• Registrarse
  • Iniciar sesión


  • Página 3 de 8 PrimeroPrimero 1234567 ... ÚltimoÚltimo
    Resultados 21 al 30 de 77

    Centro de Seguridad se desactiva solo (Reabierto)

    Hola, ProgramData es una carpeta oculta por defecto, así que vas a tener que hacerla visible Ver archivos ocultos Lo que te pido no es que abras los archivos que hay en esas carpetas y ...

    1. #21
      Usuario Avatar de Raudron
      Registrado
      sep 2012
      Ubicación
      El Mundo
      Mensajes
      1.467

      Re: Centro de Seguridad se desactiva solo

      Hola,

      ProgramData es una carpeta oculta por defecto, así que vas a tener que hacerla visible
      Ver archivos ocultos

      Lo que te pido no es que abras los archivos que hay en esas carpetas y tomes una captura, sino que abras las carpetas y tomes una captura de todos los archivos que hay dentro... Me explico?

      Saludos

    2. #22
      Usuario Avatar de Ramiro.
      Registrado
      dic 2012
      Ubicación
      Uruguay
      Mensajes
      49

      Re: Centro de Seguridad se desactiva solo

      Bien,

      Aquí va el reporte de OTM:

      Código:
      All processes killed
      ========== FILES ==========
      C:\Users\Ramiro\AppData\Roaming\wklnhst.dat moved successfully.
      File/Folder C:\Program Files (x86)\DAEMON Tools Toolbar not found.
      File/Folder C:\Program Files (x86)\ecuadortv not found.
      C:\Program Files (x86)\iLivid\imageformats\qgif4.dll deleted successfully.
      C:\Program Files (x86)\iLivid\imageformats\qjpeg4.dll deleted successfully.
      C:\Program Files (x86)\iLivid\imageformats folder deleted successfully.
      C:\Program Files (x86)\iLivid\ilivid.exe deleted successfully.
      C:\Program Files (x86)\iLivid\ilivid.ico deleted successfully.
      C:\Program Files (x86)\iLivid\libeay32.dll deleted successfully.
      C:\Program Files (x86)\iLivid\libgcc_s_dw2-1.dll deleted successfully.
      C:\Program Files (x86)\iLivid\mingwm10.dll deleted successfully.
      C:\Program Files (x86)\iLivid\phonon4.dll deleted successfully.
      C:\Program Files (x86)\iLivid\QtCore4.dll deleted successfully.
      C:\Program Files (x86)\iLivid\QtGui4.dll deleted successfully.
      C:\Program Files (x86)\iLivid\QtNetwork4.dll deleted successfully.
      C:\Program Files (x86)\iLivid\QtScript4.dll deleted successfully.
      C:\Program Files (x86)\iLivid\QtSvg4.dll deleted successfully.
      C:\Program Files (x86)\iLivid\QtWebKit4.dll deleted successfully.
      C:\Program Files (x86)\iLivid\QtXmlPatterns4.dll deleted successfully.
      C:\Program Files (x86)\iLivid\script.qscript deleted successfully.
      C:\Program Files (x86)\iLivid\script1.81.qscript deleted successfully.
      C:\Program Files (x86)\iLivid\ssleay32.dll deleted successfully.
      C:\Program Files (x86)\iLivid folder deleted successfully.
      C:\Program Files (x86)\Search Toolbar\SearchToolbarUninstall.exe deleted successfully.
      C:\Program Files (x86)\Search Toolbar folder deleted successfully.
      C:\ProgramData\FullRemove.exe moved successfully.
      ========== COMMANDS ==========
      C:\Windows\System32\drivers\etc\Hosts moved successfully.
      HOSTS file reset successfully
       
      [EMPTYTEMP]
       
      User: All Users
       
      User: Default
      ->Temp folder emptied: 0 bytes
      ->Temporary Internet Files folder emptied: 33170 bytes
       
      User: Default User
      ->Temp folder emptied: 0 bytes
      ->Temporary Internet Files folder emptied: 0 bytes
       
      User: Public
       
      User: Ramiro
      ->Temp folder emptied: 1997180 bytes
      ->Temporary Internet Files folder emptied: 2937970 bytes
      ->Java cache emptied: 347746 bytes
      ->Google Chrome cache emptied: 271580755 bytes
      ->Flash cache emptied: 506 bytes
       
      %systemdrive% .tmp files removed: 0 bytes
      %systemroot% .tmp files removed: 0 bytes
      %systemroot%\System32 .tmp files removed: 4857360 bytes
      %systemroot%\System32 (64bit) .tmp files removed: 0 bytes
      %systemroot%\System32\drivers .tmp files removed: 0 bytes
      Windows Temp folder emptied: 84254 bytes
      %systemroot%\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 15683991 bytes
      %systemroot%\system32\config\systemprofile\AppData\LocalLow\Sun\Java\Deployment folder emptied: 755 bytes
      %systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 67774 bytes
      RecycleBin emptied: 10920667 bytes
       
      Total Files Cleaned = 294,00 mb
       
       
      OTM by OldTimer - Version 3.1.21.0 log created on 12112012_163229
      
      Files moved on Reboot...
      C:\Users\Ramiro\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
      
      Registry entries deleted on Reboot...
      Acá van los enlaces con los análisis:

      -Archivo 1xv59gz1i.cpl:

      https://www.virustotal.com/file/257f...8b68/analysis/

      -Archivo ArcadeDeluxe3.log:

      https://www.virustotal.com/file/0060...cb02/analysis/

      -Archivo bW4P7ZzbO.cpl:

      https://www.virustotal.com/file/ec78...fbef/analysis/

      -Archivo hWqiCGnIazwz.cpl:

      https://www.virustotal.com/file/2cdb...7bd8/analysis/

      -Archivo LibDGJku0Ggz.cpl

      https://www.virustotal.com/file/e985...90a0/analysis/

      -Archivo rznaopga.sea :

      https://www.virustotal.com/file/a542...6163/analysis/

      -Archivo df9b0.exe:

      https://www.virustotal.com/file/e3b0...b855/analysis/


      Y las capturas, que tema ese jaja, No encontré la carpeta ProgramData aunque haya puesto para ver los archivos ocultos como dijiste vos!

      Saludos, espero próximas indicaciones!

    3. #23
      Usuario Avatar de Raudron
      Registrado
      sep 2012
      Ubicación
      El Mundo
      Mensajes
      1.467

      Re: Centro de Seguridad se desactiva solo

      Hola,

      No estaba ProgramData en C:\?

      Tenemos que tener paciencia, ya que estás bastante infectado y los procedimientos se pueden alargar demasiado Y como verás, los reportes también son bastante largos..

      Luego vamos a volver a usar OTM, ya que necesitamos eliminar todos esos archivos que analizaste con Virustotal.
      Pero antes, si te parece , vamos a hacer un escaneo más:

      Realiza un análisis completo con Eset Online Scanner de la siguiente forma:
      Lo ejecutas.

      Marcas las casillas de Eliminar las amenazas detectadas y Analizar archivos.

      Haces clic en Configuración adicional y ahi marcas las casillas:
      • Analizar en busca de aplicaciones potencialmente indeseables.
      • Analizar en busca de aplicaciones potencialmente peligrosas.
      • Activar la tecnolgía Anti-Stealth.


      Pulsas en Iniciar para que empiece a descargar la base firmas de virus y posteriormente empiece a analizar tu sistema.

      Presioná Lista de las amenazas encontradas.


      Exportá a un archivo de texto.

      Localizar el reporte en C:\Archivos de programa\ESET\ESET Online Scanner\log.txt
      Puede tardar bastante tiempo este escaneo.. pero es el único antivirus online que desinfecta/elimina lo que detecta
      Nos traes el reporte, y nos comentas cómo funciona tu ordenador.
      Saludos

    4. #24
      Usuario Avatar de Ramiro.
      Registrado
      dic 2012
      Ubicación
      Uruguay
      Mensajes
      49

      Re: Centro de Seguridad se desactiva solo

      Hola,

      Hice el escaneo, sí que tardó se eliminaron algunos archivos infectados , pero sigo con el mismo problema
      El centro de seguridad se desactiva, y tampoco puedo abrir mi antivirus!

      Acá va el reporte del escaneo:

      Código:
      [email protected] as downloader log:
      all ok
      # version=8
      # OnlineScannerApp.exe=1.0.0.1
      # OnlineScanner.ocx=1.0.0.6844
      # api_version=3.0.2
      # EOSSerial=8ac48de5eb69094991db19ecb6f324df
      # end=finished
      # remove_checked=true
      # archives_checked=true
      # unwanted_checked=true
      # unsafe_checked=true
      # antistealth_checked=true
      # utc_time=2012-12-12 01:45:09
      # local_time=2012-12-11 11:45:09 (-0300, Hora de verano de Montevideo)
      # country="Uruguay"
      # lang=3082
      # osver=6.1.7601 NT Service Pack 1
      # compatibility_mode=5893 16776574 100 94 42432656 106823759 0 0
      # scanned=202733
      # found=11
      # cleaned=9
      # scan_time=13961
      C:\Users\All Users\hWqiCGnIazwz.cpl	una variante de Win32/Spy.Banker.YKG Troyano (no es posible su desinfección)	A1723B0096629496E0EB8B73130A3CEBB789CCA4	I
      C:\Users\All Users\LibDGJku0Ggz.cpl	una variante de Win32/Spy.Banker.YKG Troyano (no es posible su desinfección)	9D6D7F6D60A39653D99D141DB481901208303ECF	I
      C:\ProgramData\hWqiCGnIazwz.cpl	una variante de Win32/Spy.Banker.YKG Troyano (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena)	A1723B0096629496E0EB8B73130A3CEBB789CCA4	C
      C:\ProgramData\LibDGJku0Ggz.cpl	una variante de Win32/Spy.Banker.YKG Troyano (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena)	9D6D7F6D60A39653D99D141DB481901208303ECF	C
      C:\Users\Ramiro\Documents\game maker\PokerStars.net.lnk	una variante de Win32/SoftonicDownloader.A aplicación (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena)	FE0E10063E925B2E7A656E5B4D94F6A819FA3CD8	C
      C:\Users\Ramiro\Documents\game maker\SoftonicDownloader65459.exe	una variante de Win32/SoftonicDownloader.A aplicación (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena)	CCD614B29DCEDD358FBE3F4ADD3DE74968DAE319	C
      C:\Users\Ramiro\Downloads\cosas\Setup_MoviesToDVD.exe	Win32/Toolbar.SearchSuite aplicación (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena)	D6F29B4037162DC5E6257819C9DEFD373E6ED87D	C
      C:\Users\Ramiro\Downloads\cosas\SoftonicDownloader14436.exe	una variante de Win32/SoftonicDownloader.A aplicación (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena)	FE0E10063E925B2E7A656E5B4D94F6A819FA3CD8	C
      C:\Users\Ramiro\Downloads\cosas\SoftonicDownloader_para_derive.exe	una variante de Win32/SoftonicDownloader.E aplicación (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena)	140E17F85AE5AC4EBBAA47321DA4E4DE265E724C	C
      C:\Users\Ramiro\Downloads\cosas\SoftonicDownloader_para_geogebra.exe	una variante de Win32/SoftonicDownloader.E aplicación (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena)	732364F931AD933BB2747E295FD61A79714DECBA	C
      C:\Users\Ramiro\Downloads\cosas\SoftonicDownloader_para_pitchperfect-guitar-tuner.exe	Win32/SoftonicDownloader aplicación (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena)	3155E561C4AD1B938BBBF80C285BB48CBD20BA42	C
      Saludos

