• Registrarse
  • Iniciar sesión


  • Página 5 de 8 PrimeroPrimero 12345678 ÚltimoÚltimo
    Resultados 41 al 50 de 77

    Centro de Seguridad se desactiva solo (Reabierto)

    Y acá va el reporte de TDSSKiller: Código: 02:01:42.0943 5064 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35 02:01:42.0967 5064 ============================================================ 02:01:42.0967 5064 Current date / time: 2012/12/13 02:01:42.0967 02:01:42.0967 5064 SystemInfo: 02:01:42.0967 5064 ...

    1. #41
      Usuario Avatar de Ramiro.
      Registrado
      dic 2012
      Ubicación
      Uruguay
      Mensajes
      49

      Re: Centro de Seguridad se desactiva solo

      Y acá va el reporte de TDSSKiller:

      Código:
      02:01:42.0943 5064  TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
      02:01:42.0967 5064  ============================================================
      02:01:42.0967 5064  Current date / time: 2012/12/13 02:01:42.0967
      02:01:42.0967 5064  SystemInfo:
      02:01:42.0967 5064  
      02:01:42.0968 5064  OS Version: 6.1.7601 ServicePack: 1.0
      02:01:42.0968 5064  Product type: Workstation
      02:01:42.0968 5064  ComputerName: RAMIRO-PC
      02:01:42.0968 5064  UserName: Ramiro
      02:01:42.0968 5064  Windows directory: C:\Windows
      02:01:42.0968 5064  System windows directory: C:\Windows
      02:01:42.0968 5064  Running under WOW64
      02:01:42.0968 5064  Processor architecture: Intel x64
      02:01:42.0968 5064  Number of processors: 2
      02:01:42.0968 5064  Page size: 0x1000
      02:01:42.0968 5064  Boot type: Normal boot
      02:01:42.0968 5064  ============================================================
      02:01:44.0117 5064  Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
      02:01:44.0124 5064  ============================================================
      02:01:44.0124 5064  \Device\Harddisk0\DR0:
      02:01:44.0124 5064  MBR partitions:
      02:01:44.0124 5064  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1801F5F, BlocksNum 0x32FCD
      02:01:44.0124 5064  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1834F2C, BlocksNum 0x23BF9384
      02:01:44.0124 5064  ============================================================
      02:01:44.0147 5064  C: <-> \Device\Harddisk0\DR0\Partition2
      02:01:44.0147 5064  ============================================================
      02:01:44.0147 5064  Initialize success
      02:01:44.0147 5064  ============================================================
      02:15:09.0445 4704  ============================================================
      02:15:09.0445 4704  Scan started
      02:15:09.0446 4704  Mode: Manual; SigCheck; TDLFS; 
      02:15:09.0446 4704  ============================================================
      02:15:10.0136 4704  ================ Scan system memory ========================
      02:15:10.0136 4704  System memory - ok
      02:15:10.0137 4704  ================ Scan services =============================
      02:15:10.0294 4704  [ 7D9D615201A483D6FA99491C2E655A5A ] !SASCORE        C:\PROGRAM FILES\SUPERANTISPYWARE\SASCORE64.EXE
      02:15:10.0386 4704  !SASCORE - ok
      02:15:10.0543 4704  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
      02:15:10.0604 4704  1394ohci - ok
      02:15:10.0659 4704  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
      02:15:10.0692 4704  ACPI - ok
      02:15:10.0754 4704  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
      02:15:10.0807 4704  AcpiPmi - ok
      02:15:10.0869 4704  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
      02:15:10.0907 4704  adp94xx - ok
      02:15:10.0980 4704  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
      02:15:11.0013 4704  adpahci - ok
      02:15:11.0083 4704  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
      02:15:11.0111 4704  adpu320 - ok
      02:15:11.0155 4704  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
      02:15:11.0242 4704  AeLookupSvc - ok
      02:15:11.0309 4704  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\Windows\system32\drivers\afd.sys
      02:15:11.0364 4704  AFD - ok
      02:15:11.0438 4704  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\drivers\agp440.sys
      02:15:11.0462 4704  agp440 - ok
      02:15:11.0513 4704  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
      02:15:11.0574 4704  ALG - ok
      02:15:11.0604 4704  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\drivers\aliide.sys
      02:15:11.0626 4704  aliide - ok
      02:15:11.0637 4704  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\drivers\amdide.sys
      02:15:11.0660 4704  amdide - ok
      02:15:11.0695 4704  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
      02:15:11.0724 4704  AmdK8 - ok
      02:15:11.0745 4704  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
      02:15:11.0803 4704  AmdPPM - ok
      02:15:11.0863 4704  [ 6EC6D772EAE38DC17C14AED9B178D24B ] amdsata         C:\Windows\system32\drivers\amdsata.sys
      02:15:11.0890 4704  amdsata - ok
      02:15:11.0912 4704  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
      02:15:11.0940 4704  amdsbs - ok
      02:15:11.0963 4704  [ 1142A21DB581A84EA5597B03A26EBAA0 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
      02:15:11.0987 4704  amdxata - ok
      02:15:12.0032 4704  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\Windows\system32\drivers\appid.sys
      02:15:12.0123 4704  AppID - ok
      02:15:12.0169 4704  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
      02:15:12.0258 4704  AppIDSvc - ok
      02:15:12.0313 4704  [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo         C:\Windows\System32\appinfo.dll
      02:15:12.0400 4704  Appinfo - ok
      02:15:12.0447 4704  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\DRIVERS\arc.sys
      02:15:12.0473 4704  arc - ok
      02:15:12.0491 4704  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
      02:15:12.0526 4704  arcsas - ok
      02:15:12.0543 4704  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
      02:15:12.0612 4704  AsyncMac - ok
      02:15:12.0679 4704  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\drivers\atapi.sys
      02:15:12.0702 4704  atapi - ok
      02:15:12.0772 4704  [ 88A02B6046356E6BE4E387FAA7451439 ] athr            C:\Windows\system32\DRIVERS\athrx.sys
      02:15:12.0859 4704  athr - ok
      02:15:12.0929 4704  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
      02:15:13.0007 4704  AudioEndpointBuilder - ok
      02:15:13.0022 4704  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
      02:15:13.0098 4704  AudioSrv - ok
      02:15:13.0151 4704  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\Windows\System32\AxInstSV.dll
      02:15:13.0204 4704  AxInstSV - ok
      02:15:13.0254 4704  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
      02:15:13.0320 4704  b06bdrv - ok
      02:15:13.0375 4704  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
      02:15:13.0433 4704  b57nd60a - ok
      02:15:13.0549 4704  [ B44879610F2DC4A046B14BEFA3AE72DE ] BCM43XX         C:\Windows\system32\DRIVERS\bcmwl664.sys
      02:15:13.0734 4704  BCM43XX - ok
      02:15:13.0773 4704  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
      02:15:13.0827 4704  BDESVC - ok
      02:15:13.0870 4704  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
      02:15:13.0961 4704  Beep - ok
      02:15:14.0031 4704  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\Windows\System32\bfe.dll
      02:15:14.0130 4704  BFE - ok
      02:15:14.0182 4704  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\Windows\System32\qmgr.dll
      02:15:14.0290 4704  BITS - ok
      02:15:14.0345 4704  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
      02:15:14.0370 4704  blbdrive - ok
      02:15:14.0401 4704  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
      02:15:14.0443 4704  bowser - ok
      02:15:14.0478 4704  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
      02:15:14.0544 4704  BrFiltLo - ok
      02:15:14.0572 4704  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
      02:15:14.0601 4704  BrFiltUp - ok
      02:15:14.0644 4704  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\Windows\System32\browser.dll
      02:15:14.0694 4704  Browser - ok
      02:15:14.0749 4704  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
      02:15:14.0859 4704  Brserid - ok
      02:15:14.0903 4704  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
      02:15:14.0955 4704  BrSerWdm - ok
      02:15:14.0987 4704  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
      02:15:15.0040 4704  BrUsbMdm - ok
      02:15:15.0047 4704  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
      02:15:15.0082 4704  BrUsbSer - ok
      02:15:15.0109 4704  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
      02:15:15.0157 4704  BTHMODEM - ok
      02:15:15.0219 4704  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
      02:15:15.0323 4704  bthserv - ok
      02:15:15.0379 4704  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
      02:15:15.0488 4704  cdfs - ok
      02:15:15.0538 4704  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
      02:15:15.0582 4704  cdrom - ok
      02:15:15.0621 4704  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\Windows\System32\certprop.dll
      02:15:15.0717 4704  CertPropSvc - ok
      02:15:15.0763 4704  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
      02:15:15.0820 4704  circlass - ok
      02:15:15.0895 4704  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
      02:15:15.0929 4704  CLFS - ok
      02:15:16.0061 4704  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
      02:15:16.0084 4704  clr_optimization_v2.0.50727_32 - ok
      02:15:16.0145 4704  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
      02:15:16.0166 4704  clr_optimization_v2.0.50727_64 - ok
      02:15:16.0241 4704  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
      02:15:16.0288 4704  CmBatt - ok
      02:15:16.0353 4704  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\drivers\cmdide.sys
      02:15:16.0376 4704  cmdide - ok
      02:15:16.0442 4704  [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG             C:\Windows\system32\Drivers\cng.sys
      02:15:16.0492 4704  CNG - ok
      02:15:16.0538 4704  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
      02:15:16.0561 4704  Compbatt - ok
      02:15:16.0605 4704  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
      02:15:16.0658 4704  CompositeBus - ok
      02:15:16.0665 4704  COMSysApp - ok
      02:15:16.0701 4704  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
      02:15:16.0725 4704  crcdisk - ok
      02:15:16.0798 4704  [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc        C:\Windows\system32\cryptsvc.dll
      02:15:16.0850 4704  CryptSvc - ok
      02:15:16.0910 4704  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\Windows\system32\rpcss.dll
      02:15:17.0008 4704  DcomLaunch - ok
      02:15:17.0058 4704  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
      02:15:17.0150 4704  defragsvc - ok
      02:15:17.0206 4704  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
      02:15:17.0292 4704  DfsC - ok
      02:15:17.0353 4704  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\Windows\system32\dhcpcore.dll
      02:15:17.0447 4704  Dhcp - ok
      02:15:17.0480 4704  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
      02:15:17.0545 4704  discache - ok
      02:15:17.0562 4704  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\DRIVERS\disk.sys
      02:15:17.0587 4704  Disk - ok
      02:15:17.0682 4704  [ D5BCB77BE83CF99F508943945D46343D ] DKbFltr         C:\Windows\SysWOW64\Drivers\DKbFltr.sys
      02:15:17.0709 4704  DKbFltr - ok
      02:15:17.0765 4704  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
      02:15:17.0820 4704  Dnscache - ok
      02:15:17.0876 4704  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\Windows\System32\dot3svc.dll
      02:15:17.0968 4704  dot3svc - ok
      02:15:18.0019 4704  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\Windows\system32\dps.dll
      02:15:18.0109 4704  DPS - ok
      02:15:18.0162 4704  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
      02:15:18.0211 4704  drmkaud - ok
      02:15:18.0291 4704  [ FB9BEF3401EE5ECC2603311B9C64F44A ] dtsoftbus01     C:\Windows\system32\DRIVERS\dtsoftbus01.sys
      02:15:18.0324 4704  dtsoftbus01 - ok
      02:15:18.0383 4704  [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
      02:15:18.0435 4704  DXGKrnl - ok
      02:15:18.0460 4704  dxljccvg - ok
      02:15:18.0517 4704  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
      02:15:18.0612 4704  EapHost - ok
      02:15:18.0729 4704  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
      02:15:18.0897 4704  ebdrv - ok
      02:15:18.0954 4704  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\Windows\System32\lsass.exe
      02:15:19.0014 4704  EFS - ok
      02:15:19.0110 4704  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
      02:15:19.0182 4704  ehRecvr - ok
      02:15:19.0241 4704  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
      02:15:19.0269 4704  ehSched - ok
      02:15:19.0306 4704  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
      02:15:19.0344 4704  elxstor - ok
      02:15:19.0429 4704  [ 8E910F796F5F30281CDD24ABA47DDEA2 ] ePowerSvc       C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
      02:15:19.0476 4704  ePowerSvc - ok
      02:15:19.0494 4704  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\drivers\errdev.sys
      02:15:19.0546 4704  ErrDev - ok
      02:15:19.0622 4704  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
      02:15:19.0722 4704  EventSystem - ok
      02:15:19.0813 4704  [ BC02AA6C20F6851F42D7B7755274AD29 ] ewusbnet        C:\Windows\system32\DRIVERS\ewusbnet.sys
      02:15:19.0857 4704  ewusbnet - ok
      02:15:19.0883 4704  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
      02:15:19.0953 4704  exfat - ok
      02:15:19.0991 4704  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
      02:15:20.0092 4704  fastfat - ok
      02:15:20.0170 4704  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\Windows\system32\fxssvc.exe
      02:15:20.0236 4704  Fax - ok
      02:15:20.0283 4704  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
      02:15:20.0335 4704  fdc - ok
      02:15:20.0367 4704  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
      02:15:20.0435 4704  fdPHost - ok
      02:15:20.0452 4704  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
      02:15:20.0543 4704  FDResPub - ok
      02:15:20.0601 4704  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
