• Registrarse
  • Iniciar sesión


  • Resultados 1 al 4 de 4

    No puedo eliminar WIN64ZAccess.a

    Hola buscando por internet como eliminar este virus consegui su guia (muy explicativa y completa), me descargué el TDSSkiller, me detecta el virus pero no consigue eliminarlo utilizando la opcion de CURE (ejecuto como administrador).... ...

    1. #1
      Usuario Avatar de socorrohd79
      Registrado
      dic 2012
      Ubicación
      venezuela
      Mensajes
      2

      Malware No puedo eliminar WIN64ZAccess.a

      Hola buscando por internet como eliminar este virus consegui su guia (muy explicativa y completa), me descargué el TDSSkiller, me detecta el virus pero no consigue eliminarlo utilizando la opcion de CURE (ejecuto como administrador).... a medida que va aplicando el Cure mi antivirus (McAfee Total Protection) me dice que a eliminado algunos pero con otros me pide reiniciar para elliminarlos pero nada.... este virus por ahora solo me desactiva el firewall.

      Ya me tiene desesperada!!! ayuda por favor

    2. #2
      Ex-Colaborador Avatar de Gemsa_03
      Registrado
      feb 2012
      Ubicación
      Málaga-España
      Mensajes
      6.615

      re: No puedo eliminar WIN64ZAccess.a

      Hola y al Foro.

      Bueno, aunque ya hayas ejecutado estos pasos, vamos a repetirlos de nuevo, con una pequeña variación. TEN EN CUENTA QUE UNA VEZ QUE SE INICIE EL PROCESO DEBES DE CONTINUAR HASTA EL FINAL, y sin abrir ninguna aplicación/Programa excepto los que te indico. Ejecuta los 2 como Administrador.


      Borra el TDSSKiller que te hayas descargado, Ejecutable y archivo zip. Descarga según => Manual de TDSSKiller. el archivo zip del programa, PERO NO HAGAS NADA TODAVÍA.

      Actualiza este programa Malwarebytes Anti-Malware 1.65.1 | InfoSpyware => Manual de Malwarebytes Anti-Malware 2. NO LO EJECUTES AÚN.

      Desconéctate de Internet físicamente/Apaga el router, cuando hayas perdido la conexión descomprime el Archivo zip del TDSSKiller colocándolo en el Escritorio. Ejecuta el TDSSKiller seleccionando las 2 casillas que se ven en la imagen.

      Ejecuta el Malwarebytes/Realiza un Análisis completo, seleccionando todo lo que te salga y borrándolo según la imagen que te muestro:



      Reinicia el Equipo te conectas a Internet y me aduntas los resultados del Malwarebytes de la PESTAÑA REGISTROS del Programa y el del TDSSKiller que estará en la raíz del disco duro (Por lo general es el disco C:) como:
      TDSSKiller.x.xx.x_xx.xx.xxxx_xx.xx.xx_log.txt donde "x.xx.x_xx.xx.xxxx_xx.xx.xx" son versión, fecha y hora.

      Saludos.

    3. #3
      Usuario Avatar de socorrohd79
      Registrado
      dic 2012
      Ubicación
      venezuela
      Mensajes
      2

      re: No puedo eliminar WIN64ZAccess.a

      Hola Gemsa_03 gracias por responder..... ya realice todos los pasos que me enviaste

      Te adjunto la informacion que me solicitas, lamentablemente todavia sigo con el mismo problema, esto es lo que muestra el McAfee





      Malwarebytes Anti-Malware 1.65.1.1000
      www.malwarebytes.org

      Versión de la Base de Datos: v2012.12.18.07

      Windows 7 x64 NTFS
      Internet Explorer 8.0.7600.16385
      Socorro :: SOCORRO-PC [administrador]

      18/12/2012 06:41:36 p.m.
      mbam-log-2012-12-18 (18-41-36).txt

      Tipos de Análisis: Análisis Completo (C:\|D:\|)
      Opciones de análisis activado: Memoria | Inicio | Registro | Sistema de archivos | Heurística/Extra | Heurística/Shuriken | PUP | PUM
      Opciones de análisis desactivados: P2P
      Objetos examinados: 476667
      Tiempo transcurrido: 2 hora(s), 52 minuto(s), 8 segundo(s)

      Procesos en Memoria Detectados: 0
      (No se han detectado elementos maliciosos)

      Módulos de Memoria Detectados: 0
      (No se han detectado elementos maliciosos)

      Claves del Registro Detectados: 0
      (No se han detectado elementos maliciosos)

      Valores del Registro Detectados: 0
      (No se han detectado elementos maliciosos)

      Elementos de Datos del Registro Detectados: 0
      (No se han detectado elementos maliciosos)

      Carpetas Detectadas: 0
      (No se han detectado elementos maliciosos)

      Archivos Detectados: 1
      C:\Program Files (x86)\Alcohol Soft\Alcohol 120\Langs\AX_RU.dll (Malware.Packer.GenX) -> En cuarentena y eliminado con éxito.

      fin)


