• Registrarse
  • Iniciar sesión


  • Página 1 de 2 12 ÚltimoÚltimo
    Resultados 1 al 10 de 17

    Win32 Wolcape.A Troyano

    Tengo instalado el antivirus NOD32 Antivirus 5. Me brida un registro con la siguiente informacion: Objeto: Sector de inicio Nombre: Sector de inicio del disco\Device\Harddisk1\DR1 Amenaza: Win32/Wolcape.A troyano Accion: Error al desinfectarlo Tambien me pasa ...

    1. #1
      Usuario Avatar de beby3367
      Registrado
      dic 2012
      Ubicación
      Peru
      Mensajes
      12

      Win32 Wolcape.A Troyano

      Tengo instalado el antivirus NOD32 Antivirus 5.
      Me brida un registro con la siguiente informacion:

      Objeto: Sector de inicio
      Nombre: Sector de inicio del disco\Device\Harddisk1\DR1
      Amenaza: Win32/Wolcape.A troyano
      Accion: Error al desinfectarlo

      Tambien me pasa al colocar mi USB y aunqie lo formateo sigue apareciendo.

      Necesito el procedimeinto para eliminar este troyano.

    2. #2
      Usuario Avatar de beby3367
      Registrado
      dic 2012
      Ubicación
      Peru
      Mensajes
      12

      Re: Win32 Wolcape.A Troyano

      Por favor necesito una respuesta urgente

    3. #3
      Ex-Colaborador Avatar de RevesdeLiberte
      Registrado
      feb 2010
      Ubicación
      México
      Mensajes
      7.976

      Re: Win32 Wolcape.A Troyano

      Hola beby3367
      Bienvenido al Foro de InfoSpyware.







      Te recuerdo antes de nada que no somos un servicio tecnico 24hrs. Tambien tenemos nuestros asuntos que atender, sumando que aveces no tenemos todas las respuestas.




      Realiza lo siguiente:


      • Descarga Malwarebytes Anti-Rootkit Beta.zip y descomprime el contenido en tu escritorio.
        1. Abre la carpeta Mbar. Doble clic en el archivo Mbar.exe
        2. En la interfaz del programa haga clic en Next.
        3. Haga clic en el botón Update. Terminando clic en Next
        4. Para iniciar el análisis clic en el botón Scan
        5. Terminando, si hay infección clic en CleanUp, si no hay clic en Exit.


      Para terminar abre la carpeta Mbar, abre los archivos mbar-log.txt & system-log.txt, copie y pegue todo su contenido en la siguiente respuesta y comenta resultados.
      La paciencia es un árbol de raíces amargas, pero de frutos dulces.

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    4. #4
      Usuario Avatar de beby3367
      Registrado
      dic 2012
      Ubicación
      Peru
      Mensajes
      12

      Re: Win32 Wolcape.A Troyano

      Este es el resultado. Puedo considerar que mi pc esta libre de malware.

      Malwarebytes Anti-Rootkit 1.01.0.1011
      Malwarebytes : Free anti-malware download

      Database version: v2012.12.08.07

      Windows 7 Service Pack 1 x64 NTFS
      Internet Explorer 9.0.8112.16421
      Usuario :: USUARIO-PC [administrator]

      08/12/2012 04:16:08 p.m.
      mbar-log-2012-12-08 (16-16-08).txt

      Scan type: Quick scan
      Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM | P2P
      Scan options disabled:
      Objects scanned: 30895
      Time elapsed: 13 minute(s), 28 second(s)

      Memory Processes Detected: 0
      (No malicious items detected)

      Memory Modules Detected: 0
      (No malicious items detected)

      Registry Keys Detected: 0
      (No malicious items detected)

      Registry Values Detected: 0
      (No malicious items detected)

      Registry Data Items Detected: 0
      (No malicious items detected)

      Folders Detected: 0
      (No malicious items detected)

      Files Detected: 0
      (No malicious items detected)

      (end)

      ___________________________

      ---------------------------------------
      Malwarebytes Anti-Rootkit BETA 1.01.0.1011

      (c) Malwarebytes Corporation 2011-2012

      OS version: 6.1.7601 Windows 7 Service Pack 1 x64

      Account is Administrative

      Internet Explorer version: 9.0.8112.16421

      File system is: NTFS
      Disk drives: C:\ DRIVE_FIXED, E:\ DRIVE_FIXED
      CPU speed: 2.494000 GHz
      Memory total: 4194816000, free: 1901232128

      ---------------------------------------
      Malwarebytes Anti-Rootkit BETA 1.01.0.1011

      (c) Malwarebytes Corporation 2011-2012

      OS version: 6.1.7601 Windows 7 Service Pack 1 x64

      Account is Administrative

      Internet Explorer version: 9.0.8112.16421

      File system is: NTFS
      Disk drives: C:\ DRIVE_FIXED, E:\ DRIVE_FIXED
      CPU speed: 2.494000 GHz
      Memory total: 4194816000, free: 1982394368