      02:15:20.0625 4704  FileInfo - ok
      02:15:20.0645 4704  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
      02:15:20.0741 4704  Filetrace - ok
      02:15:20.0773 4704  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
      02:15:20.0800 4704  flpydisk - ok
      02:15:20.0860 4704  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
      02:15:20.0891 4704  FltMgr - ok
      02:15:21.0029 4704  [ B4447F606BB19FD8AD0BAFB59B90F5D9 ] FontCache       C:\Windows\system32\FntCache.dll
      02:15:21.0149 4704  FontCache - ok
      02:15:21.0217 4704  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
      02:15:21.0238 4704  FontCache3.0.0.0 - ok
      02:15:21.0275 4704  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
      02:15:21.0299 4704  FsDepends - ok
      02:15:21.0363 4704  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
      02:15:21.0386 4704  Fs_Rec - ok
      02:15:21.0469 4704  [ 1F7B25B858FA27015169FE95E54108ED ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
      02:15:21.0504 4704  fvevol - ok
      02:15:21.0522 4704  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
      02:15:21.0547 4704  gagp30kx - ok
      02:15:21.0607 4704  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\Windows\System32\gpsvc.dll
      02:15:21.0717 4704  gpsvc - ok
      02:15:21.0836 4704  [ 816FD5A6F3C2F3D600900096632FC60E ] Greg_Service    C:\Program Files (x86)\Acer\Registration\GregHSRW.exe
      02:15:21.0890 4704  Greg_Service - ok
      02:15:22.0021 4704  [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
      02:15:22.0040 4704  gupdate - ok
      02:15:22.0092 4704  [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
      02:15:22.0110 4704  gupdatem - ok
      02:15:22.0172 4704  [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc           C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
      02:15:22.0199 4704  gusvc - ok
      02:15:22.0245 4704  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
      02:15:22.0295 4704  hcw85cir - ok
      02:15:22.0363 4704  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
      02:15:22.0399 4704  HdAudAddService - ok
      02:15:22.0427 4704  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
      02:15:22.0474 4704  HDAudBus - ok
      02:15:22.0505 4704  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
      02:15:22.0566 4704  HidBatt - ok
      02:15:22.0598 4704  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
      02:15:22.0656 4704  HidBth - ok
      02:15:22.0689 4704  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
      02:15:22.0720 4704  HidIr - ok
      02:15:22.0759 4704  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\system32\hidserv.dll
      02:15:22.0851 4704  hidserv - ok
      02:15:22.0900 4704  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
      02:15:22.0926 4704  HidUsb - ok
      02:15:22.0980 4704  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\Windows\system32\kmsvc.dll
      02:15:23.0071 4704  hkmsvc - ok
      02:15:23.0126 4704  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
      02:15:23.0218 4704  HomeGroupListener - ok
      02:15:23.0285 4704  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
      02:15:23.0362 4704  HomeGroupProvider - ok
      02:15:23.0397 4704  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
      02:15:23.0422 4704  HpSAMD - ok
      02:15:23.0486 4704  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
      02:15:23.0567 4704  HTTP - ok
      02:15:23.0683 4704  [ 8F9B0FC4EC3A8194BD4CBC5ED3E7ABEB ] hwdatacard      C:\Windows\system32\DRIVERS\ewusbmdm.sys
      02:15:23.0705 4704  hwdatacard - ok
      02:15:23.0759 4704  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
      02:15:23.0781 4704  hwpolicy - ok
      02:15:23.0844 4704  [ 230C041AF8DF1D2308C3AC5146E3FF4F ] hwusbdev        C:\Windows\system32\DRIVERS\ewusbdev.sys
      02:15:23.0889 4704  hwusbdev - ok
      02:15:23.0956 4704  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
      02:15:23.0982 4704  i8042prt - ok
      02:15:24.0051 4704  [ 660BF3255A1EB18ED803FD2FBA6AE400 ] IAANTMON        C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
      02:15:24.0086 4704  IAANTMON - ok
      02:15:24.0122 4704  [ BE7D72FCF442C26975942007E0831241 ] iaStor          C:\Windows\system32\DRIVERS\iaStor.sys
      02:15:24.0155 4704  iaStor - ok
      02:15:24.0191 4704  [ 3DF4395A7CF8B7A72A5F4606366B8C2D ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
      02:15:24.0225 4704  iaStorV - ok
      02:15:24.0302 4704  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
      02:15:24.0346 4704  idsvc - ok
      02:15:24.0663 4704  [ 677AA5991026A65ADA128C4B59CF2BAD ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
      02:15:25.0056 4704  igfx - ok
      02:15:25.0104 4704  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
      02:15:25.0128 4704  iirsp - ok
      02:15:25.0197 4704  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\Windows\System32\ikeext.dll
      02:15:25.0316 4704  IKEEXT - ok
      02:15:25.0430 4704  [ 0C3CF4B3BAE28E121A1689E3538F8712 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
      02:15:25.0506 4704  IntcAzAudAddService - ok
      02:15:25.0522 4704  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\drivers\intelide.sys
      02:15:25.0546 4704  intelide - ok
      02:15:25.0624 4704  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
      02:15:25.0671 4704  intelppm - ok
      02:15:25.0719 4704  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
      02:15:25.0790 4704  IPBusEnum - ok
      02:15:25.0839 4704  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
      02:15:25.0931 4704  IpFilterDriver - ok
      02:15:25.0976 4704  [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
      02:15:26.0074 4704  iphlpsvc - ok
      02:15:26.0132 4704  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
      02:15:26.0209 4704  IPMIDRV - ok
      02:15:26.0277 4704  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
      02:15:26.0400 4704  IPNAT - ok
      02:15:26.0413 4704  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
      02:15:26.0472 4704  IRENUM - ok
      02:15:26.0517 4704  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
      02:15:26.0540 4704  isapnp - ok
      02:15:26.0603 4704  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
      02:15:26.0634 4704  iScsiPrt - ok
      02:15:26.0656 4704  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\drivers\kbdclass.sys
      02:15:26.0681 4704  kbdclass - ok
      02:15:26.0701 4704  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\Windows\system32\drivers\kbdhid.sys
      02:15:26.0747 4704  kbdhid - ok
      02:15:26.0777 4704  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\Windows\system32\lsass.exe
      02:15:26.0803 4704  KeyIso - ok
      02:15:26.0876 4704  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
      02:15:26.0901 4704  KSecDD - ok
      02:15:26.0923 4704  [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
      02:15:26.0950 4704  KSecPkg - ok
      02:15:26.0985 4704  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
      02:15:27.0081 4704  ksthunk - ok
      02:15:27.0131 4704  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
      02:15:27.0225 4704  KtmRm - ok
      02:15:27.0262 4704  [ 2377EC4CC3E356655B996F39B43486B6 ] L1C             C:\Windows\system32\DRIVERS\L1C62x64.sys
      02:15:27.0306 4704  L1C - ok
      02:15:27.0376 4704  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\Windows\system32\srvsvc.dll
      02:15:27.0470 4704  LanmanServer - ok
      02:15:27.0518 4704  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
      02:15:27.0610 4704  LanmanWorkstation - ok
      02:15:27.0649 4704  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
      02:15:27.0719 4704  lltdio - ok
      02:15:27.0763 4704  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
      02:15:27.0864 4704  lltdsvc - ok
      02:15:27.0897 4704  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
      02:15:27.0993 4704  lmhosts - ok
      02:15:28.0026 4704  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
      02:15:28.0052 4704  LSI_FC - ok
      02:15:28.0071 4704  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
      02:15:28.0097 4704  LSI_SAS - ok
      02:15:28.0111 4704  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
      02:15:28.0137 4704  LSI_SAS2 - ok
      02:15:28.0162 4704  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
      02:15:28.0191 4704  LSI_SCSI - ok
      02:15:28.0260 4704  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
      02:15:28.0359 4704  luafv - ok
      02:15:28.0407 4704  [ A8FE8F2783B2929B56F5370A89356CE9 ] MBAMProtector   C:\Windows\system32\drivers\mbam.sys
      02:15:28.0436 4704  MBAMProtector - ok
      02:15:28.0503 4704  [ 85B16A92B117A5A800032ECD904B86DB ] MBAMScheduler   C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
      02:15:28.0529 4704  MBAMScheduler - ok
      02:15:28.0582 4704  [ 20E2469DB709FC675E655CEAA11BE312 ] MBAMService     C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
      02:15:28.0614 4704  MBAMService - ok
      02:15:28.0655 4704  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
      02:15:28.0709 4704  Mcx2Svc - ok
      02:15:28.0755 4704  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
      02:15:28.0779 4704  megasas - ok
      02:15:28.0798 4704  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
      02:15:28.0832 4704  MegaSR - ok
      02:15:28.0977 4704  [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
      02:15:28.0998 4704  Microsoft Office Groove Audit Service - ok
      02:15:29.0049 4704  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
      02:15:29.0142 4704  MMCSS - ok
      02:15:29.0185 4704  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
      02:15:29.0275 4704  Modem - ok
      02:15:29.0323 4704  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
      02:15:29.0372 4704  monitor - ok
      02:15:29.0423 4704  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\drivers\mouclass.sys
      02:15:29.0446 4704  mouclass - ok
      02:15:29.0463 4704  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
      02:15:29.0514 4704  mouhid - ok
      02:15:29.0562 4704  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
      02:15:29.0587 4704  mountmgr - ok
      02:15:29.0700 4704  [ 05BF204EC0E82CC4A054DB189C8A3D84 ] MpFilter        C:\Windows\system32\DRIVERS\MpFilter.sys
      02:15:29.0742 4704  MpFilter - ok
      02:15:29.0794 4704  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\Windows\system32\drivers\mpio.sys
      02:15:29.0822 4704  mpio - ok
      02:15:29.0852 4704  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
      02:15:29.0920 4704  mpsdrv - ok
      02:15:29.0992 4704  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc          C:\Windows\system32\mpssvc.dll
      02:15:30.0100 4704  MpsSvc - ok
      02:15:30.0151 4704  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
      02:15:30.0187 4704  MRxDAV - ok
      02:15:30.0220 4704  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
      02:15:30.0273 4704  mrxsmb - ok
      02:15:30.0322 4704  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
      02:15:30.0352 4704  mrxsmb10 - ok
      02:15:30.0372 4704  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
      02:15:30.0416 4704  mrxsmb20 - ok
      02:15:30.0460 4704  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\Windows\system32\drivers\msahci.sys
      02:15:30.0483 4704  msahci - ok
      02:15:30.0538 4704  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
      02:15:30.0565 4704  msdsm - ok
      02:15:30.0601 4704  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
      02:15:30.0658 4704  MSDTC - ok
      02:15:30.0696 4704  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
      02:15:30.0762 4704  Msfs - ok
      02:15:30.0780 4704  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
      02:15:30.0876 4704  mshidkmdf - ok
      02:15:30.0932 4704  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
      02:15:30.0955 4704  msisadrv - ok
      02:15:30.0993 4704  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
      02:15:31.0113 4704  MSiSCSI - ok
      02:15:31.0121 4704  msiserver - ok
      02:15:31.0165 4704  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
      02:15:31.0251 4704  MSKSSRV - ok
      02:15:31.0500 4704  [ CC8E4F72F21340A4D3A3D4DB50313EF5 ] MsMpSvc         C:\Program Files\Microsoft Security Client\MsMpEng.exe
      02:15:31.0526 4704  MsMpSvc - ok
      02:15:31.0564 4704  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
      02:15:31.0631 4704  MSPCLOCK - ok
      02:15:31.0661 4704  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
      02:15:31.0759 4704  MSPQM - ok
      02:15:31.0819 4704  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
      02:15:31.0853 4704  MsRPC - ok
      02:15:31.0903 4704  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
      02:15:31.0926 4704  mssmbios - ok
      02:15:31.0954 4704  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
      02:15:32.0040 4704  MSTEE - ok
      02:15:32.0069 4704  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
      02:15:32.0094 4704  MTConfig - ok
      02:15:32.0116 4704  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
      02:15:32.0141 4704  Mup - ok
      02:15:32.0206 4704  [ 6FFECC25B39DC7652A0CEC0ADA9DB589 ] mwlPSDFilter    C:\Windows\system32\DRIVERS\mwlPSDFilter.sys
      02:15:32.0231 4704  mwlPSDFilter - ok
      02:15:32.0244 4704  [ 0BEFE32CA56D6EE89D58175725596A85 ] mwlPSDNServ     C:\Windows\system32\DRIVERS\mwlPSDNServ.sys
      02:15:32.0269 4704  mwlPSDNServ - ok
      02:15:32.0284 4704  [ D43BC633B8660463E446E28E14A51262 ] mwlPSDVDisk     C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys
      02:15:32.0310 4704  mwlPSDVDisk - ok
      02:15:32.0345 4704  [ 2F139207F618EC2933830227EEFFDDB4 ] MWLService      C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\\MWLService.exe
      02:15:32.0368 4704  MWLService - ok
      02:15:32.0431 4704  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\Windows\system32\qagentRT.dll
      02:15:32.0529 4704  napagent - ok
      02:15:32.0592 4704  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
      02:15:32.0657 4704  NativeWifiP - ok
      02:15:32.0717 4704  [ 79B47FD40D9A817E932F9D26FAC0A81C ] NDIS            C:\Windows\system32\drivers\ndis.sys
      02:15:32.0771 4704  NDIS - ok
      02:15:32.0798 4704  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