      18:37:51.0827 1776 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
      18:37:51.0874 1776 ============================================================
      18:37:51.0874 1776 Current date / time: 2012/12/18 18:37:51.0874
      18:37:51.0874 1776 SystemInfo:
      18:37:51.0874 1776
      18:37:51.0874 1776 OS Version: 6.1.7600 ServicePack: 0.0
      18:37:51.0874 1776 Product type: Workstation
      18:37:51.0874 1776 ComputerName: SOCORRO-PC
      18:37:51.0874 1776 UserName: Socorro
      18:37:51.0874 1776 Windows directory: C:\Windows
      18:37:51.0874 1776 System windows directory: C:\Windows
      18:37:51.0874 1776 Running under WOW64
      18:37:51.0874 1776 Processor architecture: Intel x64
      18:37:51.0874 1776 Number of processors: 2
      18:37:51.0874 1776 Page size: 0x1000
      18:37:51.0874 1776 Boot type: Normal boot
      18:37:51.0874 1776 ============================================================
      18:37:52.0389 1776 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
      18:37:52.0405 1776 ============================================================
      18:37:52.0405 1776 \Device\Harddisk0\DR0:
      18:37:52.0405 1776 MBR partitions:
      18:37:52.0405 1776 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2EE800, BlocksNum 0x22736800
      18:37:52.0405 1776 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x240A9800, BlocksNum 0x1385000
      18:37:52.0405 1776 ============================================================
      18:37:52.0420 1776 C: <-> \Device\Harddisk0\DR0\Partition1
      18:37:52.0483 1776 D: <-> \Device\Harddisk0\DR0\Partition2
      18:37:52.0483 1776 ============================================================
      18:37:52.0483 1776 Initialize success
      18:37:52.0483 1776 ============================================================
      18:38:13.0792 3952 ============================================================
      18:38:13.0792 3952 Scan started
      18:38:13.0792 3952 Mode: Manual; SigCheck; TDLFS;
      18:38:13.0792 3952 ============================================================
      18:38:14.0042 3952 ================ Scan system memory ========================
      18:38:14.0042 3952 System memory - ok
      18:38:14.0042 3952 ================ Scan services =============================
      18:38:14.0338 3952 [ 1B00662092F9F9568B995902F0CC40D5 ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
      18:38:14.0525 3952 1394ohci - ok
      18:38:14.0572 3952 [ 6F11E88748CDEFD2F76AA215F97DDFE5 ] ACPI C:\Windows\system32\DRIVERS\ACPI.sys
      18:38:14.0588 3952 ACPI - ok
      18:38:14.0619 3952 [ 63B05A0420CE4BF0E4AF6DCC7CADA254 ] AcpiPmi C:\Windows\system32\DRIVERS\acpipmi.sys
      18:38:14.0713 3952 AcpiPmi - ok
      18:38:14.0837 3952 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
      18:38:14.0869 3952 AdobeARMservice - ok
      18:38:15.0009 3952 [ 95CE557D16A75606CCC2D7F3B0B0BCCB ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
      18:38:15.0040 3952 AdobeFlashPlayerUpdateSvc - ok
      18:38:15.0103 3952 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
      18:38:15.0149 3952 adp94xx - ok
      18:38:15.0196 3952 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
      18:38:15.0227 3952 adpahci - ok
      18:38:15.0274 3952 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
      18:38:15.0305 3952 adpu320 - ok
      18:38:15.0461 3952 [ 0C51C0008A662701AED7F69A6D3E2F28 ] AdvancedSystemCareService6 C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCService.exe
      18:38:15.0493 3952 AdvancedSystemCareService6 - ok
      18:38:15.0524 3952 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
      18:38:15.0727 3952 AeLookupSvc - ok
      18:38:15.0789 3952 [ 6EF20DDF3172E97D69F596FB90602F29 ] AFD C:\Windows\system32\drivers\afd.sys
      18:38:15.0851 3952 AFD - ok
      18:38:15.0929 3952 [ B65F8DBA54F251906BBE8611B5A0E7AB ] AgereModemAudio C:\Program Files\LSI SoftModem\agr64svc.exe
      18:38:15.0992 3952 AgereModemAudio - ok
      18:38:16.0039 3952 [ C98356D813B581E9C425B42A5D146CE0 ] AgereSoftModem C:\Windows\system32\DRIVERS\agrsm64.sys
      18:38:16.0117 3952 AgereSoftModem - ok
      18:38:16.0163 3952 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\DRIVERS\agp440.sys
      18:38:16.0195 3952 agp440 - ok
      18:38:16.0241 3952 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
      18:38:16.0304 3952 ALG - ok
      18:38:16.0351 3952 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\DRIVERS\aliide.sys
      18:38:16.0382 3952 aliide - ok
      18:38:16.0382 3952 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\DRIVERS\amdide.sys
      18:38:16.0413 3952 amdide - ok
      18:38:16.0444 3952 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
      18:38:16.0491 3952 AmdK8 - ok
      18:38:16.0522 3952 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
      18:38:16.0569 3952 AmdPPM - ok
      18:38:16.0616 3952 [ EC7EBAB00A4D8448BAB68D1E49B4BEB9 ] amdsata C:\Windows\system32\drivers\amdsata.sys
      18:38:16.0647 3952 amdsata - ok
      18:38:16.0694 3952 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
      18:38:16.0725 3952 amdsbs - ok
      18:38:16.0772 3952 [ DB27766102C7BF7E95140A2AA81D042E ] amdxata C:\Windows\system32\drivers\amdxata.sys
      18:38:16.0787 3952 amdxata - ok
      18:38:16.0834 3952 [ 42FD751B27FA0E9C69BB39F39E409594 ] AppID C:\Windows\system32\drivers\appid.sys
      18:38:16.0943 3952 AppID - ok
      18:38:16.0975 3952 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
      18:38:17.0053 3952 AppIDSvc - ok
      18:38:17.0115 3952 [ D065BE66822847B7F127D1F90158376E ] Appinfo C:\Windows\System32\appinfo.dll
      18:38:17.0177 3952 Appinfo - ok
      18:38:17.0271 3952 [ 3DEBBECF665DCDDE3A95D9B902010817 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
      18:38:17.0302 3952 Apple Mobile Device - ok
      18:38:17.0349 3952 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll
      18:38:17.0411 3952 AppMgmt - ok
      18:38:17.0458 3952 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
      18:38:17.0474 3952 arc - ok