      ------------ Kernel report ------------
      12/08/2012 16:01:31
      ------------ Loaded modules -----------
      \SystemRoot\system32\ntoskrnl.exe
      \SystemRoot\system32\hal.dll
      \SystemRoot\system32\kdcom.dll
      \SystemRoot\system32\mcupdate_GenuineIntel.dll
      \SystemRoot\system32\PSHED.dll
      \SystemRoot\system32\CLFS.SYS
      \SystemRoot\system32\CI.dll
      \SystemRoot\system32\drivers\Wdf01000.sys
      \SystemRoot\system32\drivers\WDFLDR.SYS
      \SystemRoot\system32\drivers\ACPI.sys
      \SystemRoot\system32\drivers\WMILIB.SYS
      \SystemRoot\system32\drivers\msisadrv.sys
      \SystemRoot\system32\drivers\pci.sys
      \SystemRoot\system32\drivers\vdrvroot.sys
      \SystemRoot\System32\drivers\partmgr.sys
      \SystemRoot\system32\drivers\compbatt.sys
      \SystemRoot\system32\drivers\BATTC.SYS
      \SystemRoot\system32\drivers\volmgr.sys
      \SystemRoot\System32\drivers\volmgrx.sys
      \SystemRoot\System32\drivers\mountmgr.sys
      \SystemRoot\system32\DRIVERS\iaStor.sys
      \SystemRoot\system32\drivers\atapi.sys
      \SystemRoot\system32\drivers\ataport.SYS
      \SystemRoot\system32\drivers\msahci.sys
      \SystemRoot\system32\drivers\PCIIDEX.SYS
      \SystemRoot\system32\drivers\amdxata.sys
      \SystemRoot\system32\drivers\fltmgr.sys
      \SystemRoot\system32\drivers\fileinfo.sys
      \SystemRoot\System32\Drivers\Ntfs.sys
      \SystemRoot\System32\Drivers\msrpc.sys
      \SystemRoot\System32\Drivers\ksecdd.sys
      \SystemRoot\System32\Drivers\cng.sys
      \SystemRoot\System32\drivers\pcw.sys
      \SystemRoot\System32\Drivers\Fs_Rec.sys
      \SystemRoot\system32\drivers\ndis.sys
      \SystemRoot\system32\drivers\NETIO.SYS
      \SystemRoot\System32\Drivers\ksecpkg.sys
      \SystemRoot\System32\drivers\tcpip.sys
      \SystemRoot\System32\drivers\fwpkclnt.sys
      \SystemRoot\system32\drivers\volsnap.sys
      \SystemRoot\System32\Drivers\spldr.sys
      \SystemRoot\System32\drivers\rdyboost.sys
      \SystemRoot\system32\DRIVERS\nvpciflt.sys
      \SystemRoot\System32\Drivers\mup.sys
      \SystemRoot\System32\DRIVERS\LhdX64.sys
      \SystemRoot\System32\drivers\hwpolicy.sys
      \SystemRoot\System32\DRIVERS\fvevol.sys
      \SystemRoot\system32\drivers\fbfmon.sys
      \SystemRoot\system32\drivers\disk.sys
      \SystemRoot\system32\drivers\CLASSPNP.SYS
      \SystemRoot\system32\DRIVERS\eamonm.sys
      \SystemRoot\System32\Drivers\Null.SYS
      \SystemRoot\System32\Drivers\Beep.SYS
      \SystemRoot\system32\DRIVERS\ehdrv.sys
      \SystemRoot\System32\drivers\vga.sys
      \SystemRoot\System32\drivers\VIDEOPRT.SYS
      \SystemRoot\System32\drivers\watchdog.sys
      \SystemRoot\System32\DRIVERS\RDPCDD.sys
      \SystemRoot\system32\drivers\rdpencdd.sys
      \SystemRoot\system32\drivers\rdprefmp.sys
      \SystemRoot\System32\Drivers\Msfs.SYS
      \SystemRoot\System32\Drivers\Npfs.SYS
      \SystemRoot\system32\DRIVERS\tdx.sys
      \SystemRoot\system32\DRIVERS\TDI.SYS
      \SystemRoot\System32\DRIVERS\netbt.sys
      \SystemRoot\system32\drivers\afd.sys
      \SystemRoot\system32\DRIVERS\wfplwf.sys
      \SystemRoot\system32\DRIVERS\pacer.sys
      \SystemRoot\system32\DRIVERS\vwififlt.sys
      \SystemRoot\system32\DRIVERS\netbios.sys
      \SystemRoot\system32\DRIVERS\wanarp.sys
      \SystemRoot\system32\DRIVERS\termdd.sys
      \SystemRoot\system32\DRIVERS\rdbss.sys
      \SystemRoot\system32\drivers\nsiproxy.sys
      \SystemRoot\system32\DRIVERS\mssmbios.sys
      \SystemRoot\System32\drivers\discache.sys
      \SystemRoot\System32\Drivers\dfsc.sys
      \SystemRoot\system32\drivers\BPntDrv.sys
      \SystemRoot\system32\drivers\BOOTVID.dll
      \SystemRoot\system32\DRIVERS\blbdrive.sys
      \SystemRoot\system32\DRIVERS\tunnel.sys
      \SystemRoot\system32\DRIVERS\nvlddmkm.sys
      \SystemRoot\System32\drivers\dxgkrnl.sys
      \SystemRoot\System32\drivers\dxgmms1.sys
      \SystemRoot\system32\DRIVERS\igdkmd64.sys
      \SystemRoot\system32\DRIVERS\HECIx64.sys
      \SystemRoot\system32\DRIVERS\usbehci.sys
      \SystemRoot\system32\DRIVERS\USBPORT.SYS
      \SystemRoot\system32\DRIVERS\HDAudBus.sys
      \SystemRoot\system32\DRIVERS\Rt64win7.sys
      \SystemRoot\system32\DRIVERS\NETwNs64.sys
      \SystemRoot\system32\DRIVERS\vwifibus.sys
      \SystemRoot\system32\DRIVERS\i8042prt.sys
      \SystemRoot\system32\DRIVERS\kbdclass.sys
      \SystemRoot\system32\DRIVERS\SynTP.sys
      \SystemRoot\system32\DRIVERS\USBD.SYS
      \SystemRoot\system32\DRIVERS\mouclass.sys
      \SystemRoot\system32\DRIVERS\AcpiVpc.sys
      \SystemRoot\system32\DRIVERS\GEARAspiWDM.sys
      \SystemRoot\system32\DRIVERS\wmiacpi.sys
      \SystemRoot\system32\DRIVERS\intelppm.sys
      \SystemRoot\system32\DRIVERS\CmBatt.sys
      \SystemRoot\system32\DRIVERS\CompositeBus.sys
      \SystemRoot\system32\DRIVERS\clwvd.sys
      \SystemRoot\system32\DRIVERS\ks.sys
      \SystemRoot\system32\drivers\ksthunk.sys
      \SystemRoot\system32\DRIVERS\AgileVpn.sys
      \SystemRoot\system32\DRIVERS\rasl2tp.sys
      \SystemRoot\system32\DRIVERS\ndistapi.sys
      \SystemRoot\system32\DRIVERS\ndiswan.sys
      \SystemRoot\system32\DRIVERS\raspppoe.sys
      \SystemRoot\system32\DRIVERS\raspptp.sys
      \SystemRoot\system32\DRIVERS\rassstp.sys
      \SystemRoot\system32\DRIVERS\swenum.sys
      \SystemRoot\system32\DRIVERS\umbus.sys
      \SystemRoot\system32\DRIVERS\WDKMD.sys
      \SystemRoot\system32\DRIVERS\usbhub.sys
      \SystemRoot\System32\Drivers\NDProxy.SYS
      \SystemRoot\system32\drivers\RTKVHD64.sys
      \SystemRoot\system32\drivers\portcls.sys
      \SystemRoot\system32\drivers\drmk.sys
      \SystemRoot\system32\DRIVERS\IntcDAud.sys
      \SystemRoot\System32\Drivers\crashdmp.sys
      \SystemRoot\System32\Drivers\dump_iaStor.sys
      \SystemRoot\System32\Drivers\dump_dumpfve.sys
      \SystemRoot\System32\win32k.sys
      \SystemRoot\System32\drivers\Dxapi.sys
      \SystemRoot\system32\DRIVERS\usbccgp.sys
      \SystemRoot\system32\DRIVERS\rtsuvc.sys
      \SystemRoot\system32\DRIVERS\rfcomm.sys
      \SystemRoot\system32\DRIVERS\HIDPARSE.SYS
      \SystemRoot\system32\DRIVERS\monitor.sys
      \SystemRoot\System32\TSDDD.dll
      \SystemRoot\System32\cdd.dll
      \SystemRoot\system32\drivers\luafv.sys
      \SystemRoot\system32\DRIVERS\lltdio.sys
      \SystemRoot\system32\DRIVERS\nwifi.sys
      \SystemRoot\system32\DRIVERS\ndisuio.sys
      \SystemRoot\system32\DRIVERS\rspndr.sys
      \SystemRoot\system32\drivers\HTTP.sys
      \SystemRoot\system32\DRIVERS\bowser.sys
      \SystemRoot\System32\drivers\mpsdrv.sys
      \SystemRoot\system32\DRIVERS\mrxsmb.sys
      \SystemRoot\system32\DRIVERS\mrxsmb10.sys
      \SystemRoot\system32\DRIVERS\mrxsmb20.sys
      \SystemRoot\system32\DRIVERS\epfwwfpr.sys
      \SystemRoot\system32\DRIVERS\idmwfp.sys
      \??\C:\Program Files (x86)\Cyberlink\PowerDVD12\Kernel\DMP\CLHNServer\ntk_PowerDVD12_64.sys
      \SystemRoot\system32\drivers\peauth.sys
      \SystemRoot\System32\Drivers\secdrv.SYS
      \SystemRoot\System32\DRIVERS\srvnet.sys
      \SystemRoot\System32\drivers\tcpipreg.sys
      \??\C:\Program Files (x86)\CyberLink\PowerDVD12\Common\NavFilter\000.fcl
      \SystemRoot\System32\DRIVERS\srv2.sys
      \SystemRoot\system32\DRIVERS\vwifimp.sys
      \SystemRoot\System32\DRIVERS\srv.sys
      \SystemRoot\System32\ATMFD.DLL
      \SystemRoot\system32\DRIVERS\asyncmac.sys
      \SystemRoot\system32\DRIVERS\btwampfl.sys
      \SystemRoot\System32\Drivers\BTHUSB.sys
      \SystemRoot\System32\Drivers\bthport.sys
      \SystemRoot\system32\drivers\BthEnum.sys
      \SystemRoot\system32\DRIVERS\bthpan.sys
      \SystemRoot\system32\DRIVERS\btwavdt.sys
      \SystemRoot\system32\drivers\btwaudio.sys
      \SystemRoot\system32\DRIVERS\btwl2cap.sys
      \SystemRoot\system32\DRIVERS\btwrchid.sys
      \SystemRoot\system32\DRIVERS\HIDCLASS.SYS
      \SystemRoot\System32\Drivers\fastfat.SYS
      \SystemRoot\system32\drivers\WudfPf.sys
      \??\C:\windows\system32\drivers\mbamchameleon.sys
      \??\C:\windows\system32\drivers\mbamswissarmy.sys
      \Windows\System32\ntdll.dll
      \Windows\System32\smss.exe
      \Windows\System32\apisetschema.dll
      \Windows\System32\autochk.exe
      \Windows\System32\rpcrt4.dll
      \Windows\System32\gdi32.dll
      \Windows\System32\psapi.dll
      \Windows\System32\wininet.dll
      \Windows\System32\sechost.dll
      \Windows\System32\imm32.dll
      \Windows\System32\iertutil.dll
      \Windows\System32\oleaut32.dll
      \Windows\System32\imagehlp.dll
      \Windows\System32\lpk.dll
      \Windows\System32\shlwapi.dll
      \Windows\System32\ole32.dll
      \Windows\System32\user32.dll
      \Windows\System32\comdlg32.dll
      \Windows\System32\shell32.dll
      \Windows\System32\Wldap32.dll
      \Windows\System32\kernel32.dll
      \Windows\System32\urlmon.dll
      \Windows\System32\nsi.dll
      \Windows\System32\normaliz.dll
      \Windows\System32\usp10.dll
      \Windows\System32\ws2_32.dll
      \Windows\System32\msctf.dll
      \Windows\System32\difxapi.dll
      \Windows\System32\msvcrt.dll
      \Windows\System32\advapi32.dll
      \Windows\System32\clbcatq.dll
      \Windows\System32\setupapi.dll
      \Windows\System32\wintrust.dll
      \Windows\System32\comctl32.dll
      \Windows\System32\KernelBase.dll
      \Windows\System32\crypt32.dll
      \Windows\System32\cfgmgr32.dll
      \Windows\System32\devobj.dll
      \Windows\System32\msasn1.dll
      ----------- End -----------
      <<<1>>>
      Upper Device Name: \Device\Harddisk0\DR0
      Upper Device Object: 0xfffffa8006501060
      Upper Device Driver Name: \Driver\Disk\
      Lower Device Name: \Device\Ide\IAAStorageDevice-1\
      Lower Device Object: 0xfffffa80052ab050
      Lower Device Driver Name: \Driver\iaStor\
      Device already Exists: 0xfffffa8008ff53e0
      Downloaded database version: v2012.12.08.07
      Initializing...
      Done!
      <<<2>>>
      Device number: 0, partition: 2
      Physical Sector Size: 512
      Drive: 0, DevicePointer: 0xfffffa8006501060, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\
      --------- Disk Stack ------
      DevicePointer: 0xfffffa8006501b90, DeviceName: Unknown, DriverName: \Driver\partmgr\
      DevicePointer: 0xfffffa8006502040, DeviceName: Unknown, DriverName: \Driver\LHDmgr\
      DevicePointer: 0xfffffa8006501060, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\
      DevicePointer: 0xfffffa80052ab050, DeviceName: \Device\Ide\IAAStorageDevice-1\, DriverName: \Driver\iaStor\
      ------------ End ----------
      Upper DeviceData: 0xfffff8a0106f7460, 0xfffffa8006501060, 0xfffffa800945e090
      Lower DeviceData: 0xfffff8a004a68a10, 0xfffffa80052ab050, 0xfffffa8008ff53e0
      <<<3>>>
      Volume: C:
      File system type: NTFS
      SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
      Scanning directory: C:\windows\system32\drivers...
      Done!
      Drive 0
      Scanning MBR on drive 0...
      Inspecting partition table:
      MBR Signature: 55AA
      Disk Signature: 88BF7E51

      Partition information:

      Partition 0 type is Primary (0x7)
      Partition is ACTIVE.
      Partition starts at LBA: 2048 Numsec = 409600
      Partition file system is NTFS
      Partition is bootable

      Partition 1 type is Primary (0x7)
      Partition is NOT ACTIVE.
      Partition starts at LBA: 411648 Numsec = 214059008

      Partition 2 type is Extended with LBA (0xf)
      Partition is NOT ACTIVE.
      Partition starts at LBA: 214470656 Numsec = 731359232

      Partition 3 type is Other (0x12)
      Partition is NOT ACTIVE.
      Partition starts at LBA: 945830208 Numsec = 30942960

      Disk Size: 500107862016 bytes
      Sector size: 512 bytes

      Scanning physical sectors of unpartitioned space on drive 0 (1-2047-976753168-976773168)...
      Done!
      Performing system, memory and registry scan...
      Done!
      Scan finished
      =======================================

    5. #5
      Ex-Colaborador Avatar de RevesdeLiberte
      Registrado
      feb 2010
      Ubicación
      México
      Mensajes
      7.976

      Re: Win32 Wolcape.A Troyano

      Buenas.


      Comprobemos un poco mas el problema, ¿o desaparecieron las alertas de ESET?


      Realiza lo siguiente:


      1. Descarga la herramienta de Gmer MBR.exe y guardala en tu escritorio.
      2. Has doble clic sobre mbr.exe para ejecutar la herramienta
      3. Se mostrara brevemente una pantalla en negro y luego se cerrara.
      4. Un reporte de nombre mbr.txt quedara guardado en tu escritorio.


      Para terminar copia y pega el contenido del archivo mbr.txt en tu siguiente respuesta.
      La paciencia es un árbol de raíces amargas, pero de frutos dulces.

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    6. #6
      Usuario Avatar de beby3367
      Registrado
      dic 2012
      Ubicación
      Peru
      Mensajes
      12

      Re: Win32 Wolcape.A Troyano

      Realizado y esta es la informacion:

      Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, GMER - Rootkit Detector and Remover
      Windows 6.1.7601

      device: opened successfully
      user: error reading MBR
      error: Read Controlador no válido.
      kernel: error reading MBR

    7. #7
      Ex-Colaborador Avatar de RevesdeLiberte
      Registrado
      feb 2010
      Ubicación
      México
      Mensajes
      7.976

      Re: Win32 Wolcape.A Troyano

      Buenas.



      Tienes un malware en el sector de arranque, el reporte de Gmer lo comprueba.



      Realiza lo siguiente:


      • Descarga TDSSKiller.zip y extrae el contenido en tu escritorio

      • Desconecte el equipo físicamente de Internet - Quite el cable/apague el módem

      • Doble clic sobre TDSSKiller.exe
      • Clic sobre Change parameters > marque Detect TDLFS File System

      • Haga clic en OK > Start Scan, terminando el análisis:

        • Si el equipo esta limpio haga clic en Close, de lo contrario:
        • Se mostraran los resultados NO modifique las acciones predeterminadas.
        • Si se encuentra "TDLFS File System/TDSS File system" la opción a seguir es Delete

      • Haga clic en Continue > Reboot computer para terminar el proceso.



      Abrir el archivo de texto en C:\TDSSKiller_[Versión]_[Fecha]_[Hora].txt copiar todo su contenido y pegarlo en su siguiente respuesta.
      La paciencia es un árbol de raíces amargas, pero de frutos dulces.

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    8. #8
      Usuario Avatar de beby3367
      Registrado
      dic 2012
      Ubicación
      Peru
      Mensajes
      12

      Re: Win32 Wolcape.A Troyano

      Este es el resultado ...?

