y actualizas a la ultima versión y la ultima base de datos
      3. Anda a la pestaña Escáner y realizas un Análisis completo. seleccionando todos los discos conectados a tu pc
      4. Una vez finalizado, pulsa sobre "Mostrar los Resultados " y "Eliminar Seleccionadas" como se demuestra en esta imagen
      5. En el caso de que te pida reiniciar,reinicia.
      6. Peganos el reporte del escaneo del malwarebytes despues de reiniciar,esta en la pestaña Registros.

      Descarga Ccleaner:Manual de CCleaner

      Ejecutar CCleaner usando primero su opción de "Limpiador" para borrar cookies y temporales de Internet
      Usa su opción de "Registro" para limpiar todo el registro de Windows creando antes una copia de seguridad

      Descarga TDSSKiller.zip a tu escritorio.
      Desconecta tu ordenador de Internet (Desconecta el cable).
      • Descomprime el archivo tdsskiller.zip
      • Ejecuta el archivo TDSSKiller.exe Si usas Vista o 7 presiona clic derecho ejecutar como administrador.
      • Presiona clic sobre
      • Marca también las casillas:

      • Presiona clic sobre el botón

        .
      • TDSSKiller comenzara a analizar el equipo.
      • Si el equipo no está infectado:
      • Mostrara
      • No threats found.
      • Presiona clic sobre el botón "Close"
      • Si el equipo está infectado:
      • Mostrara:
      • Threats detected.
      • Select action for found objects:

      • Malware object, high risk. La acción predeterminada es "Cure" o "Delete".
      • Suspicious object, medium risk. Usa siempre la opción "Skip"
      • El programa selecciona de forma automática la acción a tomar.
      • Presiona clic sobre el botón "Continue"
      • Para desinfectar correctamente el Sistema, puede solicitarle reiniciar el equipo.
      • Presiona clic sobre el botón

      • Abre el reporte de TDSSKiller, ubicado en C:\TDSSKiller.x.xx.x_xx.xx.xxxx_xx.xx.xx_log.txt, donde "x.xx.x_xx.xx.xxxx_xx.xx.xx" son versión, fecha y hora.
      • Copia y pega su contenido en tu próxima respuesta.
      Vas a correr o vas a pelear?- Muahy Thai

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    3. #3
      Usuario Avatar de P.P.P
      Registrado
      ago 2008
      Ubicación
      spy
      Mensajes
      28

      Re: Infectado con 3 troyanos: Wigon.PB, Kryptik.AQED y Sirefef.AT

      Estos son los reportes;

      Malwarebytes Anti-Malware 1.65.1.1000
      Malwarebytes : Free anti-malware download

      Versión de la Base de Datos: v2012.12.08.02

      Windows Vista Service Pack 2 x64 NTFS
      Internet Explorer 9.0.8112.16421
      xxxx :: xxxx [administrador]

      08/12/2012 6:06:03
      mbam-log-2012-12-08 (06-06-03).txt

      Tipos de Análisis: Análisis Completo (C:\|D:\|)
      Opciones de análisis activado: Memoria | Inicio | Registro | Sistema de archivos | Heurística/Extra | Heurística/Shuriken | PUP | PUM
      Opciones de análisis desactivados: P2P
      Objetos examinados: 621465
      Tiempo transcurrido: 2 hora(s), 27 minuto(s), 32 segundo(s)

      Procesos en Memoria Detectados: 0
      (No se han detectado elementos maliciosos)

      Módulos de Memoria Detectados: 0
      (No se han detectado elementos maliciosos)

      Claves del Registro Detectados: 0
      (No se han detectado elementos maliciosos)

      Valores del Registro Detectados: 0
      (No se han detectado elementos maliciosos)

      Elementos de Datos del Registro Detectados: 0
      (No se han detectado elementos maliciosos)

      Carpetas Detectadas: 0
      (No se han detectado elementos maliciosos)

      Archivos Detectados: 3
      C:\Users\xxxx\AppData\Local\Temp\msimg32.dll (Rootkit.0Access) -> En cuarentena y eliminado con éxito.
      C:\Users\xxxx\AppData\Local\Temp\wpbt0.dll (Trojan.Agent) -> En cuarentena y eliminado con éxito.
      C:\Users\xxxx\AppData\Local\Temp\~!#4472.tmp (Rootkit.0Access) -> En cuarentena y eliminado con éxito.

      fin)

      Y el otro:

      8:51:55.0988 3268 TDSS rootkit removing tool 2.8.8.0 Aug 24 2012 13:27:48
      08:51:56.0027 3268 ============================================================
      08:51:56.0027 3268 Current date / time: 2012/12/08 08:51:56.0027
      08:51:56.0027 3268 SystemInfo:
      08:51:56.0027 3268
      08:51:56.0027 3268 OS Version: 6.0.6002 ServicePack: 2.0
      08:51:56.0027 3268 Product type: Workstation
      08:51:56.0027 3268 ComputerName: xxxx
      08:51:56.0027 3268 UserName: xxxx
      08:51:56.0027 3268 Windows directory: C:\Windows
      08:51:56.0027 3268 System windows directory: C:\Windows
      08:51:56.0027 3268 Running under WOW64
      08:51:56.0027 3268 Processor architecture: Intel x64
      08:51:56.0027 3268 Number of processors: 4
      08:51:56.0027 3268 Page size: 0x1000
      08:51:56.0027 3268 Boot type: Normal boot
      08:51:56.0027 3268 ============================================================
      08:51:56.0712 3268 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
      08:51:56.0728 3268 Drive \Device\Harddisk1\DR1 - Size: 0xF1A0000 (0.24 Gb), SectorSize: 0x200, Cylinders: 0x1E, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
      08:51:56.0743 3268 ============================================================
      08:51:56.0743 3268 \Device\Harddisk0\DR0:
      08:51:56.0743 3268 MBR partitions:
      08:51:56.0743 3268 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x72AEC6D8
      08:51:56.0743 3268 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x72AEC717, BlocksNum 0x1C192AA
      08:51:56.0743 3268 \Device\Harddisk1\DR1:
      08:51:56.0743 3268 MBR partitions:
      08:51:56.0743 3268 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x6, StartLBA 0x65, BlocksNum 0x78C9B
      08:51:56.0743 3268 ============================================================
      08:51:56.0759 3268 C: <-> \Device\Harddisk0\DR0\Partition1
      08:51:56.0837 3268 D: <-> \Device\Harddisk0\DR0\Partition2
      08:51:56.0837 3268 ============================================================
      08:51:56.0837 3268 Initialize success
      08:51:56.0837 3268 ============================================================
      08:52:19.0270 4772 ============================================================
      08:52:19.0270 4772 Scan started
      08:52:19.0270 4772 Mode: Manual; SigCheck; TDLFS;
      08:52:19.0270 4772 ============================================================
      08:52:20.0112 4772 ================ Scan system memory ========================
      08:52:20.0112 4772 System memory - ok
      08:52:20.0112 4772 ================ Scan services =============================
      08:52:20.0284 4772 [ ADC420616C501B45D26C0FD3EF1E54E4 ] ACDaemon C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
      08:52:20.0408 4772 ACDaemon - ok
      08:52:20.0611 4772 [ 1965AAFFAB07E3FB03C77F81BEBA3547 ] ACPI C:\Windows\system32\drivers\acpi.sys
      08:52:20.0642 4772 ACPI - ok
      08:52:20.0845 4772 [ 0CB0AA071C7B86A64F361DCFDF357329 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
      08:52:20.0861 4772 AdobeFlashPlayerUpdateSvc - ok
      08:52:20.0954 4772 [ F14215E37CF124104575073F782111D2 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
      08:52:21.0064 4772 adp94xx - ok
      08:52:21.0110 4772 [ 7D05A75E3066861A6610F7EE04FF085C ] adpahci C:\Windows\system32\drivers\adpahci.sys
      08:52:21.0220 4772 adpahci - ok
      08:52:21.0282 4772 [ 820A201FE08A0C345B3BEDBC30E1A77C ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
      08:52:21.0313 4772 adpu160m - ok
      08:52:21.0376 4772 [ 9B4AB6854559DC168FBB4C24FC52E794 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
      08:52:21.0391 4772 adpu320 - ok
      08:52:21.0454 4772 [ 0F421175574BFE0BF2F4D8E910A253BB ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
      08:52:21.0563 4772 AeLookupSvc - ok
      08:52:21.0672 4772 [ C4F6CE6087760AD70960C9EB130E7943 ] AFD C:\Windows\system32\drivers\afd.sys
      08:52:21.0828 4772 AFD - ok
      08:52:21.0875 4772 [ F6F6793B7F17B550ECFDBD3B229173F7 ] agp440 C:\Windows\system32\drivers\agp440.sys
      08:52:21.0906 4772 agp440 - ok
      08:52:22.0000 4772 [ 222CB641B4B8A1D1126F8033F9FD6A00 ] aic78xx C:\Windows\system32\drivers\djsvs.sys
      08:52:22.0015 4772 aic78xx - ok
      08:52:22.0062 4772 [ 5922F4F59B7868F3D74BBBBEB7B825A3 ] ALG C:\Windows\System32\alg.exe
      08:52:22.0187 4772 ALG - ok
      08:52:22.0218 4772 [ 157D0898D4B73F075CE9FA26B482DF98 ] aliide C:\Windows\system32\drivers\aliide.sys
      08:52:22.0249 4772 aliide - ok
      08:52:22.0265 4772 [ 970FA5059E61E30D25307B99903E991E ] amdide C:\Windows\system32\drivers\amdide.sys
      08:52:22.0296 4772 amdide - ok
      08:52:22.0327 4772 [ CDC3632A3A5EA4DBB83E46076A3165A1 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
      08:52:22.0374 4772 AmdK8 - ok
      08:52:22.0468 4772 [ 76A79621E1B0D9E6919B3C422101CBC9 ] AnyDVD C:\Windows\system32\Drivers\AnyDVD.sys
      08:52:22.0499 4772 AnyDVD - ok
      08:52:22.0530 4772 [ 9C37B3FD5615477CB9A0CD116CF43F5C ] Appinfo C:\Windows\System32\appinfo.dll
      08:52:22.0546 4772 Appinfo - ok
      08:52:22.0624 4772 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
      08:52:22.0624 4772 Apple Mobile Device - ok
      08:52:22.0702 4772 [ BA8417D4765F3988FF921F30F630E303 ] arc C:\Windows\system32\drivers\arc.sys
      08:52:22.0733 4772 arc - ok
      08:52:22.0780 4772 [ 9D41C435619733B34CC16A511E644B11 ] arcsas C:\Windows\system32\drivers\arcsas.sys
      08:52:22.0811 4772 arcsas - ok
      08:52:22.0873 4772 [ E82656EBABE84D08BE01A0016A43DCAF ] ASAPIW2K C:\Windows\syswow64\ASAPI64.sys
      08:52:22.0904 4772 ASAPIW2K ( UnsignedFile.Multi.Generic ) - warning
      08:52:22.0904 4772 ASAPIW2K - detected UnsignedFile.Multi.Generic (1)
      08:52:22.0982 4772 aspnet_state - ok
      08:52:23.0014 4772 [ 22D13FF3DAFEC2A80634752B1EAA2DE6 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
      08:52:23.0045 4772 AsyncMac - ok
      08:52:23.0060 4772 [ 1898FAE8E07D97F2F6C2D5326C633FAC ] atapi C:\Windows\system32\drivers\atapi.sys
      08:52:23.0092 4772 atapi - ok
      08:52:23.0170 4772 [ 79318C744693EC983D20E9337A2F8196 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
      08:52:23.0248 4772 AudioEndpointBuilder - ok
      08:52:23.0294 4772 [ 79318C744693EC983D20E9337A2F8196 ] AudioSrv C:\Windows\System32\Audiosrv.dll
      08:52:23.0326 4772 AudioSrv - ok
      08:52:23.0404 4772 [ 9F4320BA8E7CE2342517B182A2F2C0E6 ] azvusb C:\Windows\system32\DRIVERS\azvusb.sys
      08:52:23.0435 4772 azvusb - ok
      08:52:23.0482 4772 Beep - ok
      08:52:23.0653 4772 [ FFB96C2589FFA60473EAD78B39FBDE29 ] BFE C:\Windows\System32\bfe.dll
      08:52:23.0684 4772 BFE - ok
      08:52:23.0778 4772 [ 6D316F4859634071CC25C4FD4589AD2C ] BITS C:\Windows\system32\qmgr.dll
      08:52:23.0840 4772 BITS - ok
      08:52:23.0965 4772 [ 79FEEB40056683F8F61398D81DDA65D2 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
      08:52:24.0012 4772 blbdrive - ok
      08:52:24.0106 4772 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
      08:52:24.0121 4772 Bonjour Service - ok
      08:52:24.0199 4772 [ 2348447A80920B2493A9B582A23E81E1 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
      08:52:24.0262 4772 bowser - ok
      08:52:24.0324 4772 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
      08:52:24.0355 4772 BrFiltLo - ok
      08:52:24.0402 4772 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
      08:52:24.0433 4772 BrFiltUp - ok
      08:52:24.0542 4772 [ A1B39DE453433B115B4EA69EE0343816 ] Browser C:\Windows\System32\browser.dll
      08:52:24.0605 4772 Browser - ok
      08:52:24.0667 4772 [ F0F0BA4D815BE446AA6A4583CA3BCA9B ] Brserid C:\Windows\system32\drivers\brserid.sys
      08:52:24.0886 4772 Brserid - ok
      08:52:24.0917 4772 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
      08:52:24.0995 4772 BrSerWdm - ok
      08:52:25.0026 4772 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
      08:52:25.0104 4772 BrUsbMdm - ok
      08:52:25.0135 4772 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
      08:52:25.0182 4772 BrUsbSer - ok
      08:52:25.0213 4772 [ E0777B34E05F8A82A21856EFC900C29F ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
      08:52:25.0276 4772 BTHMODEM - ok
      08:52:25.0322 4772 catchme - ok
      08:52:25.0354 4772 [ B4D787DB8D30793A4D4DF9FEED18F136 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
      08:52:25.0385 4772 cdfs - ok
      08:52:25.0463 4772 [ C025AA69BE3D0D25C7A2E746EF6F94FC ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
      08:52:25.0510 4772 cdrom - ok
      08:52:25.0588 4772 [ 5A268127633C7EE2A7FB87F39D748D56 ] CertPropSvc C:\Windows\System32\certprop.dll
      08:52:25.0619 4772 CertPropSvc - ok
      08:52:25.0634 4772 [ 02EA568D498BBDD4BA55BF3FCE34D456 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
      08:52:25.0681 4772 circlass - ok
      08:52:25.0775 4772 [ 3DCA9A18B204939CFB24BEA53E31EB48 ] CLFS C:\Windows\system32\CLFS.sys
      08:52:25.0822 4772 CLFS - ok
      08:52:25.0946 4772 [ 8EE772032E2FE80A924F3B8DD5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
      08:52:25.0993 4772 clr_optimization_v2.0.50727_32 - ok
      08:52:26.0102 4772 [ CE07A466201096F021CD09D631B21540 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
      08:52:26.0165 4772 clr_optimization_v2.0.50727_64 - ok
      08:52:26.0258 4772 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
      08:52:26.0352 4772 clr_optimization_v4.0.30319_32 - ok
      08:52:26.0383 4772 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
      08:52:26.0477 4772 clr_optimization_v4.0.30319_64 - ok
      08:52:26.0524 4772 [ E5D5499A1C50A54B5161296B6AFE6192 ] cmdide C:\Windows\system32\drivers\cmdide.sys
      08:52:26.0555 4772 cmdide - ok
      08:52:26.0586 4772 [ 7FB8AD01DB0EABE60C8A861531A8F431 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
      08:52:26.0617 4772 Compbatt - ok
      08:52:26.0617 4772 COMSysApp - ok
      08:52:26.0648 4772 [ A8585B6412253803CE8EFCBD6D6DC15C ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
      08:52:26.0680 4772 crcdisk - ok
      08:52:26.0773 4772 [ CA78B312C44E4D52E842C2C8BD48E452 ] CryptSvc C:\Windows\system32\cryptsvc.dll
      08:52:26.0804 4772 CryptSvc - ok