      18:38:17.0505 3952 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
      18:38:17.0536 3952 arcsas - ok
      18:38:17.0583 3952 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
      18:38:17.0677 3952 AsyncMac - ok
      18:38:17.0708 3952 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\DRIVERS\atapi.sys
      18:38:17.0723 3952 atapi - ok
      18:38:17.0770 3952 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
      18:38:17.0848 3952 AudioEndpointBuilder - ok
      18:38:17.0848 3952 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioSrv C:\Windows\System32\Audiosrv.dll
      18:38:17.0911 3952 AudioSrv - ok
      18:38:17.0957 3952 [ B20B5FA5CA050E9926E4D1DB81501B32 ] AxInstSV C:\Windows\System32\AxInstSV.dll
      18:38:18.0035 3952 AxInstSV - ok
      18:38:18.0082 3952 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
      18:38:18.0129 3952 b06bdrv - ok
      18:38:18.0176 3952 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
      18:38:18.0238 3952 b57nd60a - ok
      18:38:18.0301 3952 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
      18:38:18.0363 3952 BDESVC - ok
      18:38:18.0394 3952 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
      18:38:18.0472 3952 Beep - ok
      18:38:18.0519 3952 [ 7F0C323FE3DA28AA4AA1BDA3F575707F ] BITS C:\Windows\System32\qmgr.dll
      18:38:18.0613 3952 BITS - ok
      18:38:18.0644 3952 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
      18:38:18.0675 3952 blbdrive - ok
      18:38:18.0769 3952 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
      18:38:18.0784 3952 Bonjour Service - ok
      18:38:18.0831 3952 [ 19D20159708E152267E53B66677A4995 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
      18:38:18.0909 3952 bowser - ok
      18:38:18.0925 3952 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
      18:38:18.0956 3952 BrFiltLo - ok
      18:38:18.0971 3952 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
      18:38:19.0003 3952 BrFiltUp - ok
      18:38:19.0034 3952 [ 94FBC06F294D58D02361918418F996E3 ] Browser C:\Windows\System32\browser.dll
      18:38:19.0127 3952 Browser - ok
      18:38:19.0159 3952 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
      18:38:19.0221 3952 Brserid - ok
      18:38:19.0237 3952 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
      18:38:19.0283 3952 BrSerWdm - ok
      18:38:19.0315 3952 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
      18:38:19.0361 3952 BrUsbMdm - ok
      18:38:19.0393 3952 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
      18:38:19.0424 3952 BrUsbSer - ok
      18:38:19.0439 3952 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
      18:38:19.0486 3952 BTHMODEM - ok
      18:38:19.0517 3952 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
      18:38:19.0580 3952 bthserv - ok
      18:38:19.0611 3952 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
      18:38:19.0673 3952 cdfs - ok
      18:38:19.0720 3952 [ 83D2D75E1EFB81B3450C18131443F7DB ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
      18:38:19.0751 3952 cdrom - ok
      18:38:19.0798 3952 [ 312E2F82AF11E79906898AC3E3D58A1F ] CertPropSvc C:\Windows\System32\certprop.dll
      18:38:19.0876 3952 CertPropSvc - ok
      18:38:19.0954 3952 [ 45B5A89DC41577282E5BF41B1165EA71 ] cfwids C:\Windows\system32\drivers\cfwids.sys
      18:38:20.0049 3952 cfwids - ok
      18:38:20.0096 3952 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
      18:38:20.0142 3952 circlass - ok
      18:38:20.0174 3952 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
      18:38:20.0220 3952 CLFS - ok
      18:38:20.0267 3952 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
      18:38:20.0298 3952 clr_optimization_v2.0.50727_32 - ok
      18:38:20.0330 3952 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
      18:38:20.0361 3952 clr_optimization_v2.0.50727_64 - ok
      18:38:20.0423 3952 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
      18:38:20.0454 3952 clr_optimization_v4.0.30319_32 - ok
      18:38:20.0486 3952 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
      18:38:20.0501 3952 clr_optimization_v4.0.30319_64 - ok
      18:38:20.0532 3952 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
      18:38:20.0579 3952 CmBatt - ok
      18:38:20.0626 3952 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\DRIVERS\cmdide.sys
      18:38:20.0642 3952 cmdide - ok
      18:38:20.0673 3952 [ F95FD4CB7DA00BA2A63CE9F6B5C053E1 ] CNG C:\Windows\system32\Drivers\cng.sys
      18:38:20.0720 3952 CNG - ok
      18:38:20.0766 3952 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
      18:38:20.0798 3952 Compbatt - ok
      18:38:20.0813 3952 [ F26B3A86F6FA87CA360B879581AB4123 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
      18:38:20.0860 3952 CompositeBus - ok
      18:38:20.0891 3952 COMSysApp - ok
      18:38:20.0938 3952 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
      18:38:20.0954 3952 crcdisk - ok
      18:38:21.0000 3952 [ 8C57411B66282C01533CB776F98AD384 ] CryptSvc C:\Windows\system32\cryptsvc.dll
      18:38:21.0095 3952 CryptSvc - ok
      18:38:21.0142 3952 [ 4A6173C2279B498CD8F57CAE504564CB ] CSC C:\Windows\system32\drivers\csc.sys
      18:38:21.0204 3952 CSC - ok
      18:38:21.0251 3952 [ 873FBF927C06E5CEE04DEC617502F8FD ] CscService C:\Windows\System32\cscsvc.dll
      18:38:21.0329 3952 CscService - ok
      18:38:21.0391 3952 [ 7266972E86890E2B30C0C322E906B027 ] DcomLaunch C:\Windows\system32\rpcss.dll
      18:38:21.0485 3952 DcomLaunch - ok
      18:38:21.0516 3952 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
      18:38:21.0610 3952 defragsvc - ok
      18:38:21.0657 3952 [ 9C253CE7311CA60FC11C774692A13208 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
      18:38:21.0813 3952 DfsC - ok
      18:38:21.0875 3952 [ CE3B9562D997F69B330D181A8875960F ] Dhcp C:\Windows\system32\dhcpcore.dll
      18:38:21.0969 3952 Dhcp - ok
      18:38:21.0984 3952 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
      18:38:22.0078 3952 discache - ok
      18:38:22.0125 3952 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
      18:38:22.0156 3952 Disk - ok