      02:15:32.0896 4704  NdisCap - ok
      02:15:32.0920 4704  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
      02:15:33.0008 4704  NdisTapi - ok
      02:15:33.0051 4704  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
      02:15:33.0140 4704  Ndisuio - ok
      02:15:33.0219 4704  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
      02:15:33.0321 4704  NdisWan - ok
      02:15:33.0396 4704  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
      02:15:33.0481 4704  NDProxy - ok
      02:15:33.0524 4704  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
      02:15:33.0613 4704  NetBIOS - ok
      02:15:33.0664 4704  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
      02:15:33.0754 4704  NetBT - ok
      02:15:33.0788 4704  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\Windows\system32\lsass.exe
      02:15:33.0813 4704  Netlogon - ok
      02:15:33.0846 4704  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
      02:15:33.0944 4704  Netman - ok
      02:15:33.0986 4704  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
      02:15:34.0092 4704  netprofm - ok
      02:15:34.0138 4704  [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
      02:15:34.0160 4704  NetTcpPortSharing - ok
      02:15:34.0199 4704  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
      02:15:34.0223 4704  nfrd960 - ok
      02:15:34.0290 4704  [ 5FF89F20317309D28AC1EDEB0CD1BA72 ] NisDrv          C:\Windows\system32\DRIVERS\NisDrvWFP.sys
      02:15:34.0320 4704  NisDrv - ok
      02:15:34.0393 4704  [ 79E80B10FE8F6662E0C9162A68C43444 ] NisSrv          C:\Program Files\Microsoft Security Client\NisSrv.exe
      02:15:34.0431 4704  NisSrv - ok
      02:15:34.0490 4704  [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc          C:\Windows\System32\nlasvc.dll
      02:15:34.0584 4704  NlaSvc - ok
      02:15:34.0639 4704  [ 903681BAB213D5F84717C0FC42AFB28A ] nmwcd           C:\Windows\system32\drivers\ccdcmbx64.sys
      02:15:34.0709 4704  nmwcd - ok
      02:15:34.0796 4704  [ 41C1AC1F3613435EB32D67BCB80A5FA5 ] nmwcdc          C:\Windows\system32\drivers\ccdcmbox64.sys
      02:15:34.0857 4704  nmwcdc - ok
      02:15:34.0939 4704  [ 863AA6C58AC85A22355AE943C605E44B ] nmwcdnsucx64    C:\Windows\system32\drivers\nmwcdnsucx64.sys
      02:15:35.0004 4704  nmwcdnsucx64 - ok
      02:15:35.0078 4704  [ 7983D9201788407C4D1FC4D0BAA04E32 ] nmwcdnsux64     C:\Windows\system32\drivers\nmwcdnsux64.sys
      02:15:35.0148 4704  nmwcdnsux64 - ok
      02:15:35.0175 4704  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
      02:15:35.0241 4704  Npfs - ok
      02:15:35.0277 4704  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
      02:15:35.0370 4704  nsi - ok
      02:15:35.0411 4704  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
      02:15:35.0502 4704  nsiproxy - ok
      02:15:35.0586 4704  [ 05D78AA5CB5F3F5C31160BDB955D0B7C ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
      02:15:35.0659 4704  Ntfs - ok
      02:15:35.0715 4704  [ FD324CCE1D4D5BB5AF65F8E55B462C7E ] NTIBackupSvc    C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
      02:15:35.0734 4704  NTIBackupSvc - ok
      02:15:35.0769 4704  [ 64DDD0DEE976302F4BD93E5EFCC2F013 ] NTIDrvr         C:\Windows\system32\drivers\NTIDrvr.sys
      02:15:35.0794 4704  NTIDrvr - ok
      02:15:35.0811 4704  [ 3F6268A2EC33CD38CF75C880AF8DED42 ] NTISchedulerSvc C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
      02:15:35.0839 4704  NTISchedulerSvc - ok
      02:15:35.0909 4704  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
      02:15:35.0998 4704  Null - ok
      02:15:36.0048 4704  [ 5D9FD91F3D38DC9DA01E3CB5FA89CD48 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
      02:15:36.0075 4704  nvraid - ok
      02:15:36.0103 4704  [ F7CD50FE7139F07E77DA8AC8033D1832 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
      02:15:36.0131 4704  nvstor - ok
      02:15:36.0161 4704  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
      02:15:36.0188 4704  nv_agp - ok
      02:15:36.0312 4704  [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv          C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
      02:15:36.0343 4704  odserv - ok
      02:15:36.0384 4704  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
      02:15:36.0411 4704  ohci1394 - ok
      02:15:36.0536 4704  [ 5A432A042DAE460ABE7199B758E8606C ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
      02:15:36.0560 4704  ose - ok
      02:15:36.0634 4704  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
      02:15:36.0694 4704  p2pimsvc - ok
      02:15:36.0731 4704  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
      02:15:36.0766 4704  p2psvc - ok
      02:15:36.0799 4704  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
      02:15:36.0825 4704  Parport - ok
      02:15:36.0896 4704  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\Windows\system32\drivers\partmgr.sys
      02:15:36.0922 4704  partmgr - ok
      02:15:36.0960 4704  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
      02:15:37.0015 4704  PcaSvc - ok
      02:15:37.0096 4704  [ BC0018C2D29F655188A0ED3FA94FDB24 ] pccsmcfd        C:\Windows\system32\DRIVERS\pccsmcfdx64.sys
      02:15:37.0136 4704  pccsmcfd - ok
      02:15:37.0171 4704  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\Windows\system32\drivers\pci.sys
      02:15:37.0199 4704  pci - ok
      02:15:37.0241 4704  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys
      02:15:37.0265 4704  pciide - ok
      02:15:37.0302 4704  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
      02:15:37.0331 4704  pcmcia - ok
      02:15:37.0352 4704  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
      02:15:37.0377 4704  pcw - ok
      02:15:37.0403 4704  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
      02:15:37.0484 4704  PEAUTH - ok
      02:15:37.0563 4704  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
      02:15:37.0618 4704  PerfHost - ok
      02:15:37.0717 4704  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\Windows\system32\pla.dll
      02:15:37.0840 4704  pla - ok
      02:15:37.0923 4704  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
      02:15:37.0976 4704  PlugPlay - ok
      02:15:38.0018 4704  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
      02:15:38.0067 4704  PNRPAutoReg - ok
      02:15:38.0100 4704  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
      02:15:38.0130 4704  PNRPsvc - ok
      02:15:38.0188 4704  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
      02:15:38.0288 4704  PolicyAgent - ok
      02:15:38.0332 4704  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
      02:15:38.0432 4704  Power - ok
      02:15:38.0475 4704  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
      02:15:38.0565 4704  PptpMiniport - ok
      02:15:38.0608 4704  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\DRIVERS\processr.sys
      02:15:38.0663 4704  Processor - ok
      02:15:38.0712 4704  [ 5C78838B4D166D1A27DB3A8A820C799A ] ProfSvc         C:\Windows\system32\profsvc.dll
      02:15:38.0809 4704  ProfSvc - ok
      02:15:38.0834 4704  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
      02:15:38.0859 4704  ProtectedStorage - ok
      02:15:38.0926 4704  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
      02:15:38.0993 4704  Psched - ok
      02:15:39.0148 4704  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
      02:15:39.0216 4704  ql2300 - ok
      02:15:39.0226 4704  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
      02:15:39.0252 4704  ql40xx - ok
      02:15:39.0281 4704  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
      02:15:39.0321 4704  QWAVE - ok
      02:15:39.0337 4704  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
      02:15:39.0369 4704  QWAVEdrv - ok
      02:15:39.0388 4704  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
      02:15:39.0455 4704  RasAcd - ok
      02:15:39.0483 4704  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
      02:15:39.0551 4704  RasAgileVpn - ok
      02:15:39.0567 4704  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
      02:15:39.0661 4704  RasAuto - ok
      02:15:39.0710 4704  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
      02:15:39.0809 4704  Rasl2tp - ok
      02:15:39.0883 4704  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\Windows\System32\rasmans.dll
      02:15:39.0956 4704  RasMan - ok
      02:15:39.0985 4704  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
      02:15:40.0079 4704  RasPppoe - ok
      02:15:40.0105 4704  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
      02:15:40.0202 4704  RasSstp - ok
      02:15:40.0264 4704  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
      02:15:40.0360 4704  rdbss - ok
      02:15:40.0393 4704  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
      02:15:40.0443 4704  rdpbus - ok
      02:15:40.0488 4704  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
      02:15:40.0557 4704  RDPCDD - ok
      02:15:40.0580 4704  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
      02:15:40.0644 4704  RDPENCDD - ok
      02:15:40.0671 4704  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
      02:15:40.0740 4704  RDPREFMP - ok
      02:15:40.0791 4704  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
      02:15:40.0819 4704  RDPWD - ok
      02:15:40.0875 4704  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
      02:15:40.0905 4704  rdyboost - ok
      02:15:40.0941 4704  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
      02:15:41.0034 4704  RemoteAccess - ok
      02:15:41.0082 4704  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
      02:15:41.0181 4704  RemoteRegistry - ok
      02:15:41.0218 4704  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
      02:15:41.0310 4704  RpcEptMapper - ok
      02:15:41.0338 4704  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
      02:15:41.0388 4704  RpcLocator - ok
      02:15:41.0447 4704  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\Windows\system32\rpcss.dll
      02:15:41.0521 4704  RpcSs - ok
      02:15:41.0547 4704  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
      02:15:41.0645 4704  rspndr - ok
      02:15:41.0704 4704  [ DB30AA4DAA0D492FA5D7717D8181FFA1 ] RSUSBSTOR       C:\Windows\system32\Drivers\RtsUStor.sys
      02:15:41.0734 4704  RSUSBSTOR - ok
      02:15:41.0768 4704  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\Windows\system32\lsass.exe
      02:15:41.0795 4704  SamSs - ok
      02:15:41.0929 4704  [ 3289766038DB2CB14D07DC84392138D5 ] SASDIFSV        C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
      02:15:41.0955 4704  SASDIFSV - ok
      02:15:42.0017 4704  [ 58A38E75F3316A83C23DF6173D41F2B5 ] SASKUTIL        C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
      02:15:42.0041 4704  SASKUTIL - ok
      02:15:42.0113 4704  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
      02:15:42.0139 4704  sbp2port - ok
      02:15:42.0186 4704  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
      02:15:42.0280 4704  SCardSvr - ok
      02:15:42.0335 4704  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
      02:15:42.0419 4704  scfilter - ok
      02:15:42.0494 4704  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\Windows\system32\schedsvc.dll
      02:15:42.0604 4704  Schedule - ok
      02:15:42.0647 4704  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\Windows\System32\certprop.dll
      02:15:42.0715 4704  SCPolicySvc - ok
      02:15:42.0766 4704  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
      02:15:42.0818 4704  SDRSVC - ok
      02:15:42.0882 4704  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
      02:15:42.0953 4704  secdrv - ok
      02:15:42.0997 4704  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\Windows\system32\seclogon.dll
      02:15:43.0086 4704  seclogon - ok
      02:15:43.0127 4704  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\System32\sens.dll
      02:15:43.0217 4704  SENS - ok
      02:15:43.0233 4704  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
      02:15:43.0283 4704  SensrSvc - ok
      02:15:43.0324 4704  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
      02:15:43.0349 4704  Serenum - ok
      02:15:43.0359 4704  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\DRIVERS\serial.sys
      02:15:43.0404 4704  Serial - ok
      02:15:43.0445 4704  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
      02:15:43.0489 4704  sermouse - ok
      02:15:43.0541 4704  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\Windows\system32\sessenv.dll
      02:15:43.0638 4704  SessionEnv - ok
      02:15:43.0675 4704  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
      02:15:43.0731 4704  sffdisk - ok
      02:15:43.0769 4704  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
      02:15:43.0824 4704  sffp_mmc - ok
      02:15:43.0853 4704  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
      02:15:43.0906 4704  sffp_sd - ok
      02:15:43.0941 4704  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
      02:15:43.0965 4704  sfloppy - ok
      02:15:44.0055 4704  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll
      02:15:44.0132 4704  SharedAccess - ok
      02:15:44.0196 4704  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
      02:15:44.0296 4704  ShellHWDetection - ok
      02:15:44.0304 4704  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
      02:15:44.0330 4704  SiSRaid2 - ok
      02:15:44.0338 4704  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
      02:15:44.0365 4704  SiSRaid4 - ok
      02:15:44.0449 4704  [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
      02:15:44.0471 4704  SkypeUpdate - ok
      02:15:44.0491 4704  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
      02:15:44.0581 4704  Smb - ok
      02:15:44.0652 4704  [ CA62AE004E98374BF7F082CD765EEA02 ] SNMP            C:\Windows\System32\snmp.exe
      02:15:44.0708 4704  SNMP - ok
      02:15:44.0759 4704  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
      02:15:44.0813 4704  SNMPTRAP - ok
      02:15:44.0852 4704  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
      02:15:44.0876 4704  spldr - ok
      02:15:44.0951 4704  [ B96C17B5DC1424D56EEA3A99E97428CD ] Spooler         C:\Windows\System32\spoolsv.exe
      02:15:45.0028 4704  Spooler - ok
      02:15:45.0150 4704  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\Windows\system32\sppsvc.exe
      02:15:45.0363 4704  sppsvc - ok
      02:15:45.0430 4704  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
      02:15:45.0526 4704  sppuinotify - ok