      08:52:27.0038 4772 [ CF8B9A3A5E7DC57724A89D0C3E8CF9EF ] DcomLaunch C:\Windows\system32\rpcss.dll
      08:52:27.0101 4772 DcomLaunch - ok
      08:52:27.0272 4772 [ 8B722BA35205C71E7951CDC4CDBADE19 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
      08:52:27.0304 4772 DfsC - ok
      08:52:27.0475 4772 [ C647F468F7DE343DF8C143655C5557D4 ] DFSR C:\Windows\system32\DFSR.exe
      08:52:27.0865 4772 DFSR - ok
      08:52:28.0021 4772 [ 3ED0321127CE70ACDAABBF77E157C2A7 ] Dhcp C:\Windows\System32\dhcpcsvc.dll
      08:52:28.0052 4772 Dhcp - ok
      08:52:28.0162 4772 [ B0107E40ECDB5FA692EBF832F295D905 ] disk C:\Windows\system32\drivers\disk.sys
      08:52:28.0177 4772 disk - ok
      08:52:28.0271 4772 [ 06230F1B721494A6DF8D47FD395BB1B0 ] Dnscache C:\Windows\System32\dnsrslvr.dll
      08:52:28.0302 4772 Dnscache - ok
      08:52:28.0520 4772 [ 1A7156DD1E850E9914E5E991E3225B94 ] dot3svc C:\Windows\System32\dot3svc.dll
      08:52:28.0552 4772 dot3svc - ok
      08:52:28.0692 4772 [ 1583B39790DB3EAEC7EDB0CB0140C708 ] DPS C:\Windows\system32\dps.dll
      08:52:28.0739 4772 DPS - ok
      08:52:28.0770 4772 [ F1A78A98CFC2EE02144C6BEC945447E6 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
      08:52:28.0817 4772 drmkaud - ok
      08:52:28.0942 4772 [ B8E554E502D5123BC111F99D6A2181B4 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
      08:52:28.0973 4772 DXGKrnl - ok
      08:52:29.0035 4772 [ 264CEE7B031A9D6C827F3D0CB031F2FE ] E1G60 C:\Windows\system32\DRIVERS\E1G6032E.sys
      08:52:29.0129 4772 E1G60 - ok
      08:52:29.0238 4772 [ A2D551A61EC9E8A4BC5DF17BC1FEFEAD ] eamon C:\Windows\system32\DRIVERS\eamon.sys
      08:52:29.0269 4772 eamon - ok
      08:52:29.0363 4772 [ C2303883FD9BE49DC36A6400643002EA ] EapHost C:\Windows\System32\eapsvc.dll
      08:52:29.0378 4772 EapHost - ok
      08:52:29.0534 4772 [ 5F94962BE5A62DB6E447FF6470C4F48A ] Ecache C:\Windows\system32\drivers\ecache.sys
      08:52:29.0566 4772 Ecache - ok
      08:52:29.0612 4772 [ F3448EE861344636DA8ED1B3F5E8E1A8 ] ehdrv C:\Windows\system32\DRIVERS\ehdrv.sys
      08:52:29.0644 4772 ehdrv - ok
      08:52:29.0831 4772 [ 14CE384D2E27B64C256BDA4DC39C312D ] ehRecvr C:\Windows\ehome\ehRecvr.exe
      08:52:29.0909 4772 ehRecvr - ok
      08:52:29.0987 4772 [ B93159C1313D66FDFBBE876F5189CD52 ] ehSched C:\Windows\ehome\ehsched.exe
      08:52:30.0002 4772 ehSched - ok
      08:52:30.0034 4772 [ F5EE2527D74449868E3C3227A59BCD28 ] ehstart C:\Windows\ehome\ehstart.dll
      08:52:30.0065 4772 ehstart - ok
      08:52:30.0236 4772 [ D881E29C2973427406A1B506F636C971 ] EhttpSrv C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
      08:52:30.0252 4772 EhttpSrv - ok
      08:52:30.0392 4772 [ FDDAD27E9A20D0DAC04FACBF67AFBFC1 ] ekrn C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
      08:52:30.0424 4772 ekrn - ok
      08:52:30.0502 4772 [ A14D6E3EF78F6D6AC42F98D633F2400A ] ElbyCDIO C:\Windows\system32\Drivers\ElbyCDIO.sys
      08:52:30.0533 4772 ElbyCDIO - ok
      08:52:30.0595 4772 [ C4636D6E10469404AB5308D9FD45ED07 ] elxstor C:\Windows\system32\drivers\elxstor.sys
      08:52:30.0689 4772 elxstor - ok
      08:52:30.0814 4772 [ A9B18B63A4FD6BAAB83326706D857FAB ] EMDMgmt C:\Windows\system32\emdmgmt.dll
      08:52:30.0892 4772 EMDMgmt - ok
      08:52:31.0016 4772 [ 9B7E8CF67DE13F71AE8951D0874AF447 ] epfwwfpr C:\Windows\system32\DRIVERS\epfwwfpr.sys
      08:52:31.0048 4772 epfwwfpr - ok
      08:52:31.0110 4772 [ BC3A58E938BB277E46BF4B3003B01ABD ] ErrDev C:\Windows\system32\drivers\errdev.sys
      08:52:31.0157 4772 ErrDev - ok
      08:52:31.0250 4772 [ E12F22B73F153DECE721CD45EC05B4AF ] EventSystem C:\Windows\system32\es.dll
      08:52:31.0282 4772 EventSystem - ok
      08:52:31.0328 4772 [ 486844F47B6636044A42454614ED4523 ] exfat C:\Windows\system32\drivers\exfat.sys
      08:52:31.0453 4772 exfat - ok
      08:52:31.0453 4772 ezSharedSvc - ok
      08:52:31.0547 4772 [ 1A4BEE34277784619DDAF0422C0C6E23 ] fastfat C:\Windows\system32\drivers\fastfat.sys
      08:52:31.0640 4772 fastfat - ok
      08:52:31.0656 4772 [ 81B79B6DF71FA1D2C6D688D830616E39 ] fdc C:\Windows\system32\DRIVERS\fdc.sys
      08:52:31.0703 4772 fdc - ok
      08:52:31.0750 4772 [ BB9267ACACD8B7533DD936C34A0CBA5E ] fdPHost C:\Windows\system32\fdPHost.dll
      08:52:31.0781 4772 fdPHost - ok
      08:52:31.0812 4772 [ 300C80931EABBE1DB7591C516EFE8D0F ] FDResPub C:\Windows\system32\fdrespub.dll
      08:52:31.0859 4772 FDResPub - ok
      08:52:31.0968 4772 [ 457B7D1D533E4BD62A99AED9C7BB4C59 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
      08:52:31.0999 4772 FileInfo - ok
      08:52:32.0046 4772 [ D421327FD6EFCCAF884A54C58E1B0D7F ] Filetrace C:\Windows\system32\drivers\filetrace.sys
      08:52:32.0108 4772 Filetrace - ok
      08:52:32.0186 4772 [ 230923EA2B80F79B0F88D90F87B87EBD ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
      08:52:32.0233 4772 flpydisk - ok
      08:52:32.0280 4772 [ E3041BC26D6930D61F42AEDB79C91720 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
      08:52:32.0358 4772 FltMgr - ok
      08:52:32.0483 4772 [ BE1C5BD1CA7ED015BC6FA1AE67E592C8 ] FontCache C:\Windows\system32\FntCache.dll
      08:52:32.0592 4772 FontCache - ok
      08:52:32.0701 4772 [ BC5B0BE5AF3510B0FD8C140EE42C6D3E ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
      08:52:32.0717 4772 FontCache3.0.0.0 - ok
      08:52:32.0795 4772 [ 5779B86CD8B32519FBECB136394D946A ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
      08:52:32.0888 4772 Fs_Rec - ok
      08:52:32.0951 4772 [ C8E416668D3DC2BE3D4FE4C79224997F ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
      08:52:32.0998 4772 gagp30kx - ok
      08:52:33.0154 4772 [ CC1C8068B05283D63EC5FE782D2D3946 ] GameConsoleService C:\Program Files (x86)\HP Games\My HP Game Console\GameConsoleService.exe
      08:52:33.0169 4772 GameConsoleService - ok
      08:52:33.0200 4772 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
      08:52:33.0263 4772 GEARAspiWDM - ok
      08:52:33.0372 4772 [ 1DD4BB8F2110A8AEB1466A2805AE57BB ] getPlusHelper C:\Program Files (x86)\NOS\bin\getPlus_Helper.dll
      08:52:33.0388 4772 getPlusHelper - ok
      08:52:33.0544 4772 [ A0E1B575BA8F504968CD40C0FAEB2384 ] gpsvc C:\Windows\System32\gpsvc.dll
      08:52:33.0606 4772 gpsvc - ok
      08:52:33.0715 4772 gupdate1c9ec96699fa44c - ok
      08:52:33.0746 4772 gupdatem - ok
      08:52:33.0809 4772 [ 6D0F56D217545E2D0ADDBF301B35260F ] HCW85BDA C:\Windows\system32\drivers\HCW85BDA.sys
      08:52:33.0980 4772 HCW85BDA - ok
      08:52:34.0090 4772 [ 68E732382B32417FF61FD663259B4B09 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
      08:52:34.0136 4772 HdAudAddService - ok
      08:52:34.0230 4772 [ F942C5820205F2FB453243EDFEC82A3D ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
      08:52:34.0370 4772 HDAudBus - ok
      08:52:34.0448 4772 [ B4881C84A180E75B8C25DC1D726C375F ] HidBth C:\Windows\system32\drivers\hidbth.sys
      08:52:34.0526 4772 HidBth - ok
      08:52:34.0558 4772 [ 5F47839455D01FF6403B008D481A6F5B ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
      08:52:34.0589 4772 HidIr - ok
      08:52:34.0714 4772 [ 59361D38A297755D46A540E450202B2A ] hidserv C:\Windows\System32\hidserv.dll
      08:52:34.0729 4772 hidserv - ok
      08:52:34.0823 4772 [ 443BDD2D30BB4F00795C797E2CF99EDF ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
      08:52:34.0854 4772 HidUsb - ok
      08:52:34.0932 4772 [ B12F367EA39C0795FD57E31242CE1A5A ] hkmsvc C:\Windows\system32\kmsvc.dll
      08:52:34.0979 4772 hkmsvc - ok
      08:52:35.0072 4772 [ A3A30438C48D2D71556E120C9C7BA7A0 ] HP Health Check Service c:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
      08:52:35.0072 4772 HP Health Check Service ( UnsignedFile.Multi.Generic ) - warning
      08:52:35.0072 4772 HP Health Check Service - detected UnsignedFile.Multi.Generic (1)
      08:52:35.0135 4772 [ DEB82AF183F1CD06813D91ED104C645C ] HPBtnSrv c:\hp\HPEZBTN\HPBtnSrv.exe
      08:52:35.0150 4772 HPBtnSrv - ok
      08:52:35.0213 4772 [ D7109A1E6BD2DFDBCBA72A6BC626A13B ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
      08:52:35.0244 4772 HpCISSs - ok
      08:52:35.0306 4772 [ 098F1E4E5C9CB5B0063A959063631610 ] HTTP C:\Windows\system32\drivers\HTTP.sys
      08:52:35.0416 4772 HTTP - ok
      08:52:35.0478 4772 [ DA94C854CEA5FAC549D4E1F6E88349E8 ] i2omp C:\Windows\system32\drivers\i2omp.sys
      08:52:35.0494 4772 i2omp - ok
      08:52:35.0540 4772 [ CBB597659A2713CE0C9CC20C88C7591F ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
      08:52:35.0587 4772 i8042prt - ok
      08:52:35.0634 4772 [ 5B19DFC29A9563A5DA5CA559BED83AA8 ] IAANTMON C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
      08:52:35.0681 4772 IAANTMON - ok
      08:52:35.0743 4772 [ 8EACF469269FB1509561961A3188F670 ] iaStor C:\Windows\system32\drivers\iastor.sys
      08:52:35.0759 4772 iaStor - ok
      08:52:35.0806 4772 [ 3E3BF3627D886736D0B4E90054F929F6 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
      08:52:35.0977 4772 iaStorV - ok
      08:52:36.0086 4772 [ 749F5F8CEDCA70F2A512945325FC489D ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
      08:52:36.0211 4772 idsvc - ok
      08:52:36.0258 4772 [ 8C3951AD2FE886EF76C7B5027C3125D3 ] iirsp C:\Windows\system32\drivers\iirsp.sys
      08:52:36.0274 4772 iirsp - ok
      08:52:36.0445 4772 [ 0C9EA6E654E7B0471741E343A6C671AF ] IKEEXT C:\Windows\System32\ikeext.dll
      08:52:36.0476 4772 IKEEXT - ok
      08:52:36.0492 4772 IntcAzAudAddService - ok
      08:52:36.0508 4772 [ DF797A12176F11B2D301C5B234BB200E ] intelide C:\Windows\system32\drivers\intelide.sys
      08:52:36.0554 4772 intelide - ok
      08:52:36.0601 4772 [ BFD84AF32FA1BAD6231C4585CB469630 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
      08:52:36.0632 4772 intelppm - ok
      08:52:36.0726 4772 [ 5624BC1BC5EEB49C0AB76A8114F05EA3 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
      08:52:36.0773 4772 IPBusEnum - ok
      08:52:36.0804 4772 [ D8AABC341311E4780D6FCE8C73C0AD81 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
      08:52:36.0851 4772 IpFilterDriver - ok
      08:52:36.0898 4772 [ BF0DBFA9792C5C14FA00F61C75116C1B ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
      08:52:36.0929 4772 iphlpsvc - ok
      08:52:36.0929 4772 IpInIp - ok