    5. #25
      Usuario Avatar de Raudron
      Registrado
      sep 2012
      Ubicación
      El Mundo
      Mensajes
      1.467

      Re: Centro de Seguridad se desactiva solo

      Hola,

      Seguimos eliminando algunas cosas

      Por favor, realiza lo siguiente:

      • Ejecuta OTM.exe
      • Nota: Si estás utilizando Windows Vista o Windows 7. Da click derecho sobre OTM.exe y selecciona Ejecutar Como Admistrador
      • Copia y pega el siguiente Script que se encuentra dentro del recuadro de abajo. (Se excluye la palabra Código)


      Código:
      :files
      C:\ProgramData\ArcadeDeluxe3.log
      C:\ProgramData\bW4P7ZzbO.cpl
      C:\ProgramData\1xv59gz1i.cpl
      C:\ProgramData\rznaopga.sea
      C:\ProgramData\t9J3E7LN.exe.bmp
      
      :commands
      [emptytemp]
      [Reboot]
      • Presiona el botón rojo MoveIt!
      • Espera hasta cuando el resultado aparezca en el marco Results.
      • Permite que se reinicie el equipo, esto es importante.
      • Copia y Pega en tu próxima resuesta el reporte de OTM situado sobre C: \ _ OTM\MovedFiles\***_***.log


      Nota: Es posible que note archivos o carpetas visibles en el escritorio y/o en otro apartado del sistema, esto es normal, al finalizar los procedimientos, todo volverá a la normalidad.
      Luego de haber reiniciado y eliminado los archivos que te comenté, conectate a internet, ejecutá OTM y presioná Cleanup!.

      Y después... Preparate para un escaneo intensivo y muy, muuuuuuuuy largo... pero efectivo

      Descarga Dr.Web CureIt!. Te dejo su Manual. (Descargalo únicamente en el momento en que lo vayas a usar)
      Ejecuta Dr.Web CureIt! de la siguiente forma:
      Ejecutalo (en su modo de protección mejorada: EPM) en una cuenta con derechos de Administrador.
      Dr.Web CureIt! iniciará un Escaneo Rápido por defecto. Esperá a que termine.
      Realizá un Escaneo Completo haciendo clic sobre Play, como muestra la siguiente imagen:

      Cuando termine de escanear (suele tardar bastante), curá, mové o eliminá (presionando sobre ) lo que haya encontrado, según te de la opción el mismo programa.
      Si te da un aviso como el siguiente:

      Pulsá sobre Sí para repararlo.
      Al finalizar, guardá un reporte de la siguiente forma:
      Nos traes el reporte de OTM.
      Con respecto al reporte de DrWebCureIt: traenos unicamente la sección Estadísticas del reporte que se genera en %userprofile%\DoctorWeb\CureIt.log
      Nos comentas cómo funciona tu ordenador
      Saludos

    6. #26
      Usuario Avatar de Ramiro.
      Registrado
      dic 2012
      Ubicación
      Uruguay
      Mensajes
      49

      Re: Centro de Seguridad se desactiva solo

      Buenos días!

      Después de 6 horitas acá está el reporte de CureIt:

      Código:
      =============================================================================
      Estadística total de sesión
      =============================================================================
      Objetos chequeados: 413830
      Infectados: 0
      Infectados con modificaciones: 0
      Sospechosos: 0
      Programas Adware: 6
      Programas Dialer: 0
      Programas - bromas: 0
      Programas Riskware: 0
      Programas Hacktool: 2
      Objetos curados: 0
      Objetos eliminados: 3
      Objetos renombrados: 0
      Objetos movidos: 0
      Objetos ignorados: 0
      Velocidad del chequeo: 2 Kb/s
      Tiempo del chequeo: 5:45:54
      =============================================================================
      Es raro porque hay encontrado 8 virus y se tomaron solo 3 acciones!


      Y acá va el reporte de OTM:

      Código:
      All processes killed
      ========== FILES ==========
      C:\ProgramData\ArcadeDeluxe3.log moved successfully.
      C:\ProgramData\bW4P7ZzbO.cpl moved successfully.
      C:\ProgramData\1xv59gz1i.cpl moved successfully.
      C:\ProgramData\rznaopga.sea moved successfully.
      C:\ProgramData\t9J3E7LN.exe.bmp moved successfully.
      ========== COMMANDS ==========
       
      [EMPTYTEMP]
       
      User: All Users
       
      User: Default
      ->Temp folder emptied: 0 bytes
      ->Temporary Internet Files folder emptied: 0 bytes
       
      User: Default User
      ->Temp folder emptied: 0 bytes
      ->Temporary Internet Files folder emptied: 0 bytes
       
      User: Public
       
      User: Ramiro
      ->Temp folder emptied: 123929 bytes
      ->Temporary Internet Files folder emptied: 1139325 bytes
      ->Java cache emptied: 0 bytes
      ->Google Chrome cache emptied: 137857615 bytes
      ->Flash cache emptied: 0 bytes
       
      %systemdrive% .tmp files removed: 0 bytes
      %systemroot% .tmp files removed: 0 bytes
      %systemroot%\System32 .tmp files removed: 0 bytes
      %systemroot%\System32 (64bit) .tmp files removed: 0 bytes
      %systemroot%\System32\drivers .tmp files removed: 0 bytes
      Windows Temp folder emptied: 6774 bytes
      %systemroot%\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 0 bytes
      %systemroot%\system32\config\systemprofile\AppData\LocalLow\Sun\Java\Deployment folder emptied: 0 bytes
      %systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 32768 bytes
      RecycleBin emptied: 160029130 bytes
       
      Total Files Cleaned = 285,00 mb
       
       
      OTM by OldTimer - Version 3.1.21.0 log created on 12122012_002510
      
      Files moved on Reboot...
      C:\Users\Ramiro\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
      
      Registry entries deleted on Reboot...
      Y el problema persiste

      Espero tus próximas indicaciones!

      Saludos

    7. #27
      Usuario Avatar de Raudron
      Registrado
      sep 2012
      Ubicación
      El Mundo
      Mensajes
      1.467

      Re: Centro de Seguridad se desactiva solo

      Hola,

      Solo 3 acciones? En realidad detectó 8 cosas, 2 son hacktools
      Te aparecieron nada mas que tres avisos de infeccion?

      Yo sigo pensando que es un rootkit Pero si no lo detectamos con las herramientas convencionales vamos a reportarlo al Staff
      Por favor, realiza lo siguiente:

      Descarga al escritorio (pero no ejecutes aún) las siguientes herramientas:

      Malwarebytes Antimalware | Manual. Actualiza la base de datos de este programa.

      Rkill.
      Procede en Modo Seguro

      Ejecuta Rkill como administrador. Es muy importante que, a partir de este punto, no reinicies el sistema hasta que se te solicite.

      Ejecuta Malwarebytes Antimalware.
      • Selecciona "Realizar un análisis completo" y luego presiona Analizar.
      • El Análisis puede tomar algún tiempo para terminar, así que por favor se paciente.
      • Cuando el Análisis se haya completado, haga clic en 'Aceptar', a continuación, mostrar los resultados. Elimina todo lo que encuentre (Haciendo clic en "Eliminar seleccionados") como muestra la imagen
      • Es posible que le solicite reiniciar su ordenador para completar con la desinfección y reparación de las áreas afectadas del sistema, por lo que permita el reinicio para terminar.
      Descargue TDSS Killer a su escritorio. (Manual)

      Desconecte físicamente su equipo de Internet (Desconecte el cable / apague el módem)

      Ejecútelo como administrador y presione Change Parameters. Tilde ambas opciones. Presione Start Scan.

      Es importante que no utilice el navegador mientras se realiza el análisis.
      Durante el análisis verá el progreso de la exploración, la herramienta buscará objetos maliciosos y/o sospechosos.

      Si su equipo está infectado:

      Le mostrará una ventana donde se ve que fue encontrada alguna infección. Threats detected.


      TDSSKiller puede mostrar:

      Malware object (Objetos Maliciosos): La acción predeterminada es "Cure" (Desinfectar) o "Delete" (Eliminar). El programa selecciona de forma automática la acción a tomar.