      02:15:45.0579 4704  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\Windows\system32\DRIVERS\srv.sys
      02:15:45.0612 4704  srv - ok
      02:15:45.0681 4704  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
      02:15:45.0734 4704  srv2 - ok
      02:15:45.0775 4704  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
      02:15:45.0826 4704  srvnet - ok
      02:15:45.0879 4704  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
      02:15:45.0980 4704  SSDPSRV - ok
      02:15:46.0029 4704  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
      02:15:46.0099 4704  SstpSvc - ok
      02:15:46.0161 4704  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
      02:15:46.0184 4704  stexstor - ok
      02:15:46.0244 4704  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\Windows\System32\wiaservc.dll
      02:15:46.0293 4704  stisvc - ok
      02:15:46.0344 4704  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\drivers\swenum.sys
      02:15:46.0367 4704  swenum - ok
      02:15:46.0407 4704  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
      02:15:46.0513 4704  swprv - ok
      02:15:46.0621 4704  [ BCF305959B53B200CEB2AD25AD22F8A7 ] SynTP           C:\Windows\system32\DRIVERS\SynTP.sys
      02:15:46.0654 4704  SynTP - ok
      02:15:46.0736 4704  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\Windows\system32\sysmain.dll
      02:15:46.0843 4704  SysMain - ok
      02:15:46.0896 4704  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
      02:15:46.0953 4704  TabletInputService - ok
      02:15:46.0988 4704  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\Windows\System32\tapisrv.dll
      02:15:47.0080 4704  TapiSrv - ok
      02:15:47.0123 4704  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
      02:15:47.0218 4704  TBS - ok
      02:15:47.0330 4704  [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
      02:15:47.0410 4704  Tcpip - ok
      02:15:47.0446 4704  [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
      02:15:47.0516 4704  TCPIP6 - ok
      02:15:47.0589 4704  [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
      02:15:47.0673 4704  tcpipreg - ok
      02:15:47.0726 4704  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
      02:15:47.0750 4704  TDPIPE - ok
      02:15:47.0798 4704  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
      02:15:47.0831 4704  TDTCP - ok
      02:15:47.0875 4704  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
      02:15:47.0959 4704  tdx - ok
      02:15:48.0003 4704  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\Windows\system32\drivers\termdd.sys
      02:15:48.0028 4704  TermDD - ok
      02:15:48.0106 4704  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\Windows\System32\termsrv.dll
      02:15:48.0189 4704  TermService - ok
      02:15:48.0218 4704  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
      02:15:48.0256 4704  Themes - ok
      02:15:48.0295 4704  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
      02:15:48.0364 4704  THREADORDER - ok
      02:15:48.0393 4704  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
      02:15:48.0495 4704  TrkWks - ok
      02:15:48.0582 4704  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
      02:15:48.0671 4704  TrustedInstaller - ok
      02:15:48.0733 4704  [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
      02:15:48.0825 4704  tssecsrv - ok
      02:15:48.0928 4704  [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
      02:15:48.0973 4704  TsUsbFlt - ok
      02:15:49.0030 4704  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
      02:15:49.0125 4704  tunnel - ok
      02:15:49.0159 4704  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
      02:15:49.0184 4704  uagp35 - ok
      02:15:49.0199 4704  [ 2E22C1FD397A5A9FFEF55E9D1FC96C00 ] UBHelper        C:\Windows\system32\drivers\UBHelper.sys
      02:15:49.0223 4704  UBHelper - ok
      02:15:49.0288 4704  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
      02:15:49.0386 4704  udfs - ok
      02:15:49.0430 4704  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
      02:15:49.0459 4704  UI0Detect - ok
      02:15:49.0498 4704  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
      02:15:49.0523 4704  uliagpkx - ok
      02:15:49.0571 4704  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\Windows\system32\drivers\umbus.sys
      02:15:49.0597 4704  umbus - ok
      02:15:49.0637 4704  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
      02:15:49.0682 4704  UmPass - ok
      02:15:49.0755 4704  [ 70DDE3A86DBEB1D6C3C30AD687B1877A ] Updater Service C:\Program Files\Acer\Acer Updater\UpdaterService.exe
      02:15:49.0785 4704  Updater Service - ok
      02:15:49.0832 4704  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
      02:15:49.0937 4704  upnphost - ok
      02:15:49.0999 4704  [ 4E93C8496359E97830C75AC36393654D ] upperdev        C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys
      02:15:50.0048 4704  upperdev - ok
      02:15:50.0100 4704  [ 481DFF26B4DCA8F4CBAC1F7DCE1D6829 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
      02:15:50.0151 4704  usbccgp - ok
      02:15:50.0179 4704  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
      02:15:50.0209 4704  usbcir - ok
      02:15:50.0232 4704  [ 74EE782B1D9C241EFE425565854C661C ] usbehci         C:\Windows\system32\drivers\usbehci.sys
      02:15:50.0258 4704  usbehci - ok
      02:15:50.0290 4704  [ DC96BD9CCB8403251BCF25047573558E ] usbhub          C:\Windows\system32\drivers\usbhub.sys
      02:15:50.0341 4704  usbhub - ok
      02:15:50.0370 4704  [ 58E546BBAF87664FC57E0F6081E4F609 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
      02:15:50.0394 4704  usbohci - ok
      02:15:50.0466 4704  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
      02:15:50.0521 4704  usbprint - ok
      02:15:50.0594 4704  [ 4ACEE387FA8FD39F83564FCD2FC234F2 ] usbser          C:\Windows\system32\drivers\usbser.sys
      02:15:50.0619 4704  usbser - ok
      02:15:50.0678 4704  [ 8844CB19A37B65E27049D4A7786726A9 ] UsbserFilt      C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys
      02:15:50.0752 4704  UsbserFilt - ok
      02:15:50.0809 4704  [ D76510CFA0FC09023077F22C2F979D86 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
      02:15:50.0859 4704  USBSTOR - ok
      02:15:50.0891 4704  [ 81FB2216D3A60D1284455D511797DB3D ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
      02:15:50.0934 4704  usbuhci - ok
      02:15:50.0991 4704  [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo        C:\Windows\System32\Drivers\usbvideo.sys
      02:15:51.0047 4704  usbvideo - ok
      02:15:51.0089 4704  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
      02:15:51.0180 4704  UxSms - ok
      02:15:51.0224 4704  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\Windows\system32\lsass.exe
      02:15:51.0249 4704  VaultSvc - ok
      02:15:51.0263 4704  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
      02:15:51.0287 4704  vdrvroot - ok
      02:15:51.0357 4704  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\Windows\System32\vds.exe
      02:15:51.0466 4704  vds - ok
      02:15:51.0497 4704  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
      02:15:51.0527 4704  vga - ok
      02:15:51.0544 4704  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
      02:15:51.0638 4704  VgaSave - ok
      02:15:51.0686 4704  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
      02:15:51.0715 4704  vhdmp - ok
      02:15:51.0730 4704  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\drivers\viaide.sys
      02:15:51.0754 4704  viaide - ok
      02:15:51.0770 4704  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
      02:15:51.0795 4704  volmgr - ok
      02:15:51.0847 4704  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
      02:15:51.0880 4704  volmgrx - ok
      02:15:51.0905 4704  [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
      02:15:51.0937 4704  volsnap - ok
      02:15:52.0008 4704  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
      02:15:52.0036 4704  vsmraid - ok
      02:15:52.0136 4704  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\Windows\system32\vssvc.exe
      02:15:52.0283 4704  VSS - ok
      02:15:52.0312 4704  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
      02:15:52.0360 4704  vwifibus - ok
      02:15:52.0394 4704  [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
      02:15:52.0428 4704  vwififlt - ok
      02:15:52.0485 4704  [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys
      02:15:52.0521 4704  vwifimp - ok
      02:15:52.0556 4704  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
      02:15:52.0635 4704  W32Time - ok
      02:15:52.0667 4704  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
      02:15:52.0692 4704  WacomPen - ok
      02:15:52.0744 4704  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
      02:15:52.0838 4704  WANARP - ok
      02:15:52.0845 4704  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
      02:15:52.0909 4704  Wanarpv6 - ok
      02:15:52.0998 4704  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
      02:15:53.0059 4704  WatAdminSvc - ok
      02:15:53.0174 4704  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\Windows\system32\wbengine.exe
      02:15:53.0251 4704  wbengine - ok
      02:15:53.0309 4704  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
      02:15:53.0348 4704  WbioSrvc - ok
      02:15:53.0428 4704  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\Windows\System32\wcncsvc.dll
      02:15:53.0494 4704  wcncsvc - ok
      02:15:53.0522 4704  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
      02:15:53.0582 4704  WcsPlugInService - ok
      02:15:53.0621 4704  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\DRIVERS\wd.sys
      02:15:53.0644 4704  Wd - ok
      02:15:53.0696 4704  [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
      02:15:53.0738 4704  Wdf01000 - ok
      02:15:53.0813 4704  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
      02:15:53.0879 4704  WdiServiceHost - ok
      02:15:53.0886 4704  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
      02:15:53.0925 4704  WdiSystemHost - ok
      02:15:53.0986 4704  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient       C:\Windows\System32\webclnt.dll
      02:15:54.0053 4704  WebClient - ok
      02:15:54.0093 4704  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
      02:15:54.0165 4704  Wecsvc - ok
      02:15:54.0205 4704  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
      02:15:54.0305 4704  wercplsupport - ok
      02:15:54.0338 4704  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
      02:15:54.0410 4704  WerSvc - ok
      02:15:54.0429 4704  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
      02:15:54.0494 4704  WfpLwf - ok
      02:15:54.0514 4704  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
      02:15:54.0540 4704  WIMMount - ok
      02:15:54.0572 4704  WinDefend - ok
      02:15:54.0581 4704  WinHttpAutoProxySvc - ok
      02:15:54.0681 4704  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
      02:15:54.0768 4704  Winmgmt - ok
      02:15:54.0870 4704  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\Windows\system32\WsmSvc.dll
      02:15:55.0014 4704  WinRM - ok
      02:15:55.0084 4704  [ FE88B288356E7B47B74B13372ADD906D ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
      02:15:55.0114 4704  WinUsb - ok
      02:15:55.0159 4704  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
      02:15:55.0245 4704  Wlansvc - ok
      02:15:55.0499 4704  [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
      02:15:55.0576 4704  wlidsvc - ok
      02:15:55.0623 4704  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
      02:15:55.0668 4704  WmiAcpi - ok
      02:15:55.0719 4704  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
      02:15:55.0769 4704  wmiApSrv - ok
      02:15:55.0818 4704  WMPNetworkSvc - ok
      02:15:55.0845 4704  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
      02:15:55.0872 4704  WPCSvc - ok
      02:15:55.0921 4704  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
      02:15:55.0952 4704  WPDBusEnum - ok
      02:15:55.0979 4704  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
      02:15:56.0072 4704  ws2ifsl - ok
      02:15:56.0105 4704  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\Windows\System32\wscsvc.dll
      02:15:56.0166 4704  wscsvc - ok
      02:15:56.0186 4704  WSearch - ok
      02:15:56.0288 4704  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
      02:15:56.0386 4704  wuauserv - ok
      02:15:56.0412 4704  [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
      02:15:56.0499 4704  WudfPf - ok
      02:15:56.0571 4704  [ CF8D590BE3373029D57AF80914190682 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
      02:15:56.0665 4704  WUDFRd - ok
      02:15:56.0718 4704  [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
      02:15:56.0788 4704  wudfsvc - ok
      02:15:56.0824 4704  [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc         C:\Windows\System32\wwansvc.dll
      02:15:56.0864 4704  WwanSvc - ok
      02:15:56.0886 4704  ================ Scan global ===============================
      02:15:56.0963 4704  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
      02:15:57.0022 4704  [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
      02:15:57.0036 4704  [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
      02:15:57.0080 4704  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
      02:15:57.0115 4704  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
      02:15:57.0123 4704  [Global] - ok
      02:15:57.0124 4704  ================ Scan MBR ==================================
      02:15:57.0145 4704  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
      02:15:57.0414 4704  \Device\Harddisk0\DR0 - ok
      02:15:57.0415 4704  ================ Scan VBR ==================================
      02:15:57.0419 4704  [ 8B176CBDB28C0A1680EADF8A3247F2C0 ] \Device\Harddisk0\DR0\Partition1
      02:15:57.0421 4704  \Device\Harddisk0\DR0\Partition1 - ok
      02:15:57.0461 4704  [ DB42CB50C0E6BED3DB116454C0F12855 ] \Device\Harddisk0\DR0\Partition2
      02:15:57.0463 4704  \Device\Harddisk0\DR0\Partition2 - ok
      02:15:57.0463 4704  ============================================================
      02:15:57.0463 4704  Scan finished
      02:15:57.0464 4704  ============================================================
      02:15:57.0481 2504  Detected object count: 0
      02:15:57.0482 2504  Actual detected object count: 0
      02:16:40.0200 4952  Deinitialize success
      Espero tus próximas indicaciones.