      08:52:36.0991 4772 [ 9C2EE2E6E5A7203BFAE15C299475EC67 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
      08:52:37.0054 4772 IPMIDRV - ok
      08:52:37.0085 4772 [ B7E6212F581EA5F6AB0C3A6CEEEB89BE ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
      08:52:37.0163 4772 IPNAT - ok
      08:52:37.0256 4772 [ B474C756C13960793C7583B766F904C4 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
      08:52:37.0288 4772 iPod Service - ok
      08:52:37.0350 4772 [ 8C42CA155343A2F11D29FECA67FAA88D ] IRENUM C:\Windows\system32\drivers\irenum.sys
      08:52:37.0397 4772 IRENUM - ok
      08:52:37.0428 4772 [ 0672BFCEDC6FC468A2B0500D81437F4F ] isapnp C:\Windows\system32\drivers\isapnp.sys
      08:52:37.0459 4772 isapnp - ok
      08:52:37.0506 4772 [ E4FDF99599F27EC25D2CF6D754243520 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
      08:52:37.0522 4772 iScsiPrt - ok
      08:52:37.0600 4772 [ 63C766CDC609FF8206CB447A65ABBA4A ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
      08:52:37.0615 4772 iteatapi - ok
      08:52:37.0678 4772 [ 1281FE73B17664631D12F643CBEA3F59 ] iteraid C:\Windows\system32\drivers\iteraid.sys
      08:52:37.0693 4772 iteraid - ok
      08:52:37.0740 4772 [ 423696F3BA6472DD17699209B933BC26 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
      08:52:37.0771 4772 kbdclass - ok
      08:52:37.0880 4772 [ DBDF75D51464FBC47D0104EC3D572C05 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
      08:52:37.0912 4772 kbdhid - ok
      08:52:37.0974 4772 [ 260BF9C43EE12C6898A9F5AAB0FB0E5D ] KeyIso C:\Windows\system32\lsass.exe
      08:52:38.0005 4772 KeyIso - ok
      08:52:38.0068 4772 [ 88956AD9FA510848AD176777A6C6C1F5 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
      08:52:38.0146 4772 KSecDD - ok
      08:52:38.0192 4772 [ 1D419CF43DB29396ECD7113D129D94EB ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
      08:52:38.0224 4772 ksthunk - ok
      08:52:38.0302 4772 [ 1FAF6926F3416D3DA05C5B265491BDAE ] KtmRm C:\Windows\system32\msdtckrm.dll
      08:52:38.0348 4772 KtmRm - ok
      08:52:38.0426 4772 [ 50C7A3CB427E9BB5ED0708A669956AB5 ] LanmanServer C:\Windows\System32\srvsvc.dll
      08:52:38.0442 4772 LanmanServer - ok
      08:52:38.0660 4772 [ CAF86FC1388BE1E470F1A7B43E348ADB ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
      08:52:38.0692 4772 LanmanWorkstation - ok
      08:52:38.0801 4772 [ ABF90FC5A127F481219B873C1B8DFC1C ] LightScribeService c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
      08:52:38.0816 4772 LightScribeService ( UnsignedFile.Multi.Generic ) - warning
      08:52:38.0816 4772 LightScribeService - detected UnsignedFile.Multi.Generic (1)
      08:52:38.0894 4772 [ 96ECE2659B6654C10A0C310AE3A6D02C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
      08:52:38.0957 4772 lltdio - ok
      08:52:39.0050 4772 [ 961CCBD0B1CCB5675D64976FAE37D092 ] lltdsvc C:\Windows\System32\lltdsvc.dll
      08:52:39.0082 4772 lltdsvc - ok
      08:52:39.0128 4772 [ A47F8080CACC23C91FE823AD19AA5612 ] lmhosts C:\Windows\System32\lmhsvc.dll
      08:52:39.0160 4772 lmhosts - ok
      08:52:39.0284 4772 [ ACBE1AF32D3123E330A07BFBC5EC4A9B ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
      08:52:39.0316 4772 LSI_FC - ok
      08:52:39.0347 4772 [ 799FFB2FC4729FA46D2157C0065B3525 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
      08:52:39.0394 4772 LSI_SAS - ok
      08:52:39.0425 4772 [ F445FF1DAAD8A226366BFAF42551226B ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
      08:52:39.0456 4772 LSI_SCSI - ok
      08:52:39.0565 4772 [ 639D24E769BDBEC6145E4C1921669B73 ] Ltn_stk7070P_64 C:\Windows\system32\DRIVERS\Ltn_stk7070P_64.sys
      08:52:39.0628 4772 Ltn_stk7070P_64 - ok
      08:52:39.0721 4772 [ E028DF5A96827A87898D4D7EB768E3AB ] Ltn_stkrc_64 C:\Windows\system32\DRIVERS\Ltn_stkrc_64.sys
      08:52:39.0752 4772 Ltn_stkrc_64 - ok
      08:52:39.0815 4772 [ 52F87B9CC8932C2A7375C3B2A9BE5E3E ] luafv C:\Windows\system32\drivers\luafv.sys
      08:52:39.0846 4772 luafv - ok
      08:52:39.0924 4772 [ 3D44DFF5E7857E0B85A4C54188BA4BB8 ] lxdnCATSCustConnectService C:\Windows\system32\spool\DRIVERS\x64\3\\lxdnserv.exe
      08:52:39.0940 4772 lxdnCATSCustConnectService - ok
      08:52:39.0940 4772 lxdn_device - ok
      08:52:40.0033 4772 [ A8FE8F2783B2929B56F5370A89356CE9 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
      08:52:40.0049 4772 MBAMProtector - ok
      08:52:40.0158 4772 [ 85B16A92B117A5A800032ECD904B86DB ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
      08:52:40.0174 4772 MBAMScheduler - ok
      08:52:40.0220 4772 [ 20E2469DB709FC675E655CEAA11BE312 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
      08:52:40.0314 4772 MBAMService - ok
      08:52:40.0376 4772 [ 76A58DF02BD4EA29F189B82D0BEF17F8 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
      08:52:40.0392 4772 Mcx2Svc - ok
      08:52:40.0439 4772 [ 5C5CD6AACED32FB26C3FB34B3DCF972F ] megasas C:\Windows\system32\drivers\megasas.sys
      08:52:40.0486 4772 megasas - ok
      08:52:40.0532 4772 [ 859BC2436B076C77C159ED694ACFE8F8 ] MegaSR C:\Windows\system32\drivers\megasr.sys
      08:52:40.0610 4772 MegaSR - ok
      08:52:40.0657 4772 [ 3CBE4995E80E13CCFBC42E5DCF3AC81A ] MMCSS C:\Windows\system32\mmcss.dll
      08:52:40.0688 4772 MMCSS - ok
      08:52:40.0735 4772 [ 59848D5CC74606F0EE7557983BB73C2E ] Modem C:\Windows\system32\drivers\modem.sys
      08:52:40.0798 4772 Modem - ok
      08:52:40.0891 4772 [ C247CC2A57E0A0C8C6DCCF7807B3E9E5 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
      08:52:40.0922 4772 monitor - ok
      08:52:40.0985 4772 [ 9367304E5E412B120CF5F4EA14E4E4F1 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
      08:52:41.0032 4772 mouclass - ok
      08:52:41.0078 4772 [ C2C2BD5C5CE5AAF786DDD74B75D2AC69 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
      08:52:41.0141 4772 mouhid - ok
      08:52:41.0188 4772 [ 11BC9B1E8801B01F7F6ADB9EAD30019B ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
      08:52:41.0266 4772 MountMgr - ok
      08:52:41.0375 4772 [ 8C7336950F1E69CDFD811CBBD9CF00A2 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
      08:52:41.0390 4772 MozillaMaintenance - ok
      08:52:41.0422 4772 [ F8276EB8698142884498A528DFEA8478 ] mpio C:\Windows\system32\drivers\mpio.sys
      08:52:41.0453 4772 mpio - ok
      08:52:41.0531 4772 [ C92B9ABDB65A5991E00C28F13491DBA2 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
      08:52:41.0593 4772 mpsdrv - ok
      08:52:41.0843 4772 [ 897E3BAF68BA406A61682AE39C83900C ] MpsSvc C:\Windows\system32\mpssvc.dll
      08:52:41.0905 4772 MpsSvc - ok
      08:52:41.0936 4772 [ 3C200630A89EF2C0864D515B7A75802E ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
      08:52:41.0952 4772 Mraid35x - ok
      08:52:42.0014 4772 [ 7C1DE4AA96DC0C071611F9E7DE02A68D ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
      08:52:42.0061 4772 MRxDAV - ok
      08:52:42.0092 4772 [ 1485811B320FF8C7EDAD1CAEBB1C6C2B ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
      08:52:42.0124 4772 mrxsmb - ok
      08:52:42.0186 4772 [ 3B929A60C833FC615FD97FBA82BC7632 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
      08:52:42.0248 4772 mrxsmb10 - ok
      08:52:42.0295 4772 [ C64AB3E1F53B4F5B5BB6D796B2D7BEC3 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
      08:52:42.0311 4772 mrxsmb20 - ok
      08:52:42.0342 4772 [ 1AC860612B85D8E85EE257D372E39F4D ] msahci C:\Windows\system32\drivers\msahci.sys
      08:52:42.0373 4772 msahci - ok
      08:52:42.0404 4772 [ 264BBB4AAF312A485F0E44B65A6B7202 ] msdsm C:\Windows\system32\drivers\msdsm.sys
      08:52:42.0467 4772 msdsm - ok
      08:52:42.0545 4772 [ 7EC02CE772F068ED0BEAFA3DA341A9BC ] MSDTC C:\Windows\System32\msdtc.exe
      08:52:42.0592 4772 MSDTC - ok
      08:52:42.0638 4772 [ 704F59BFC4512D2BB0146AEC31B10A7C ] Msfs C:\Windows\system32\drivers\Msfs.sys
      08:52:42.0716 4772 Msfs - ok
      08:52:42.0716 4772 [ 00EBC952961664780D43DCA157E79B27 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
      08:52:42.0732 4772 msisadrv - ok
      08:52:42.0810 4772 [ 366B0C1F4478B519C181E37D43DCDA32 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
      08:52:42.0841 4772 MSiSCSI - ok
      08:52:42.0841 4772 msiserver - ok
      08:52:42.0904 4772 [ 0EA73E498F53B96D83DBFCA074AD4CF8 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
      08:52:42.0966 4772 MSKSSRV - ok
      08:52:43.0044 4772 [ 52E59B7E992A58E740AA63F57EDBAE8B ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
      08:52:43.0091 4772 MSPCLOCK - ok
      08:52:43.0138 4772 [ 49084A75BAE043AE02D5B44D02991BB2 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
      08:52:43.0184 4772 MSPQM - ok
      08:52:43.0278 4772 [ DC6CCF440CDEDE4293DB41C37A5060A5 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
      08:52:43.0294 4772 MsRPC - ok
      08:52:43.0340 4772 [ 855796E59DF77EA93AF46F20155BF55B ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
      08:52:43.0372 4772 mssmbios - ok
      08:52:43.0403 4772 [ 86D632D75D05D5B7C7C043FA3564AE86 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
      08:52:43.0450 4772 MSTEE - ok
      08:52:43.0481 4772 [ 0CC49F78D8ACA0877D885F149084E543 ] Mup C:\Windows\system32\Drivers\mup.sys
      08:52:43.0512 4772 Mup - ok
      08:52:43.0590 4772 [ A5B10C845E7538C60C0F5D87A57CB3F5 ] napagent C:\Windows\system32\qagentRT.dll
      08:52:43.0621 4772 napagent - ok
      08:52:43.0715 4772 [ 2007B826C4ACD94AE32232B41F0842B9 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
      08:52:43.0793 4772 NativeWifiP - ok
      08:52:43.0886 4772 NAVENG - ok
      08:52:43.0902 4772 NAVEX15 - ok
      08:52:44.0011 4772 [ 65950E07329FCEE8E6516B17C8D0ABB6 ] NDIS C:\Windows\system32\drivers\ndis.sys
      08:52:44.0105 4772 NDIS - ok
      08:52:44.0152 4772 [ 64DF698A425478E321981431AC171334 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
      08:52:44.0183 4772 NdisTapi - ok
      08:52:44.0245 4772 [ 8BAA43196D7B5BB972C9A6B2BBF61A19 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
      08:52:44.0292 4772 Ndisuio - ok
      08:52:44.0354 4772 [ F8158771905260982CE724076419EF19 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
      08:52:44.0401 4772 NdisWan - ok
      08:52:44.0432 4772 [ 9CB77ED7CB72850253E973A2D6AFDF49 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