      Suspicious object (Objetos Sospechosos): la opción por defecto es Skip (saltar), no cambie esta opción si no se le ha indicado, el objeto sospechoso quedará reflejado en el reporte el cual debe pegar en el tema que se lo solicitaron para que le indiquen las acciones a tomar. Si ejecutó la herramienta por su cuenta puede abrir un tema con el reporte en nuestro foro para que sea analizado.

      Las otras opciones son:

      Restore: Restaura un MBR estándar. Si ha instalado un gestor de arranque como (Acronis, Grub, Lilo), deberá reinstalarlo de nuevo.
      Quarantine: Copia los archivos detectados a cuarentena. Estos archivos no son eliminados.
      Delete: Elimina el archivo por completo. No use esta opción si no se le ha indicado.
      Para desinfectar su sistema, puede que TDSS Killer solicite reiniciar. Permita este reinicio haciendo clic en "Reboot Computer".
      Nos traes los reportes de estas tres herramientas, y nos comentas si el problema persiste.
      Saludos

    8. #28
      Usuario Avatar de Ramiro.
      Registrado
      dic 2012
      Ubicación
      Uruguay
      Mensajes
      49

      Re: Centro de Seguridad se desactiva solo

      Hola,

      hice lo que me indicaste, pero el problema continúa!

      Acá va el reporte de Rkill:

      Código:
      Rkill 2.4.5 by Lawrence Abrams (Grinler)
      http://www.bleepingcomputer.com/
      Copyright 2008-2012 BleepingComputer.com
      More Information about Rkill can be found at this link:
       http://www.bleepingcomputer.com/forums/topic308364.html
      
      Program started at: 12/12/2012 02:37:27 PM in x64 mode.
      Windows Version: Windows 7 Home Premium Service Pack 1
      
      Checking for Windows services to stop:
      
       * No malware services found to stop.
      
      Checking for processes to terminate:
      
       * No malware processes found to kill.
      
      Checking Registry for malware related settings:
      
       * No issues found in the Registry.
      
      Resetting .EXE, .COM, & .BAT associations in the Windows Registry.
      
      Performing miscellaneous checks:
      
       * No issues found.
      
      Checking Windows Service Integrity: 
      
       * Motor de filtrado de base (BFE) is not Running.
         Startup Type set to: Automatic
      
       * Cliente DHCP (Dhcp) is not Running.
         Startup Type set to: Automatic
      
       * Cliente DNS (Dnscache) is not Running.
         Startup Type set to: Automatic
      
       * Sistema de eventos COM+ (EventSystem) is not Running.
         Startup Type set to: Automatic
      
       * Firewall de Windows (MpsSvc) is not Running.
         Startup Type set to: Automatic
      
       * Conexiones de red (Netman) is not Running.
         Startup Type set to: Manual
      
       * Servicio Interfaz de almacenamiento en red (nsi) is not Running.
         Startup Type set to: Automatic
      
       * Centro de seguridad (wscsvc) is not Running.
         Startup Type set to: Disabled
      
       * Windows Update (wuauserv) is not Running.
         Startup Type set to: Automatic (Delayed Start)
      
       * Ancillary Function Driver for Winsock (AFD) is not Running.
         Startup Type set to: System
      
       * Controlador de autorización de Firewall de Windows (mpsdrv) is not Running.
         Startup Type set to: Manual
      
       * NetBT (NetBT) is not Running.
         Startup Type set to: System
      
       * NSI proxy service driver. (nsiproxy) is not Running.
         Startup Type set to: System
      
       * Controlador de soporte TDI heredado NetIO (tdx) is not Running.
         Startup Type set to: System
      
      Searching for Missing Digital Signatures: 
      
       * No issues found.
      
      Checking HOSTS File: 
      
       * No issues found.
      
      Program finished at: 12/12/2012 02:37:55 PM
      Execution time: 0 hours(s), 0 minute(s), and 27 seconds(s)
      Acá va el reporte de Malwarebytes Anti-Malware:

      Código:
       Malwarebytes Anti-Malware (Versión de Prueba) 1.65.1.1000
      www.malwarebytes.org
      
      Versión de la Base de Datos: v2012.12.12.08
      
      Windows 7 Service Pack 1 x64 NTFS (modo seguro)
      Internet Explorer 8.0.7601.17514
      Ramiro :: RAMIRO-PC [administrador]
      
      Protección: Personas de movilidad reducida
      
      12/12/2012 02:38:09 p.m.
      mbam-log-2012-12-12 (14-38-09).txt
      
      Tipos de Análisis: Análisis Completo (C:\|D:\|G:\|H:\|)
      Opciones de análisis activado: Memoria | Inicio | Registro | Sistema de archivos | Heurística/Extra | Heurística/Shuriken | PUP | PUM
      Opciones de análisis desactivados: P2P
      Objetos examinados: 398478
      Tiempo transcurrido: 54 minuto(s), 7 segundo(s)
      
      Procesos en Memoria Detectados: 0
      (No se han detectado elementos maliciosos)
      
      Módulos de Memoria Detectados: 0
      (No se han detectado elementos maliciosos)
      
      Claves del Registro Detectados: 0
      (No se han detectado elementos maliciosos)
      
      Valores del Registro Detectados: 0
      (No se han detectado elementos maliciosos)
      
      Elementos de Datos del Registro Detectados: 0
      (No se han detectado elementos maliciosos)
      
      Carpetas Detectadas: 0
      (No se han detectado elementos maliciosos)
      
      Archivos Detectados: 0
      (No se han detectado elementos maliciosos)
      
      fin)

      Y por último, acá va el reporte de TDSSkiller:

      Código:
      16:14:30.0632 1564  TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
      16:14:30.0647 1564  ============================================================
      16:14:30.0647 1564  Current date / time: 2012/12/12 16:14:30.0647
      16:14:30.0647 1564  SystemInfo:
      16:14:30.0647 1564  
      16:14:30.0647 1564  OS Version: 6.1.7601 ServicePack: 1.0
      16:14:30.0647 1564  Product type: Workstation
      16:14:30.0647 1564  ComputerName: RAMIRO-PC
      16:14:30.0647 1564  UserName: Ramiro
      16:14:30.0647 1564  Windows directory: C:\Windows
      16:14:30.0647 1564  System windows directory: C:\Windows
      16:14:30.0647 1564  Running under WOW64
      16:14:30.0647 1564  Processor architecture: Intel x64
      16:14:30.0647 1564  Number of processors: 2
      16:14:30.0647 1564  Page size: 0x1000
      16:14:30.0647 1564  Boot type: Safe boot
      16:14:30.0647 1564  ============================================================
      16:14:31.0193 1564  Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
      16:14:31.0193 1564  ============================================================
      16:14:31.0193 1564  \Device\Harddisk0\DR0:
      16:14:31.0193 1564  MBR partitions:
      16:14:31.0193 1564  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1801F5F, BlocksNum 0x32FCD
      16:14:31.0193 1564  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1834F2C, BlocksNum 0x23BF9384
      16:14:31.0193 1564  ============================================================
      16:14:31.0240 1564  C: <-> \Device\Harddisk0\DR0\Partition2
      16:14:31.0240 1564  ============================================================
      16:14:31.0240 1564  Initialize success
      16:14:31.0240 1564  ============================================================
      16:14:50.0724 1520  ============================================================
      16:14:50.0724 1520  Scan started
      16:14:50.0724 1520  Mode: Manual; SigCheck; TDLFS; 
      16:14:50.0724 1520  ============================================================
      16:14:51.0645 1520  ================ Scan system memory ========================
      16:14:51.0645 1520  System memory - ok
      16:14:51.0645 1520  ================ Scan services =============================
      16:14:51.0785 1520  [ 7D9D615201A483D6FA99491C2E655A5A ] !SASCORE        C:\PROGRAM FILES\SUPERANTISPYWARE\SASCORE64.EXE
      16:14:52.0004 1520  !SASCORE - ok
      16:14:52.0144 1520  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
      16:14:52.0253 1520  1394ohci - ok
      16:14:52.0300 1520  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
      16:14:52.0331 1520  ACPI - ok
      16:14:52.0378 1520  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
      16:14:52.0472 1520  AcpiPmi - ok
      16:14:52.0518 1520  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
      16:14:52.0565 1520  adp94xx - ok
      16:14:52.0596 1520  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
      16:14:52.0612 1520  adpahci - ok
      16:14:52.0628 1520  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
      16:14:52.0674 1520  adpu320 - ok
      16:14:52.0706 1520  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
      16:14:52.0893 1520  AeLookupSvc - ok
      16:14:52.0955 1520  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\Windows\system32\drivers\afd.sys
      16:14:53.0049 1520  AFD - ok
      16:14:53.0080 1520  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\drivers\agp440.sys
      16:14:53.0111 1520  agp440 - ok
      16:14:53.0142 1520  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
      16:14:53.0174 1520  ALG - ok
      16:14:53.0189 1520  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\drivers\aliide.sys
      16:14:53.0205 1520  aliide - ok
      16:14:53.0220 1520  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\drivers\amdide.sys
      16:14:53.0252 1520  amdide - ok
      16:14:53.0283 1520  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
      16:14:53.0345 1520  AmdK8 - ok
      16:14:53.0361 1520  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
      16:14:53.0392 1520  AmdPPM - ok
      16:14:53.0423 1520  [ 6EC6D772EAE38DC17C14AED9B178D24B ] amdsata         C:\Windows\system32\drivers\amdsata.sys
      16:14:53.0439 1520  amdsata - ok
      16:14:53.0439 1520  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
      16:14:53.0486 1520  amdsbs - ok
      16:14:53.0517 1520  [ 1142A21DB581A84EA5597B03A26EBAA0 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
      16:14:53.0548 1520  amdxata - ok
      16:14:53.0610 1520  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\Windows\system32\drivers\appid.sys
      16:14:53.0735 1520  AppID - ok
      16:14:53.0766 1520  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
      16:14:53.0813 1520  AppIDSvc - ok
      16:14:53.0860 1520  [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo         C:\Windows\System32\appinfo.dll
      16:14:53.0922 1520  Appinfo - ok
      16:14:53.0954 1520  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\DRIVERS\arc.sys
      16:14:53.0985 1520  arc - ok
      16:14:54.0016 1520  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
      16:14:54.0032 1520  arcsas - ok
      16:14:54.0047 1520  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
      16:14:54.0094 1520  AsyncMac - ok
      16:14:54.0156 1520  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\drivers\atapi.sys
      16:14:54.0172 1520  atapi - ok
      16:14:54.0219 1520  [ 88A02B6046356E6BE4E387FAA7451439 ] athr            C:\Windows\system32\DRIVERS\athrx.sys
      16:14:54.0297 1520  athr - ok
      16:14:54.0344 1520  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
      16:14:54.0437 1520  AudioEndpointBuilder - ok
      16:14:54.0453 1520  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
      16:14:54.0515 1520  AudioSrv - ok
      16:14:54.0546 1520  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\Windows\System32\AxInstSV.dll
      16:14:54.0656 1520  AxInstSV - ok
      16:14:54.0687 1520  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
      16:14:54.0765 1520  b06bdrv - ok
      16:14:54.0796 1520  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
      16:14:54.0843 1520  b57nd60a - ok
      16:14:54.0952 1520  [ B44879610F2DC4A046B14BEFA3AE72DE ] BCM43XX         C:\Windows\system32\DRIVERS\bcmwl664.sys
      16:14:55.0077 1520  BCM43XX - ok
      16:14:55.0124 1520  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
      16:14:55.0186 1520  BDESVC - ok
      16:14:55.0217 1520  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
      16:14:55.0280 1520  Beep - ok
      16:14:55.0326 1520  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\Windows\System32\bfe.dll
      16:14:55.0420 1520  BFE - ok
      16:14:55.0451 1520  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\Windows\System32\qmgr.dll
      16:14:55.0560 1520  BITS - ok
      16:14:55.0607 1520  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
      16:14:55.0638 1520  blbdrive - ok
      16:14:55.0685 1520  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
      16:14:55.0748 1520  bowser - ok
      16:14:55.0763 1520  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
      16:14:55.0872 1520  BrFiltLo - ok
      16:14:55.0888 1520  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
      16:14:55.0904 1520  BrFiltUp - ok
      16:14:55.0950 1520  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\Windows\System32\browser.dll
      16:14:56.0044 1520  Browser - ok
      16:14:56.0075 1520  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
      16:14:56.0153 1520  Brserid - ok
      16:14:56.0169 1520  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
      16:14:56.0200 1520  BrSerWdm - ok
      16:14:56.0231 1520  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
      16:14:56.0262 1520  BrUsbMdm - ok
      16:14:56.0294 1520  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
      16:14:56.0325 1520  BrUsbSer - ok
      16:14:56.0340 1520  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
      16:14:56.0418 1520  BTHMODEM - ok
      16:14:56.0450 1520  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
      16:14:56.0512 1520  bthserv - ok
      16:14:56.0543 1520  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
      16:14:56.0590 1520  cdfs - ok
      16:14:56.0637 1520  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
      16:14:56.0668 1520  cdrom - ok
      16:14:56.0715 1520  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\Windows\System32\certprop.dll
      16:14:56.0762 1520  CertPropSvc - ok
      16:14:56.0793 1520  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
      16:14:56.0840 1520  circlass - ok
      16:14:56.0886 1520  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
      16:14:56.0933 1520  CLFS - ok
      16:14:57.0011 1520  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
      16:14:57.0011 1520  clr_optimization_v2.0.50727_32 - ok
      16:14:57.0042 1520  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
      16:14:57.0074 1520  clr_optimization_v2.0.50727_64 - ok
      16:14:57.0120 1520  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
      16:14:57.0152 1520  CmBatt - ok
      16:14:57.0183 1520  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\drivers\cmdide.sys
      16:14:57.0198 1520  cmdide - ok
      16:14:57.0214 1520  [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG             C:\Windows\system32\Drivers\cng.sys
      16:14:57.0261 1520  CNG - ok
      16:14:57.0308 1520  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
      16:14:57.0323 1520  Compbatt - ok
      16:14:57.0354 1520  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
      16:14:57.0401 1520  CompositeBus - ok
      16:14:57.0401 1520  COMSysApp - ok
      16:14:57.0417 1520  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
      16:14:57.0432 1520  crcdisk - ok
      16:14:57.0479 1520  [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc        C:\Windows\system32\cryptsvc.dll
      16:14:57.0557 1520  CryptSvc - ok
      16:14:57.0604 1520  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\Windows\system32\rpcss.dll
      16:14:57.0682 1520  DcomLaunch - ok
      16:14:57.0729 1520  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
      16:14:57.0807 1520  defragsvc - ok
      16:14:57.0838 1520  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
      16:14:57.0900 1520  DfsC - ok
      16:14:57.0932 1520  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\Windows\system32\dhcpcore.dll
      16:14:58.0010 1520  Dhcp - ok
      16:14:58.0041 1520  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
      16:14:58.0103 1520  discache - ok
      16:14:58.0134 1520  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\DRIVERS\disk.sys
      16:14:58.0150 1520  Disk - ok
      16:14:58.0244 1520  [ D5BCB77BE83CF99F508943945D46343D ] DKbFltr         C:\Windows\SysWOW64\Drivers\DKbFltr.sys
      16:14:58.0244 1520  DKbFltr - ok
      16:14:58.0290 1520  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
      16:14:58.0368 1520  Dnscache - ok
      16:14:58.0415 1520  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\Windows\System32\dot3svc.dll
      16:14:58.0478 1520  dot3svc - ok
      16:14:58.0509 1520  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\Windows\system32\dps.dll
      16:14:58.0587 1520  DPS - ok
      16:14:58.0634 1520  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
      16:14:58.0665 1520  drmkaud - ok
      16:14:58.0743 1520  [ FB9BEF3401EE5ECC2603311B9C64F44A ] dtsoftbus01     C:\Windows\system32\DRIVERS\dtsoftbus01.sys
      16:14:58.0790 1520  dtsoftbus01 - ok
      16:14:58.0852 1520  [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
      16:14:58.0883 1520  DXGKrnl - ok
      16:14:58.0899 1520  dxljccvg - ok