      18:38:22.0218 3952 [ 85CF424C74A1D5EC33533E1DBFF9920A ] Dnscache C:\Windows\System32\dnsrslvr.dll
      18:38:22.0281 3952 Dnscache - ok
      18:38:22.0312 3952 [ 14452ACDB09B70964C8C21BF80A13ACB ] dot3svc C:\Windows\System32\dot3svc.dll
      18:38:22.0390 3952 dot3svc - ok
      18:38:22.0421 3952 [ 8C2BA6BEA949EE6E68385F5692BAFB94 ] DPS C:\Windows\system32\dps.dll
      18:38:22.0499 3952 DPS - ok
      18:38:22.0546 3952 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
      18:38:22.0577 3952 drmkaud - ok
      18:38:22.0639 3952 [ 1633B9ABF52784A1331476397A48CBEF ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
      18:38:22.0671 3952 DXGKrnl - ok
      18:38:22.0717 3952 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
      18:38:22.0780 3952 EapHost - ok
      18:38:22.0889 3952 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
      18:38:22.0998 3952 ebdrv - ok
      18:38:23.0029 3952 [ 0793F40B9B8A1BDD266296409DBD91EA ] EFS C:\Windows\System32\lsass.exe
      18:38:23.0076 3952 EFS - ok
      18:38:23.0139 3952 [ 47C071994C3F649F23D9CD075AC9304A ] ehRecvr C:\Windows\ehome\ehRecvr.exe
      18:38:23.0217 3952 ehRecvr - ok
      18:38:23.0248 3952 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
      18:38:23.0295 3952 ehSched - ok
      18:38:23.0357 3952 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
      18:38:23.0388 3952 elxstor - ok
      18:38:23.0404 3952 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\DRIVERS\errdev.sys
      18:38:23.0451 3952 ErrDev - ok
      18:38:23.0497 3952 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
      18:38:23.0544 3952 EventSystem - ok
      18:38:23.0607 3952 ewusbnet - ok
      18:38:23.0638 3952 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
      18:38:23.0716 3952 exfat - ok
      18:38:23.0731 3952 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
      18:38:23.0794 3952 fastfat - ok
      18:38:23.0856 3952 [ D607B2F1BEE3992AA6C2C92C0A2F0855 ] Fax C:\Windows\system32\fxssvc.exe
      18:38:23.0919 3952 Fax - ok
      18:38:23.0950 3952 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
      18:38:23.0997 3952 fdc - ok
      18:38:24.0043 3952 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
      18:38:24.0153 3952 fdPHost - ok
      18:38:24.0168 3952 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
      18:38:24.0215 3952 FDResPub - ok
      18:38:24.0231 3952 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
      18:38:24.0246 3952 FileInfo - ok
      18:38:24.0293 3952 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
      18:38:24.0371 3952 Filetrace - ok
      18:38:24.0465 3952 [ BB0667B0171B632B97EA759515476F07 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
      18:38:24.0496 3952 FLEXnet Licensing Service - ok
      18:38:24.0511 3952 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
      18:38:24.0558 3952 flpydisk - ok
      18:38:24.0605 3952 [ F7866AF72ABBAF84B1FA5AA195378C59 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
      18:38:24.0636 3952 FltMgr - ok
      18:38:24.0699 3952 [ BC00505CFDA789ED3BE95D2FF38C4875 ] FontCache C:\Windows\system32\FntCache.dll
      18:38:24.0777 3952 FontCache - ok
      18:38:24.0823 3952 [ 8D89E3131C27FDD6932189CB785E1B7A ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
      18:38:24.0855 3952 FontCache3.0.0.0 - ok
      18:38:24.0870 3952 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
      18:38:24.0901 3952 FsDepends - ok
      18:38:24.0933 3952 [ E95EF8547DE20CF0603557C0CF7A9462 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
      18:38:24.0948 3952 Fs_Rec - ok
      18:38:24.0995 3952 [ AE87BA80D0EC3B57126ED2CDC15B24ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
      18:38:25.0089 3952 fvevol - ok
      18:38:25.0135 3952 [ 6D06B5EEBBA23C16789EFC820EE1F253 ] FwLnk C:\Windows\system32\DRIVERS\FwLnk.sys
      18:38:25.0182 3952 FwLnk - ok
      18:38:25.0213 3952 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
      18:38:25.0245 3952 gagp30kx - ok
      18:38:25.0291 3952 [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
      18:38:25.0307 3952 GEARAspiWDM - ok
      18:38:25.0354 3952 [ FE5AB4525BC2EC68B9119A6E5D40128B ] gpsvc C:\Windows\System32\gpsvc.dll
      18:38:25.0416 3952 gpsvc - ok
      18:38:25.0510 3952 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
      18:38:25.0541 3952 gupdate - ok
      18:38:25.0557 3952 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
      18:38:25.0588 3952 gupdatem - ok
      18:38:25.0603 3952 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
      18:38:25.0666 3952 hcw85cir - ok
      18:38:25.0713 3952 [ 6410F6F415B2A5A9037224C41DA8BF12 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
      18:38:25.0759 3952 HdAudAddService - ok
      18:38:25.0806 3952 [ 0A49913402747A0B67DE940FB42CBDBB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
      18:38:25.0884 3952 HDAudBus - ok
      18:38:25.0900 3952 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
      18:38:25.0931 3952 HidBatt - ok
      18:38:25.0947 3952 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
      18:38:25.0993 3952 HidBth - ok
      18:38:26.0025 3952 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
      18:38:26.0071 3952 HidIr - ok
      18:38:26.0118 3952 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
      18:38:26.0196 3952 hidserv - ok
      18:38:26.0243 3952 [ B3BF6B5B50006DEF50B66306D99FCF6F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
      18:38:26.0259 3952 HidUsb - ok
      18:38:26.0337 3952 [ A894FB2CAE6A29F5D9C8EDA47B074623 ] HipShieldK C:\Windows\system32\drivers\HipShieldK.sys
      18:38:26.0415 3952 HipShieldK - ok
      18:38:26.0446 3952 [ EFA58EDE58DD74388FFD04CB32681518 ] hkmsvc C:\Windows\system32\kmsvc.dll
      18:38:26.0524 3952 hkmsvc - ok
      18:38:26.0555 3952 [ 046B2673767CA626E2CFB7FDF735E9E8 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
      18:38:26.0617 3952 HomeGroupListener - ok
      18:38:26.0664 3952 [ 06A7422224D9865A5613710A089987DF ] HomeGroupProvider C:\Windows\system32\provsvc.dll
      18:38:26.0695 3952 HomeGroupProvider - ok