      08:52:44.0479 4772 NDProxy - ok
      08:52:44.0682 4772 [ C7F5C284B6F46FCAF6910EA4E644700B ] Nero BackItUp Scheduler 4.0 C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
      08:52:44.0744 4772 Nero BackItUp Scheduler 4.0 - ok
      08:52:44.0791 4772 NeroMediaHomeService.4 - ok
      08:52:44.0822 4772 [ A499294F5029A7862ADC115BDA7371CE ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
      08:52:44.0869 4772 NetBIOS - ok
      08:52:44.0916 4772 [ FC2C792EBDDC8E28DF939D6A92C83D61 ] netbt C:\Windows\system32\DRIVERS\netbt.sys
      08:52:44.0947 4772 netbt - ok
      08:52:45.0010 4772 [ 260BF9C43EE12C6898A9F5AAB0FB0E5D ] Netlogon C:\Windows\system32\lsass.exe
      08:52:45.0025 4772 Netlogon - ok
      08:52:45.0103 4772 [ 9B63B29DEFC0F3115A559D2597BF5D75 ] Netman C:\Windows\System32\netman.dll
      08:52:45.0150 4772 Netman - ok
      08:52:45.0306 4772 [ 7846D0136CC2B264926A73047BA7688A ] netprofm C:\Windows\System32\netprofm.dll
      08:52:45.0337 4772 netprofm - ok
      08:52:45.0400 4772 [ 8E6AF418ED39B976B172F1CEA9E6F538 ] netr28x C:\Windows\system32\DRIVERS\netr28x.sys
      08:52:45.0509 4772 netr28x - ok
      08:52:45.0618 4772 [ 74751DDA198165947FD7454D83F49825 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
      08:52:45.0634 4772 NetTcpPortSharing - ok
      08:52:45.0727 4772 [ 4AC08BD6AF2DF42E0C3196D826C8AEA7 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
      08:52:45.0774 4772 nfrd960 - ok
      08:52:45.0836 4772 [ F145BF4C4668E7E312069F81EF847CFC ] NlaSvc C:\Windows\System32\nlasvc.dll
      08:52:45.0868 4772 NlaSvc - ok
      08:52:45.0977 4772 [ B298874F8E0EA93F06EC40AA8D146478 ] Npfs C:\Windows\system32\drivers\Npfs.sys
      08:52:46.0008 4772 Npfs - ok
      08:52:46.0102 4772 [ ACB62BAA1C319B17752553DF3026EEEB ] nsi C:\Windows\system32\nsisvc.dll
      08:52:46.0133 4772 nsi - ok
      08:52:46.0133 4772 [ 1523AF19EE8B030BA682F7A53537EAEB ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
      08:52:46.0180 4772 nsiproxy - ok
      08:52:46.0273 4772 [ BAC869DFB98E499BA4D9BB1FB43270E1 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
      08:52:46.0429 4772 Ntfs - ok
      08:52:46.0476 4772 [ DD5D684975352B85B52E3FD5347C20CB ] Null C:\Windows\system32\drivers\Null.sys
      08:52:46.0538 4772 Null - ok
      08:52:46.0866 4772 [ 828E3D31D9E5B81A4927885D3752C996 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
      08:52:48.0098 4772 nvlddmkm - ok
      08:52:48.0161 4772 [ 2C040B7ADA5B06F6FACADAC8514AA034 ] nvraid C:\Windows\system32\drivers\nvraid.sys
      08:52:48.0176 4772 nvraid - ok
      08:52:48.0223 4772 [ F7EA0FE82842D05EDA3EFDD376DBFDBA ] nvstor C:\Windows\system32\drivers\nvstor.sys
      08:52:48.0254 4772 nvstor - ok
      08:52:48.0301 4772 [ 1C63E34632CEBD6A37B82DC77C4F7575 ] nvsvc C:\Windows\system32\nvvsvc.exe
      08:52:48.0348 4772 nvsvc - ok
      08:52:48.0473 4772 [ 4A5A9DDEF3C7E4E37EB22DE00AE8B9F1 ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
      08:52:48.0551 4772 nvUpdatusService - ok
      08:52:48.0598 4772 [ 19067CA93075EF4823E3938A686F532F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
      08:52:48.0613 4772 nv_agp - ok
      08:52:48.0613 4772 NwlnkFlt - ok
      08:52:48.0613 4772 NwlnkFwd - ok
      08:52:48.0754 4772 [ B5B1CE65AC15BBD11C0619E3EF7CFC28 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
      08:52:48.0769 4772 ohci1394 - ok
      08:52:48.0910 4772 [ FC6039FC5E0A204A70390DD146F75D03 ] P2PFire C:\Program Files (x86)\P2PHazard2\P2PFire.sys
      08:52:48.0925 4772 P2PFire ( UnsignedFile.Multi.Generic ) - warning
      08:52:48.0925 4772 P2PFire - detected UnsignedFile.Multi.Generic (1)
      08:52:49.0050 4772 [ 9AE31D2E1D15C10D91318E0EC149CEAC ] p2pimsvc C:\Windows\system32\p2psvc.dll
      08:52:49.0206 4772 p2pimsvc - ok
      08:52:49.0268 4772 [ 9AE31D2E1D15C10D91318E0EC149CEAC ] p2psvc C:\Windows\system32\p2psvc.dll
      08:52:49.0300 4772 p2psvc - ok
      08:52:49.0674 4772 [ AECD57F94C887F58919F307C35498EA0 ] Parport C:\Windows\system32\drivers\parport.sys
      08:52:49.0752 4772 Parport - ok
      08:52:49.0799 4772 [ B43751085E2ABE389DA466BC62A4B987 ] partmgr C:\Windows\system32\drivers\partmgr.sys
      08:52:49.0830 4772 partmgr - ok
      08:52:49.0908 4772 [ 8A0F8A9580D9F2FC512A35D5709088A9 ] pavboot C:\Windows\system32\drivers\pavboot64.sys
      08:52:49.0924 4772 pavboot - ok
      08:52:50.0064 4772 [ 55223EEFABFDB84A926515FEBAB50D9A ] pbfilter C:\Program Files\PeerBlock\pbfilter.sys
      08:52:50.0095 4772 pbfilter - ok
      08:52:50.0142 4772 [ 9AB157B374192FF276C1628FBDBA2B0E ] PcaSvc C:\Windows\System32\pcasvc.dll
      08:52:50.0189 4772 PcaSvc - ok
      08:52:50.0282 4772 [ BC0018C2D29F655188A0ED3FA94FDB24 ] pccsmcfd C:\Windows\system32\DRIVERS\pccsmcfdx64.sys
      08:52:50.0360 4772 pccsmcfd - ok
      08:52:50.0438 4772 PcdrNdisuio - ok
      08:52:50.0516 4772 [ 47AB1E0FC9D0E12BB53BA246E3A0906D ] pci C:\Windows\system32\drivers\pci.sys
      08:52:50.0594 4772 pci - ok
      08:52:50.0688 4772 [ 8D618C829034479985A9ED56106CC732 ] pciide C:\Windows\system32\drivers\pciide.sys
      08:52:50.0719 4772 pciide - ok
      08:52:50.0719 4772 PCLEPCI - ok
      08:52:50.0782 4772 [ 037661F3D7C507C9993B7010CEEE6288 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
      08:52:50.0891 4772 pcmcia - ok
      08:52:50.0922 4772 [ 58865916F53592A61549B04941BFD80D ] PEAUTH C:\Windows\system32\drivers\peauth.sys
      08:52:51.0000 4772 PEAUTH - ok
      08:52:51.0078 4772 [ 0ED8727EA0172860F47258456C06CAEA ] PerfHost C:\Windows\SysWow64\perfhost.exe
      08:52:51.0125 4772 PerfHost - ok
      08:52:51.0234 4772 [ E9E68C1A0F25CF4A7AC966EEA74EE89E ] pla C:\Windows\system32\pla.dll
      08:52:51.0406 4772 pla - ok
      08:52:51.0484 4772 [ FE6B0F59215C9FD9F9D26539C58C8B82 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
      08:52:51.0515 4772 PlugPlay - ok
      08:52:51.0577 4772 [ 9AE31D2E1D15C10D91318E0EC149CEAC ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
      08:52:51.0671 4772 PNRPAutoReg - ok
      08:52:51.0733 4772 [ 9AE31D2E1D15C10D91318E0EC149CEAC ] PNRPsvc C:\Windows\system32\p2psvc.dll
      08:52:51.0796 4772 PNRPsvc - ok
      08:52:51.0905 4772 [ 89A5560671C2D8B4A4B51F3E1AA069D8 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
      08:52:51.0952 4772 PolicyAgent - ok
      08:52:52.0030 4772 [ 23386E9952025F5F21C368971E2E7301 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
      08:52:52.0076 4772 PptpMiniport - ok
      08:52:52.0170 4772 [ 5080E59ECEE0BC923F14018803AA7A01 ] Processor C:\Windows\system32\drivers\processr.sys
      08:52:52.0217 4772 Processor - ok
      08:52:52.0373 4772 [ E058CE4FC2449D8BFA14739C83B7FF2A ] ProfSvc C:\Windows\system32\profsvc.dll
      08:52:52.0404 4772 ProfSvc - ok
      08:52:52.0466 4772 [ 260BF9C43EE12C6898A9F5AAB0FB0E5D ] ProtectedStorage C:\Windows\system32\lsass.exe
      08:52:52.0482 4772 ProtectedStorage - ok
      08:52:52.0576 4772 [ C5AB7F0809392D0DA027F4A2A81BFA31 ] PSched C:\Windows\system32\DRIVERS\pacer.sys
      08:52:52.0622 4772 PSched - ok
      08:52:52.0669 4772 [ 0B83F4E681062F3839BE2EC1D98FD94A ] ql2300 C:\Windows\system32\drivers\ql2300.sys
      08:52:52.0778 4772 ql2300 - ok
      08:52:52.0841 4772 [ E1C80F8D4D1E39EF9595809C1369BF2A ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
      08:52:52.0872 4772 ql40xx - ok
      08:52:52.0919 4772 [ 90574842C3DA781E279061A3EFF91F07 ] QWAVE C:\Windows\system32\qwave.dll
      08:52:52.0934 4772 QWAVE - ok
      08:52:52.0997 4772 [ E8D76EDAB77EC9C634C27B8EAC33ADC5 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
      08:52:53.0028 4772 QWAVEdrv - ok
      08:52:53.0075 4772 [ 1013B3B663A56D3DDD784F581C1BD005 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
      08:52:53.0137 4772 RasAcd - ok
      08:52:53.0184 4772 [ B2AE18F847D07F0044404DDF7CB04497 ] RasAuto C:\Windows\System32\rasauto.dll
      08:52:53.0231 4772 RasAuto - ok
      08:52:53.0356 4772 [ AC7BC4D42A7E558718DFDEC599BBFC2C ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
      08:52:53.0387 4772 Rasl2tp - ok
      08:52:53.0465 4772 [ 3AD83E4046C43BE510DE681588ACB8AF ] RasMan C:\Windows\System32\rasmans.dll
      08:52:53.0496 4772 RasMan - ok
      08:52:53.0590 4772 [ 4517FBF8B42524AFE4EDE1DE102AAE3E ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
      08:52:53.0636 4772 RasPppoe - ok
      08:52:53.0714 4772 [ C6A593B51F34C33E5474539544072527 ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
      08:52:53.0777 4772 RasSstp - ok
      08:52:53.0902 4772 [ 322DB5C6B55E8D8EE8D6F358B2AAABB1 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
      08:52:53.0995 4772 rdbss - ok
      08:52:54.0073 4772 [ 603900CC05F6BE65CCBF373800AF3716 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
      08:52:54.0120 4772 RDPCDD - ok
      08:52:54.0151 4772 [ C045D1FB111C28DF0D1BE8D4BDA22C06 ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
      08:52:54.0260 4772 rdpdr - ok
      08:52:54.0260 4772 [ CAB9421DAF3D97B33D0D055858E2C3AB ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
      08:52:54.0323 4772 RDPENCDD - ok
      08:52:54.0401 4772 [ AE4BD9E1C33D351D8E607FC81F15160C ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
      08:52:54.0557 4772 RDPWD - ok
      08:52:54.0588 4772 [ C612B9557DA73F70D41F8A6FBC8E5344 ] RemoteAccess C:\Windows\System32\mprdim.dll
      08:52:54.0619 4772 RemoteAccess - ok
      08:52:54.0697 4772 [ 44B9D8EC2F3EF3A0EFB00857AF70D861 ] RemoteRegistry C:\Windows\system32\regsvc.dll
      08:52:54.0728 4772 RemoteRegistry - ok
      08:52:54.0822 4772 RkPavproc1 - ok
      08:52:54.0822 4772 RkPavproc2 - ok
      08:52:54.0822 4772 RkPavproc3 - ok
      08:52:54.0884 4772 RkPavproc4 - ok
      08:52:54.0884 4772 RkPavproc5 - ok
      08:52:54.0916 4772 [ F46C457840D4B7A4DAAFEE739CE04102 ] RpcLocator C:\Windows\system32\locator.exe
      08:52:54.0947 4772 RpcLocator - ok
      08:52:55.0087 4772 [ CF8B9A3A5E7DC57724A89D0C3E8CF9EF ] RpcSs C:\Windows\system32\rpcss.dll
      08:52:55.0134 4772 RpcSs - ok
      08:52:55.0196 4772 [ 22A9CB08B1A6707C1550C6BF099AAE73 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
      08:52:55.0259 4772 rspndr - ok
      08:52:55.0352 4772 [ 82B66ABF055611024E5DBB9FA556C11D ] RTL8169 C:\Windows\system32\DRIVERS\Rtlh64.sys