      16:14:58.0946 1520  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
      16:14:59.0008 1520  EapHost - ok
      16:14:59.0117 1520  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
      16:14:59.0258 1520  ebdrv - ok
      16:14:59.0289 1520  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\Windows\System32\lsass.exe
      16:14:59.0382 1520  EFS - ok
      16:14:59.0460 1520  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
      16:14:59.0554 1520  ehRecvr - ok
      16:14:59.0601 1520  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
      16:14:59.0648 1520  ehSched - ok
      16:14:59.0928 1520  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
      16:14:59.0975 1520  elxstor - ok
      16:15:00.0022 1520  [ 8E910F796F5F30281CDD24ABA47DDEA2 ] ePowerSvc       C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
      16:15:00.0084 1520  ePowerSvc - ok
      16:15:00.0100 1520  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\drivers\errdev.sys
      16:15:00.0131 1520  ErrDev - ok
      16:15:00.0194 1520  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
      16:15:00.0272 1520  EventSystem - ok
      16:15:00.0303 1520  [ BC02AA6C20F6851F42D7B7755274AD29 ] ewusbnet        C:\Windows\system32\DRIVERS\ewusbnet.sys
      16:15:00.0365 1520  ewusbnet - ok
      16:15:00.0381 1520  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
      16:15:00.0443 1520  exfat - ok
      16:15:00.0474 1520  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
      16:15:00.0537 1520  fastfat - ok
      16:15:00.0599 1520  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\Windows\system32\fxssvc.exe
      16:15:00.0708 1520  Fax - ok
      16:15:00.0724 1520  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
      16:15:00.0755 1520  fdc - ok
      16:15:00.0786 1520  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
      16:15:00.0849 1520  fdPHost - ok
      16:15:00.0880 1520  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
      16:15:00.0958 1520  FDResPub - ok
      16:15:00.0989 1520  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
      16:15:01.0020 1520  FileInfo - ok
      16:15:01.0052 1520  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
      16:15:01.0114 1520  Filetrace - ok
      16:15:01.0145 1520  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
      16:15:01.0145 1520  flpydisk - ok
      16:15:01.0192 1520  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
      16:15:01.0223 1520  FltMgr - ok
      16:15:01.0286 1520  [ B4447F606BB19FD8AD0BAFB59B90F5D9 ] FontCache       C:\Windows\system32\FntCache.dll
      16:15:01.0364 1520  FontCache - ok
      16:15:01.0442 1520  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
      16:15:01.0457 1520  FontCache3.0.0.0 - ok
      16:15:01.0504 1520  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
      16:15:01.0520 1520  FsDepends - ok
      16:15:01.0551 1520  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
      16:15:01.0566 1520  Fs_Rec - ok
      16:15:01.0613 1520  [ 1F7B25B858FA27015169FE95E54108ED ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
      16:15:01.0644 1520  fvevol - ok
      16:15:01.0676 1520  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
      16:15:01.0691 1520  gagp30kx - ok
      16:15:01.0738 1520  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\Windows\System32\gpsvc.dll
      16:15:01.0832 1520  gpsvc - ok
      16:15:01.0910 1520  [ 816FD5A6F3C2F3D600900096632FC60E ] Greg_Service    C:\Program Files (x86)\Acer\Registration\GregHSRW.exe
      16:15:01.0972 1520  Greg_Service - ok
      16:15:02.0081 1520  [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
      16:15:02.0081 1520  gupdate - ok
      16:15:02.0144 1520  [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
      16:15:02.0175 1520  gupdatem - ok
      16:15:02.0237 1520  [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc           C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
      16:15:02.0253 1520  gusvc - ok
      16:15:02.0284 1520  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
      16:15:02.0362 1520  hcw85cir - ok
      16:15:02.0424 1520  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
      16:15:02.0456 1520  HdAudAddService - ok
      16:15:02.0487 1520  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
      16:15:02.0534 1520  HDAudBus - ok
      16:15:02.0565 1520  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
      16:15:02.0596 1520  HidBatt - ok
      16:15:02.0627 1520  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
      16:15:02.0658 1520  HidBth - ok
      16:15:02.0674 1520  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
      16:15:02.0690 1520  HidIr - ok
      16:15:02.0721 1520  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\system32\hidserv.dll
      16:15:02.0783 1520  hidserv - ok
      16:15:02.0830 1520  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
      16:15:02.0830 1520  HidUsb - ok
      16:15:02.0877 1520  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\Windows\system32\kmsvc.dll
      16:15:02.0939 1520  hkmsvc - ok
      16:15:02.0986 1520  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
      16:15:03.0048 1520  HomeGroupListener - ok
      16:15:03.0080 1520  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
      16:15:03.0142 1520  HomeGroupProvider - ok
      16:15:03.0158 1520  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
      16:15:03.0173 1520  HpSAMD - ok
      16:15:03.0236 1520  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
      16:15:03.0314 1520  HTTP - ok
      16:15:03.0376 1520  [ 8F9B0FC4EC3A8194BD4CBC5ED3E7ABEB ] hwdatacard      C:\Windows\system32\DRIVERS\ewusbmdm.sys
      16:15:03.0438 1520  hwdatacard - ok
      16:15:03.0470 1520  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
      16:15:03.0485 1520  hwpolicy - ok
      16:15:03.0516 1520  [ 230C041AF8DF1D2308C3AC5146E3FF4F ] hwusbdev        C:\Windows\system32\DRIVERS\ewusbdev.sys
      16:15:03.0563 1520  hwusbdev - ok
      16:15:03.0626 1520  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
      16:15:03.0657 1520  i8042prt - ok
      16:15:03.0719 1520  [ 660BF3255A1EB18ED803FD2FBA6AE400 ] IAANTMON        C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
      16:15:03.0750 1520  IAANTMON - ok
      16:15:03.0782 1520  [ BE7D72FCF442C26975942007E0831241 ] iaStor          C:\Windows\system32\DRIVERS\iaStor.sys
      16:15:03.0828 1520  iaStor - ok
      16:15:03.0875 1520  [ 3DF4395A7CF8B7A72A5F4606366B8C2D ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
      16:15:03.0891 1520  iaStorV - ok
      16:15:03.0953 1520  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
      16:15:03.0984 1520  idsvc - ok
      16:15:04.0234 1520  [ 677AA5991026A65ADA128C4B59CF2BAD ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
      16:15:04.0608 1520  igfx - ok
      16:15:04.0640 1520  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
      16:15:04.0655 1520  iirsp - ok
      16:15:04.0702 1520  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\Windows\System32\ikeext.dll
      16:15:04.0780 1520  IKEEXT - ok
      16:15:04.0874 1520  [ 0C3CF4B3BAE28E121A1689E3538F8712 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
      16:15:04.0936 1520  IntcAzAudAddService - ok
      16:15:04.0952 1520  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\drivers\intelide.sys
      16:15:04.0967 1520  intelide - ok
      16:15:04.0998 1520  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
      16:15:05.0030 1520  intelppm - ok
      16:15:05.0076 1520  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
      16:15:05.0108 1520  IPBusEnum - ok
      16:15:05.0154 1520  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
      16:15:05.0217 1520  IpFilterDriver - ok
      16:15:05.0248 1520  [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
      16:15:05.0326 1520  iphlpsvc - ok
      16:15:05.0373 1520  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
      16:15:05.0404 1520  IPMIDRV - ok
      16:15:05.0435 1520  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
      16:15:05.0482 1520  IPNAT - ok
      16:15:05.0513 1520  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
      16:15:05.0607 1520  IRENUM - ok
      16:15:05.0654 1520  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
      16:15:05.0669 1520  isapnp - ok
      16:15:05.0685 1520  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
      16:15:05.0700 1520  iScsiPrt - ok
      16:15:05.0716 1520  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\drivers\kbdclass.sys
      16:15:05.0732 1520  kbdclass - ok
      16:15:05.0747 1520  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\Windows\system32\drivers\kbdhid.sys
      16:15:05.0794 1520  kbdhid - ok
      16:15:05.0825 1520  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\Windows\system32\lsass.exe
      16:15:05.0841 1520  KeyIso - ok
      16:15:05.0872 1520  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
      16:15:05.0888 1520  KSecDD - ok
      16:15:05.0903 1520  [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
      16:15:05.0919 1520  KSecPkg - ok
      16:15:05.0934 1520  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
      16:15:05.0997 1520  ksthunk - ok
      16:15:06.0044 1520  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
      16:15:06.0122 1520  KtmRm - ok
      16:15:06.0168 1520  [ 2377EC4CC3E356655B996F39B43486B6 ] L1C             C:\Windows\system32\DRIVERS\L1C62x64.sys
      16:15:06.0215 1520  L1C - ok
      16:15:06.0262 1520  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\Windows\system32\srvsvc.dll
      16:15:06.0340 1520  LanmanServer - ok
      16:15:06.0371 1520  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
      16:15:06.0434 1520  LanmanWorkstation - ok
      16:15:06.0465 1520  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
      16:15:06.0527 1520  lltdio - ok
      16:15:06.0574 1520  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
      16:15:06.0652 1520  lltdsvc - ok
      16:15:06.0683 1520  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
      16:15:06.0730 1520  lmhosts - ok
      16:15:06.0761 1520  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
      16:15:06.0777 1520  LSI_FC - ok
      16:15:06.0792 1520  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
      16:15:06.0808 1520  LSI_SAS - ok
      16:15:06.0824 1520  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
      16:15:06.0839 1520  LSI_SAS2 - ok
      16:15:06.0855 1520  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
      16:15:06.0870 1520  LSI_SCSI - ok
      16:15:06.0902 1520  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
      16:15:06.0964 1520  luafv - ok
      16:15:07.0011 1520  [ A8FE8F2783B2929B56F5370A89356CE9 ] MBAMProtector   C:\Windows\system32\drivers\mbam.sys
      16:15:07.0026 1520  MBAMProtector - ok
      16:15:07.0073 1520  [ 85B16A92B117A5A800032ECD904B86DB ] MBAMScheduler   C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
      16:15:07.0120 1520  MBAMScheduler - ok
      16:15:07.0167 1520  [ 20E2469DB709FC675E655CEAA11BE312 ] MBAMService     C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
      16:15:07.0182 1520  MBAMService - ok
      16:15:07.0229 1520  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
      16:15:07.0260 1520  Mcx2Svc - ok
      16:15:07.0307 1520  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
      16:15:07.0323 1520  megasas - ok
      16:15:07.0338 1520  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
      16:15:07.0354 1520  MegaSR - ok
      16:15:07.0463 1520  [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
      16:15:07.0479 1520  Microsoft Office Groove Audit Service - ok
      16:15:07.0510 1520  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
      16:15:07.0572 1520  MMCSS - ok