      16:53:35.0513 6884 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
      16:53:35.0529 6884 ============================================================
      16:53:35.0529 6884 Current date / time: 2012/12/08 16:53:35.0529
      16:53:35.0529 6884 SystemInfo:
      16:53:35.0529 6884
      16:53:35.0529 6884 OS Version: 6.1.7601 ServicePack: 1.0
      16:53:35.0529 6884 Product type: Workstation
      16:53:35.0529 6884 ComputerName: USUARIO-PC
      16:53:35.0529 6884 UserName: Usuario
      16:53:35.0529 6884 Windows directory: C:\windows
      16:53:35.0529 6884 System windows directory: C:\windows
      16:53:35.0529 6884 Running under WOW64
      16:53:35.0529 6884 Processor architecture: Intel x64
      16:53:35.0529 6884 Number of processors: 4
      16:53:35.0529 6884 Page size: 0x1000
      16:53:35.0529 6884 Boot type: Normal boot
      16:53:35.0529 6884 ============================================================
      16:53:35.0966 6884 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
      16:53:35.0981 6884 ============================================================
      16:53:35.0981 6884 \Device\Harddisk0\DR0:
      16:53:35.0981 6884 MBR partitions:
      16:53:35.0981 6884 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x64000
      16:53:35.0981 6884 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x64800, BlocksNum 0xCC24800
      16:53:35.0997 6884 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0xCC89800, BlocksNum 0x2B97A000
      16:53:35.0997 6884 ============================================================
      16:53:36.0028 6884 C: <-> \Device\Harddisk0\DR0\Partition2
      16:53:36.0075 6884 E: <-> \Device\Harddisk0\DR0\Partition3
      16:53:36.0075 6884 ============================================================
      16:53:36.0075 6884 Initialize success
      16:53:36.0075 6884 ============================================================
      16:54:54.0309 8376 ============================================================
      16:54:54.0309 8376 Scan started
      16:54:54.0309 8376 Mode: Manual;
      16:54:54.0309 8376 ============================================================
      16:54:54.0855 8376 ================ Scan system memory ========================
      16:54:54.0855 8376 System memory - ok
      16:54:54.0855 8376 ================ Scan services =============================
      16:54:55.0027 8376 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\windows\system32\drivers\1394ohci.sys
      16:54:55.0027 8376 1394ohci - ok
      16:54:55.0058 8376 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\windows\system32\drivers\ACPI.sys
      16:54:55.0074 8376 ACPI - ok
      16:54:55.0105 8376 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\windows\system32\drivers\acpipmi.sys
      16:54:55.0105 8376 AcpiPmi - ok
      16:54:55.0152 8376 [ 5BBFF8B826EC38D32C26334E079C7EFC ] ACPIVPC C:\windows\system32\DRIVERS\AcpiVpc.sys
      16:54:55.0152 8376 ACPIVPC - ok
      16:54:55.0245 8376 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
      16:54:55.0245 8376 AdobeARMservice - ok
      16:54:55.0339 8376 [ 0CB0AA071C7B86A64F361DCFDF357329 ] AdobeFlashPlayerUpdateSvc C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
      16:54:55.0354 8376 AdobeFlashPlayerUpdateSvc - ok
      16:54:55.0386 8376 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\windows\system32\drivers\adp94xx.sys
      16:54:55.0401 8376 adp94xx - ok
      16:54:55.0448 8376 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\windows\system32\drivers\adpahci.sys
      16:54:55.0448 8376 adpahci - ok
      16:54:55.0464 8376 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\windows\system32\drivers\adpu320.sys
      16:54:55.0495 8376 adpu320 - ok
      16:54:55.0526 8376 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\windows\System32\aelupsvc.dll
      16:54:55.0526 8376 AeLookupSvc - ok
      16:54:55.0588 8376 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\windows\system32\drivers\afd.sys
      16:54:55.0604 8376 AFD - ok
      16:54:55.0651 8376 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\windows\system32\drivers\agp440.sys
      16:54:55.0651 8376 agp440 - ok
      16:54:55.0682 8376 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\windows\System32\alg.exe
      16:54:55.0682 8376 ALG - ok
      16:54:55.0698 8376 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\windows\system32\drivers\aliide.sys
      16:54:55.0713 8376 aliide - ok
      16:54:55.0713 8376 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\windows\system32\drivers\amdide.sys
      16:54:55.0729 8376 amdide - ok
      16:54:55.0744 8376 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\windows\system32\drivers\amdk8.sys
      16:54:55.0744 8376 AmdK8 - ok
      16:54:55.0744 8376 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\windows\system32\drivers\amdppm.sys
      16:54:55.0744 8376 AmdPPM - ok
      16:54:55.0776 8376 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\windows\system32\drivers\amdsata.sys
      16:54:55.0776 8376 amdsata - ok
      16:54:55.0807 8376 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\windows\system32\drivers\amdsbs.sys
      16:54:55.0807 8376 amdsbs - ok
      16:54:55.0822 8376 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\windows\system32\drivers\amdxata.sys
      16:54:55.0822 8376 amdxata - ok
      16:54:55.0854 8376 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\windows\system32\drivers\appid.sys
      16:54:55.0854 8376 AppID - ok
      16:54:55.0885 8376 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\windows\System32\appidsvc.dll
      16:54:55.0885 8376 AppIDSvc - ok
      16:54:55.0900 8376 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\windows\System32\appinfo.dll
      16:54:55.0900 8376 Appinfo - ok
      16:54:55.0963 8376 [ 7EF47644B74EBE721CC32211D3C35E76 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
      16:54:55.0963 8376 Apple Mobile Device - ok
      16:54:56.0010 8376 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\windows\system32\drivers\arc.sys
      16:54:56.0010 8376 arc - ok
      16:54:56.0025 8376 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\windows\system32\drivers\arcsas.sys
      16:54:56.0025 8376 arcsas - ok
      16:54:56.0041 8376 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\windows\system32\DRIVERS\asyncmac.sys
      16:54:56.0041 8376 AsyncMac - ok
      16:54:56.0072 8376 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\windows\system32\drivers\atapi.sys
      16:54:56.0072 8376 atapi - ok
      16:54:56.0119 8376 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\windows\System32\Audiosrv.dll
      16:54:56.0150 8376 AudioEndpointBuilder - ok
      16:54:56.0181 8376 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\windows\System32\Audiosrv.dll
      16:54:56.0181 8376 AudioSrv - ok
      16:54:56.0212 8376 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\windows\System32\AxInstSV.dll
      16:54:56.0212 8376 AxInstSV - ok
      16:54:56.0259 8376 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\windows\system32\drivers\bxvbda.sys
      16:54:56.0259 8376 b06bdrv - ok
      16:54:56.0306 8376 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\windows\system32\DRIVERS\b57nd60a.sys
      16:54:56.0306 8376 b57nd60a - ok
      16:54:56.0368 8376 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\windows\System32\bdesvc.dll
      16:54:56.0368 8376 BDESVC - ok
      16:54:56.0384 8376 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\windows\system32\drivers\Beep.sys
      16:54:56.0384 8376 Beep - ok
      16:54:56.0431 8376 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\windows\System32\bfe.dll
      16:54:56.0446 8376 BFE - ok
      16:54:56.0493 8376 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\windows\System32\qmgr.dll
      16:54:56.0509 8376 BITS - ok
      16:54:56.0540 8376 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\windows\system32\DRIVERS\blbdrive.sys
      16:54:56.0540 8376 blbdrive - ok
      16:54:56.0634 8376 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
      16:54:56.0634 8376 Bonjour Service - ok
      16:54:56.0665 8376 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\windows\system32\DRIVERS\bowser.sys
      16:54:56.0680 8376 bowser - ok
      16:54:56.0712 8376 [ AAA4F992F879977A000FE8B8C730CD2C ] BPntDrv C:\windows\system32\drivers\BPntDrv.sys
      16:54:56.0712 8376 BPntDrv - ok
      16:54:56.0727 8376 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\windows\system32\drivers\BrFiltLo.sys
      16:54:56.0727 8376 BrFiltLo - ok
      16:54:56.0743 8376 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\windows\system32\drivers\BrFiltUp.sys
      16:54:56.0743 8376 BrFiltUp - ok
      16:54:56.0774 8376 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\windows\System32\browser.dll
      16:54:56.0774 8376 Browser - ok
      16:54:56.0805 8376 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\windows\System32\Drivers\Brserid.sys
      16:54:56.0805 8376 Brserid - ok
      16:54:56.0821 8376 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\windows\System32\Drivers\BrSerWdm.sys
      16:54:56.0821 8376 BrSerWdm - ok
      16:54:56.0821 8376 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\windows\System32\Drivers\BrUsbMdm.sys
      16:54:56.0821 8376 BrUsbMdm - ok
      16:54:56.0836 8376 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\windows\System32\Drivers\BrUsbSer.sys
      16:54:56.0836 8376 BrUsbSer - ok
      16:54:56.0868 8376 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\windows\system32\drivers\BthEnum.sys
      16:54:56.0868 8376 BthEnum - ok
      16:54:56.0883 8376 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\windows\system32\drivers\bthmodem.sys
      16:54:56.0883 8376 BTHMODEM - ok
      16:54:56.0899 8376 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\windows\system32\DRIVERS\bthpan.sys
      16:54:56.0914 8376 BthPan - ok
      16:54:56.0946 8376 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT C:\windows\System32\Drivers\BTHport.sys
      16:54:56.0961 8376 BTHPORT - ok
      16:54:57.0008 8376 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\windows\system32\bthserv.dll
      16:54:57.0024 8376 bthserv - ok
      16:54:57.0039 8376 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\windows\System32\Drivers\BTHUSB.sys
      16:54:57.0039 8376 BTHUSB - ok
      16:54:57.0102 8376 [ 9DE56FA4533E485AE5409D3C11747143 ] BTWAMPFL C:\windows\system32\DRIVERS\btwampfl.sys
      16:54:57.0102 8376 BTWAMPFL - ok
      16:54:57.0133 8376 [ F6135859A582A7294BA7A3336E08BAA1 ] btwaudio C:\windows\system32\drivers\btwaudio.sys
      16:54:57.0133 8376 btwaudio - ok
      16:54:57.0180 8376 [ 3DEF2370E414B4E299673558BA171A51 ] btwavdt C:\windows\system32\DRIVERS\btwavdt.sys
      16:54:57.0180 8376 btwavdt - ok
      16:54:57.0258 8376 [ 7987FFFDA812ABC69047D1B029D446A2 ] btwdins C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe
      16:54:57.0289 8376 btwdins - ok
      16:54:57.0320 8376 [ E8D2BCD080EA91E74775B9F5EA051F97 ] btwl2cap C:\windows\system32\DRIVERS\btwl2cap.sys
      16:54:57.0320 8376 btwl2cap - ok
      16:54:57.0336 8376 [ 9937E0E4DFC0030560A6DFE9D3A94B39 ] btwrchid C:\windows\system32\DRIVERS\btwrchid.sys
      16:54:57.0336 8376 btwrchid - ok
      16:54:57.0367 8376 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\windows\system32\DRIVERS\cdfs.sys
      16:54:57.0367 8376 cdfs - ok
      16:54:57.0398 8376 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\windows\system32\DRIVERS\cdrom.sys
      16:54:57.0398 8376 cdrom - ok
      16:54:57.0460 8376 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\windows\System32\certprop.dll
      16:54:57.0460 8376 CertPropSvc - ok
      16:54:57.0507 8376 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\windows\system32\drivers\circlass.sys
      16:54:57.0507 8376 circlass - ok
      16:54:57.0538 8376 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\windows\system32\CLFS.sys
      16:54:57.0538 8376 CLFS - ok
      16:54:57.0679 8376 [ 2454CF8626B183D023D47FEEB17285B5 ] CLHNServiceForPowerDVD12 C:\Program Files (x86)\Cyberlink\PowerDVD12\Kernel\DMP\CLHNServer\CLHNServiceForPowerDVD12.exe
      16:54:57.0694 8376 CLHNServiceForPowerDVD12 - ok
      16:54:57.0772 8376 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
      16:54:57.0788 8376 clr_optimization_v2.0.50727_32 - ok
      16:54:57.0835 8376 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
      16:54:57.0835 8376 clr_optimization_v2.0.50727_64 - ok
      16:54:57.0913 8376 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
      16:54:57.0928 8376 clr_optimization_v4.0.30319_32 - ok
      16:54:57.0975 8376 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
      16:54:57.0991 8376 clr_optimization_v4.0.30319_64 - ok
      16:54:58.0038 8376 [ E13A438F9E51DD034730678E33B73290 ] clwvd C:\windows\system32\DRIVERS\clwvd.sys
      16:54:58.0038 8376 clwvd - ok
      16:54:58.0069 8376 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\windows\system32\DRIVERS\CmBatt.sys
      16:54:58.0069 8376 CmBatt - ok
      16:54:58.0100 8376 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\windows\system32\drivers\cmdide.sys
      16:54:58.0100 8376 cmdide - ok
      16:54:58.0147 8376 [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG C:\windows\system32\Drivers\cng.sys
      16:54:58.0162 8376 CNG - ok
      16:54:58.0209 8376 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\windows\system32\drivers\compbatt.sys
      16:54:58.0209 8376 Compbatt - ok
      16:54:58.0225 8376 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\windows\system32\DRIVERS\CompositeBus.sys
      16:54:58.0225 8376 CompositeBus - ok
      16:54:58.0240 8376 COMSysApp - ok
      16:54:58.0287 8376 [ 78AF1C499BF02F9814DF959A04A4F9C9 ] cphs C:\windows\SysWow64\IntelCpHeciSvc.exe
      16:54:58.0303 8376 cphs - ok
      16:54:58.0318 8376 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\windows\system32\drivers\crcdisk.sys
      16:54:58.0318 8376 crcdisk - ok
      16:54:58.0365 8376 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\windows\system32\cryptsvc.dll