      08:52:55.0477 4772 RTL8169 - ok
      08:52:55.0602 4772 [ 260BF9C43EE12C6898A9F5AAB0FB0E5D ] SamSs C:\Windows\system32\lsass.exe
      08:52:55.0618 4772 SamSs - ok
      08:52:55.0680 4772 [ CD9C693589C60AD59BBBCFB0E524E01B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
      08:52:55.0727 4772 sbp2port - ok
      08:52:55.0805 4772 [ FD1CDCF108D5EF3366F00D18B70FB89B ] SCardSvr C:\Windows\System32\SCardSvr.dll
      08:52:55.0836 4772 SCardSvr - ok
      08:52:55.0898 4772 [ 0F838C811AD295D2A4489B9993096C63 ] Schedule C:\Windows\system32\schedsvc.dll
      08:52:56.0039 4772 Schedule - ok
      08:52:56.0117 4772 [ 5A268127633C7EE2A7FB87F39D748D56 ] SCPolicySvc C:\Windows\System32\certprop.dll
      08:52:56.0148 4772 SCPolicySvc - ok
      08:52:56.0242 4772 [ 4FF71B076A7760FE75EA5AE2D0EE0018 ] SDRSVC C:\Windows\System32\SDRSVC.dll
      08:52:56.0273 4772 SDRSVC - ok
      08:52:56.0335 4772 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
      08:52:56.0413 4772 secdrv - ok
      08:52:56.0444 4772 [ 5ACDCBC67FCF894A1815B9F96D704490 ] seclogon C:\Windows\system32\seclogon.dll
      08:52:56.0476 4772 seclogon - ok
      08:52:56.0522 4772 [ 90973A64B96CD647FF81C79443618EED ] SENS C:\Windows\system32\sens.dll
      08:52:56.0569 4772 SENS - ok
      08:52:56.0585 4772 [ F71BFE7AC6C52273B7C82CBF1BB2A222 ] Serenum C:\Windows\system32\drivers\serenum.sys
      08:52:56.0647 4772 Serenum - ok
      08:52:56.0741 4772 [ E62FAC91EE288DB29A9696A9D279929C ] Serial C:\Windows\system32\drivers\serial.sys
      08:52:56.0803 4772 Serial - ok
      08:52:56.0819 4772 [ A842F04833684BCEEA7336211BE478DF ] sermouse C:\Windows\system32\drivers\sermouse.sys
      08:52:56.0881 4772 sermouse - ok
      08:52:57.0100 4772 [ 12B41D84A4D058ADC60853C365DBFCCA ] ServiceLayer C:\Program Files (x86)\Nokia\PC Connectivity Solution\ServiceLayer.exe
      08:52:57.0115 4772 ServiceLayer ( UnsignedFile.Multi.Generic ) - warning
      08:52:57.0115 4772 ServiceLayer - detected UnsignedFile.Multi.Generic (1)
      08:52:57.0209 4772 [ A8E4A4407A09F35DCCC3771AF590B0C4 ] SessionEnv C:\Windows\system32\sessenv.dll
      08:52:57.0240 4772 SessionEnv - ok
      08:52:57.0318 4772 [ 14D4B4465193A87C127933978E8C4106 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
      08:52:57.0365 4772 sffdisk - ok
      08:52:57.0396 4772 [ 7073AEE3F82F3D598E3825962AA98AB2 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
      08:52:57.0427 4772 sffp_mmc - ok
      08:52:57.0458 4772 [ 35E59EBE4A01A0532ED67975161C7B82 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
      08:52:57.0505 4772 sffp_sd - ok
      08:52:57.0552 4772 [ 6B7838C94135768BD455CBDC23E39E5F ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
      08:52:57.0614 4772 sfloppy - ok
      08:52:57.0708 4772 [ 4C5AEE179DA7E1EE9A9CCB9DA289AF34 ] SharedAccess C:\Windows\System32\ipnathlp.dll
      08:52:57.0755 4772 SharedAccess - ok
      08:52:57.0817 4772 [ 56793271ECDEDD350C5ADD305603E963 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
      08:52:57.0848 4772 ShellHWDetection - ok
      08:52:57.0911 4772 [ 7A5DE502AEB719D4594C6471060A78B3 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
      08:52:57.0942 4772 SiSRaid2 - ok
      08:52:57.0989 4772 [ 3A2F769FAB9582BC720E11EA1DFB184D ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
      08:52:58.0036 4772 SiSRaid4 - ok
      08:52:58.0238 4772 [ A9A27A8E257B45A604FDAD4F26FE7241 ] slsvc C:\Windows\system32\SLsvc.exe
      08:52:58.0426 4772 slsvc - ok
      08:52:58.0550 4772 [ FD74B4B7C2088E390A30C85A896FC3AF ] SLUINotify C:\Windows\system32\SLUINotify.dll
      08:52:58.0582 4772 SLUINotify - ok
      08:52:58.0675 4772 [ 290B6F6A0EC4FCDFC90F5CB6D7020473 ] Smb C:\Windows\system32\DRIVERS\smb.sys
      08:52:58.0738 4772 Smb - ok
      08:52:58.0847 4772 [ F8F47F38909823B1AF28D60B96340CFF ] SNMPTRAP C:\Windows\System32\snmptrap.exe
      08:52:58.0862 4772 SNMPTRAP - ok
      08:52:58.0956 4772 [ 5F9785E7535F8F602CB294A54962C9E7 ] speedfan C:\Windows\syswow64\speedfan.sys
      08:52:58.0987 4772 speedfan - ok
      08:52:59.0050 4772 [ 386C3C63F00A7040C7EC5E384217E89D ] spldr C:\Windows\system32\drivers\spldr.sys
      08:52:59.0081 4772 spldr - ok
      08:52:59.0128 4772 [ F66FF751E7EFC816D266977939EF5DC3 ] Spooler C:\Windows\System32\spoolsv.exe
      08:52:59.0159 4772 Spooler - ok
      08:52:59.0252 4772 [ AA90A319BB067E0D149B4C95608C4B05 ] sptd C:\Windows\system32\Drivers\sptd.sys
      08:52:59.0252 4772 Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: AA90A319BB067E0D149B4C95608C4B05
      08:52:59.0299 4772 sptd ( LockedFile.Multi.Generic ) - warning
      08:52:59.0299 4772 sptd - detected LockedFile.Multi.Generic (1)
      08:52:59.0346 4772 [ 880A57FCCB571EBD063D4DD50E93E46D ] srv C:\Windows\system32\DRIVERS\srv.sys
      08:52:59.0486 4772 srv - ok
      08:52:59.0549 4772 [ A1AD14A6D7A37891FFFECA35EBBB0730 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
      08:52:59.0674 4772 srv2 - ok
      08:52:59.0736 4772 [ 4BED62F4FA4D8300973F1151F4C4D8A7 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
      08:52:59.0814 4772 srvnet - ok
      08:52:59.0845 4772 [ 192C74646EC5725AEF3F80D19FF75F6A ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
      08:52:59.0876 4772 SSDPSRV - ok
      08:52:59.0923 4772 [ 2EE3FA0308E6185BA64A9A7F2E74332B ] SstpSvc C:\Windows\system32\sstpsvc.dll
      08:52:59.0939 4772 SstpSvc - ok
      08:53:00.0032 4772 [ 15825C1FBFB8779992CB65087F316AF5 ] stisvc C:\Windows\System32\wiaservc.dll
      08:53:00.0064 4772 stisvc - ok
      08:53:00.0142 4772 [ 8A851CA908B8B974F89C50D2E18D4F0C ] swenum C:\Windows\system32\DRIVERS\swenum.sys
      08:53:00.0157 4772 swenum - ok
      08:53:00.0220 4772 [ 6DE37F4DE19D4EFD9C48C43ADDBC949A ] swprv C:\Windows\System32\swprv.dll
      08:53:00.0313 4772 swprv - ok
      08:53:00.0360 4772 [ 2F26A2C6FC96B29BEFF5D8ED74E6625B ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
      08:53:00.0391 4772 Symc8xx - ok
      08:53:00.0454 4772 [ A909667976D3BCCD1DF813FED517D837 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
      08:53:00.0485 4772 Sym_hi - ok
      08:53:00.0532 4772 [ 36887B56EC2D98B9C362F6AE4DE5B7B0 ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
      08:53:00.0578 4772 Sym_u3 - ok
      08:53:00.0688 4772 [ 92D7A8B0F87B036F17D25885937897A6 ] SysMain C:\Windows\system32\sysmain.dll
      08:53:00.0750 4772 SysMain - ok
      08:53:00.0828 4772 [ 005CE42567F9113A3BCCB3B20073B029 ] TabletInputService C:\Windows\System32\TabSvc.dll
      08:53:00.0844 4772 TabletInputService - ok
      08:53:00.0922 4772 [ CC2562B4D55E0B6A4758C65407F63B79 ] TapiSrv C:\Windows\System32\tapisrv.dll
      08:53:00.0953 4772 TapiSrv - ok
      08:53:00.0984 4772 [ CDBE8D7C1E201B911CDC346D06617FB5 ] TBS C:\Windows\System32\tbssvc.dll
      08:53:01.0031 4772 TBS - ok
      08:53:01.0140 4772 [ 46D448E9117464E4D3BBF36D7E3FA48E ] Tcpip C:\Windows\system32\drivers\tcpip.sys
      08:53:01.0234 4772 Tcpip - ok
      08:53:01.0280 4772 [ 46D448E9117464E4D3BBF36D7E3FA48E ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
      08:53:01.0343 4772 Tcpip6 - ok
      08:53:01.0405 4772 [ C7E72A4071EE0200E3C075DACFB2B334 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
      08:53:01.0483 4772 tcpipreg - ok
      08:53:01.0546 4772 [ 1D8BF4AAA5FB7A2761475781DC1195BC ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
      08:53:01.0592 4772 TDPIPE - ok
      08:53:01.0624 4772 [ 7F7E00CDF609DF657F4CDA02DD1C9BB1 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
      08:53:01.0686 4772 TDTCP - ok
      08:53:01.0795 4772 [ 458919C8C42E398DC4802178D5FFEE27 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
      08:53:01.0842 4772 tdx - ok
      08:53:01.0936 4772 [ 8C19678D22649EC002EF2282EAE92F98 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
      08:53:01.0967 4772 TermDD - ok
      08:53:02.0060 4772 [ 5CDD30BC217082DAC71A9878D9BFD566 ] TermService C:\Windows\System32\termsrv.dll
      08:53:02.0092 4772 TermService - ok
      08:53:02.0154 4772 [ 56793271ECDEDD350C5ADD305603E963 ] Themes C:\Windows\system32\shsvcs.dll
      08:53:02.0170 4772 Themes - ok
      08:53:02.0263 4772 [ 3CBE4995E80E13CCFBC42E5DCF3AC81A ] THREADORDER C:\Windows\system32\mmcss.dll
      08:53:02.0294 4772 THREADORDER - ok
      08:53:02.0388 4772 [ F4689F05AF472A651A7B1B7B02D200E7 ] TrkWks C:\Windows\System32\trkwks.dll
      08:53:02.0419 4772 TrkWks - ok
      08:53:02.0653 4772 [ 66328B08EF5A9305D8EDE36B93930369 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
      08:53:02.0669 4772 TrustedInstaller - ok
      08:53:02.0731 4772 [ 9E5409CD17C8BEF193AAD498F3BC2CB8 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
      08:53:02.0762 4772 tssecsrv - ok
      08:53:02.0840 4772 [ 89EC74A9E602D16A75A4170511029B3C ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
      08:53:02.0872 4772 tunmp - ok
      08:53:02.0950 4772 [ 30A9B3F45AD081BFFC3BCAA9C812B609 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
      08:53:02.0981 4772 tunnel - ok
      08:53:02.0996 4772 [ FEC266EF401966311744BD0F359F7F56 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
      08:53:03.0028 4772 uagp35 - ok
      08:53:03.0074 4772 [ FAF2640A2A76ED03D449E443194C4C34 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
      08:53:03.0152 4772 udfs - ok
      08:53:03.0184 4772 [ 060507C4113391394478F6953A79EEDC ] UI0Detect C:\Windows\system32\UI0Detect.exe
      08:53:03.0215 4772 UI0Detect - ok
      08:53:03.0230 4772 [ 4EC9447AC3AB462647F60E547208CA00 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
      08:53:03.0262 4772 uliagpkx - ok
      08:53:03.0308 4772 [ 697F0446134CDC8F99E69306184FBBB4 ] uliahci C:\Windows\system32\drivers\uliahci.sys
      08:53:03.0355 4772 uliahci - ok
      08:53:03.0480 4772 [ 31707F09846056651EA2C37858F5DDB0 ] UlSata C:\Windows\system32\drivers\ulsata.sys
      08:53:03.0511 4772 UlSata - ok
      08:53:03.0542 4772 [ 85E5E43ED5B48C8376281BAB519271B7 ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
      08:53:03.0605 4772 ulsata2 - ok
      08:53:03.0652 4772 [ 46E9A994C4FED537DD951F60B86AD3F4 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
      08:53:03.0683 4772 umbus - ok
      08:53:03.0730 4772 [ 7093799FF80E9DECA0680D2E3535BE60 ] upnphost C:\Windows\System32\upnphost.dll