      16:15:07.0604 1520  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
      16:15:07.0650 1520  Modem - ok
      16:15:07.0697 1520  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
      16:15:07.0728 1520  monitor - ok
      16:15:07.0775 1520  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\drivers\mouclass.sys
      16:15:07.0775 1520  mouclass - ok
      16:15:07.0791 1520  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
      16:15:07.0838 1520  mouhid - ok
      16:15:07.0869 1520  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
      16:15:07.0884 1520  mountmgr - ok
      16:15:07.0962 1520  [ 05BF204EC0E82CC4A054DB189C8A3D84 ] MpFilter        C:\Windows\system32\DRIVERS\MpFilter.sys
      16:15:07.0978 1520  MpFilter - ok
      16:15:08.0025 1520  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\Windows\system32\drivers\mpio.sys
      16:15:08.0040 1520  mpio - ok
      16:15:08.0056 1520  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
      16:15:08.0103 1520  mpsdrv - ok
      16:15:08.0150 1520  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc          C:\Windows\system32\mpssvc.dll
      16:15:08.0228 1520  MpsSvc - ok
      16:15:08.0259 1520  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
      16:15:08.0274 1520  MRxDAV - ok
      16:15:08.0306 1520  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
      16:15:08.0384 1520  mrxsmb - ok
      16:15:08.0430 1520  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
      16:15:08.0477 1520  mrxsmb10 - ok
      16:15:08.0493 1520  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
      16:15:08.0524 1520  mrxsmb20 - ok
      16:15:08.0555 1520  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\Windows\system32\drivers\msahci.sys
      16:15:08.0571 1520  msahci - ok
      16:15:08.0618 1520  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
      16:15:08.0649 1520  msdsm - ok
      16:15:08.0711 1520  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
      16:15:08.0758 1520  MSDTC - ok
      16:15:08.0789 1520  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
      16:15:08.0836 1520  Msfs - ok
      16:15:08.0852 1520  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
      16:15:08.0898 1520  mshidkmdf - ok
      16:15:08.0945 1520  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
      16:15:08.0961 1520  msisadrv - ok
      16:15:08.0976 1520  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
      16:15:09.0054 1520  MSiSCSI - ok
      16:15:09.0054 1520  msiserver - ok
      16:15:09.0086 1520  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
      16:15:09.0148 1520  MSKSSRV - ok
      16:15:09.0257 1520  [ CC8E4F72F21340A4D3A3D4DB50313EF5 ] MsMpSvc         C:\Program Files\Microsoft Security Client\MsMpEng.exe
      16:15:09.0273 1520  MsMpSvc - ok
      16:15:09.0288 1520  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
      16:15:09.0351 1520  MSPCLOCK - ok
      16:15:09.0366 1520  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
      16:15:09.0429 1520  MSPQM - ok
      16:15:09.0476 1520  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
      16:15:09.0491 1520  MsRPC - ok
      16:15:09.0538 1520  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
      16:15:09.0554 1520  mssmbios - ok
      16:15:09.0569 1520  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
      16:15:09.0616 1520  MSTEE - ok
      16:15:09.0632 1520  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
      16:15:09.0647 1520  MTConfig - ok
      16:15:09.0663 1520  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
      16:15:09.0678 1520  Mup - ok
      16:15:09.0710 1520  [ 6FFECC25B39DC7652A0CEC0ADA9DB589 ] mwlPSDFilter    C:\Windows\system32\DRIVERS\mwlPSDFilter.sys
      16:15:09.0710 1520  mwlPSDFilter - ok
      16:15:09.0741 1520  [ 0BEFE32CA56D6EE89D58175725596A85 ] mwlPSDNServ     C:\Windows\system32\DRIVERS\mwlPSDNServ.sys
      16:15:09.0741 1520  mwlPSDNServ - ok
      16:15:09.0756 1520  [ D43BC633B8660463E446E28E14A51262 ] mwlPSDVDisk     C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys
      16:15:09.0756 1520  mwlPSDVDisk - ok
      16:15:09.0803 1520  [ 2F139207F618EC2933830227EEFFDDB4 ] MWLService      C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\\MWLService.exe
      16:15:09.0834 1520  MWLService - ok
      16:15:09.0881 1520  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\Windows\system32\qagentRT.dll
      16:15:09.0944 1520  napagent - ok
      16:15:09.0990 1520  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
      16:15:10.0037 1520  NativeWifiP - ok
      16:15:10.0084 1520  [ 79B47FD40D9A817E932F9D26FAC0A81C ] NDIS            C:\Windows\system32\drivers\ndis.sys
      16:15:10.0115 1520  NDIS - ok
      16:15:10.0131 1520  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
      16:15:10.0193 1520  NdisCap - ok
      16:15:10.0209 1520  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
      16:15:10.0271 1520  NdisTapi - ok
      16:15:10.0302 1520  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
      16:15:10.0349 1520  Ndisuio - ok
      16:15:10.0380 1520  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
      16:15:10.0458 1520  NdisWan - ok
      16:15:10.0521 1520  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
      16:15:10.0568 1520  NDProxy - ok
      16:15:10.0614 1520  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
      16:15:10.0677 1520  NetBIOS - ok
      16:15:10.0708 1520  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
      16:15:10.0755 1520  NetBT - ok
      16:15:10.0786 1520  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\Windows\system32\lsass.exe
      16:15:10.0802 1520  Netlogon - ok
      16:15:10.0833 1520  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
      16:15:10.0911 1520  Netman - ok
      16:15:10.0942 1520  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
      16:15:11.0004 1520  netprofm - ok
      16:15:11.0051 1520  [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
      16:15:11.0067 1520  NetTcpPortSharing - ok
      16:15:11.0082 1520  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
      16:15:11.0098 1520  nfrd960 - ok
      16:15:11.0145 1520  [ 5FF89F20317309D28AC1EDEB0CD1BA72 ] NisDrv          C:\Windows\system32\DRIVERS\NisDrvWFP.sys
      16:15:11.0160 1520  NisDrv - ok
      16:15:11.0207 1520  [ 79E80B10FE8F6662E0C9162A68C43444 ] NisSrv          C:\Program Files\Microsoft Security Client\NisSrv.exe
      16:15:11.0254 1520  NisSrv - ok
      16:15:11.0285 1520  [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc          C:\Windows\System32\nlasvc.dll
      16:15:11.0363 1520  NlaSvc - ok
      16:15:11.0410 1520  [ 903681BAB213D5F84717C0FC42AFB28A ] nmwcd           C:\Windows\system32\drivers\ccdcmbx64.sys
      16:15:11.0488 1520  nmwcd - ok
      16:15:11.0550 1520  [ 41C1AC1F3613435EB32D67BCB80A5FA5 ] nmwcdc          C:\Windows\system32\drivers\ccdcmbox64.sys
      16:15:11.0628 1520  nmwcdc - ok
      16:15:11.0675 1520  [ 863AA6C58AC85A22355AE943C605E44B ] nmwcdnsucx64    C:\Windows\system32\drivers\nmwcdnsucx64.sys
      16:15:11.0706 1520  nmwcdnsucx64 - ok
      16:15:11.0753 1520  [ 7983D9201788407C4D1FC4D0BAA04E32 ] nmwcdnsux64     C:\Windows\system32\drivers\nmwcdnsux64.sys
      16:15:11.0784 1520  nmwcdnsux64 - ok
      16:15:11.0816 1520  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
      16:15:11.0847 1520  Npfs - ok
      16:15:11.0894 1520  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
      16:15:11.0940 1520  nsi - ok
      16:15:11.0972 1520  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
      16:15:12.0018 1520  nsiproxy - ok
      16:15:12.0096 1520  [ 05D78AA5CB5F3F5C31160BDB955D0B7C ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
      16:15:12.0143 1520  Ntfs - ok
      16:15:12.0174 1520  [ FD324CCE1D4D5BB5AF65F8E55B462C7E ] NTIBackupSvc    C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
      16:15:12.0190 1520  NTIBackupSvc - ok
      16:15:12.0206 1520  [ 64DDD0DEE976302F4BD93E5EFCC2F013 ] NTIDrvr         C:\Windows\system32\drivers\NTIDrvr.sys
      16:15:12.0221 1520  NTIDrvr - ok
      16:15:12.0252 1520  [ 3F6268A2EC33CD38CF75C880AF8DED42 ] NTISchedulerSvc C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
      16:15:12.0284 1520  NTISchedulerSvc - ok
      16:15:12.0315 1520  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
      16:15:12.0362 1520  Null - ok
      16:15:12.0408 1520  [ 5D9FD91F3D38DC9DA01E3CB5FA89CD48 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
      16:15:12.0440 1520  nvraid - ok
      16:15:12.0471 1520  [ F7CD50FE7139F07E77DA8AC8033D1832 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
      16:15:12.0502 1520  nvstor - ok
      16:15:12.0533 1520  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
      16:15:12.0549 1520  nv_agp - ok
      16:15:12.0627 1520  [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv          C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
      16:15:12.0642 1520  odserv - ok
      16:15:12.0689 1520  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
      16:15:12.0689 1520  ohci1394 - ok
      16:15:12.0752 1520  [ 5A432A042DAE460ABE7199B758E8606C ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
      16:15:12.0783 1520  ose - ok
      16:15:12.0830 1520  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
      16:15:12.0923 1520  p2pimsvc - ok
      16:15:12.0954 1520  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
      16:15:12.0986 1520  p2psvc - ok
      16:15:13.0017 1520  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
      16:15:13.0032 1520  Parport - ok
      16:15:13.0079 1520  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\Windows\system32\drivers\partmgr.sys
      16:15:13.0079 1520  partmgr - ok
      16:15:13.0110 1520  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
      16:15:13.0157 1520  PcaSvc - ok
      16:15:13.0235 1520  [ BC0018C2D29F655188A0ED3FA94FDB24 ] pccsmcfd        C:\Windows\system32\DRIVERS\pccsmcfdx64.sys
      16:15:13.0298 1520  pccsmcfd - ok
      16:15:13.0313 1520  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\Windows\system32\drivers\pci.sys
      16:15:13.0329 1520  pci - ok
      16:15:13.0360 1520  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys
      16:15:13.0376 1520  pciide - ok
      16:15:13.0407 1520  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
      16:15:13.0422 1520  pcmcia - ok
      16:15:13.0422 1520  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
      16:15:13.0438 1520  pcw - ok
      16:15:13.0469 1520  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
      16:15:13.0516 1520  PEAUTH - ok
      16:15:13.0578 1520  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
      16:15:13.0610 1520  PerfHost - ok
      16:15:13.0688 1520  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\Windows\system32\pla.dll
      16:15:13.0781 1520  pla - ok
      16:15:13.0844 1520  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
      16:15:13.0906 1520  PlugPlay - ok
      16:15:13.0922 1520  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
      16:15:13.0937 1520  PNRPAutoReg - ok
      16:15:13.0984 1520  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
      16:15:14.0000 1520  PNRPsvc - ok
      16:15:14.0046 1520  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
      16:15:14.0093 1520  PolicyAgent - ok
      16:15:14.0140 1520  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
      16:15:14.0202 1520  Power - ok
      16:15:14.0234 1520  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
      16:15:14.0296 1520  PptpMiniport - ok
      16:15:14.0327 1520  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\DRIVERS\processr.sys
      16:15:14.0358 1520  Processor - ok
      16:15:14.0405 1520  [ 5C78838B4D166D1A27DB3A8A820C799A ] ProfSvc         C:\Windows\system32\profsvc.dll
      16:15:14.0468 1520  ProfSvc - ok