    2. #42
      Ex-Colaborador Avatar de Anleg_30
      Registrado
      dic 2007
      Ubicación
      Bna-Venezuela
      Mensajes
      10.545

      Re: Centro de Seguridad se desactiva solo

      Ahora realiza lo siguiente:

      1.-Abre el Bloc de Notas
      • Clic en Inicio-> Ejecutar->Escribes: notepad.exe y aceptas.

      2.- Ahora copia y pega este código dentro del Bloc

      Código:
      KillAll::
      ClearjavaCache::
      
      File::
      c:\windows\SysWow64\bthudtaskw.dll
      c:\windows\Tasks\Fvoeix.job
      c:\windows\system32\drivers\dxljccvg.sys
      
      Driver::
      dxljccvg
      
      DDS::
      uSearchURL,(Default) = hxxp://www.searchgateway.net/search/%s
      3.- Graba este archivo con el nombre CFScript.txt (Importante)

      4.- Arrastra y deja el archivo CFScript.txt dentro del íconoComboFix.exe como lo muestra la animación de abajo. Esto activara ComboFix nuevamente.



      Reinicia y nos comentas como esta tu sistema. Junto con el nuevo reporte de ComboFix



      Blog | Antivirus Online | Eliminar Malwares | Antivirus Gratis

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    3. #43
      Usuario Avatar de Ramiro.
      Registrado
      dic 2012
      Ubicación
      Uruguay
      Mensajes
      49

      Re: Centro de Seguridad se desactiva solo

      Hola,

      El computador sigue con el mismo problema!

      Acá va el reporte de combofix:

      ComboFix 12-12-10.01 - Ramiro 13/12/2012 14:48:08.2.2 - x64
      Microsoft Windows 7 Home Premium 6.1.7601.1.1252.598.3082.18.4026.2688 [GMT -2:00]
      Running from: c:\users\Ramiro\Desktop\ComboFix.exe
      Command switches used :: c:\users\Ramiro\Desktop\CFScript.txt
      AV: Microsoft Security Essentials *Enabled/Updated* {B140BF4E-23BB-4198-90AB-A51A4C60A69C}
      SP: Microsoft Security Essentials *Enabled/Updated* {0A215EAA-0581-4E16-AA1B-9E6837E7EC21}
      .
      FILE ::
      "c:\windows\system32\drivers\dxljccvg.sys"
      "c:\windows\SysWow64\bthudtaskw.dll"
      "c:\windows\Tasks\Fvoeix.job"
      .
      .
      ((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
      .
      .
      .
      ((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
      .
      .
      -------\Service_dxljccvg
      .
      .
      ((((((((((((((((((((((((( Files Created from 2012-11-13 to 2012-12-13 )))))))))))))))))))))))))))))))
      .
      .
      2012-12-13 03:27 . 2012-11-05 21:35 46080 ----a-w- c:\windows\system32\atmlib.dll
      2012-12-13 03:27 . 2012-11-05 20:41 367616 ----a-w- c:\windows\system32\atmfd.dll
      2012-12-13 03:27 . 2012-11-05 20:32 295424 ----a-w- c:\windows\SysWow64\atmfd.dll
      2012-12-13 03:27 . 2012-11-05 20:32 34304 ----a-w- c:\windows\SysWow64\atmlib.dll
      2012-12-12 18:25 . 2012-11-09 05:45 2048 ----a-w- c:\windows\system32\tzres.dll
      2012-12-12 18:25 . 2012-11-09 04:42 2048 ----a-w- c:\windows\SysWow64\tzres.dll
      2012-12-12 18:15 . 2012-12-12 18:15 -------- d-----w- C:\TDSSKiller_Quarantine
      2012-12-12 16:07 . 2012-11-08 17:24 9125352 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{5E85E340-12BD-43F5-8484-2A17B89D307C}\mpengine.dll
      2012-12-12 11:46 . 2012-10-04 17:38 5120 ---ha-w- c:\windows\system32\api-ms-win-core-file-l1-1-0.dll
      2012-12-12 03:00 . 2012-12-12 03:50 -------- d-----w- c:\users\Ramiro\DoctorWeb
      2012-12-11 21:39 . 2012-12-11 21:39 -------- d-----w- c:\program files (x86)\ESET
      2012-12-11 16:48 . 2012-12-11 16:48 -------- d-----w- c:\program files (x86)\Common Files\Java
      2012-12-11 16:48 . 2012-12-11 16:47 821736 ----a-w- c:\windows\SysWow64\npDeployJava1.dll
      2012-12-11 16:48 . 2012-12-11 16:47 95208 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
      2012-12-11 16:18 . 2012-12-11 16:18 -------- d-----w- c:\program files (x86)\VS Revo Group
      2012-12-11 14:28 . 2012-11-08 17:24 9125352 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
      2012-12-10 23:28 . 2012-12-10 23:30 -------- d-----w- C:\_AT-Destroyer
      2012-12-10 20:10 . 2012-12-10 20:11 -------- d-----w- c:\program files\CCleaner
      2012-12-10 19:49 . 2012-12-10 19:49 -------- d-----w- c:\users\Ramiro\AppData\Roaming\Malwarebytes
      2012-12-10 19:49 . 2012-12-10 19:49 -------- d-----w- c:\programdata\Malwarebytes
      2012-12-10 19:49 . 2012-12-10 19:49 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
      2012-12-10 19:49 . 2012-09-29 21:54 25928 ----a-w- c:\windows\system32\drivers\mbam.sys
      2012-12-06 01:34 . 2012-12-06 01:34 114688 --sha-r- c:\windows\SysWow64\bthudtaskw.dll
      2012-11-28 19:42 . 2012-11-28 19:42 972264 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{DEACFFF5-866F-4036-98B2-C9A682D9225C}\gapaengine.dll
      2012-11-14 15:04 . 2012-09-25 22:46 95744 ----a-w- c:\windows\system32\synceng.dll
      2012-11-14 15:04 . 2012-09-25 22:47 78336 ----a-w- c:\windows\SysWow64\synceng.dll
      .
      .
      .
      (((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
      .
      2012-12-13 04:59 . 2010-04-27 20:36 67413224 ----a-w- c:\windows\system32\MRT.exe
      2012-12-11 16:47 . 2011-07-09 06:49 746984 ----a-w- c:\windows\SysWow64\deployJava1.dll
      2012-10-04 16:40 . 2012-12-12 11:47 44032 ----a-w- c:\windows\apppatch\acwow64.dll
      2012-10-02 21:12 . 2011-08-12 14:55 972192 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\NISBackup\gapaengine.dll
      .
      .
      ((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
      .
      .
      *Note* empty entries & legit default entries are not shown
      REGEDIT4
      .
      [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\egisPSDP]
      @="{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}"
      [HKEY_CLASSES_ROOT\CLSID\{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}]
      2009-09-10 13:41 120104 ----a-w- c:\program files (x86)\EgisTec\MyWinLocker 3\x86\PSDProtect.dll
      .
      [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
      "Mobile Partner"="c:\program files (x86)\Banda Ancha Movil\Banda Ancha Movil.exe" [2010-05-18 122880]
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
      "LManager"="c:\program files (x86)\Launch Manager\LManager.exe" [2009-08-18 1157128]
      "PlayMovie"="c:\program files (x86)\Acer Arcade Deluxe\PlayMovie\PMVService.exe" [2009-10-22 181480]
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
      "ConsentPromptBehaviorAdmin"= 5 (0x5)
      "ConsentPromptBehaviorUser"= 3 (0x3)
      "EnableUIADesktopToggle"= 0 (0x0)
      "PromptOnSecureDesktop"= 0 (0x0)
      .
      [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
      "LoadAppInit_DLLs"=1 (0x1)
      .
      [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
      "aux"=wdmaud.drv
      .
      [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
      @=""
      .
      [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
      @="Service"
      .
      R2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-09-29 676936]
      R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2012-07-13 160944]
      R3 ewusbnet;HUAWEI USB-NDIS miniport;c:\windows\system32\DRIVERS\ewusbnet.sys [2009-09-04 216576]
      R3 hwusbdev;Huawei DataCard USB PNP Device;c:\windows\system32\DRIVERS\ewusbdev.sys [2009-07-24 114560]
      R3 nmwcdnsucx64;Nokia USB Flashing Generic;c:\windows\system32\drivers\nmwcdnsucx64.sys [2010-12-02 12800]
      R3 nmwcdnsux64;Nokia USB Flashing Phone Parent;c:\windows\system32\drivers\nmwcdnsux64.sys [2010-12-02 171008]
      R3 NTIBackupSvc;NTI Backup Now 5 Backup Service;c:\program files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe [2009-06-18 50432]
      R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys [2009-09-02 225280]
      R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
      R3 WatAdminSvc;Servicio de tecnologías de activación de Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2010-04-30 1255736]
      S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2011-02-24 254528]
      S1 mwlPSDFilter;mwlPSDFilter;c:\windows\system32\DRIVERS\mwlPSDFilter.sys [2009-06-02 22576]
      S1 mwlPSDNServ;mwlPSDNServ;c:\windows\system32\DRIVERS\mwlPSDNServ.sys [2009-06-02 20016]
      S1 mwlPSDVDisk;mwlPSDVDisk;c:\windows\system32\DRIVERS\mwlPSDVDisk.sys [2009-06-02 60464]
      S1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
      S1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
      S2 !SASCORE;SAS Core Service;c:\program files\SUPERANTISPYWARE\SASCORE64.EXE [2011-08-11 140672]
      S2 ePowerSvc;Acer ePower Service;c:\program files\Acer\Acer ePower Management\ePowerSvc.exe [2009-10-29 844320]
      S2 Greg_Service;GRegService;c:\program files (x86)\Acer\Registration\GregHSRW.exe [2009-08-28 1150496]
      S2 MBAMScheduler;MBAMScheduler;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2012-09-29 399432]
      S2 MWLService;MyWinLocker Service;c:\program files (x86)\EgisTec\MyWinLocker 3\x86\\MWLService.exe [2009-09-10 305448]
      S2 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys [2012-08-31 128456]
      S2 NTISchedulerSvc;NTI Backup Now 5 Scheduler Service;c:\program files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [2009-06-18 144640]
      S2 Updater Service;Updater Service;c:\program files\Acer\Acer Updater\UpdaterService.exe [2009-07-04 240160]
      S3 L1C;NDIS Miniport Driver for Atheros AR8131/AR8132 PCI-E Ethernet Controller (NDIS 6.20);c:\windows\system32\DRIVERS\L1C62x64.sys [2009-07-27 58880]
      S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2012-09-29 25928]
      S3 NisSrv;Inspección de red de Microsoft;c:\program files\Microsoft Security Client\NisSrv.exe [2012-09-13 368896]
      .
      .
      Contents of the 'Scheduled Tasks' folder
      .
      2012-12-12 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3807738425-148844505-1602006352-1000Core.job
      - c:\users\Ramiro\AppData\Local\Facebook\Update\FacebookUpdate.exe [2011-10-20 23:22]
      .
      2012-12-13 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3807738425-148844505-1602006352-1000UA.job
      - c:\users\Ramiro\AppData\Local\Facebook\Update\FacebookUpdate.exe [2011-10-20 23:22]
      .
      2012-12-13 c:\windows\Tasks\Fvoeix.job
      - c:\windows\system32\rundll32.exe [2009-07-13 01:14]
      .
      2012-12-13 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
      - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-04-21 17:34]
      .
      2012-12-13 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
      - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-04-21 17:34]
      .
      2012-12-12 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3807738425-148844505-1602006352-1000Core.job
      - c:\users\Ramiro\AppData\Local\Google\Update\GoogleUpdate.exe [2011-12-19 04:28]
      .
      2012-12-13 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3807738425-148844505-1602006352-1000UA.job
      - c:\users\Ramiro\AppData\Local\Google\Update\GoogleUpdate.exe [2011-12-19 04:28]
      .
      .
      --------- X64 Entries -----------
      .
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\egisPSDP]
      @="{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}"
      [HKEY_CLASSES_ROOT\CLSID\{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}]
      2009-09-10 13:44 137512 ----a-w- c:\program files (x86)\EgisTec\MyWinLocker 3\x64\PSDProtect.dll
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
      "IAAnotif"="c:\program files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2009-10-13 186904]
      "RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2009-07-28 7982112]
      "Acer ePower Management"="c:\program files\Acer\Acer ePower Management\ePowerTray.exe" [2009-10-29 822816]
      "SynTPEnh"="c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe" [BU]
      "IgfxTray"="c:\windows\system32\igfxtray.exe" [2010-08-25 161304]
      "HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2010-08-25 386584]
      "Persistence"="c:\windows\system32\igfxpers.exe" [2010-08-25 415256]
      "MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2012-09-13 1289704]
      .
      ------- Supplementary Scan -------
      .
      uStart Page = www.google.com
      uLocal Page = c:\windows\system32\blank.htm
      mDefault_Page_URL = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=380a&m=aspire_5732z&r=27360410a725l04d4z1k5t54i2x56p
      mStart Page = www.google.com
      mLocal Page = c:\windows\SysWOW64\blank.htm
      uSearchURL,(Default) = hxxp://www.searchgateway.net/search/%s
      IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
      TCP: Interfaces\{9508D884-EE92-433B-AFC1-F0828D1E3E23}: NameServer = 200.40.30.245 200.40.220.245
      .
      - - - - ORPHANS REMOVED - - - -
      .
      BHO-{9D717F81-9148-4f12-8568-69135F087DB0} - (no file)
      Toolbar-Locked - (no file)
      Toolbar-{f8009d76-a20b-4fbb-a1c6-70bfb55966fa} - (no file)
      Toolbar-10 - (no file)
      AddRemove-3-D_Dancing_Skeleton_Demo - c:\windows\system32\3-D_Dancing_Skeleton_Demo.scr
      AddRemove-SouthParkMario2.1 - c:\windows\iun6002.exe
      .
      .
      .
      --------------------- LOCKED REGISTRY KEYS ---------------------
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
      @Denied: (A 2) (Everyone)
      @="FlashBroker"
      "LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10l_ActiveX.exe,-101"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
      "Enabled"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
      @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10l_ActiveX.exe"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
      @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
      @Denied: (A 2) (Everyone)
      @="Shockwave Flash Object"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
      @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10l.ocx"
      "ThreadingModel"="Apartment"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
      @="0"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
      @="ShockwaveFlash.ShockwaveFlash.10"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
      @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10l.ocx, 1"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
      @="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
      @="1.0"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
      @="ShockwaveFlash.ShockwaveFlash"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
      @Denied: (A 2) (Everyone)
      @="Macromedia Flash Factory Object"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
      @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10l.ocx"
      "ThreadingModel"="Apartment"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
      @="FlashFactory.FlashFactory.1"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
      @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10l.ocx, 1"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
      @="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
      @="1.0"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
      @="FlashFactory.FlashFactory"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
      @Denied: (A 2) (Everyone)
      @="IFlashBroker4"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
      @="{00020424-0000-0000-C000-000000000046}"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
      @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
      "Version"="1.0"
      .
      [HKEY_LOCAL_MACHINE\system\ControlSet002\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
      @Denied: (A) (Users)
      @Denied: (A) (Everyone)
      @Allowed: (B 1 2 3 4 5) (S-1-5-20)
      "BlindDial"=dword:00000000
      .
      [HKEY_LOCAL_MACHINE\system\ControlSet002\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
      @Denied: (A) (Users)
      @Denied: (A) (Everyone)
      @Allowed: (B 1 2 3 4 5) (S-1-5-20)
      "BlindDial"=dword:00000000
      .
      [HKEY_LOCAL_MACHINE\system\ControlSet002\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
      @Denied: (A) (Users)
      @Denied: (A) (Everyone)
      @Allowed: (B 1 2 3 4 5) (S-1-5-20)
      "BlindDial"=dword:00000000
      .
      [HKEY_LOCAL_MACHINE\system\ControlSet002\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
      @Denied: (A) (Users)
      @Denied: (A) (Everyone)
      @Allowed: (B 1 2 3 4 5) (S-1-5-20)
      "BlindDial"=dword:00000000
      .
      [HKEY_LOCAL_MACHINE\system\ControlSet002\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0004\AllUserSettings]
      @Denied: (A) (Users)
      @Denied: (A) (Everyone)
      @Allowed: (B 1 2 3 4 5) (S-1-5-20)
      "BlindDial"=dword:00000000
      .
      [HKEY_LOCAL_MACHINE\system\ControlSet002\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0005\AllUserSettings]
      @Denied: (A) (Users)
      @Denied: (A) (Everyone)
      @Allowed: (B 1 2 3 4 5) (S-1-5-20)
      "BlindDial"=dword:00000000
      .
      [HKEY_LOCAL_MACHINE\system\ControlSet002\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0006\AllUserSettings]
      @Denied: (A) (Users)
      @Denied: (A) (Everyone)
      @Allowed: (B 1 2 3 4 5) (S-1-5-20)
      "BlindDial"=dword:00000000
      .
      [HKEY_LOCAL_MACHINE\system\ControlSet002\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0007\AllUserSettings]
      @Denied: (A) (Users)
      @Denied: (A) (Everyone)
      @Allowed: (B 1 2 3 4 5) (S-1-5-20)
      "BlindDial"=dword:00000000
      .
      [HKEY_LOCAL_MACHINE\system\ControlSet002\Control\PCW\Security]
      @Denied: (Full) (Everyone)
      .
      ------------------------ Other Running Processes ------------------------
      .
      c:\windows\SysWOW64\rundll32.exe
      c:\program files (x86)\EgisTec\MyWinLocker 3\x86\MWLService.exe
      c:\program files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
      .
      **************************************************************************
      .
      Completion time: 2012-12-13 15:09:31 - machine was rebooted
      ComboFix-quarantined-files.txt 2012-12-13 17:09
      ComboFix2.txt 2012-12-13 04:52
      .
      Pre-Run: 148.586.442.752 bytes libres
      Post-Run: 148.063.805.440 bytes libres
      .
      - - End Of File - - EAFBC283BDC09C7CA0C4E87022D3E272

    4. #44
      Ex-Colaborador Avatar de Anleg_30
      Registrado
      dic 2007
      Ubicación
      Bna-Venezuela
      Mensajes
      10.545

      Re: Centro de Seguridad se desactiva solo

      Realiza lo siguiente nuevamente:

      1.-Abre el Bloc de Notas
      • Clic en Inicio-> Ejecutar->Escribes: notepad.exe y aceptas.