      16:54:58.0365 8376 CryptSvc - ok
      16:54:58.0396 8376 [ D392F813979EC80EFA16A79EEEAAC8AF ] CyberLink PowerDVD 12 Media Server Monitor Service C:\Program Files (x86)\Cyberlink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe
      16:54:58.0396 8376 CyberLink PowerDVD 12 Media Server Monitor Service - ok
      16:54:58.0443 8376 [ F5E32A49478A509EB8215171D8E187BC ] CyberLink PowerDVD 12 Media Server Service C:\Program Files (x86)\Cyberlink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
      16:54:58.0443 8376 CyberLink PowerDVD 12 Media Server Service - ok
      16:54:58.0506 8376 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\windows\system32\rpcss.dll
      16:54:58.0521 8376 DcomLaunch - ok
      16:54:58.0552 8376 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\windows\System32\defragsvc.dll
      16:54:58.0568 8376 defragsvc - ok
      16:54:58.0599 8376 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\windows\system32\Drivers\dfsc.sys
      16:54:58.0599 8376 DfsC - ok
      16:54:58.0630 8376 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\windows\system32\dhcpcore.dll
      16:54:58.0630 8376 Dhcp - ok
      16:54:58.0646 8376 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\windows\system32\drivers\discache.sys
      16:54:58.0646 8376 discache - ok
      16:54:58.0677 8376 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\windows\system32\drivers\disk.sys
      16:54:58.0677 8376 Disk - ok
      16:54:58.0693 8376 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\windows\System32\dnsrslvr.dll
      16:54:58.0693 8376 Dnscache - ok
      16:54:58.0708 8376 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\windows\System32\dot3svc.dll
      16:54:58.0724 8376 dot3svc - ok
      16:54:58.0740 8376 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\windows\system32\dps.dll
      16:54:58.0740 8376 DPS - ok
      16:54:58.0771 8376 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\windows\system32\drivers\drmkaud.sys
      16:54:58.0771 8376 drmkaud - ok
      16:54:58.0802 8376 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\windows\System32\drivers\dxgkrnl.sys
      16:54:58.0833 8376 DXGKrnl - ok
      16:54:58.0880 8376 [ D00EAE9C735A7DEE8049E50D73D25434 ] eamonm C:\windows\system32\DRIVERS\eamonm.sys
      16:54:58.0896 8376 eamonm - ok
      16:54:58.0911 8376 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\windows\System32\eapsvc.dll
      16:54:58.0927 8376 EapHost - ok
      16:54:59.0036 8376 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\windows\system32\drivers\evbda.sys
      16:54:59.0176 8376 ebdrv - ok
      16:54:59.0239 8376 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\windows\System32\lsass.exe
      16:54:59.0239 8376 EFS - ok
      16:54:59.0286 8376 [ E5EDDE3C8158DD0CBC5812F201DCDED0 ] ehdrv C:\windows\system32\DRIVERS\ehdrv.sys
      16:54:59.0286 8376 ehdrv - ok
      16:54:59.0379 8376 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\windows\ehome\ehRecvr.exe
      16:54:59.0410 8376 ehRecvr - ok
      16:54:59.0426 8376 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\windows\ehome\ehsched.exe
      16:54:59.0426 8376 ehSched - ok
      16:54:59.0551 8376 [ AD4FAADE819E0DA9933BEA7C01D2C763 ] ekrn C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
      16:54:59.0566 8376 ekrn - ok
      16:54:59.0613 8376 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\windows\system32\drivers\elxstor.sys
      16:54:59.0629 8376 elxstor - ok
      16:54:59.0660 8376 [ 3EBB7FD3C605262B942868A1D840F4F1 ] epfwwfpr C:\windows\system32\DRIVERS\epfwwfpr.sys
      16:54:59.0660 8376 epfwwfpr - ok
      16:54:59.0660 8376 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\windows\system32\drivers\errdev.sys
      16:54:59.0660 8376 ErrDev - ok
      16:54:59.0707 8376 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\windows\system32\es.dll
      16:54:59.0722 8376 EventSystem - ok
      16:54:59.0832 8376 [ 8B6C9924B0D333DBF76086B8258A0891 ] EvtEng C:\Program Files\Intel\WiFi\bin\EvtEng.exe
      16:54:59.0878 8376 EvtEng - ok
      16:54:59.0925 8376 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\windows\system32\drivers\exfat.sys
      16:54:59.0925 8376 exfat - ok
      16:54:59.0956 8376 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\windows\system32\drivers\fastfat.sys
      16:54:59.0956 8376 fastfat - ok
      16:55:00.0003 8376 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\windows\system32\fxssvc.exe
      16:55:00.0019 8376 Fax - ok
      16:55:00.0066 8376 [ 3191ACA33088EE2481044FC0DB736442 ] fbfmon C:\windows\system32\drivers\fbfmon.sys
      16:55:00.0066 8376 fbfmon - ok
      16:55:00.0081 8376 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\windows\system32\drivers\fdc.sys
      16:55:00.0097 8376 fdc - ok
      16:55:00.0112 8376 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\windows\system32\fdPHost.dll
      16:55:00.0128 8376 fdPHost - ok
      16:55:00.0144 8376 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\windows\system32\fdrespub.dll
      16:55:00.0144 8376 FDResPub - ok
      16:55:00.0190 8376 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\windows\system32\drivers\fileinfo.sys
      16:55:00.0190 8376 FileInfo - ok
      16:55:00.0206 8376 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\windows\system32\drivers\filetrace.sys
      16:55:00.0206 8376 Filetrace - ok
      16:55:00.0268 8376 FirebirdGuardianDefaultInstance - ok
      16:55:00.0268 8376 FirebirdServerDefaultInstance - ok
      16:55:00.0284 8376 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\windows\system32\drivers\flpydisk.sys
      16:55:00.0300 8376 flpydisk - ok
      16:55:00.0315 8376 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\windows\system32\drivers\fltmgr.sys
      16:55:00.0331 8376 FltMgr - ok
      16:55:00.0393 8376 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\windows\system32\FntCache.dll
      16:55:00.0440 8376 FontCache - ok
      16:55:00.0471 8376 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
      16:55:00.0471 8376 FontCache3.0.0.0 - ok
      16:55:00.0487 8376 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\windows\system32\drivers\FsDepends.sys
      16:55:00.0502 8376 FsDepends - ok
      16:55:00.0534 8376 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\windows\system32\drivers\Fs_Rec.sys
      16:55:00.0534 8376 Fs_Rec - ok
      16:55:00.0580 8376 [ AB4FDA088B80777CA43895BC411D3D72 ] FTDIBUS C:\windows\system32\drivers\ftdibus.sys
      16:55:00.0596 8376 FTDIBUS - ok
      16:55:00.0627 8376 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\windows\system32\DRIVERS\fvevol.sys
      16:55:00.0643 8376 fvevol - ok
      16:55:00.0658 8376 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\windows\system32\drivers\gagp30kx.sys
      16:55:00.0658 8376 gagp30kx - ok
      16:55:00.0705 8376 [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM C:\windows\system32\DRIVERS\GEARAspiWDM.sys
      16:55:00.0705 8376 GEARAspiWDM - ok
      16:55:00.0752 8376 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\windows\System32\gpsvc.dll
      16:55:00.0799 8376 gpsvc - ok
      16:55:00.0861 8376 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
      16:55:00.0861 8376 gupdate - ok
      16:55:00.0892 8376 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
      16:55:00.0892 8376 gupdatem - ok
      16:55:00.0924 8376 [ CC839E8D766CC31A7710C9F38CF3E375 ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
      16:55:00.0924 8376 gusvc - ok
      16:55:00.0955 8376 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\windows\system32\drivers\hcw85cir.sys
      16:55:00.0955 8376 hcw85cir - ok
      16:55:00.0986 8376 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys
      16:55:01.0002 8376 HdAudAddService - ok
      16:55:01.0017 8376 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\windows\system32\DRIVERS\HDAudBus.sys
      16:55:01.0033 8376 HDAudBus - ok
      16:55:01.0033 8376 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\windows\system32\drivers\HidBatt.sys
      16:55:01.0048 8376 HidBatt - ok
      16:55:01.0048 8376 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\windows\system32\drivers\hidbth.sys
      16:55:01.0064 8376 HidBth - ok
      16:55:01.0080 8376 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\windows\system32\drivers\hidir.sys
      16:55:01.0095 8376 HidIr - ok
      16:55:01.0111 8376 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\windows\system32\hidserv.dll
      16:55:01.0126 8376 hidserv - ok
      16:55:01.0142 8376 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\windows\system32\DRIVERS\hidusb.sys
      16:55:01.0142 8376 HidUsb - ok
      16:55:01.0173 8376 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\windows\system32\kmsvc.dll
      16:55:01.0173 8376 hkmsvc - ok
      16:55:01.0189 8376 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\windows\system32\ListSvc.dll
      16:55:01.0204 8376 HomeGroupListener - ok
      16:55:01.0220 8376 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\windows\system32\provsvc.dll
      16:55:01.0220 8376 HomeGroupProvider - ok
      16:55:01.0251 8376 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\windows\system32\drivers\HpSAMD.sys
      16:55:01.0251 8376 HpSAMD - ok
      16:55:01.0282 8376 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\windows\system32\drivers\HTTP.sys
      16:55:01.0314 8376 HTTP - ok
      16:55:01.0329 8376 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\windows\system32\drivers\hwpolicy.sys
      16:55:01.0329 8376 hwpolicy - ok
      16:55:01.0345 8376 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\windows\system32\DRIVERS\i8042prt.sys
      16:55:01.0345 8376 i8042prt - ok
      16:55:01.0376 8376 [ 53CC5BF8B5A219119953C7ABB19A7705 ] iaStor C:\windows\system32\DRIVERS\iaStor.sys
      16:55:01.0376 8376 iaStor - ok
      16:55:01.0407 8376 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\windows\system32\drivers\iaStorV.sys
      16:55:01.0423 8376 iaStorV - ok
      16:55:01.0485 8376 [ 2A63036283B36B3B68CDC6F85A7D53ED ] IDMWFP C:\windows\system32\DRIVERS\idmwfp.sys
      16:55:01.0485 8376 IDMWFP - ok
      16:55:01.0548 8376 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
      16:55:01.0563 8376 idsvc - ok
      16:55:01.0750 8376 [ A1CF07D24EDCDC6870535471654D957C ] igfx C:\windows\system32\DRIVERS\igdkmd64.sys
      16:55:01.0906 8376 igfx - ok
      16:55:01.0938 8376 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\windows\system32\drivers\iirsp.sys
      16:55:01.0938 8376 iirsp - ok
      16:55:01.0969 8376 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\windows\System32\ikeext.dll
      16:55:02.0000 8376 IKEEXT - ok
      16:55:02.0078 8376 [ 72A253EFCA059D8CF303371255624890 ] IntcAzAudAddService C:\windows\system32\drivers\RTKVHD64.sys
      16:55:02.0156 8376 IntcAzAudAddService - ok
      16:55:02.0187 8376 [ FC727061C0F47C8059E88E05D5C8E381 ] IntcDAud C:\windows\system32\DRIVERS\IntcDAud.sys
      16:55:02.0203 8376 IntcDAud - ok
      16:55:02.0218 8376 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\windows\system32\drivers\intelide.sys
      16:55:02.0234 8376 intelide - ok
      16:55:02.0250 8376 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\windows\system32\DRIVERS\intelppm.sys
      16:55:02.0250 8376 intelppm - ok
      16:55:02.0296 8376 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\windows\system32\ipbusenum.dll
      16:55:02.0296 8376 IPBusEnum - ok
      16:55:02.0312 8376 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\windows\system32\DRIVERS\ipfltdrv.sys
      16:55:02.0312 8376 IpFilterDriver - ok
      16:55:02.0359 8376 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\windows\System32\iphlpsvc.dll
      16:55:02.0390 8376 iphlpsvc - ok
      16:55:02.0406 8376 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\windows\system32\drivers\IPMIDrv.sys
      16:55:02.0406 8376 IPMIDRV - ok
      16:55:02.0421 8376 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\windows\system32\drivers\ipnat.sys
      16:55:02.0421 8376 IPNAT - ok
      16:55:02.0484 8376 [ 50D6CCC6FF5561F9F56946B3E6164FB8 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
      16:55:02.0530 8376 iPod Service - ok
      16:55:02.0546 8376 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\windows\system32\drivers\irenum.sys
      16:55:02.0546 8376 IRENUM - ok
      16:55:02.0577 8376 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\windows\system32\drivers\isapnp.sys
      16:55:02.0577 8376 isapnp - ok
      16:55:02.0593 8376 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\windows\system32\drivers\msiscsi.sys
      16:55:02.0593 8376 iScsiPrt - ok
      16:55:02.0624 8376 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\windows\system32\DRIVERS\kbdclass.sys
      16:55:02.0624 8376 kbdclass - ok
      16:55:02.0640 8376 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\windows\system32\drivers\kbdhid.sys
      16:55:02.0640 8376 kbdhid - ok
      16:55:02.0671 8376 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\windows\system32\lsass.exe
      16:55:02.0671 8376 KeyIso - ok
      16:55:02.0702 8376 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\windows\system32\Drivers\ksecdd.sys
      16:55:02.0702 8376 KSecDD - ok
      16:55:02.0733 8376 [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg C:\windows\system32\Drivers\ksecpkg.sys
      16:55:02.0749 8376 KSecPkg - ok
      16:55:02.0764 8376 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\windows\system32\drivers\ksthunk.sys
      16:55:02.0780 8376 ksthunk - ok
      16:55:02.0796 8376 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\windows\system32\msdtckrm.dll
      16:55:02.0811 8376 KtmRm - ok
      16:55:02.0842 8376 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\windows\system32\srvsvc.dll
      16:55:02.0858 8376 LanmanServer - ok
      16:55:02.0889 8376 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\windows\System32\wkssvc.dll
      16:55:02.0889 8376 LanmanWorkstation - ok