      16:15:14.0483 1520  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
      16:15:14.0499 1520  ProtectedStorage - ok
      16:15:14.0561 1520  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
      16:15:14.0608 1520  Psched - ok
      16:15:14.0670 1520  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
      16:15:14.0717 1520  ql2300 - ok
      16:15:14.0717 1520  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
      16:15:14.0733 1520  ql40xx - ok
      16:15:14.0764 1520  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
      16:15:14.0811 1520  QWAVE - ok
      16:15:14.0842 1520  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
      16:15:14.0873 1520  QWAVEdrv - ok
      16:15:14.0889 1520  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
      16:15:14.0936 1520  RasAcd - ok
      16:15:14.0967 1520  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
      16:15:14.0998 1520  RasAgileVpn - ok
      16:15:15.0014 1520  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
      16:15:15.0060 1520  RasAuto - ok
      16:15:15.0092 1520  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
      16:15:15.0154 1520  Rasl2tp - ok
      16:15:15.0216 1520  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\Windows\System32\rasmans.dll
      16:15:15.0248 1520  RasMan - ok
      16:15:15.0279 1520  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
      16:15:15.0326 1520  RasPppoe - ok
      16:15:15.0357 1520  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
      16:15:15.0419 1520  RasSstp - ok
      16:15:15.0450 1520  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
      16:15:15.0513 1520  rdbss - ok
      16:15:15.0544 1520  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
      16:15:15.0575 1520  rdpbus - ok
      16:15:15.0606 1520  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
      16:15:15.0638 1520  RDPCDD - ok
      16:15:15.0653 1520  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
      16:15:15.0716 1520  RDPENCDD - ok
      16:15:15.0731 1520  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
      16:15:15.0778 1520  RDPREFMP - ok
      16:15:15.0809 1520  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
      16:15:15.0856 1520  RDPWD - ok
      16:15:15.0903 1520  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
      16:15:15.0918 1520  rdyboost - ok
      16:15:15.0934 1520  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
      16:15:15.0996 1520  RemoteAccess - ok
      16:15:16.0043 1520  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
      16:15:16.0121 1520  RemoteRegistry - ok
      16:15:16.0137 1520  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
      16:15:16.0199 1520  RpcEptMapper - ok
      16:15:16.0215 1520  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
      16:15:16.0230 1520  RpcLocator - ok
      16:15:16.0262 1520  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\Windows\system32\rpcss.dll
      16:15:16.0308 1520  RpcSs - ok
      16:15:16.0340 1520  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
      16:15:16.0386 1520  rspndr - ok
      16:15:16.0433 1520  [ DB30AA4DAA0D492FA5D7717D8181FFA1 ] RSUSBSTOR       C:\Windows\system32\Drivers\RtsUStor.sys
      16:15:16.0449 1520  RSUSBSTOR - ok
      16:15:16.0464 1520  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\Windows\system32\lsass.exe
      16:15:16.0480 1520  SamSs - ok
      16:15:16.0558 1520  [ 3289766038DB2CB14D07DC84392138D5 ] SASDIFSV        C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
      16:15:16.0574 1520  SASDIFSV - ok
      16:15:16.0589 1520  [ 58A38E75F3316A83C23DF6173D41F2B5 ] SASKUTIL        C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
      16:15:16.0589 1520  SASKUTIL - ok
      16:15:16.0652 1520  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
      16:15:16.0652 1520  sbp2port - ok
      16:15:16.0698 1520  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
      16:15:16.0776 1520  SCardSvr - ok
      16:15:16.0808 1520  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
      16:15:16.0870 1520  scfilter - ok
      16:15:16.0917 1520  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\Windows\system32\schedsvc.dll
      16:15:16.0995 1520  Schedule - ok
      16:15:17.0026 1520  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\Windows\System32\certprop.dll
      16:15:17.0057 1520  SCPolicySvc - ok
      16:15:17.0104 1520  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
      16:15:17.0166 1520  SDRSVC - ok
      16:15:17.0198 1520  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
      16:15:17.0244 1520  secdrv - ok
      16:15:17.0276 1520  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\Windows\system32\seclogon.dll
      16:15:17.0354 1520  seclogon - ok
      16:15:17.0385 1520  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\System32\sens.dll
      16:15:17.0432 1520  SENS - ok
      16:15:17.0447 1520  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
      16:15:17.0510 1520  SensrSvc - ok
      16:15:17.0541 1520  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
      16:15:17.0556 1520  Serenum - ok
      16:15:17.0556 1520  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\DRIVERS\serial.sys
      16:15:17.0588 1520  Serial - ok
      16:15:17.0634 1520  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
      16:15:17.0666 1520  sermouse - ok
      16:15:17.0775 1520  [ 12B41D84A4D058ADC60853C365DBFCCA ] ServiceLayer    C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
      16:15:17.0806 1520  ServiceLayer ( UnsignedFile.Multi.Generic ) - warning
      16:15:17.0806 1520  ServiceLayer - detected UnsignedFile.Multi.Generic (1)
      16:15:17.0853 1520  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\Windows\system32\sessenv.dll
      16:15:17.0900 1520  SessionEnv - ok
      16:15:17.0946 1520  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
      16:15:17.0978 1520  sffdisk - ok
      16:15:18.0009 1520  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
      16:15:18.0024 1520  sffp_mmc - ok
      16:15:18.0056 1520  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
      16:15:18.0087 1520  sffp_sd - ok
      16:15:18.0102 1520  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
      16:15:18.0134 1520  sfloppy - ok
      16:15:18.0180 1520  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll
      16:15:18.0227 1520  SharedAccess - ok
      16:15:18.0290 1520  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
      16:15:18.0336 1520  ShellHWDetection - ok
      16:15:18.0352 1520  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
      16:15:18.0352 1520  SiSRaid2 - ok
      16:15:18.0368 1520  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
      16:15:18.0368 1520  SiSRaid4 - ok
      16:15:18.0461 1520  [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
      16:15:18.0492 1520  SkypeUpdate - ok
      16:15:18.0524 1520  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
      16:15:18.0586 1520  Smb - ok
      16:15:18.0648 1520  [ CA62AE004E98374BF7F082CD765EEA02 ] SNMP            C:\Windows\System32\snmp.exe
      16:15:18.0695 1520  SNMP - ok
      16:15:18.0726 1520  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
      16:15:18.0758 1520  SNMPTRAP - ok
      16:15:18.0789 1520  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
      16:15:18.0789 1520  spldr - ok
      16:15:18.0851 1520  [ B96C17B5DC1424D56EEA3A99E97428CD ] Spooler         C:\Windows\System32\spoolsv.exe
      16:15:18.0914 1520  Spooler - ok
      16:15:19.0023 1520  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\Windows\system32\sppsvc.exe
      16:15:19.0179 1520  sppsvc - ok
      16:15:19.0226 1520  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
      16:15:19.0288 1520  sppuinotify - ok
      16:15:19.0335 1520  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\Windows\system32\DRIVERS\srv.sys
      16:15:19.0397 1520  srv - ok
      16:15:19.0428 1520  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
      16:15:19.0460 1520  srv2 - ok
      16:15:19.0491 1520  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
      16:15:19.0522 1520  srvnet - ok
      16:15:19.0553 1520  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
      16:15:19.0616 1520  SSDPSRV - ok
      16:15:19.0647 1520  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
      16:15:19.0694 1520  SstpSvc - ok
      16:15:19.0709 1520  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
      16:15:19.0725 1520  stexstor - ok
      16:15:19.0772 1520  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\Windows\System32\wiaservc.dll
      16:15:19.0803 1520  stisvc - ok
      16:15:19.0850 1520  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\drivers\swenum.sys
      16:15:19.0850 1520  swenum - ok
      16:15:19.0896 1520  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
      16:15:19.0974 1520  swprv - ok
      16:15:20.0052 1520  [ BCF305959B53B200CEB2AD25AD22F8A7 ] SynTP           C:\Windows\system32\DRIVERS\SynTP.sys
      16:15:20.0068 1520  SynTP - ok
      16:15:20.0146 1520  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\Windows\system32\sysmain.dll
      16:15:20.0224 1520  SysMain - ok
      16:15:20.0255 1520  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
      16:15:20.0302 1520  TabletInputService - ok
      16:15:20.0318 1520  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\Windows\System32\tapisrv.dll
      16:15:20.0380 1520  TapiSrv - ok
      16:15:20.0427 1520  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
      16:15:20.0474 1520  TBS - ok
      16:15:20.0552 1520  [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
      16:15:20.0614 1520  Tcpip - ok
      16:15:20.0645 1520  [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
      16:15:20.0676 1520  TCPIP6 - ok
      16:15:20.0739 1520  [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
      16:15:20.0801 1520  tcpipreg - ok
      16:15:20.0832 1520  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
      16:15:20.0864 1520  TDPIPE - ok
      16:15:20.0895 1520  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
      16:15:20.0926 1520  TDTCP - ok
      16:15:20.0957 1520  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
      16:15:21.0020 1520  tdx - ok
      16:15:21.0051 1520  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\Windows\system32\drivers\termdd.sys
      16:15:21.0066 1520  TermDD - ok
      16:15:21.0144 1520  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\Windows\System32\termsrv.dll
      16:15:21.0207 1520  TermService - ok
      16:15:21.0238 1520  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
      16:15:21.0254 1520  Themes - ok
      16:15:21.0285 1520  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
      16:15:21.0316 1520  THREADORDER - ok
      16:15:21.0332 1520  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
      16:15:21.0394 1520  TrkWks - ok
      16:15:21.0472 1520  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
      16:15:21.0519 1520  TrustedInstaller - ok
      16:15:21.0550 1520  [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
      16:15:21.0612 1520  tssecsrv - ok
      16:15:21.0675 1520  [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
      16:15:21.0722 1520  TsUsbFlt - ok
      16:15:21.0768 1520  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
      16:15:21.0815 1520  tunnel - ok
      16:15:21.0862 1520  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
      16:15:21.0878 1520  uagp35 - ok
      16:15:21.0893 1520  [ 2E22C1FD397A5A9FFEF55E9D1FC96C00 ] UBHelper        C:\Windows\system32\drivers\UBHelper.sys
      16:15:21.0909 1520  UBHelper - ok
      16:15:21.0956 1520  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
      16:15:21.0987 1520  udfs - ok
      16:15:22.0018 1520  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