      08:53:03.0776 4772 upnphost - ok
      08:53:03.0776 4772 upperdev - ok
      08:53:03.0823 4772 [ 43228F8EDD1B0BCDD3145AD246E63D39 ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
      08:53:03.0886 4772 USBAAPL64 - ok
      08:53:03.0917 4772 [ 07E3498FC60834219D2356293DA0FECC ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
      08:53:03.0995 4772 usbccgp - ok
      08:53:04.0010 4772 [ 8C39D53E1A343F4C47EE8F3C052126D8 ] usbcir C:\Windows\system32\DRIVERS\usbcir.sys
      08:53:04.0042 4772 usbcir - ok
      08:53:04.0104 4772 [ 827E44DE934A736EA31E91D353EB126F ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
      08:53:04.0151 4772 usbehci - ok
      08:53:04.0260 4772 [ BB35CD80A2ECECFADC73569B3D70C7D1 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
      08:53:04.0291 4772 usbhub - ok
      08:53:04.0322 4772 [ EBA14EF0C07CEC233F1529C698D0D154 ] usbohci C:\Windows\system32\drivers\usbohci.sys
      08:53:04.0416 4772 usbohci - ok
      08:53:04.0494 4772 [ 28B693B6D31E7B9332C1BDCEFEF228C1 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
      08:53:04.0556 4772 usbprint - ok
      08:53:04.0619 4772 [ EA0BF666868964FBE8CB10E50C97B9F1 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
      08:53:04.0666 4772 usbscan - ok
      08:53:04.0759 4772 [ 5A8D98330F21E69D19459ED65847111D ] usbser C:\Windows\system32\DRIVERS\usbser.sys
      08:53:04.0790 4772 usbser - ok
      08:53:04.0837 4772 UsbserFilt - ok
      08:53:04.0884 4772 [ B854C1558FCA0C269A38663E8B59B581 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
      08:53:04.0931 4772 USBSTOR - ok
      08:53:04.0978 4772 [ B2872CBF9F47316ABD0E0C74A1ABA507 ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
      08:53:05.0040 4772 usbuhci - ok
      08:53:05.0165 4772 [ D76E231E4850BB3F88A3D9A78DF191E3 ] UxSms C:\Windows\System32\uxsms.dll
      08:53:05.0180 4772 UxSms - ok
      08:53:05.0258 4772 [ 294945381DFA7CE58CECF0A9896AF327 ] vds C:\Windows\System32\vds.exe
      08:53:05.0336 4772 vds - ok
      08:53:05.0383 4772 [ 916B94BCF1E09873FFF2D5FB11767BBC ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
      08:53:05.0461 4772 vga - ok
      08:53:05.0508 4772 [ B83AB16B51FEDA65DD81B8C59D114D63 ] VgaSave C:\Windows\System32\drivers\vga.sys
      08:53:05.0570 4772 VgaSave - ok
      08:53:05.0633 4772 [ 8294B6C3FDB6C33F24E150DE647ECDAA ] viaide C:\Windows\system32\drivers\viaide.sys
      08:53:05.0664 4772 viaide - ok
      08:53:05.0758 4772 [ 2B7E885ED951519A12C450D24535DFCA ] volmgr C:\Windows\system32\drivers\volmgr.sys
      08:53:05.0804 4772 volmgr - ok
      08:53:05.0867 4772 [ CEC5AC15277D75D9E5DEC2E1C6EAF877 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
      08:53:05.0976 4772 volmgrx - ok
      08:53:06.0070 4772 [ 5280AADA24AB36B01A84A6424C475C8D ] volsnap C:\Windows\system32\drivers\volsnap.sys
      08:53:06.0163 4772 volsnap - ok
      08:53:06.0194 4772 [ A68F455ED2673835209318DD61BFBB0E ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
      08:53:06.0210 4772 vsmraid - ok
      08:53:06.0304 4772 [ B75232DAD33BFD95BF6F0A3E6BFF51E1 ] VSS C:\Windows\system32\vssvc.exe
      08:53:06.0397 4772 VSS - ok
      08:53:06.0522 4772 [ F14A7DE2EA41883E250892E1E5230A9A ] W32Time C:\Windows\system32\w32time.dll
      08:53:06.0584 4772 W32Time - ok
      08:53:06.0616 4772 [ FEF8FE5923FEAD2CEE4DFABFCE3393A7 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
      08:53:06.0662 4772 WacomPen - ok
      08:53:06.0772 4772 [ B8E7049622300D20BA6D8BE0C47C0CFD ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
      08:53:06.0834 4772 Wanarp - ok
      08:53:06.0850 4772 [ B8E7049622300D20BA6D8BE0C47C0CFD ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
      08:53:06.0881 4772 Wanarpv6 - ok
      08:53:07.0037 4772 [ B4E4C37D0AA6100090A53213EE2BF1C1 ] wcncsvc C:\Windows\System32\wcncsvc.dll
      08:53:07.0099 4772 wcncsvc - ok
      08:53:07.0177 4772 [ EA4B369560E986F19D93F45A881484AC ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
      08:53:07.0208 4772 WcsPlugInService - ok
      08:53:07.0271 4772 [ 0C17A0816F65B89E362E682AD5E7266E ] Wd C:\Windows\system32\drivers\wd.sys
      08:53:07.0302 4772 Wd - ok
      08:53:07.0411 4772 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
      08:53:07.0458 4772 Wdf01000 - ok
      08:53:07.0520 4772 [ C5EFDA73EBFCA8B02A094898DE0A9276 ] WdiServiceHost C:\Windows\system32\wdi.dll
      08:53:07.0552 4772 WdiServiceHost - ok
      08:53:07.0552 4772 [ C5EFDA73EBFCA8B02A094898DE0A9276 ] WdiSystemHost C:\Windows\system32\wdi.dll
      08:53:07.0598 4772 WdiSystemHost - ok
      08:53:07.0676 4772 [ 3E6D05381CF35F75EBB055544A8ED9AC ] WebClient C:\Windows\System32\webclnt.dll
      08:53:07.0708 4772 WebClient - ok
      08:53:07.0754 4772 [ 8D40BC587993F876658BF9FB0F7D3462 ] Wecsvc C:\Windows\system32\wecsvc.dll
      08:53:07.0801 4772 Wecsvc - ok
      08:53:07.0848 4772 [ 9C980351D7E96288EA0C23AE232BD065 ] wercplsupport C:\Windows\System32\wercplsupport.dll
      08:53:07.0879 4772 wercplsupport - ok
      08:53:08.0035 4772 [ 66B9ECEBC46683F47EDC06333C075FEF ] WerSvc C:\Windows\System32\WerSvc.dll
      08:53:08.0066 4772 WerSvc - ok
      08:53:08.0082 4772 WinDefend - ok
      08:53:08.0082 4772 WinHttpAutoProxySvc - ok
      08:53:08.0316 4772 [ D2E7296ED1BD26D8DB2799770C077A02 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
      08:53:08.0347 4772 Winmgmt - ok
      08:53:08.0519 4772 [ 6CBB0C68F13B9C2EC1B16F5FA5E7C869 ] WinRM C:\Windows\system32\WsmSvc.dll
      08:53:08.0612 4772 WinRM - ok
      08:53:08.0800 4772 [ EC339C8115E91BAED835957E9A677F16 ] Wlansvc C:\Windows\System32\wlansvc.dll
      08:53:08.0924 4772 Wlansvc - ok
      08:53:09.0174 4772 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
      08:53:09.0346 4772 wlidsvc - ok
      08:53:09.0424 4772 [ E18AEBAAA5A773FE11AA2C70F65320F5 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
      08:53:09.0470 4772 WmiAcpi - ok
      08:53:09.0533 4772 [ 21FA389E65A852698B6A1341F36EE02D ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
      08:53:09.0564 4772 wmiApSrv - ok
      08:53:09.0626 4772 WMPNetworkSvc - ok
      08:53:09.0673 4772 [ CBC156C913F099E6680D1DF9307DB7A8 ] WPCSvc C:\Windows\System32\wpcsvc.dll
      08:53:09.0704 4772 WPCSvc - ok
      08:53:09.0782 4772 [ 490A18B4E4D53DC10879DEAA8E8B70D9 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
      08:53:09.0845 4772 WPDBusEnum - ok
      08:53:09.0923 4772 [ 5E2401B3FC1089C90E081291357371A9 ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys
      08:53:09.0954 4772 WpdUsb - ok
      08:53:10.0141 4772 [ 991E2C2CF3BC204C2BB2EE1476149E4E ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\WPF\WPFFontCache_v0400.exe
      08:53:10.0204 4772 WPFFontCache_v0400 - ok
      08:53:10.0297 4772 [ 8A900348370E359B6BFF6A550E4649E1 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
      08:53:10.0344 4772 ws2ifsl - ok
      08:53:10.0500 4772 [ 9EA3E6D0EF7A5C2B9181961052A4B01A ] wscsvc C:\Windows\system32\wscsvc.dll
      08:53:10.0516 4772 wscsvc - ok
      08:53:10.0516 4772 WSearch - ok
      08:53:10.0718 4772 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
      08:53:10.0843 4772 wuauserv - ok
      08:53:10.0937 4772 [ 501A65252617B495C0F1832F908D54D8 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
      08:53:10.0999 4772 WUDFRd - ok
      08:53:11.0062 4772 [ 6CBD51FF913C851D56ED9DC7F2A27DDE ] wudfsvc C:\Windows\System32\WUDFSvc.dll
      08:53:11.0108 4772 wudfsvc - ok
      08:53:11.0108 4772 ================ Scan global ===============================
      08:53:11.0249 4772 [ 060DC3A7A9A2626031EB23D90151428D ] C:\Windows\system32\basesrv.dll
      08:53:11.0327 4772 [ AA137104CDFC81818A309CDE32ABB74A ] C:\Windows\system32\winsrv.dll
      08:53:11.0358 4772 [ AA137104CDFC81818A309CDE32ABB74A ] C:\Windows\system32\winsrv.dll
      08:53:11.0467 4772 [ 934E0B7D77FF78C18D9F8891221B6DE3 ] C:\Windows\system32\services.exe
      08:53:11.0483 4772 [Global] - ok
      08:53:11.0483 4772 ================ Scan MBR ==================================
      08:53:11.0498 4772 [ 03BA8F890B47C0BE359A4D5A636D214D ] \Device\Harddisk0\DR0
      08:53:11.0935 4772 \Device\Harddisk0\DR0 - ok
      08:53:11.0951 4772 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR1
      08:53:12.0107 4772 \Device\Harddisk1\DR1 - ok
      08:53:12.0107 4772 ================ Scan VBR ==================================
      08:53:12.0122 4772 [ 409F8B705D2CB1FC238AD050948F05F0 ] \Device\Harddisk0\DR0\Partition1
      08:53:12.0122 4772 \Device\Harddisk0\DR0\Partition1 - ok
      08:53:12.0138 4772 [ 5AB1014D3307DDD9B9A4993B0A5EE436 ] \Device\Harddisk0\DR0\Partition2
      08:53:12.0138 4772 \Device\Harddisk0\DR0\Partition2 - ok
      08:53:12.0138 4772 [ 6132ED741C9A0628DB158A2DBA41C1C9 ] \Device\Harddisk1\DR1\Partition1
      08:53:12.0138 4772 \Device\Harddisk1\DR1\Partition1 - ok
      08:53:12.0138 4772 ============================================================
      08:53:12.0138 4772 Scan finished
      08:53:12.0138 4772 ============================================================
      08:53:12.0154 3644 Detected object count: 6
      08:53:12.0154 3644 Actual detected object count: 6
      08:54:09.0884 3644 ASAPIW2K ( UnsignedFile.Multi.Generic ) - skipped by user
      08:54:09.0884 3644 ASAPIW2K ( UnsignedFile.Multi.Generic ) - User select action: Skip
      08:54:09.0884 3644 HP Health Check Service ( UnsignedFile.Multi.Generic ) - skipped by user
      08:54:09.0884 3644 HP Health Check Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
      08:54:09.0884 3644 LightScribeService ( UnsignedFile.Multi.Generic ) - skipped by user
      08:54:09.0884 3644 LightScribeService ( UnsignedFile.Multi.Generic ) - User select action: Skip
      08:54:09.0884 3644 P2PFire ( UnsignedFile.Multi.Generic ) - skipped by user
      08:54:09.0884 3644 P2PFire ( UnsignedFile.Multi.Generic ) - User select action: Skip
      08:54:09.0884 3644 ServiceLayer ( UnsignedFile.Multi.Generic ) - skipped by user
      08:54:09.0884 3644 ServiceLayer ( UnsignedFile.Multi.Generic ) - User select action: Skip
      08:54:09.0884 3644 sptd ( LockedFile.Multi.Generic ) - skipped by user
      08:54:09.0884 3644 sptd ( LockedFile.Multi.Generic ) - User select action: Skip