      16:55:02.0920 8376 [ BE166935083F9C38EDFDC21B9A7A679B ] LHDmgr C:\windows\system32\DRIVERS\LhdX64.sys
      16:55:02.0920 8376 LHDmgr - ok
      16:55:02.0936 8376 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\windows\system32\DRIVERS\lltdio.sys
      16:55:02.0952 8376 lltdio - ok
      16:55:02.0983 8376 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\windows\System32\lltdsvc.dll
      16:55:02.0983 8376 lltdsvc - ok
      16:55:02.0998 8376 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\windows\System32\lmhsvc.dll
      16:55:02.0998 8376 lmhosts - ok
      16:55:03.0061 8376 [ 926EBA26A8B49D1597751CED06B50862 ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
      16:55:03.0061 8376 LMS - ok
      16:55:03.0108 8376 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\windows\system32\drivers\lsi_fc.sys
      16:55:03.0108 8376 LSI_FC - ok
      16:55:03.0123 8376 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\windows\system32\drivers\lsi_sas.sys
      16:55:03.0123 8376 LSI_SAS - ok
      16:55:03.0139 8376 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\windows\system32\drivers\lsi_sas2.sys
      16:55:03.0139 8376 LSI_SAS2 - ok
      16:55:03.0154 8376 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\windows\system32\drivers\lsi_scsi.sys
      16:55:03.0154 8376 LSI_SCSI - ok
      16:55:03.0186 8376 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\windows\system32\drivers\luafv.sys
      16:55:03.0186 8376 luafv - ok
      16:55:03.0217 8376 [ A8FE8F2783B2929B56F5370A89356CE9 ] MBAMProtector C:\windows\system32\drivers\mbam.sys
      16:55:03.0217 8376 MBAMProtector - ok
      16:55:03.0295 8376 [ 85B16A92B117A5A800032ECD904B86DB ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
      16:55:03.0295 8376 MBAMScheduler - ok
      16:55:03.0342 8376 [ 20E2469DB709FC675E655CEAA11BE312 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
      16:55:03.0357 8376 MBAMService - ok
      16:55:03.0404 8376 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\windows\system32\Mcx2Svc.dll
      16:55:03.0404 8376 Mcx2Svc - ok
      16:55:03.0435 8376 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\windows\system32\drivers\megasas.sys
      16:55:03.0435 8376 megasas - ok
      16:55:03.0451 8376 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\windows\system32\drivers\MegaSR.sys
      16:55:03.0451 8376 MegaSR - ok
      16:55:03.0498 8376 [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64 C:\windows\system32\DRIVERS\HECIx64.sys
      16:55:03.0498 8376 MEIx64 - ok
      16:55:03.0544 8376 Microsoft SharePoint Workspace Audit Service - ok
      16:55:03.0591 8376 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\windows\system32\mmcss.dll
      16:55:03.0591 8376 MMCSS - ok
      16:55:03.0607 8376 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\windows\system32\drivers\modem.sys
      16:55:03.0607 8376 Modem - ok
      16:55:03.0654 8376 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\windows\system32\DRIVERS\monitor.sys
      16:55:03.0654 8376 monitor - ok
      16:55:03.0685 8376 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\windows\system32\DRIVERS\mouclass.sys
      16:55:03.0685 8376 mouclass - ok
      16:55:03.0700 8376 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\windows\system32\DRIVERS\mouhid.sys
      16:55:03.0700 8376 mouhid - ok
      16:55:03.0732 8376 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\windows\system32\drivers\mountmgr.sys
      16:55:03.0732 8376 mountmgr - ok
      16:55:03.0747 8376 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\windows\system32\drivers\mpio.sys
      16:55:03.0747 8376 mpio - ok
      16:55:03.0763 8376 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\windows\system32\drivers\mpsdrv.sys
      16:55:03.0763 8376 mpsdrv - ok
      16:55:03.0778 8376 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\windows\system32\mpssvc.dll
      16:55:03.0810 8376 MpsSvc - ok
      16:55:03.0825 8376 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\windows\system32\drivers\mrxdav.sys
      16:55:03.0825 8376 MRxDAV - ok
      16:55:03.0856 8376 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\windows\system32\DRIVERS\mrxsmb.sys
      16:55:03.0856 8376 mrxsmb - ok
      16:55:03.0872 8376 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\windows\system32\DRIVERS\mrxsmb10.sys
      16:55:03.0888 8376 mrxsmb10 - ok
      16:55:03.0903 8376 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\windows\system32\DRIVERS\mrxsmb20.sys
      16:55:03.0903 8376 mrxsmb20 - ok
      16:55:03.0903 8376 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\windows\system32\drivers\msahci.sys
      16:55:03.0919 8376 msahci - ok
      16:55:03.0919 8376 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\windows\system32\drivers\msdsm.sys
      16:55:03.0934 8376 msdsm - ok
      16:55:03.0950 8376 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\windows\System32\msdtc.exe
      16:55:03.0950 8376 MSDTC - ok
      16:55:03.0981 8376 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\windows\system32\drivers\Msfs.sys
      16:55:03.0981 8376 Msfs - ok
      16:55:03.0997 8376 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\windows\System32\drivers\mshidkmdf.sys
      16:55:03.0997 8376 mshidkmdf - ok
      16:55:04.0012 8376 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\windows\system32\drivers\msisadrv.sys
      16:55:04.0012 8376 msisadrv - ok
      16:55:04.0044 8376 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\windows\system32\iscsiexe.dll
      16:55:04.0044 8376 MSiSCSI - ok
      16:55:04.0059 8376 msiserver - ok
      16:55:04.0075 8376 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\windows\system32\drivers\MSKSSRV.sys
      16:55:04.0075 8376 MSKSSRV - ok
      16:55:04.0090 8376 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\windows\system32\drivers\MSPCLOCK.sys
      16:55:04.0090 8376 MSPCLOCK - ok
      16:55:04.0106 8376 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\windows\system32\drivers\MSPQM.sys
      16:55:04.0106 8376 MSPQM - ok
      16:55:04.0122 8376 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\windows\system32\drivers\MsRPC.sys
      16:55:04.0122 8376 MsRPC - ok
      16:55:04.0137 8376 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\windows\system32\DRIVERS\mssmbios.sys
      16:55:04.0137 8376 mssmbios - ok
      16:55:04.0153 8376 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\windows\system32\drivers\MSTEE.sys
      16:55:04.0153 8376 MSTEE - ok
      16:55:04.0153 8376 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\windows\system32\drivers\MTConfig.sys
      16:55:04.0153 8376 MTConfig - ok
      16:55:04.0184 8376 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\windows\system32\Drivers\mup.sys
      16:55:04.0184 8376 Mup - ok
      16:55:04.0215 8376 [ 6ED8935257672F4CD04A88A0F3DE093D ] MyWiFiDHCPDNS C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
      16:55:04.0215 8376 MyWiFiDHCPDNS - ok
      16:55:04.0262 8376 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\windows\system32\qagentRT.dll
      16:55:04.0278 8376 napagent - ok
      16:55:04.0309 8376 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\windows\system32\DRIVERS\nwifi.sys
      16:55:04.0309 8376 NativeWifiP - ok
      16:55:04.0371 8376 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\windows\system32\drivers\ndis.sys
      16:55:04.0402 8376 NDIS - ok
      16:55:04.0418 8376 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\windows\system32\DRIVERS\ndiscap.sys
      16:55:04.0418 8376 NdisCap - ok
      16:55:04.0449 8376 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\windows\system32\DRIVERS\ndistapi.sys
      16:55:04.0449 8376 NdisTapi - ok
      16:55:04.0480 8376 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\windows\system32\DRIVERS\ndisuio.sys
      16:55:04.0480 8376 Ndisuio - ok
      16:55:04.0496 8376 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\windows\system32\DRIVERS\ndiswan.sys
      16:55:04.0512 8376 NdisWan - ok
      16:55:04.0527 8376 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\windows\system32\drivers\NDProxy.sys
      16:55:04.0527 8376 NDProxy - ok
      16:55:04.0543 8376 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\windows\system32\DRIVERS\netbios.sys
      16:55:04.0543 8376 NetBIOS - ok
      16:55:04.0558 8376 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\windows\system32\DRIVERS\netbt.sys
      16:55:04.0574 8376 NetBT - ok
      16:55:04.0590 8376 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\windows\system32\lsass.exe
      16:55:04.0590 8376 Netlogon - ok
      16:55:04.0621 8376 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\windows\System32\netman.dll
      16:55:04.0636 8376 Netman - ok
      16:55:04.0652 8376 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\windows\System32\netprofm.dll
      16:55:04.0668 8376 netprofm - ok
      16:55:04.0699 8376 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
      16:55:04.0699 8376 NetTcpPortSharing - ok
      16:55:04.0948 8376 [ 5D262402B0634C998F8CBCEAD7DD8676 ] NETwNs64 C:\windows\system32\DRIVERS\NETwNs64.sys
      16:55:05.0136 8376 NETwNs64 - ok
      16:55:05.0198 8376 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\windows\system32\drivers\nfrd960.sys
      16:55:05.0198 8376 nfrd960 - ok
      16:55:05.0214 8376 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\windows\System32\nlasvc.dll
      16:55:05.0229 8376 NlaSvc - ok
      16:55:05.0276 8376 [ 907B5E1E4A592E5EDC5E4CCBDE4863C2 ] nmwcd C:\windows\system32\drivers\ccdcmbx64.sys
      16:55:05.0292 8376 nmwcd - ok
      16:55:05.0323 8376 [ 41C1AC1F3613435EB32D67BCB80A5FA5 ] nmwcdc C:\windows\system32\drivers\ccdcmbox64.sys
      16:55:05.0323 8376 nmwcdc - ok
      16:55:05.0354 8376 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\windows\system32\drivers\Npfs.sys
      16:55:05.0354 8376 Npfs - ok
      16:55:05.0385 8376 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\windows\system32\nsisvc.dll
      16:55:05.0401 8376 nsi - ok
      16:55:05.0416 8376 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\windows\system32\drivers\nsiproxy.sys
      16:55:05.0416 8376 nsiproxy - ok
      16:55:05.0494 8376 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\windows\system32\drivers\Ntfs.sys
      16:55:05.0557 8376 Ntfs - ok
      16:55:05.0666 8376 [ EAAC965642EF5F818AED508CADF83E4B ] ntk_PowerDVD12 C:\Program Files (x86)\Cyberlink\PowerDVD12\Kernel\DMP\CLHNServer\ntk_PowerDVD12_64.sys
      16:55:05.0666 8376 ntk_PowerDVD12 - ok
      16:55:05.0697 8376 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\windows\system32\drivers\Null.sys
      16:55:05.0697 8376 Null - ok
      16:55:05.0994 8376 [ 5104BAC2DA2A5BDD86AC6B0708B00F06 ] nvlddmkm C:\windows\system32\DRIVERS\nvlddmkm.sys
      16:55:06.0274 8376 nvlddmkm - ok
      16:55:06.0321 8376 [ 918841B2454F4F2BD94479692079490B ] nvpciflt C:\windows\system32\DRIVERS\nvpciflt.sys
      16:55:06.0321 8376 nvpciflt - ok
      16:55:06.0352 8376 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\windows\system32\drivers\nvraid.sys
      16:55:06.0352 8376 nvraid - ok
      16:55:06.0384 8376 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\windows\system32\drivers\nvstor.sys
      16:55:06.0384 8376 nvstor - ok
      16:55:06.0446 8376 [ DDFAFCE89A5C93D04712B86F94E9FCBA ] nvsvc C:\windows\system32\nvvsvc.exe
      16:55:06.0446 8376 nvsvc - ok
      16:55:06.0571 8376 [ 84E035225474E48CD3A6A3CE52332095 ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
      16:55:06.0618 8376 nvUpdatusService - ok
      16:55:06.0633 8376 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\windows\system32\drivers\nv_agp.sys
      16:55:06.0633 8376 nv_agp - ok
      16:55:06.0664 8376 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\windows\system32\drivers\ohci1394.sys
      16:55:06.0664 8376 ohci1394 - ok
      16:55:06.0742 8376 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
      16:55:06.0742 8376 ose - ok
      16:55:06.0898 8376 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
      16:55:06.0930 8376 osppsvc - ok
      16:55:06.0976 8376 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\windows\system32\pnrpsvc.dll
      16:55:06.0976 8376 p2pimsvc - ok
      16:55:07.0023 8376 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\windows\system32\p2psvc.dll
      16:55:07.0039 8376 p2psvc - ok
      16:55:07.0070 8376 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\windows\system32\drivers\parport.sys
      16:55:07.0070 8376 Parport - ok
      16:55:07.0101 8376 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\windows\system32\drivers\partmgr.sys
      16:55:07.0101 8376 partmgr - ok
      16:55:07.0117 8376 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\windows\System32\pcasvc.dll
      16:55:07.0132 8376 PcaSvc - ok
      16:55:07.0164 8376 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\windows\system32\drivers\pci.sys
      16:55:07.0164 8376 pci - ok
      16:55:07.0179 8376 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\windows\system32\drivers\pciide.sys
      16:55:07.0179 8376 pciide - ok
      16:55:07.0195 8376 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\windows\system32\drivers\pcmcia.sys
      16:55:07.0195 8376 pcmcia - ok
      16:55:07.0210 8376 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\windows\system32\drivers\pcw.sys
      16:55:07.0226 8376 pcw - ok
      16:55:07.0242 8376 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\windows\system32\drivers\peauth.sys
      16:55:07.0257 8376 PEAUTH - ok
      16:55:07.0320 8376 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\windows\SysWow64\perfhost.exe
      16:55:07.0335 8376 PerfHost - ok
      16:55:07.0398 8376 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\windows\system32\pla.dll
      16:55:07.0444 8376 pla - ok
      16:55:07.0522 8376 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\windows\system32\umpnpmgr.dll
      16:55:07.0538 8376 PlugPlay - ok
      16:55:07.0569 8376 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\windows\system32\pnrpauto.dll