      18:38:26.0742 3952 [ 0886D440058F203EBA0E1825E4355914 ] HpSAMD C:\Windows\system32\DRIVERS\HpSAMD.sys
      18:38:26.0773 3952 HpSAMD - ok
      18:38:26.0836 3952 [ CEE049CAC4EFA7F4E1E4AD014414A5D4 ] HTTP C:\Windows\system32\drivers\HTTP.sys
      18:38:26.0898 3952 HTTP - ok
      18:38:26.0914 3952 huawei_enumerator - ok
      18:38:26.0929 3952 hwdatacard - ok
      18:38:26.0945 3952 [ F17766A19145F111856378DF337A5D79 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
      18:38:26.0961 3952 hwpolicy - ok
      18:38:27.0007 3952 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
      18:38:27.0039 3952 i8042prt - ok
      18:38:27.0101 3952 [ 1D004CB1DA6323B1F55CAEF7F94B61D9 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
      18:38:27.0148 3952 iaStor - ok
      18:38:27.0210 3952 [ B75E45C564E944A2657167D197AB29DA ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
      18:38:27.0288 3952 iaStorV - ok
      18:38:27.0351 3952 [ 2F2BE70D3E02B6FA877921AB9516D43C ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
      18:38:27.0397 3952 idsvc - ok
      18:38:27.0678 3952 [ C6238C6ABD6AC99F5D152DA4E9439A3D ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
      18:38:27.0928 3952 igfx - ok
      18:38:27.0975 3952 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
      18:38:27.0990 3952 iirsp - ok
      18:38:28.0053 3952 [ C5B4683680DF085B57BC53E5EF34861F ] IKEEXT C:\Windows\System32\ikeext.dll
      18:38:28.0162 3952 IKEEXT - ok
      18:38:28.0271 3952 [ 0C3CF4B3BAE28E121A1689E3538F8712 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
      18:38:28.0333 3952 IntcAzAudAddService - ok
      18:38:28.0349 3952 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\DRIVERS\intelide.sys
      18:38:28.0365 3952 intelide - ok
      18:38:28.0411 3952 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
      18:38:28.0443 3952 intelppm - ok
      18:38:28.0489 3952 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
      18:38:28.0567 3952 IPBusEnum - ok
      18:38:28.0599 3952 [ 722DD294DF62483CECAAE6E094B4D695 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
      18:38:28.0677 3952 IpFilterDriver - ok
      18:38:28.0692 3952 [ E2B4A4494DB7CB9B89B55CA268C337C5 ] IPMIDRV C:\Windows\system32\DRIVERS\IPMIDrv.sys
      18:38:28.0739 3952 IPMIDRV - ok
      18:38:28.0786 3952 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
      18:38:28.0879 3952 IPNAT - ok
      18:38:28.0973 3952 [ EE4C2A137C7088911A8919EFFC9812E7 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
      18:38:29.0004 3952 iPod Service - ok
      18:38:29.0035 3952 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
      18:38:29.0067 3952 IRENUM - ok
      18:38:29.0098 3952 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\DRIVERS\isapnp.sys
      18:38:29.0113 3952 isapnp - ok
      18:38:29.0145 3952 [ FA4D2557DE56D45B0A346F93564BE6E1 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
      18:38:29.0160 3952 iScsiPrt - ok
      18:38:29.0223 3952 [ D596D915CF091DA1F8CE4BD38BB5D509 ] iusb3hcs C:\Windows\system32\DRIVERS\iusb3hcs.sys
      18:38:29.0285 3952 iusb3hcs - ok
      18:38:29.0332 3952 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
      18:38:29.0363 3952 kbdclass - ok
      18:38:29.0394 3952 [ 6DEF98F8541E1B5DCEB2C822A11F7323 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
      18:38:29.0457 3952 kbdhid - ok
      18:38:29.0472 3952 [ 0793F40B9B8A1BDD266296409DBD91EA ] KeyIso C:\Windows\system32\lsass.exe
      18:38:29.0503 3952 KeyIso - ok
      18:38:29.0535 3952 [ E8B6FCC9C83535C67F835D407620BD27 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
      18:38:29.0550 3952 KSecDD - ok
      18:38:29.0581 3952 [ A8C63880EF6F4D3FEC7B616B9C060215 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
      18:38:29.0613 3952 KSecPkg - ok
      18:38:29.0659 3952 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
      18:38:29.0722 3952 ksthunk - ok
      18:38:29.0784 3952 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
      18:38:29.0862 3952 KtmRm - ok
      18:38:29.0909 3952 [ 81F1D04D4D0E433099365127375FD501 ] LanmanServer C:\Windows\system32\srvsvc.dll
      18:38:29.0971 3952 LanmanServer - ok
      18:38:30.0018 3952 [ 27026EAC8818E8A6C00A1CAD2F11D29A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
      18:38:30.0096 3952 LanmanWorkstation - ok
      18:38:30.0127 3952 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
      18:38:30.0205 3952 lltdio - ok
      18:38:30.0252 3952 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
      18:38:30.0299 3952 lltdsvc - ok
      18:38:30.0330 3952 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
      18:38:30.0377 3952 lmhosts - ok
      18:38:30.0408 3952 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
      18:38:30.0424 3952 LSI_FC - ok
      18:38:30.0455 3952 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
      18:38:30.0471 3952 LSI_SAS - ok
      18:38:30.0486 3952 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
      18:38:30.0502 3952 LSI_SAS2 - ok
      18:38:30.0564 3952 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
      18:38:30.0580 3952 LSI_SCSI - ok
      18:38:30.0611 3952 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
      18:38:30.0658 3952 luafv - ok
      18:38:30.0783 3952 [ F928E5E72BBA15DD0CE9A26E0413D236 ] McAfee SiteAdvisor Service C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
      18:38:30.0845 3952 McAfee SiteAdvisor Service - ok
      18:38:30.0954 3952 [ F48571922079BBAB289C57BAFEFE88F3 ] McAWFwk c:\PROGRA~1\mcafee\msc\mcawfwk.exe
      18:38:31.0017 3952 McAWFwk - ok
      18:38:31.0063 3952 [ F928E5E72BBA15DD0CE9A26E0413D236 ] McMPFSvc C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
      18:38:31.0141 3952 McMPFSvc - ok
      18:38:31.0173 3952 [ F928E5E72BBA15DD0CE9A26E0413D236 ] mcmscsvc C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
      18:38:31.0235 3952 mcmscsvc - ok
      18:38:31.0251 3952 [ F928E5E72BBA15DD0CE9A26E0413D236 ] McNaiAnn C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
      18:38:31.0329 3952 McNaiAnn - ok