      Que es lo que se ve?

    4. #4
      Ex-Colaborador Avatar de Superlucas
      Registrado
      sep 2011
      Ubicación
      Argentina
      Mensajes
      15.747

      Re: Infectado con 3 troyanos: Wigon.PB, Kryptik.AQED y Sirefef.AT

      Hola,

      Como va todo ahora?

      Se eliminaron 2 infecciones peligrosas
      Vas a correr o vas a pelear?- Muahy Thai

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    5. #5
      Usuario Avatar de P.P.P
      Registrado
      ago 2008
      Ubicación
      spy
      Mensajes
      28

      Re: Infectado con 3 troyanos: Wigon.PB, Kryptik.AQED y Sirefef.AT

      Cita Originalmente publicado por Superlucas Ver Mensaje
      Hola,

      Como va todo ahora?

      Se eliminaron 2 infecciones peligrosas
      Voy a usar el pc de nuevo, para ver unos partidos de futbol. Vamos a ver como funciona esto.

      Lo que no entiendo, es que si los tres troyanos tienen determinado nombre, porque dice que elimino unas infecciones con otro nombre que no tiene nada que ver?

      Elimino la infeccion principal o como va esto?

      Igualmente en el Nod32 pone que los tres troyanos estan en cuarentena.

    6. #6
      Ex-Colaborador Avatar de Superlucas
      Registrado
      sep 2011
      Ubicación
      Argentina
      Mensajes
      15.747

      Re: Infectado con 3 troyanos: Wigon.PB, Kryptik.AQED y Sirefef.AT

      Hola,

      Perfecto, proba la pc tranquilo y nos contas como va todo

      Porque generalmente, hay aveces que las infecciones descargan otras a tu pc, para tener mayor control en la pc y poder robar datos o poder sacar archivos de esa pc infectada. No todos los virus descargan nuevos malwares al equipo y hay otros como el Zero acces que elimina cualquier rastro de TDL y lo elimina (Elimina la competencia). Un poco mas de información mira acá: Como eliminar Zero Acces

      Si dice Nod32 que esta en cuarenta mas lo que elimino Malwarebytes el equipo tendría que estar limpio. Pero probarlo y contanos como sigue todo por ahora
      Vas a correr o vas a pelear?- Muahy Thai

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.