      16:55:07.0569 8376 PNRPAutoReg - ok
      16:55:07.0600 8376 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\windows\system32\pnrpsvc.dll
      16:55:07.0600 8376 PNRPsvc - ok
      16:55:07.0647 8376 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\windows\System32\ipsecsvc.dll
      16:55:07.0647 8376 PolicyAgent - ok
      16:55:07.0678 8376 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\windows\system32\umpo.dll
      16:55:07.0678 8376 Power - ok
      16:55:07.0710 8376 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\windows\system32\DRIVERS\raspptp.sys
      16:55:07.0725 8376 PptpMiniport - ok
      16:55:07.0741 8376 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\windows\system32\drivers\processr.sys
      16:55:07.0741 8376 Processor - ok
      16:55:07.0772 8376 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\windows\system32\profsvc.dll
      16:55:07.0772 8376 ProfSvc - ok
      16:55:07.0788 8376 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\windows\system32\lsass.exe
      16:55:07.0788 8376 ProtectedStorage - ok
      16:55:07.0819 8376 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\windows\system32\DRIVERS\pacer.sys
      16:55:07.0819 8376 Psched - ok
      16:55:07.0850 8376 [ 0B6DEA0A1662CAB8F2BF339DC0752EF4 ] PSI_SVC_2 c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
      16:55:07.0850 8376 PSI_SVC_2 - ok
      16:55:07.0912 8376 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\windows\system32\drivers\ql2300.sys
      16:55:07.0959 8376 ql2300 - ok
      16:55:07.0990 8376 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\windows\system32\drivers\ql40xx.sys
      16:55:07.0990 8376 ql40xx - ok
      16:55:08.0022 8376 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\windows\system32\qwave.dll
      16:55:08.0022 8376 QWAVE - ok
      16:55:08.0053 8376 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\windows\system32\drivers\qwavedrv.sys
      16:55:08.0053 8376 QWAVEdrv - ok
      16:55:08.0053 8376 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\windows\system32\DRIVERS\rasacd.sys
      16:55:08.0053 8376 RasAcd - ok
      16:55:08.0084 8376 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\windows\system32\DRIVERS\AgileVpn.sys
      16:55:08.0084 8376 RasAgileVpn - ok
      16:55:08.0115 8376 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\windows\System32\rasauto.dll
      16:55:08.0115 8376 RasAuto - ok
      16:55:08.0146 8376 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\windows\system32\DRIVERS\rasl2tp.sys
      16:55:08.0146 8376 Rasl2tp - ok
      16:55:08.0162 8376 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\windows\System32\rasmans.dll
      16:55:08.0178 8376 RasMan - ok
      16:55:08.0193 8376 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\windows\system32\DRIVERS\raspppoe.sys
      16:55:08.0193 8376 RasPppoe - ok
      16:55:08.0209 8376 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\windows\system32\DRIVERS\rassstp.sys
      16:55:08.0209 8376 RasSstp - ok
      16:55:08.0240 8376 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\windows\system32\DRIVERS\rdbss.sys
      16:55:08.0256 8376 rdbss - ok
      16:55:08.0271 8376 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\windows\system32\drivers\rdpbus.sys
      16:55:08.0271 8376 rdpbus - ok
      16:55:08.0302 8376 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\windows\system32\DRIVERS\RDPCDD.sys
      16:55:08.0302 8376 RDPCDD - ok
      16:55:08.0318 8376 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\windows\system32\drivers\rdpencdd.sys
      16:55:08.0318 8376 RDPENCDD - ok
      16:55:08.0334 8376 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\windows\system32\drivers\rdprefmp.sys
      16:55:08.0334 8376 RDPREFMP - ok
      16:55:08.0396 8376 [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\windows\system32\drivers\rdpvideominiport.sys
      16:55:08.0396 8376 RdpVideoMiniport - ok
      16:55:08.0427 8376 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\windows\system32\drivers\RDPWD.sys
      16:55:08.0427 8376 RDPWD - ok
      16:55:08.0458 8376 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\windows\system32\drivers\rdyboost.sys
      16:55:08.0474 8376 rdyboost - ok
      16:55:08.0536 8376 [ 189C5A8D2098E0AA14FD157A954B34FC ] RegSrvc C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
      16:55:08.0568 8376 RegSrvc - ok
      16:55:08.0599 8376 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\windows\System32\mprdim.dll
      16:55:08.0599 8376 RemoteAccess - ok
      16:55:08.0661 8376 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\windows\system32\regsvc.dll
      16:55:08.0661 8376 RemoteRegistry - ok
      16:55:08.0677 8376 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\windows\system32\DRIVERS\rfcomm.sys
      16:55:08.0677 8376 RFCOMM - ok
      16:55:08.0724 8376 [ 7B04C9843921AB1F695FB395422C5360 ] RimUsb C:\windows\system32\Drivers\RimUsb_AMD64.sys
      16:55:08.0724 8376 RimUsb - ok
      16:55:08.0755 8376 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\windows\System32\RpcEpMap.dll
      16:55:08.0755 8376 RpcEptMapper - ok
      16:55:08.0786 8376 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\windows\system32\locator.exe
      16:55:08.0786 8376 RpcLocator - ok
      16:55:08.0802 8376 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\windows\system32\rpcss.dll
      16:55:08.0817 8376 RpcSs - ok
      16:55:08.0833 8376 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\windows\system32\DRIVERS\rspndr.sys
      16:55:08.0848 8376 rspndr - ok
      16:55:08.0895 8376 [ CE0A1D8A59410E698140821E4E69DA0D ] RSUSBVSTOR C:\windows\system32\Drivers\RtsUVStor.sys
      16:55:08.0895 8376 RSUSBVSTOR - ok
      16:55:08.0958 8376 [ EE082E06A82FF630351D1E0EBBD3D8D0 ] RTL8167 C:\windows\system32\DRIVERS\Rt64win7.sys
      16:55:08.0989 8376 RTL8167 - ok
      16:55:09.0223 8376 [ 8AC69F3C7A8A8BD94EA26A08AE5D1839 ] rtsuvc C:\windows\system32\DRIVERS\rtsuvc.sys
      16:55:09.0394 8376 rtsuvc - ok
      16:55:09.0410 8376 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\windows\system32\lsass.exe
      16:55:09.0410 8376 SamSs - ok
      16:55:09.0441 8376 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\windows\system32\drivers\sbp2port.sys
      16:55:09.0441 8376 sbp2port - ok
      16:55:09.0472 8376 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\windows\System32\SCardSvr.dll
      16:55:09.0472 8376 SCardSvr - ok
      16:55:09.0488 8376 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\windows\system32\DRIVERS\scfilter.sys
      16:55:09.0488 8376 scfilter - ok
      16:55:09.0519 8376 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\windows\system32\schedsvc.dll
      16:55:09.0519 8376 Schedule - ok
      16:55:09.0582 8376 [ ED2E7605F271261D1C939CE11CEFF167 ] SCPDFReadSpool C:\Program Files (x86)\SolidDocuments\Solid Converter PDF\SCPDF\SolidConverterPDFServicex64.exe
      16:55:09.0597 8376 SCPDFReadSpool - ok
      16:55:09.0628 8376 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\windows\System32\certprop.dll
      16:55:09.0628 8376 SCPolicySvc - ok
      16:55:09.0660 8376 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\windows\System32\SDRSVC.dll
      16:55:09.0660 8376 SDRSVC - ok
      16:55:09.0706 8376 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\windows\system32\drivers\secdrv.sys
      16:55:09.0722 8376 secdrv - ok
      16:55:09.0738 8376 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\windows\system32\seclogon.dll
      16:55:09.0738 8376 seclogon - ok
      16:55:09.0753 8376 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\windows\System32\sens.dll
      16:55:09.0753 8376 SENS - ok
      16:55:09.0769 8376 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\windows\system32\sensrsvc.dll
      16:55:09.0769 8376 SensrSvc - ok
      16:55:09.0800 8376 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\windows\system32\drivers\serenum.sys
      16:55:09.0800 8376 Serenum - ok
      16:55:09.0816 8376 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\windows\system32\drivers\serial.sys
      16:55:09.0831 8376 Serial - ok
      16:55:09.0831 8376 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\windows\system32\drivers\sermouse.sys
      16:55:09.0831 8376 sermouse - ok
      16:55:09.0847 8376 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\windows\system32\sessenv.dll
      16:55:09.0862 8376 SessionEnv - ok
      16:55:09.0862 8376 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\windows\system32\drivers\sffdisk.sys
      16:55:09.0862 8376 sffdisk - ok
      16:55:09.0862 8376 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\windows\system32\drivers\sffp_mmc.sys
      16:55:09.0862 8376 sffp_mmc - ok
      16:55:09.0862 8376 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\windows\system32\drivers\sffp_sd.sys
      16:55:09.0878 8376 sffp_sd - ok
      16:55:09.0894 8376 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\windows\system32\drivers\sfloppy.sys
      16:55:09.0894 8376 sfloppy - ok
      16:55:09.0925 8376 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\windows\System32\ipnathlp.dll
      16:55:09.0925 8376 SharedAccess - ok
      16:55:09.0940 8376 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\windows\System32\shsvcs.dll
      16:55:09.0940 8376 ShellHWDetection - ok
      16:55:09.0956 8376 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\windows\system32\drivers\SiSRaid2.sys
      16:55:09.0956 8376 SiSRaid2 - ok
      16:55:09.0987 8376 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\windows\system32\drivers\sisraid4.sys
      16:55:09.0987 8376 SiSRaid4 - ok
      16:55:10.0065 8376 [ A4FAB5F7818A69DA6E740943CB8F7CA9 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
      16:55:10.0065 8376 SkypeUpdate - ok
      16:55:10.0096 8376 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\windows\system32\DRIVERS\smb.sys
      16:55:10.0112 8376 Smb - ok
      16:55:10.0159 8376 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\windows\System32\snmptrap.exe
      16:55:10.0159 8376 SNMPTRAP - ok
      16:55:10.0190 8376 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\windows\system32\drivers\spldr.sys
      16:55:10.0190 8376 spldr - ok
      16:55:10.0221 8376 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\windows\System32\spoolsv.exe
      16:55:10.0237 8376 Spooler - ok
      16:55:10.0330 8376 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\windows\system32\sppsvc.exe
      16:55:10.0440 8376 sppsvc - ok
      16:55:10.0471 8376 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\windows\system32\sppuinotify.dll
      16:55:10.0486 8376 sppuinotify - ok
      16:55:10.0533 8376 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\windows\system32\DRIVERS\srv.sys
      16:55:10.0533 8376 srv - ok
      16:55:10.0564 8376 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\windows\system32\DRIVERS\srv2.sys
      16:55:10.0564 8376 srv2 - ok
      16:55:10.0580 8376 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\windows\system32\DRIVERS\srvnet.sys
      16:55:10.0596 8376 srvnet - ok
      16:55:10.0611 8376 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\windows\System32\ssdpsrv.dll
      16:55:10.0627 8376 SSDPSRV - ok
      16:55:10.0642 8376 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\windows\system32\sstpsvc.dll
      16:55:10.0642 8376 SstpSvc - ok
      16:55:10.0720 8376 [ F0359F7CE712D69ACEF0886BDB4792ED ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
      16:55:10.0720 8376 Stereo Service - ok
      16:55:10.0736 8376 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\windows\system32\drivers\stexstor.sys
      16:55:10.0752 8376 stexstor - ok
      16:55:10.0783 8376 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\windows\System32\wiaservc.dll
      16:55:10.0798 8376 stisvc - ok
      16:55:10.0814 8376 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\windows\system32\DRIVERS\swenum.sys
      16:55:10.0814 8376 swenum - ok
      16:55:10.0830 8376 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\windows\System32\swprv.dll
      16:55:10.0861 8376 swprv - ok
      16:55:10.0923 8376 [ A2B1D227193BE8A07B7F5FDB9D5DEA6E ] SynTP C:\windows\system32\DRIVERS\SynTP.sys
      16:55:10.0970 8376 SynTP - ok
      16:55:11.0032 8376 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\windows\system32\sysmain.dll
      16:55:11.0095 8376 SysMain - ok
      16:55:11.0110 8376 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\windows\System32\TabSvc.dll
      16:55:11.0110 8376 TabletInputService - ok
      16:55:11.0126 8376 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\windows\System32\tapisrv.dll
      16:55:11.0142 8376 TapiSrv - ok
      16:55:11.0142 8376 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\windows\System32\tbssvc.dll
      16:55:11.0157 8376 TBS - ok
      16:55:11.0235 8376 [ 37608401DFDB388CAF66917F6B2D6FB0 ] Tcpip C:\windows\system32\drivers\tcpip.sys
      16:55:11.0298 8376 Tcpip - ok
      16:55:11.0344 8376 [ 37608401DFDB388CAF66917F6B2D6FB0 ] TCPIP6 C:\windows\system32\DRIVERS\tcpip.sys
      16:55:11.0360 8376 TCPIP6 - ok
      16:55:11.0376 8376 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\windows\system32\drivers\tcpipreg.sys
      16:55:11.0376 8376 tcpipreg - ok
      16:55:11.0407 8376 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\windows\system32\drivers\tdpipe.sys
      16:55:11.0407 8376 TDPIPE - ok
      16:55:11.0438 8376 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\windows\system32\drivers\tdtcp.sys
      16:55:11.0438 8376 TDTCP - ok
      16:55:11.0454 8376 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\windows\system32\DRIVERS\tdx.sys
      16:55:11.0454 8376 tdx - ok
      16:55:11.0485 8376 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\windows\system32\DRIVERS\termdd.sys
      16:55:11.0485 8376 TermDD - ok
      16:55:11.0516 8376 [ 2E648163254233755035B46DD7B89123 ] TermService C:\windows\System32\termsrv.dll
      16:55:11.0516 8376 TermService - ok
      16:55:11.0532 8376 [ F0344071948D1A1FA732231785A0664C ] Themes C:\windows\system32\themeservice.dll