      18:38:31.0375 3952 [ F928E5E72BBA15DD0CE9A26E0413D236 ] McNASvc C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
      18:38:31.0438 3952 McNASvc - ok
      18:38:31.0547 3952 [ 1814532DB0404C5FB65AA3EB051B2BE5 ] McODS C:\Program Files\McAfee\VirusScan\mcods.exe
      18:38:31.0625 3952 McODS - ok
      18:38:31.0641 3952 [ F928E5E72BBA15DD0CE9A26E0413D236 ] McOobeSv C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
      18:38:31.0703 3952 McOobeSv - ok
      18:38:31.0750 3952 [ F928E5E72BBA15DD0CE9A26E0413D236 ] McProxy C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
      18:38:31.0797 3952 McProxy - ok
      18:38:31.0843 3952 [ 07ADF390306FC00297EE9B2247C0678E ] McPvDrv C:\Windows\system32\drivers\McPvDrv.sys
      18:38:31.0921 3952 McPvDrv - ok
      18:38:32.0015 3952 [ 4DEC9B5BEDAA97B1FF6A3923E1C4F58A ] McShield C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
      18:38:32.0093 3952 McShield - ok
      18:38:32.0124 3952 [ F84C8F1000BC11E3B7B23CBD3BAFF111 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
      18:38:32.0171 3952 Mcx2Svc - ok
      18:38:32.0202 3952 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
      18:38:32.0233 3952 megasas - ok
      18:38:32.0249 3952 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
      18:38:32.0280 3952 MegaSR - ok
      18:38:32.0327 3952 [ B574522827D94126C03975FD53F0B26B ] mfeapfk C:\Windows\system32\drivers\mfeapfk.sys
      18:38:32.0405 3952 mfeapfk - ok
      18:38:32.0436 3952 [ B393753ECE9A9E2307CB1984ACF3DA9D ] mfeavfk C:\Windows\system32\drivers\mfeavfk.sys
      18:38:32.0514 3952 mfeavfk - ok
      18:38:32.0530 3952 mfeavfk01 - ok
      18:38:32.0577 3952 [ 97C398750C8E80A48EB63999546F796E ] mfefire C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
      18:38:32.0655 3952 mfefire - ok
      18:38:32.0686 3952 [ C52A1ABF03DD219375EA0F6A8BE941C3 ] mfefirek C:\Windows\system32\drivers\mfefirek.sys
      18:38:32.0733 3952 mfefirek - ok
      18:38:32.0795 3952 [ 7092A6C6158FC4F5AA39EBEB9D5AF03D ] mfehidk C:\Windows\system32\drivers\mfehidk.sys
      18:38:32.0889 3952 mfehidk - ok
      18:38:32.0935 3952 [ D2A941C82A0A9227CD6F47AD40A40F69 ] mferkdet C:\Windows\system32\drivers\mferkdet.sys
      18:38:33.0013 3952 mferkdet - ok
      18:38:33.0076 3952 [ 04D48692EFF181DA46DD8EA8BE9FFB2B ] mfevtp C:\Windows\system32\mfevtps.exe
      18:38:33.0138 3952 mfevtp - ok
      18:38:33.0169 3952 [ 1631E2DA6C4B47D97ECA94842836592E ] mfewfpk C:\Windows\system32\drivers\mfewfpk.sys
      18:38:33.0247 3952 mfewfpk - ok
      18:38:33.0372 3952 [ 033B947AF4A997820E86FCB070B1F450 ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
      18:38:33.0388 3952 Microsoft Office Groove Audit Service - ok
      18:38:33.0419 3952 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
      18:38:33.0513 3952 MMCSS - ok
      18:38:33.0528 3952 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
      18:38:33.0591 3952 Modem - ok
      18:38:33.0622 3952 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
      18:38:33.0684 3952 monitor - ok
      18:38:33.0715 3952 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
      18:38:33.0747 3952 mouclass - ok
      18:38:33.0809 3952 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
      18:38:33.0856 3952 mouhid - ok
      18:38:33.0887 3952 [ 791AF66C4D0E7C90A3646066386FB571 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
      18:38:33.0918 3952 mountmgr - ok
      18:38:34.0027 3952 [ 8C7336950F1E69CDFD811CBBD9CF00A2 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
      18:38:34.0059 3952 MozillaMaintenance - ok
      18:38:34.0105 3952 [ 609D1D87649ECC19796F4D76D4C15CEA ] mpio C:\Windows\system32\DRIVERS\mpio.sys
      18:38:34.0137 3952 mpio - ok
      18:38:34.0152 3952 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
      18:38:34.0230 3952 mpsdrv - ok
      18:38:34.0246 3952 [ 30524261BB51D96D6FCBAC20C810183C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
      18:38:34.0293 3952 MRxDAV - ok
      18:38:34.0339 3952 [ 040D62A9D8AD28922632137ACDD984F2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
      18:38:34.0371 3952 mrxsmb - ok
      18:38:34.0417 3952 [ F0067552F8F9B33D7C59403AB808A3CB ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
      18:38:34.0527 3952 mrxsmb10 - ok
      18:38:34.0542 3952 [ 3C142D31DE9F2F193218A53FE2632051 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
      18:38:34.0573 3952 mrxsmb20 - ok
      18:38:34.0605 3952 [ 5C37497276E3B3A5488B23A326A754B7 ] msahci C:\Windows\system32\DRIVERS\msahci.sys
      18:38:34.0620 3952 msahci - ok
      18:38:34.0636 3952 [ 8D27B597229AED79430FB9DB3BCBFBD0 ] msdsm C:\Windows\system32\DRIVERS\msdsm.sys
      18:38:34.0667 3952 msdsm - ok
      18:38:34.0683 3952 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
      18:38:34.0729 3952 MSDTC - ok
      18:38:34.0776 3952 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
      18:38:34.0823 3952 Msfs - ok
      18:38:34.0839 3952 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
      18:38:34.0885 3952 mshidkmdf - ok
      18:38:34.0901 3952 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\DRIVERS\msisadrv.sys
      18:38:34.0917 3952 msisadrv - ok
      18:38:34.0963 3952 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
      18:38:35.0026 3952 MSiSCSI - ok
      18:38:35.0026 3952 msiserver - ok
      18:38:35.0088 3952 [ F928E5E72BBA15DD0CE9A26E0413D236 ] MSK80Service C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
      18:38:35.0151 3952 MSK80Service - ok
      18:38:35.0182 3952 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
      18:38:35.0260 3952 MSKSSRV - ok
      18:38:35.0275 3952 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
      18:38:35.0322 3952 MSPCLOCK - ok
      18:38:35.0322 3952 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
      18:38:35.0385 3952 MSPQM - ok
      18:38:35.0416 3952 [ 89CB141AA8616D8C6A4610FA26C60964 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
      18:38:35.0431 3952 MsRPC - ok
      18:38:35.0463 3952 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
      18:38:35.0478 3952 mssmbios - ok