      2.- Ahora copia y pega este código dentro del Bloc

      Código:
      KillAll::
      ClearJavaCache::
      
      Rootkit::
      c:\windows\SysWow64\bthudtaskw.dll
      c:\windows\Tasks\Fvoeix.job
      
      DDS::
      uSearchURL,(Default) = hxxp://www.searchgateway.net/search/%s
      3.- Graba este archivo con el nombre CFScript.txt (Importante)

      4.- Arrastra y deja el archivo CFScript.txt dentro del íconoComboFix.exe como lo muestra la animación de abajo. Esto activara ComboFix nuevamente.



      Reinicia y nos comentas como esta tu sistema. Junto con un nuevo reporte de ComboFix



      Blog | Antivirus Online | Eliminar Malwares | Antivirus Gratis

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    5. #45
      Usuario Avatar de Ramiro.
      Registrado
      dic 2012
      Ubicación
      Uruguay
      Mensajes
      49

      Re: Centro de Seguridad se desactiva solo

      Buenas,

      Hice lo indicado y el problema no se solucionó!

      Acá va el reporte:

      Código:
      ComboFix 12-12-10.01 - Ramiro 13/12/2012  22:10:27.3.2 - x64
      Microsoft Windows 7 Home Premium   6.1.7601.1.1252.598.3082.18.4026.2671 [GMT -2:00]
      Running from: c:\users\Ramiro\Desktop\ComboFix.exe
      Command switches used :: c:\users\Ramiro\Desktop\CFScript.txt
      AV: Microsoft Security Essentials *Enabled/Updated* {B140BF4E-23BB-4198-90AB-A51A4C60A69C}
      SP: Microsoft Security Essentials *Enabled/Updated* {0A215EAA-0581-4E16-AA1B-9E6837E7EC21}
      .
      .
      (((((((((((((((((((((((((   Files Created from 2012-11-14 to 2012-12-14  )))))))))))))))))))))))))))))))
      .
      .
      2012-12-14 00:18 . 2012-12-14 00:18	--------	d-----w-	c:\users\Default\AppData\Local\temp
      2012-12-13 17:23 . 2012-11-08 17:24	9125352	----a-w-	c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{E2F14A4E-976B-45E5-A02E-684BA7596889}\mpengine.dll
      2012-12-13 03:27 . 2012-11-05 21:35	46080	----a-w-	c:\windows\system32\atmlib.dll
      2012-12-13 03:27 . 2012-11-05 20:41	367616	----a-w-	c:\windows\system32\atmfd.dll
      2012-12-13 03:27 . 2012-11-05 20:32	295424	----a-w-	c:\windows\SysWow64\atmfd.dll
      2012-12-13 03:27 . 2012-11-05 20:32	34304	----a-w-	c:\windows\SysWow64\atmlib.dll
      2012-12-12 18:25 . 2012-11-09 05:45	2048	----a-w-	c:\windows\system32\tzres.dll
      2012-12-12 18:25 . 2012-11-09 04:42	2048	----a-w-	c:\windows\SysWow64\tzres.dll
      2012-12-12 18:15 . 2012-12-12 18:15	--------	d-----w-	C:\TDSSKiller_Quarantine
      2012-12-12 16:07 . 2012-11-08 17:24	9125352	----a-w-	c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
      2012-12-12 11:46 . 2012-10-04 17:38	5120	---ha-w-	c:\windows\system32\api-ms-win-core-file-l1-1-0.dll
      2012-12-12 03:00 . 2012-12-12 03:50	--------	d-----w-	c:\users\Ramiro\DoctorWeb
      2012-12-11 21:39 . 2012-12-11 21:39	--------	d-----w-	c:\program files (x86)\ESET
      2012-12-11 16:48 . 2012-12-11 16:48	--------	d-----w-	c:\program files (x86)\Common Files\Java
      2012-12-11 16:48 . 2012-12-11 16:47	821736	----a-w-	c:\windows\SysWow64\npDeployJava1.dll
      2012-12-11 16:48 . 2012-12-11 16:47	95208	----a-w-	c:\windows\SysWow64\WindowsAccessBridge-32.dll
      2012-12-11 16:18 . 2012-12-11 16:18	--------	d-----w-	c:\program files (x86)\VS Revo Group
      2012-12-10 23:28 . 2012-12-10 23:30	--------	d-----w-	C:\_AT-Destroyer
      2012-12-10 20:10 . 2012-12-10 20:11	--------	d-----w-	c:\program files\CCleaner
      2012-12-10 19:49 . 2012-12-10 19:49	--------	d-----w-	c:\users\Ramiro\AppData\Roaming\Malwarebytes
      2012-12-10 19:49 . 2012-12-10 19:49	--------	d-----w-	c:\programdata\Malwarebytes
      2012-12-10 19:49 . 2012-12-10 19:49	--------	d-----w-	c:\program files (x86)\Malwarebytes' Anti-Malware
      2012-12-10 19:49 . 2012-09-29 21:54	25928	----a-w-	c:\windows\system32\drivers\mbam.sys
      2012-12-06 01:34 . 2012-12-06 01:34	114688	--sha-r-	c:\windows\SysWow64\bthudtaskw.dll
      2012-11-28 19:42 . 2012-11-28 19:42	972264	------w-	c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{DEACFFF5-866F-4036-98B2-C9A682D9225C}\gapaengine.dll
      2012-11-14 15:04 . 2012-09-25 22:46	95744	----a-w-	c:\windows\system32\synceng.dll
      2012-11-14 15:04 . 2012-09-25 22:47	78336	----a-w-	c:\windows\SysWow64\synceng.dll
      .
      .
      .
      ((((((((((((((((((((((((((((((((((((((((   Find3M Report   ))))))))))))))))))))))))))))))))))))))))))))))))))))
      .
      2012-12-13 04:59 . 2010-04-27 20:36	67413224	----a-w-	c:\windows\system32\MRT.exe
      2012-12-11 16:47 . 2011-07-09 06:49	746984	----a-w-	c:\windows\SysWow64\deployJava1.dll
      2012-10-04 16:40 . 2012-12-12 11:47	44032	----a-w-	c:\windows\apppatch\acwow64.dll
      2012-10-02 21:12 . 2011-08-12 14:55	972192	------w-	c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\NISBackup\gapaengine.dll
      .
      .
      (((((((((((((((((((((((((((((((((((((   Reg Loading Points   ))))))))))))))))))))))))))))))))))))))))))))))))))
      .
      .
      *Note* empty entries & legit default entries are not shown 
      REGEDIT4
      .
      [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\egisPSDP]
      @="{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}"
      [HKEY_CLASSES_ROOT\CLSID\{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}]
      2009-09-10 13:41	120104	----a-w-	c:\program files (x86)\EgisTec\MyWinLocker 3\x86\PSDProtect.dll
      .
      [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
      "Mobile Partner"="c:\program files (x86)\Banda Ancha Movil\Banda Ancha Movil.exe" [2010-05-18 122880]
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
      "LManager"="c:\program files (x86)\Launch Manager\LManager.exe" [2009-08-18 1157128]
      "PlayMovie"="c:\program files (x86)\Acer Arcade Deluxe\PlayMovie\PMVService.exe" [2009-10-22 181480]
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
      "ConsentPromptBehaviorAdmin"= 5 (0x5)
      "ConsentPromptBehaviorUser"= 3 (0x3)
      "EnableUIADesktopToggle"= 0 (0x0)
      "PromptOnSecureDesktop"= 0 (0x0)
      .
      [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
      "LoadAppInit_DLLs"=1 (0x1)
      .
      [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
      "aux"=wdmaud.drv
      .
      [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
      @=""
      .
      [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
      @="Service"
      .
      R2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-09-29 676936]
      R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2012-07-13 160944]
      R3 ewusbnet;HUAWEI USB-NDIS miniport;c:\windows\system32\DRIVERS\ewusbnet.sys [2009-09-04 216576]
      R3 hwusbdev;Huawei DataCard USB PNP Device;c:\windows\system32\DRIVERS\ewusbdev.sys [2009-07-24 114560]
      R3 nmwcdnsucx64;Nokia USB Flashing Generic;c:\windows\system32\drivers\nmwcdnsucx64.sys [2010-12-02 12800]
      R3 nmwcdnsux64;Nokia USB Flashing Phone Parent;c:\windows\system32\drivers\nmwcdnsux64.sys [2010-12-02 171008]
      R3 NTIBackupSvc;NTI Backup Now 5 Backup Service;c:\program files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe [2009-06-18 50432]
      R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys [2009-09-02 225280]
      R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
      R3 WatAdminSvc;Servicio de tecnologías de activación de Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2010-04-30 1255736]
      S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2011-02-24 254528]
      S1 mwlPSDFilter;mwlPSDFilter;c:\windows\system32\DRIVERS\mwlPSDFilter.sys [2009-06-02 22576]
      S1 mwlPSDNServ;mwlPSDNServ;c:\windows\system32\DRIVERS\mwlPSDNServ.sys [2009-06-02 20016]
      S1 mwlPSDVDisk;mwlPSDVDisk;c:\windows\system32\DRIVERS\mwlPSDVDisk.sys [2009-06-02 60464]
      S1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
      S1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
      S2 !SASCORE;SAS Core Service;c:\program files\SUPERANTISPYWARE\SASCORE64.EXE [2011-08-11 140672]
      S2 ePowerSvc;Acer ePower Service;c:\program files\Acer\Acer ePower Management\ePowerSvc.exe [2009-10-29 844320]
      S2 Greg_Service;GRegService;c:\program files (x86)\Acer\Registration\GregHSRW.exe [2009-08-28 1150496]
      S2 MBAMScheduler;MBAMScheduler;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2012-09-29 399432]
      S2 MWLService;MyWinLocker Service;c:\program files (x86)\EgisTec\MyWinLocker 3\x86\\MWLService.exe [2009-09-10 305448]
      S2 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys [2012-08-31 128456]
      S2 NTISchedulerSvc;NTI Backup Now 5 Scheduler Service;c:\program files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [2009-06-18 144640]
      S2 Updater Service;Updater Service;c:\program files\Acer\Acer Updater\UpdaterService.exe [2009-07-04 240160]
      S3 L1C;NDIS Miniport Driver for Atheros AR8131/AR8132 PCI-E Ethernet Controller (NDIS 6.20);c:\windows\system32\DRIVERS\L1C62x64.sys [2009-07-27 58880]
      S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2012-09-29 25928]
      S3 NisSrv;Inspección de red de Microsoft;c:\program files\Microsoft Security Client\NisSrv.exe [2012-09-13 368896]
      .
      .
      Contents of the 'Scheduled Tasks' folder
      .
      2012-12-13 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3807738425-148844505-1602006352-1000Core.job
      - c:\users\Ramiro\AppData\Local\Facebook\Update\FacebookUpdate.exe [2011-10-20 23:22]
      .
      2012-12-13 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3807738425-148844505-1602006352-1000UA.job
      - c:\users\Ramiro\AppData\Local\Facebook\Update\FacebookUpdate.exe [2011-10-20 23:22]
      .
      2012-12-14 c:\windows\Tasks\Fvoeix.job
      - c:\windows\system32\rundll32.exe [2009-07-13 01:14]
      .
      2012-12-14 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
      - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-04-21 17:34]
      .
      2012-12-13 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
      - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-04-21 17:34]
      .
      2012-12-13 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3807738425-148844505-1602006352-1000Core.job
      - c:\users\Ramiro\AppData\Local\Google\Update\GoogleUpdate.exe [2011-12-19 04:28]
      .
      2012-12-14 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3807738425-148844505-1602006352-1000UA.job
      - c:\users\Ramiro\AppData\Local\Google\Update\GoogleUpdate.exe [2011-12-19 04:28]
      .
      .
      --------- X64 Entries -----------
      .
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\egisPSDP]
      @="{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}"
      [HKEY_CLASSES_ROOT\CLSID\{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}]
      2009-09-10 13:44	137512	----a-w-	c:\program files (x86)\EgisTec\MyWinLocker 3\x64\PSDProtect.dll
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
      "IAAnotif"="c:\program files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2009-10-13 186904]
      "RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2009-07-28 7982112]
      "Acer ePower Management"="c:\program files\Acer\Acer ePower Management\ePowerTray.exe" [2009-10-29 822816]
      "SynTPEnh"="c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe" [BU]
      "IgfxTray"="c:\windows\system32\igfxtray.exe" [2010-08-25 161304]
      "HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2010-08-25 386584]
      "Persistence"="c:\windows\system32\igfxpers.exe" [2010-08-25 415256]
      "MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2012-09-13 1289704]
      .
      ------- Supplementary Scan -------
      .
      uStart Page = www.google.com
      uLocal Page = c:\windows\system32\blank.htm
      mDefault_Page_URL = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=380a&m=aspire_5732z&r=27360410a725l04d4z1k5t54i2x56p
      mStart Page = www.google.com
      mLocal Page = c:\windows\SysWOW64\blank.htm
      uSearchURL,(Default) = hxxp://www.searchgateway.net/search/%s
      IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
      TCP: Interfaces\{9508D884-EE92-433B-AFC1-F0828D1E3E23}: NameServer = 200.40.30.245 200.40.220.245
      .
      - - - - ORPHANS REMOVED - - - -
      .
      BHO-{9D717F81-9148-4f12-8568-69135F087DB0} - (no file)
      Toolbar-Locked - (no file)
      Toolbar-{f8009d76-a20b-4fbb-a1c6-70bfb55966fa} - (no file)
      Toolbar-10 - (no file)
      AddRemove-3-D_Dancing_Skeleton_Demo - c:\windows\system32\3-D_Dancing_Skeleton_Demo.scr
      AddRemove-SouthParkMario2.1 - c:\windows\iun6002.exe
      .
      .
      .
      --------------------- LOCKED REGISTRY KEYS ---------------------
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
      @Denied: (A 2) (Everyone)
      @="FlashBroker"
      "LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10l_ActiveX.exe,-101"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
      "Enabled"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
      @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10l_ActiveX.exe"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
      @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
      @Denied: (A 2) (Everyone)
      @="Shockwave Flash Object"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
      @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10l.ocx"
      "ThreadingModel"="Apartment"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
      @="0"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
      @="ShockwaveFlash.ShockwaveFlash.10"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
      @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10l.ocx, 1"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
      @="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
      @="1.0"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
      @="ShockwaveFlash.ShockwaveFlash"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
      @Denied: (A 2) (Everyone)
      @="Macromedia Flash Factory Object"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
      @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10l.ocx"
      "ThreadingModel"="Apartment"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
      @="FlashFactory.FlashFactory.1"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
      @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10l.ocx, 1"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
      @="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
      @="1.0"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
      @="FlashFactory.FlashFactory"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
      @Denied: (A 2) (Everyone)
      @="IFlashBroker4"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
      @="{00020424-0000-0000-C000-000000000046}"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
      @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
      "Version"="1.0"
      .
      [HKEY_LOCAL_MACHINE\system\ControlSet002\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
      @Denied: (A) (Users)
      @Denied: (A) (Everyone)
      @Allowed: (B 1 2 3 4 5) (S-1-5-20)
      "BlindDial"=dword:00000000
      .
      [HKEY_LOCAL_MACHINE\system\ControlSet002\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
      @Denied: (A) (Users)
      @Denied: (A) (Everyone)
      @Allowed: (B 1 2 3 4 5) (S-1-5-20)
      "BlindDial"=dword:00000000
      .
      [HKEY_LOCAL_MACHINE\system\ControlSet002\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
      @Denied: (A) (Users)
      @Denied: (A) (Everyone)
      @Allowed: (B 1 2 3 4 5) (S-1-5-20)
      "BlindDial"=dword:00000000
      .
      [HKEY_LOCAL_MACHINE\system\ControlSet002\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
      @Denied: (A) (Users)
      @Denied: (A) (Everyone)
      @Allowed: (B 1 2 3 4 5) (S-1-5-20)
      "BlindDial"=dword:00000000
      .
      [HKEY_LOCAL_MACHINE\system\ControlSet002\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0004\AllUserSettings]
      @Denied: (A) (Users)
      @Denied: (A) (Everyone)
      @Allowed: (B 1 2 3 4 5) (S-1-5-20)
      "BlindDial"=dword:00000000
      .
      [HKEY_LOCAL_MACHINE\system\ControlSet002\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0005\AllUserSettings]
      @Denied: (A) (Users)
      @Denied: (A) (Everyone)
      @Allowed: (B 1 2 3 4 5) (S-1-5-20)
      "BlindDial"=dword:00000000
      .
      [HKEY_LOCAL_MACHINE\system\ControlSet002\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0006\AllUserSettings]
      @Denied: (A) (Users)
      @Denied: (A) (Everyone)
      @Allowed: (B 1 2 3 4 5) (S-1-5-20)
      "BlindDial"=dword:00000000
      .
      [HKEY_LOCAL_MACHINE\system\ControlSet002\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0007\AllUserSettings]
      @Denied: (A) (Users)
      @Denied: (A) (Everyone)
      @Allowed: (B 1 2 3 4 5) (S-1-5-20)
      "BlindDial"=dword:00000000
      .
      [HKEY_LOCAL_MACHINE\system\ControlSet002\Control\PCW\Security]
      @Denied: (Full) (Everyone)
      .
      ------------------------ Other Running Processes ------------------------
      .
      c:\windows\SysWOW64\rundll32.exe
      c:\program files (x86)\EgisTec\MyWinLocker 3\x86\MWLService.exe
      c:\program files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
      .
      **************************************************************************
      .
      Completion time: 2012-12-13  22:37:11 - machine was rebooted
      ComboFix-quarantined-files.txt  2012-12-14 00:37
      ComboFix2.txt  2012-12-13 17:09
      ComboFix3.txt  2012-12-13 04:52
      .
      Pre-Run: 148.003.971.072 bytes libres
      Post-Run: 147.905.036.288 bytes libres
      .
      - - End Of File - - 6D5B636D995C3FF88E34D643BEC2C152