      16:55:11.0547 8376 Themes - ok
      16:55:11.0578 8376 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\windows\system32\mmcss.dll
      16:55:11.0578 8376 THREADORDER - ok
      16:55:11.0594 8376 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\windows\System32\trkwks.dll
      16:55:11.0594 8376 TrkWks - ok
      16:55:11.0641 8376 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe
      16:55:11.0641 8376 TrustedInstaller - ok
      16:55:11.0672 8376 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\windows\system32\DRIVERS\tssecsrv.sys
      16:55:11.0672 8376 tssecsrv - ok
      16:55:11.0703 8376 [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt C:\windows\system32\drivers\tsusbflt.sys
      16:55:11.0703 8376 TsUsbFlt - ok
      16:55:11.0734 8376 [ AD64450A4ABE076F5CB34CC08EEACB07 ] TsUsbGD C:\windows\system32\drivers\TsUsbGD.sys
      16:55:11.0734 8376 TsUsbGD - ok
      16:55:11.0766 8376 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\windows\system32\DRIVERS\tunnel.sys
      16:55:11.0766 8376 tunnel - ok
      16:55:11.0781 8376 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\windows\system32\drivers\uagp35.sys
      16:55:11.0781 8376 uagp35 - ok
      16:55:11.0812 8376 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\windows\system32\DRIVERS\udfs.sys
      16:55:11.0812 8376 udfs - ok
      16:55:11.0844 8376 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\windows\system32\UI0Detect.exe
      16:55:11.0844 8376 UI0Detect - ok
      16:55:11.0859 8376 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\windows\system32\drivers\uliagpkx.sys
      16:55:11.0859 8376 uliagpkx - ok
      16:55:11.0875 8376 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\windows\system32\DRIVERS\umbus.sys
      16:55:11.0875 8376 umbus - ok
      16:55:11.0890 8376 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\windows\system32\drivers\umpass.sys
      16:55:11.0890 8376 UmPass - ok
      16:55:12.0015 8376 [ FDF92EC84FECEE834FB10A2A0A19BCDA ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
      16:55:12.0109 8376 UNS - ok
      16:55:12.0140 8376 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\windows\System32\upnphost.dll
      16:55:12.0140 8376 upnphost - ok
      16:55:12.0202 8376 [ 4E93C8496359E97830C75AC36393654D ] upperdev C:\windows\system32\DRIVERS\usbser_lowerfltx64.sys
      16:55:12.0202 8376 upperdev - ok
      16:55:12.0234 8376 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\windows\system32\DRIVERS\usbccgp.sys
      16:55:12.0234 8376 usbccgp - ok
      16:55:12.0265 8376 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\windows\system32\drivers\usbcir.sys
      16:55:12.0265 8376 usbcir - ok
      16:55:12.0280 8376 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\windows\system32\DRIVERS\usbehci.sys
      16:55:12.0296 8376 usbehci - ok
      16:55:12.0312 8376 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\windows\system32\DRIVERS\usbhub.sys
      16:55:12.0327 8376 usbhub - ok
      16:55:12.0343 8376 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\windows\system32\drivers\usbohci.sys
      16:55:12.0343 8376 usbohci - ok
      16:55:12.0374 8376 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\windows\system32\DRIVERS\usbprint.sys
      16:55:12.0374 8376 usbprint - ok
      16:55:12.0421 8376 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\windows\system32\DRIVERS\usbscan.sys
      16:55:12.0421 8376 usbscan - ok
      16:55:12.0468 8376 [ 4ACEE387FA8FD39F83564FCD2FC234F2 ] usbser C:\windows\system32\drivers\usbser.sys
      16:55:12.0483 8376 usbser - ok
      16:55:12.0499 8376 [ 8844CB19A37B65E27049D4A7786726A9 ] UsbserFilt C:\windows\system32\DRIVERS\usbser_lowerfltjx64.sys
      16:55:12.0499 8376 UsbserFilt - ok
      16:55:12.0514 8376 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\windows\system32\DRIVERS\USBSTOR.SYS
      16:55:12.0530 8376 USBSTOR - ok
      16:55:12.0546 8376 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\windows\system32\drivers\usbuhci.sys
      16:55:12.0546 8376 usbuhci - ok
      16:55:12.0561 8376 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\windows\system32\Drivers\usbvideo.sys
      16:55:12.0577 8376 usbvideo - ok
      16:55:12.0592 8376 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\windows\System32\uxsms.dll
      16:55:12.0608 8376 UxSms - ok
      16:55:12.0624 8376 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\windows\system32\lsass.exe
      16:55:12.0624 8376 VaultSvc - ok
      16:55:12.0624 8376 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\windows\system32\drivers\vdrvroot.sys
      16:55:12.0639 8376 vdrvroot - ok
      16:55:12.0655 8376 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\windows\System32\vds.exe
      16:55:12.0686 8376 vds - ok
      16:55:12.0686 8376 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\windows\system32\DRIVERS\vgapnp.sys
      16:55:12.0686 8376 vga - ok
      16:55:12.0702 8376 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\windows\System32\drivers\vga.sys
      16:55:12.0702 8376 VgaSave - ok
      16:55:12.0733 8376 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\windows\system32\drivers\vhdmp.sys
      16:55:12.0733 8376 vhdmp - ok
      16:55:12.0733 8376 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\windows\system32\drivers\viaide.sys
      16:55:12.0748 8376 viaide - ok
      16:55:12.0764 8376 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\windows\system32\drivers\volmgr.sys
      16:55:12.0764 8376 volmgr - ok
      16:55:12.0780 8376 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\windows\system32\drivers\volmgrx.sys
      16:55:12.0795 8376 volmgrx - ok
      16:55:12.0811 8376 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\windows\system32\drivers\volsnap.sys
      16:55:12.0811 8376 volsnap - ok
      16:55:12.0842 8376 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\windows\system32\drivers\vsmraid.sys
      16:55:12.0842 8376 vsmraid - ok
      16:55:12.0904 8376 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\windows\system32\vssvc.exe
      16:55:12.0967 8376 VSS - ok
      16:55:12.0998 8376 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\windows\system32\DRIVERS\vwifibus.sys
      16:55:12.0998 8376 vwifibus - ok
      16:55:13.0014 8376 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\windows\system32\DRIVERS\vwififlt.sys
      16:55:13.0014 8376 vwififlt - ok
      16:55:13.0029 8376 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\windows\system32\DRIVERS\vwifimp.sys
      16:55:13.0029 8376 vwifimp - ok
      16:55:13.0076 8376 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\windows\system32\w32time.dll
      16:55:13.0076 8376 W32Time - ok
      16:55:13.0092 8376 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\windows\system32\drivers\wacompen.sys
      16:55:13.0092 8376 WacomPen - ok
      16:55:13.0138 8376 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\windows\system32\DRIVERS\wanarp.sys
      16:55:13.0138 8376 WANARP - ok
      16:55:13.0138 8376 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\windows\system32\DRIVERS\wanarp.sys
      16:55:13.0138 8376 Wanarpv6 - ok
      16:55:13.0248 8376 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\windows\system32\Wat\WatAdminSvc.exe
      16:55:13.0294 8376 WatAdminSvc - ok
      16:55:13.0357 8376 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\windows\system32\wbengine.exe
      16:55:13.0404 8376 wbengine - ok
      16:55:13.0419 8376 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\windows\System32\wbiosrvc.dll
      16:55:13.0419 8376 WbioSrvc - ok
      16:55:13.0450 8376 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\windows\System32\wcncsvc.dll
      16:55:13.0450 8376 wcncsvc - ok
      16:55:13.0466 8376 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll
      16:55:13.0466 8376 WcsPlugInService - ok
      16:55:13.0482 8376 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\windows\system32\drivers\wd.sys
      16:55:13.0482 8376 Wd - ok
      16:55:13.0544 8376 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\windows\system32\drivers\Wdf01000.sys
      16:55:13.0575 8376 Wdf01000 - ok
      16:55:13.0591 8376 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\windows\system32\wdi.dll
      16:55:13.0591 8376 WdiServiceHost - ok
      16:55:13.0591 8376 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\windows\system32\wdi.dll
      16:55:13.0591 8376 WdiSystemHost - ok
      16:55:13.0638 8376 [ 94DC2BF6CBAAA95E369C3756D3115A76 ] wdkmd C:\windows\system32\DRIVERS\WDKMD.sys
      16:55:13.0638 8376 wdkmd - ok
      16:55:13.0653 8376 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\windows\System32\webclnt.dll
      16:55:13.0653 8376 WebClient - ok
      16:55:13.0669 8376 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\windows\system32\wecsvc.dll
      16:55:13.0684 8376 Wecsvc - ok
      16:55:13.0700 8376 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\windows\System32\wercplsupport.dll
      16:55:13.0700 8376 wercplsupport - ok
      16:55:13.0731 8376 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\windows\System32\WerSvc.dll
      16:55:13.0731 8376 WerSvc - ok
      16:55:13.0762 8376 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\windows\system32\DRIVERS\wfplwf.sys
      16:55:13.0762 8376 WfpLwf - ok
      16:55:13.0778 8376 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\windows\system32\drivers\wimmount.sys
      16:55:13.0778 8376 WIMMount - ok
      16:55:13.0809 8376 WinDefend - ok
      16:55:13.0809 8376 WinHttpAutoProxySvc - ok
      16:55:13.0872 8376 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\windows\system32\wbem\WMIsvc.dll
      16:55:13.0872 8376 Winmgmt - ok
      16:55:13.0965 8376 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\windows\system32\WsmSvc.dll
      16:55:14.0043 8376 WinRM - ok
      16:55:14.0106 8376 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\windows\System32\wlansvc.dll
      16:55:14.0152 8376 Wlansvc - ok
      16:55:14.0199 8376 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
      16:55:14.0199 8376 wlcrasvc - ok
      16:55:14.0324 8376 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
      16:55:14.0386 8376 wlidsvc - ok
      16:55:14.0402 8376 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\windows\system32\DRIVERS\wmiacpi.sys
      16:55:14.0402 8376 WmiAcpi - ok
      16:55:14.0433 8376 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\windows\system32\wbem\WmiApSrv.exe
      16:55:14.0433 8376 wmiApSrv - ok
      16:55:14.0464 8376 WMPNetworkSvc - ok
      16:55:14.0496 8376 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\windows\System32\wpcsvc.dll
      16:55:14.0496 8376 WPCSvc - ok
      16:55:14.0511 8376 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\windows\system32\wpdbusenum.dll
      16:55:14.0527 8376 WPDBusEnum - ok
      16:55:14.0542 8376 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\windows\system32\drivers\ws2ifsl.sys
      16:55:14.0542 8376 ws2ifsl - ok
      16:55:14.0574 8376 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\windows\System32\wscsvc.dll
      16:55:14.0574 8376 wscsvc - ok
      16:55:14.0574 8376 WSearch - ok
      16:55:14.0605 8376 [ 83575C43B2BFE9AB0661A7F957E843C0 ] wsvd C:\windows\system32\DRIVERS\wsvd.sys
      16:55:14.0620 8376 wsvd - ok
      16:55:14.0683 8376 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\windows\system32\wuaueng.dll
      16:55:14.0745 8376 wuauserv - ok
      16:55:14.0776 8376 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\windows\system32\drivers\WudfPf.sys
      16:55:14.0776 8376 WudfPf - ok
      16:55:14.0808 8376 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\windows\system32\DRIVERS\WUDFRd.sys
      16:55:14.0808 8376 WUDFRd - ok
      16:55:14.0854 8376 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\windows\System32\WUDFSvc.dll
      16:55:14.0854 8376 wudfsvc - ok
      16:55:14.0886 8376 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\windows\System32\wwansvc.dll
      16:55:14.0901 8376 WwanSvc - ok
      16:55:15.0042 8376 [ 74983ADDCA2D9618512C088D856D6615 ] {73526619-C24F-470B-9BED-53D455FBB5C6} C:\Program Files (x86)\CyberLink\PowerDVD12\Common\NavFilter\000.fcl
      16:55:15.0042 8376 {73526619-C24F-470B-9BED-53D455FBB5C6} - ok
      16:55:15.0057 8376 ================ Scan global ===============================
      16:55:15.0088 8376 [ BA0CD8C393E8C9F83354106093832C7B ] C:\windows\system32\basesrv.dll
      16:55:15.0120 8376 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\windows\system32\winsrv.dll
      16:55:15.0120 8376 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\windows\system32\winsrv.dll
      16:55:15.0135 8376 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\windows\system32\sxssrv.dll
      16:55:15.0166 8376 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\windows\system32\services.exe
      16:55:15.0166 8376 [Global] - ok
      16:55:15.0166 8376 ================ Scan MBR ==================================
      16:55:15.0166 8376 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
      16:55:15.0354 8376 \Device\Harddisk0\DR0 - ok
      16:55:15.0369 8376 ================ Scan VBR ==================================
      16:55:15.0369 8376 [ F5996A4527080A1BE5CB070594B545E9 ] \Device\Harddisk0\DR0\Partition1
      16:55:15.0369 8376 \Device\Harddisk0\DR0\Partition1 - ok
      16:55:15.0400 8376 [ 977BCB6B1FF519187C5C1B207F99024D ] \Device\Harddisk0\DR0\Partition2
      16:55:15.0400 8376 \Device\Harddisk0\DR0\Partition2 - ok
      16:55:15.0416 8376 [ 0DD00D5D6B50830C9297610D693A7179 ] \Device\Harddisk0\DR0\Partition3
      16:55:15.0416 8376 \Device\Harddisk0\DR0\Partition3 - ok
      16:55:15.0416 8376 ============================================================
      16:55:15.0416 8376 Scan finished
      16:55:15.0416 8376 ============================================================
      16:55:15.0432 8600 Detected object count: 0
      16:55:15.0432 8600 Actual detected object count: 0
      16:56:25.0960 2292 Deinitialize success