      18:38:35.0509 3952 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
      18:38:35.0572 3952 MSTEE - ok
      18:38:35.0603 3952 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
      18:38:35.0650 3952 MTConfig - ok
      18:38:35.0665 3952 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
      18:38:35.0681 3952 Mup - ok
      18:38:35.0728 3952 [ 4987E079A4530FA737A128BE54B63B12 ] napagent C:\Windows\system32\qagentRT.dll
      18:38:35.0821 3952 napagent - ok
      18:38:35.0868 3952 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
      18:38:35.0931 3952 NativeWifiP - ok
      18:38:35.0993 3952 [ CAD515DBD07D082BB317D9928CE8962C ] NDIS C:\Windows\system32\drivers\ndis.sys
      18:38:36.0024 3952 NDIS - ok
      18:38:36.0055 3952 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
      18:38:36.0102 3952 NdisCap - ok
      18:38:36.0133 3952 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
      18:38:36.0180 3952 NdisTapi - ok
      18:38:36.0196 3952 [ F105BA1E22BF1F2EE8F005D4305E4BEC ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
      18:38:36.0243 3952 Ndisuio - ok
      18:38:36.0274 3952 [ 557DFAB9CA1FCB036AC77564C010DAD3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
      18:38:36.0352 3952 NdisWan - ok
      18:38:36.0367 3952 [ 659B74FB74B86228D6338D643CD3E3CF ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
      18:38:36.0430 3952 NDProxy - ok
      18:38:36.0461 3952 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
      18:38:36.0523 3952 NetBIOS - ok
      18:38:36.0555 3952 [ 9162B273A44AB9DCE5B44362731D062A ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
      18:38:36.0601 3952 NetBT - ok
      18:38:36.0617 3952 [ 0793F40B9B8A1BDD266296409DBD91EA ] Netlogon C:\Windows\system32\lsass.exe
      18:38:36.0633 3952 Netlogon - ok
      18:38:36.0679 3952 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
      18:38:36.0789 3952 Netman - ok
      18:38:36.0820 3952 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
      18:38:36.0867 3952 netprofm - ok
      18:38:36.0898 3952 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
      18:38:36.0913 3952 NetTcpPortSharing - ok
      18:38:36.0960 3952 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
      18:38:36.0991 3952 nfrd960 - ok
      18:38:37.0069 3952 [ 4C2723D5D3C6EA381048EFEF5925CC78 ] NitroDriverReadSpool8 C:\Program Files\Common Files\Nitro\Pro\8.0\NitroPDFDriverService8x64.exe
      18:38:37.0101 3952 NitroDriverReadSpool8 - ok
      18:38:37.0147 3952 [ D9A0CE66046D6EFA0C61BAA885CBA0A8 ] NlaSvc C:\Windows\System32\nlasvc.dll
      18:38:37.0210 3952 NlaSvc - ok
      18:38:37.0272 3952 [ 4903177FC90E77ABEB19021451E9475E ] nmwcd C:\Windows\system32\drivers\ccdcmbx64.sys
      18:38:37.0350 3952 nmwcd - ok
      18:38:37.0413 3952 [ E6844A4C97E5409BBE24BB4ED000320D ] nmwcdc C:\Windows\system32\drivers\ccdcmbox64.sys
      18:38:37.0475 3952 nmwcdc - ok
      18:38:37.0522 3952 [ F59F8CF59F7905622686637177E2A828 ] nmwcdnsucx64 C:\Windows\system32\drivers\nmwcdnsucx64.sys
      18:38:37.0615 3952 nmwcdnsucx64 - ok
      18:38:37.0631 3952 [ A0E7F80157AF77B1CEAA8ADD3A3E7D85 ] nmwcdnsux64 C:\Windows\system32\drivers\nmwcdnsux64.sys
      18:38:37.0678 3952 nmwcdnsux64 - ok
      18:38:37.0725 3952 [ C31FA031335EFF434B2D94278E74BCCE ] npf C:\Windows\system32\drivers\npf.sys
      18:38:37.0771 3952 npf - ok
      18:38:37.0787 3952 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
      18:38:37.0834 3952 Npfs - ok
      18:38:37.0849 3952 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
      18:38:37.0912 3952 nsi - ok
      18:38:37.0943 3952 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
      18:38:38.0037 3952 nsiproxy - ok
      18:38:38.0115 3952 [ 378E0E0DFEA67D98AE6EA53ADBBD76BC ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
      18:38:38.0177 3952 Ntfs - ok
      18:38:38.0193 3952 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
      18:38:38.0271 3952 Null - ok
      18:38:38.0317 3952 [ A4D9C9A608A97F59307C2F2600EDC6A4 ] nvraid C:\Windows\system32\drivers\nvraid.sys
      18:38:38.0349 3952 nvraid - ok
      18:38:38.0380 3952 [ 6C1D5F70E7A6A3FD1C90D840EDC048B9 ] nvstor C:\Windows\system32\drivers\nvstor.sys
      18:38:38.0411 3952 nvstor - ok
      18:38:38.0458 3952 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\DRIVERS\nv_agp.sys
      18:38:38.0489 3952 nv_agp - ok
      18:38:38.0614 3952 [ E54AA592A65F317390EEE386A8821692 ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
      18:38:38.0723 3952 odserv - ok
      18:38:38.0739 3952 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
      18:38:38.0785 3952 ohci1394 - ok
      18:38:38.0895 3952 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
      18:38:38.0926 3952 ose - ok
      18:38:38.0957 3952 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
      18:38:39.0035 3952 p2pimsvc - ok
      18:38:39.0066 3952 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
      18:38:39.0113 3952 p2psvc - ok
      18:38:39.0144 3952 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
      18:38:39.0175 3952 Parport - ok
      18:38:39.0191 3952 [ 7DAA117143316C4A1537E074A5A9EAF0 ] partmgr C:\Windows\system32\drivers\partmgr.sys
      18:38:39.0222 3952 partmgr - ok
      18:38:39.0253 3952 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
      18:38:39.0300 3952 PcaSvc - ok
      18:38:39.0363 3952 [ 3FDE033DFB0D07F8B7D5C9A3044AA121 ] pccsmcfd C:\Windows\system32\DRIVERS\pccsmcfdx64.sys
      18:38:39.0409 3952 pccsmcfd - ok
      18:38:39.0441 3952 [ F36F6504009F2FB0DFD1B17A116AD74B ] pci C:\Windows\system32\DRIVERS\pci.sys
      18:38:39.0456 3952 pci - ok
      18:38:39.0487 3952 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\DRIVERS\pciide.sys
      18:38:39.0519 3952 pciide - ok
      18:38:39.0534 3952 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
      18:38:39.0565 3952 pcmcia - ok
      18:38:39.0597 3952 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
      18:38:39.0612 3952 pcw - ok
      18:38:39.0643 3952 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
      18:38:39.0706 3952 PEAUTH - ok