      16:15:22.0034 1520  UI0Detect - ok
      16:15:22.0049 1520  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
      16:15:22.0065 1520  uliagpkx - ok
      16:15:22.0112 1520  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\Windows\system32\drivers\umbus.sys
      16:15:22.0112 1520  umbus - ok
      16:15:22.0143 1520  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
      16:15:22.0190 1520  UmPass - ok
      16:15:22.0236 1520  [ 70DDE3A86DBEB1D6C3C30AD687B1877A ] Updater Service C:\Program Files\Acer\Acer Updater\UpdaterService.exe
      16:15:22.0252 1520  Updater Service - ok
      16:15:22.0283 1520  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
      16:15:22.0346 1520  upnphost - ok
      16:15:22.0408 1520  [ 4E93C8496359E97830C75AC36393654D ] upperdev        C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys
      16:15:22.0455 1520  upperdev - ok
      16:15:22.0502 1520  [ 481DFF26B4DCA8F4CBAC1F7DCE1D6829 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
      16:15:22.0533 1520  usbccgp - ok
      16:15:22.0548 1520  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
      16:15:22.0564 1520  usbcir - ok
      16:15:22.0595 1520  [ 74EE782B1D9C241EFE425565854C661C ] usbehci         C:\Windows\system32\drivers\usbehci.sys
      16:15:22.0626 1520  usbehci - ok
      16:15:22.0673 1520  [ DC96BD9CCB8403251BCF25047573558E ] usbhub          C:\Windows\system32\drivers\usbhub.sys
      16:15:22.0704 1520  usbhub - ok
      16:15:22.0720 1520  [ 58E546BBAF87664FC57E0F6081E4F609 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
      16:15:22.0751 1520  usbohci - ok
      16:15:22.0782 1520  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
      16:15:22.0814 1520  usbprint - ok
      16:15:22.0860 1520  [ 4ACEE387FA8FD39F83564FCD2FC234F2 ] usbser          C:\Windows\system32\drivers\usbser.sys
      16:15:22.0892 1520  usbser - ok
      16:15:22.0938 1520  [ 8844CB19A37B65E27049D4A7786726A9 ] UsbserFilt      C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys
      16:15:22.0970 1520  UsbserFilt - ok
      16:15:23.0016 1520  [ D76510CFA0FC09023077F22C2F979D86 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
      16:15:23.0032 1520  USBSTOR - ok
      16:15:23.0063 1520  [ 81FB2216D3A60D1284455D511797DB3D ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
      16:15:23.0094 1520  usbuhci - ok
      16:15:23.0126 1520  [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo        C:\Windows\System32\Drivers\usbvideo.sys
      16:15:23.0157 1520  usbvideo - ok
      16:15:23.0188 1520  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
      16:15:23.0235 1520  UxSms - ok
      16:15:23.0266 1520  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\Windows\system32\lsass.exe
      16:15:23.0282 1520  VaultSvc - ok
      16:15:23.0297 1520  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
      16:15:23.0313 1520  vdrvroot - ok
      16:15:23.0360 1520  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\Windows\System32\vds.exe
      16:15:23.0438 1520  vds - ok
      16:15:23.0469 1520  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
      16:15:23.0484 1520  vga - ok
      16:15:23.0516 1520  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
      16:15:23.0562 1520  VgaSave - ok
      16:15:23.0609 1520  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
      16:15:23.0625 1520  vhdmp - ok
      16:15:23.0656 1520  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\drivers\viaide.sys
      16:15:23.0656 1520  viaide - ok
      16:15:23.0687 1520  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
      16:15:23.0687 1520  volmgr - ok
      16:15:23.0750 1520  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
      16:15:23.0765 1520  volmgrx - ok
      16:15:23.0796 1520  [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
      16:15:23.0812 1520  volsnap - ok
      16:15:23.0843 1520  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
      16:15:23.0859 1520  vsmraid - ok
      16:15:23.0921 1520  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\Windows\system32\vssvc.exe
      16:15:24.0030 1520  VSS - ok
      16:15:24.0046 1520  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
      16:15:24.0062 1520  vwifibus - ok
      16:15:24.0077 1520  [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
      16:15:24.0093 1520  vwififlt - ok
      16:15:24.0124 1520  [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys
      16:15:24.0140 1520  vwifimp - ok
      16:15:24.0171 1520  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
      16:15:24.0218 1520  W32Time - ok
      16:15:24.0249 1520  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
      16:15:24.0249 1520  WacomPen - ok
      16:15:24.0296 1520  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
      16:15:24.0358 1520  WANARP - ok
      16:15:24.0358 1520  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
      16:15:24.0405 1520  Wanarpv6 - ok
      16:15:24.0467 1520  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
      16:15:24.0514 1520  WatAdminSvc - ok
      16:15:24.0608 1520  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\Windows\system32\wbengine.exe
      16:15:24.0701 1520  wbengine - ok
      16:15:24.0732 1520  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
      16:15:24.0748 1520  WbioSrvc - ok
      16:15:24.0810 1520  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\Windows\System32\wcncsvc.dll
      16:15:24.0842 1520  wcncsvc - ok
      16:15:24.0873 1520  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
      16:15:24.0935 1520  WcsPlugInService - ok
      16:15:24.0951 1520  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\DRIVERS\wd.sys
      16:15:24.0966 1520  Wd - ok
      16:15:24.0998 1520  [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
      16:15:25.0013 1520  Wdf01000 - ok
      16:15:25.0044 1520  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
      16:15:25.0138 1520  WdiServiceHost - ok
      16:15:25.0138 1520  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
      16:15:25.0154 1520  WdiSystemHost - ok
      16:15:25.0200 1520  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient       C:\Windows\System32\webclnt.dll
      16:15:25.0247 1520  WebClient - ok
      16:15:25.0294 1520  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
      16:15:25.0325 1520  Wecsvc - ok
      16:15:25.0341 1520  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
      16:15:25.0434 1520  wercplsupport - ok
      16:15:25.0466 1520  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
      16:15:25.0512 1520  WerSvc - ok
      16:15:25.0528 1520  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
      16:15:25.0575 1520  WfpLwf - ok
      16:15:25.0606 1520  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
      16:15:25.0622 1520  WIMMount - ok
      16:15:25.0700 1520  WinDefend - ok
      16:15:25.0700 1520  WinHttpAutoProxySvc - ok
      16:15:25.0824 1520  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
      16:15:25.0902 1520  Winmgmt - ok
      16:15:26.0058 1520  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\Windows\system32\WsmSvc.dll
      16:15:26.0136 1520  WinRM - ok
      16:15:26.0199 1520  [ FE88B288356E7B47B74B13372ADD906D ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
      16:15:26.0214 1520  WinUsb - ok
      16:15:26.0261 1520  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
      16:15:26.0308 1520  Wlansvc - ok
      16:15:26.0464 1520  [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
      16:15:26.0589 1520  wlidsvc - ok
      16:15:26.0636 1520  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
      16:15:26.0667 1520  WmiAcpi - ok
      16:15:26.0714 1520  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
      16:15:26.0745 1520  wmiApSrv - ok
      16:15:26.0776 1520  WMPNetworkSvc - ok
      16:15:26.0807 1520  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
      16:15:26.0854 1520  WPCSvc - ok
      16:15:26.0901 1520  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
      16:15:26.0932 1520  WPDBusEnum - ok
      16:15:26.0963 1520  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
      16:15:27.0010 1520  ws2ifsl - ok
      16:15:27.0041 1520  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\Windows\System32\wscsvc.dll
      16:15:27.0072 1520  wscsvc - ok
      16:15:27.0104 1520  WSearch - ok
      16:15:27.0182 1520  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
      16:15:27.0260 1520  wuauserv - ok
      16:15:27.0291 1520  [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
      16:15:27.0338 1520  WudfPf - ok
      16:15:27.0400 1520  [ CF8D590BE3373029D57AF80914190682 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
      16:15:27.0478 1520  WUDFRd - ok
      16:15:27.0509 1520  [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
      16:15:27.0556 1520  wudfsvc - ok
      16:15:27.0572 1520  [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc         C:\Windows\System32\wwansvc.dll
      16:15:27.0634 1520  WwanSvc - ok
      16:15:27.0650 1520  ================ Scan global ===============================
      16:15:27.0665 1520  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
      16:15:27.0712 1520  [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
      16:15:27.0712 1520  [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
      16:15:27.0743 1520  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
      16:15:27.0774 1520  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
      16:15:27.0774 1520  [Global] - ok
      16:15:27.0774 1520  ================ Scan MBR ==================================
      16:15:27.0790 1520  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
      16:15:27.0993 1520  \Device\Harddisk0\DR0 - ok
      16:15:27.0993 1520  ================ Scan VBR ==================================
      16:15:27.0993 1520  [ 8B176CBDB28C0A1680EADF8A3247F2C0 ] \Device\Harddisk0\DR0\Partition1
      16:15:27.0993 1520  \Device\Harddisk0\DR0\Partition1 - ok
      16:15:28.0024 1520  [ DB42CB50C0E6BED3DB116454C0F12855 ] \Device\Harddisk0\DR0\Partition2
      16:15:28.0024 1520  \Device\Harddisk0\DR0\Partition2 - ok
      16:15:28.0024 1520  ============================================================
      16:15:28.0024 1520  Scan finished
      16:15:28.0024 1520  ============================================================
      16:15:28.0040 1644  Detected object count: 1
      16:15:28.0040 1644  Actual detected object count: 1
      16:15:42.0891 1644  C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe - copied to quarantine
      16:15:42.0922 1644  HKLM\SYSTEM\ControlSet002\services\ServiceLayer - will be deleted on reboot
      16:15:42.0953 1644  HKLM\SYSTEM\ControlSet003\services\ServiceLayer - will be deleted on reboot
      16:15:43.0125 1644  C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe - will be deleted on reboot
      16:15:43.0125 1644  ServiceLayer ( UnsignedFile.Multi.Generic ) - User select action: Delete 
      16:15:46.0385 1640  Deinitialize success
      Espero tus próximas indicaciones :Bien

      Saludos!

    9. #29
      Usuario Avatar de Raudron
      Registrado
      sep 2012
      Ubicación
      El Mundo
      Mensajes
      1.467

      Re: Centro de Seguridad se desactiva solo

      Hola,

      ServiceLayer.exe es un archivo legítimo de Nokia.

      Antes de continuar, una pregunta: Estás seguro de que no estuviste infectado con un rootkit como ZeroAccess?

      Saludos

    10. #30
      Usuario Avatar de Ramiro.
      Registrado
      dic 2012
      Ubicación
      Uruguay
      Mensajes
      49

      Re: Centro de Seguridad se desactiva solo

      Hola,

      No te se contestar esa pregunta!

      Pero te aseguro que nunca antes había tenido ningún problema tan grave con virus!

      Espero tus próximas indicaciones!

      Saludos.