    9. #9
      Ex-Colaborador Avatar de RevesdeLiberte
      Registrado
      feb 2010
      Ubicación
      México
      Mensajes
      7.976

      Re: Win32 Wolcape.A Troyano

      Hola.


      Si, ese es el resultado, lo raro es que TDSSKiller no encontro nada.



      Realiza lo siguiente:


      • Descargue aswMBR.exe en su escritorio.
      • Haga doble clic en el archivo aswMBR.exe para ejecutarlo
      • Si te soliicta descargar el Antivirus has clic en No
      • A continuación clic en el botón Scan para comenzar el análisis



      • Pulsa el botón Save log para guardar el archivo aswASW.txt en el escritorio
      • En caso de infección clic en Exit, no tome ninguna otra acción.



      Copia el contenido del archivo aswASW.txt en tu siguiente respuesta.
      La paciencia es un árbol de raíces amargas, pero de frutos dulces.

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    10. #10
      Usuario Avatar de beby3367
      Registrado
      dic 2012
      Ubicación
      Peru
      Mensajes
      12

      Re: Win32 Wolcape.A Troyano

      Resultado ...

      aswMBR version 0.9.9.1707 Copyright(c) 2011 AVAST Software
      Run date: 2012-12-08 17:14:54
      -----------------------------
      17:14:54.516 OS Version: Windows x64 6.1.7601 Service Pack 1
      17:14:54.516 Number of processors: 4 586 0x2A07
      17:14:54.516 ComputerName: USUARIO-PC UserName: Usuario
      17:14:55.203 Initialize success
      17:15:21.231 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
      17:15:21.231 Disk 0 Vendor: ST950032 0011 Size: 476940MB BusType: 3
      17:15:21.247 Disk 0 MBR read successfully
      17:15:21.247 Disk 0 MBR scan
      17:15:21.263 Disk 0 Windows 7 default MBR code
      17:15:21.278 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 200 MB offset 2048
      17:15:21.294 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 104521 MB offset 411648
      17:15:21.294 Disk 0 Partition - 00 0F Extended LBA 357109 MB offset 214470656
      17:15:21.341 Disk 0 Partition 3 00 12 Compaq diag NTFS 15108 MB offset 945830208
      17:15:21.387 Disk 0 Partition 4 00 07 HPFS/NTFS NTFS 357108 MB offset 214472704
      17:15:21.434 Disk 0 scanning C:\windows\system32\drivers
      17:15:29.265 Service scanning
      17:15:48.001 Modules scanning
      17:15:48.017 Disk 0 trace - called modules:
      17:15:48.126 ntoskrnl.exe CLASSPNP.SYS disk.sys iaStor.sys hal.dll
      17:15:48.141 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8006501060]
      17:15:48.157 3 CLASSPNP.SYS[fffff8800180143f] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa80052ab050]
      17:15:48.157 Scan finished successfully
      17:16:01.121 Disk 0 MBR has been saved successfully to "C:\Users\Usuario\Desktop\MBR.dat"
      17:16:01.121 The log file has been saved successfully to "C:\Users\Usuario\Desktop\aswMBR.txt"

    Página 1 de 2 12 ÚltimoÚltimo