    6. #46
      Ex-Colaborador Avatar de Anleg_30
      Registrado
      dic 2007
      Ubicación
      Bna-Venezuela
      Mensajes
      10.545

      Re: Centro de Seguridad se desactiva solo

      Tienes algo que no se quiere eliminar o pasa algo extraño al interpretar el código de eliminación.

      .-Descarga y descomprime The Avenger + Manual


      1. Abre the Avenger
      2. Debajo de "Input script here" pegas el siguiente script (Código):


        Código:
        Files to delete:
        c:\windows\SysWow64\bthudtaskw.dll
        c:\windows\Tasks\Fvoeix.job
      3. Para comenzar la supresión pulsa sobre "Execute"
      4. Te pedirá confirmacion para la eliminación, dices que si
      5. Luego confirma para reiniciar tu PC


      Luego del reinicio dejame el reporte que se guradará en C:\Avenger.txt

      Luego realiza un Scan con el Antivirus Online Quick Scan de Bit Defender para que me dejes ese log.



      Blog | Antivirus Online | Eliminar Malwares | Antivirus Gratis

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    7. #47
      Usuario Avatar de Ramiro.
      Registrado
      dic 2012
      Ubicación
      Uruguay
      Mensajes
      49

      Re: Centro de Seguridad se desactiva solo

      Seguí las indicaciones pero el programa The Avenger no se si se ejecutó correctamente, porque termino de ejecutarse en un par de segundos y no dejó ningún reporte. (lo ejecute más de una vez)

      El análisis de virus no detectó ninguna infección.

      Espero las próximas indicaciones.

      Saludos.

    8. #48
      Ex-Colaborador Avatar de Anleg_30
      Registrado
      dic 2007
      Ubicación
      Bna-Venezuela
      Mensajes
      10.545

      Re: Centro de Seguridad se desactiva solo

      Cierto, no me acordé que tu sistema es de 64 bits, por ende no funciona.

      Quero que ejecutes el archivo ServicesRepair.exe de este tema. tambien que desinstales tu antivirus, el superantispyware el malwarebytes.
      No reinstales el antivirus hasta que te lo diga.

      Realiza eso y me comentas si el centro de seguridad funciona o aun se desactiva.



      Blog | Antivirus Online | Eliminar Malwares | Antivirus Gratis

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    9. #49
      Usuario Avatar de Ramiro.
      Registrado
      dic 2012
      Ubicación
      Uruguay
      Mensajes
      49

      Re: Centro de Seguridad se desactiva solo

      Bien, hice todo lo que me pediste y el problema sigue.

      El Security Essential no lo puedo desintalar, me paro arriba de él con el modo cazador del revo uninstaller (porque no lo encuentra como aplicación instalada) y no lo puede desintalar, incluso la ubicación del antivirus está en una carpeta de CCleaner. No entiendo porqué.

      Espero próximas indicaciones.

      Saludos.

    10. #50
      Ex-Colaborador Avatar de Anleg_30
      Registrado
      dic 2007
      Ubicación
      Bna-Venezuela
      Mensajes
      10.545

      Re: Centro de Seguridad se desactiva solo

      Hasta tu antivirus se resiste a ser eliminado ? 0_o!

      Descargue aswMBR.exe (511kb) en su escritorio.
      • Haga doble clic en el aswMBR.exe para ejecutarlo
      • Haga clic en el botón "Scan" para empezar la búsqueda


      • Guarde el aswASW.log en el escritorio y lo pega en su próxima respuesta.


      Descarga OTL.exe by Oldtimer en el Escritorio

      Cierra todas las ventanas y programas abiertos.

      Desde Modo Normal Ejecuta OTL con Double click sobre su ícono y solo configura lo siguiente dejando lo demas por default:
      1. Cambia a resultado mínimo en "Tipo de Análisis"
      2. Activa la casilla de "Skip Microsoft Files" (Omitir archivos de Microsoft)
      3. Cambia a Todos, donde dice Standar Registry (Registro Normal)
      4. Ahora copia y pega el siguiente código en su marco en blanco (bajo de Código de Reparación)

        Código:
        c:\windows\system32\*.* /9
        HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wscsvc /S
        HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MpsSvc /S
        HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv /S
        HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE /S
        DRIVES:
      5. Seguidamente pulsa sobre el botón Analizar


      Al finalizar, dos reportes se abriran, (OTL y Extras) copiame el contenido de los dos.



      Blog | Antivirus Online | Eliminar Malwares | Antivirus Gratis

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.