      18:38:39.0768 3952 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
      18:38:39.0846 3952 PeerDistSvc - ok
      18:38:39.0924 3952 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
      18:38:39.0971 3952 PerfHost - ok
      18:38:40.0065 3952 [ 557E9A86F65F0DE18C9B6751DFE9D3F1 ] pla C:\Windows\system32\pla.dll
      18:38:40.0174 3952 pla - ok
      18:38:40.0205 3952 [ 98B1721B8718164293B9701B98C52D77 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
      18:38:40.0267 3952 PlugPlay - ok
      18:38:40.0314 3952 [ BDEA03A01DD58FF120C9D757A28DAA8B ] pmkbdfltr C:\Windows\system32\DRIVERS\pmkbdfltr.sys
      18:38:40.0361 3952 pmkbdfltr - ok
      18:38:40.0392 3952 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
      18:38:40.0439 3952 PNRPAutoReg - ok
      18:38:40.0470 3952 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
      18:38:40.0517 3952 PNRPsvc - ok
      18:38:40.0564 3952 [ 166EB40D1F5B47E615DE3D0FFFE5F243 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
      18:38:40.0626 3952 PolicyAgent - ok
      18:38:40.0642 3952 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
      18:38:40.0689 3952 Power - ok
      18:38:40.0735 3952 [ 27CC19E81BA5E3403C48302127BDA717 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
      18:38:40.0813 3952 PptpMiniport - ok
      18:38:40.0845 3952 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
      18:38:40.0876 3952 Processor - ok
      18:38:40.0938 3952 [ F381975E1F4346DE875CB07339CE8D3A ] ProfSvc C:\Windows\system32\profsvc.dll
      18:38:41.0001 3952 ProfSvc - ok
      18:38:41.0016 3952 [ 0793F40B9B8A1BDD266296409DBD91EA ] ProtectedStorage C:\Windows\system32\lsass.exe
      18:38:41.0032 3952 ProtectedStorage - ok
      18:38:41.0079 3952 [ EE992183BD8EAEFD9973F352E587A299 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
      18:38:41.0125 3952 Psched - ok
      18:38:41.0188 3952 [ DEFD557D9B8C0FA3CEA6CC576400114E ] pwdrvio C:\Windows\system32\pwdrvio.sys
      18:38:41.0297 3952 pwdrvio - ok
      18:38:41.0359 3952 [ A2EE3B70A9E05F651B888078726C2787 ] pwdspio C:\Windows\system32\pwdspio.sys
      18:38:41.0484 3952 pwdspio - ok
      18:38:41.0531 3952 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
      18:38:41.0609 3952 ql2300 - ok
      18:38:41.0640 3952 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
      18:38:41.0656 3952 ql40xx - ok
      18:38:41.0687 3952 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
      18:38:41.0734 3952 QWAVE - ok
      18:38:41.0734 3952 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
      18:38:41.0781 3952 QWAVEdrv - ok
      18:38:41.0874 3952 [ A55E7D0D873B2C97585B3B5926AC6ADE ] RapiMgr C:\Windows\WindowsMobile\rapimgr.dll
      18:38:41.0968 3952 RapiMgr - ok
      18:38:41.0999 3952 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
      18:38:42.0077 3952 RasAcd - ok
      18:38:42.0124 3952 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
      18:38:42.0186 3952 RasAgileVpn - ok
      18:38:42.0217 3952 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
      18:38:42.0311 3952 RasAuto - ok
      18:38:42.0342 3952 [ 87A6E852A22991580D6D39ADC4790463 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
      18:38:42.0389 3952 Rasl2tp - ok
      18:38:42.0420 3952 [ 47394ED3D16D053F5906EFE5AB51CC83 ] RasMan C:\Windows\System32\rasmans.dll
      18:38:42.0483 3952 RasMan - ok
      18:38:42.0514 3952 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
      18:38:42.0592 3952 RasPppoe - ok
      18:38:42.0607 3952 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
      18:38:42.0670 3952 RasSstp - ok
      18:38:42.0717 3952 [ 3BAC8142102C15D59A87757C1D41DCE5 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
      18:38:42.0810 3952 rdbss - ok
      18:38:42.0826 3952 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
      18:38:42.0857 3952 rdpbus - ok
      18:38:42.0873 3952 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
      18:38:42.0919 3952 RDPCDD - ok
      18:38:42.0951 3952 [ 9706B84DBABFC4B4CA46C5A82B14DFA3 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
      18:38:43.0013 3952 RDPDR - ok
      18:38:43.0029 3952 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
      18:38:43.0107 3952 RDPENCDD - ok
      18:38:43.0138 3952 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
      18:38:43.0185 3952 RDPREFMP - ok
      18:38:43.0200 3952 [ 8A3E6BEA1C53EA6177FE2B6EBA2C80D7 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
      18:38:43.0263 3952 RDPWD - ok
      18:38:43.0309 3952 [ 634B9A2181D98F15941236886164EC8B ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
      18:38:43.0325 3952 rdyboost - ok
      18:38:43.0372 3952 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
      18:38:43.0450 3952 RemoteAccess - ok
      18:38:43.0481 3952 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
      18:38:43.0559 3952 RemoteRegistry - ok
      18:38:43.0606 3952 [ 7B04C9843921AB1F695FB395422C5360 ] RimUsb C:\Windows\system32\Drivers\RimUsb_AMD64.sys
      18:38:43.0637 3952 RimUsb - ok
      18:38:43.0684 3952 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
      18:38:43.0777 3952 RpcEptMapper - ok
      18:38:43.0809 3952 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
      18:38:43.0840 3952 RpcLocator - ok
      18:38:43.0887 3952 [ 7266972E86890E2B30C0C322E906B027 ] RpcSs C:\Windows\system32\rpcss.dll
      18:38:43.0949 3952 RpcSs - ok
      18:38:43.0980 3952 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
      18:38:44.0027 3952 rspndr - ok
      18:38:44.0105 3952 [ 135A64530D7699AD48F29D73A658DD11 ] RSUSBSTOR C:\Windows\system32\Drivers\RtsUStor.sys
      18:38:44.0183 3952 RSUSBSTOR - ok
      18:38:44.0245 3952 [ 3713DACCA1025B05A6343104112708D9 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
      18:38:44.0308 3952 RTL8167 - ok
      18:38:44.0386 3952 [ CE594045B2969F5FC3F77B824629AC7F ] rtl8192se C:\Windows\system32\DRIVERS\rtl8192se.sys
      18:38:44.0479 3952 rtl8192se - ok
      18:38:44.0511 3952 RtsUIR - ok
      18:38:44.0542 3952 [ 88AF6E02AB19DF7FD07ECDF9C91E9AF6 ] s3cap C:\Windows\system32\DRIVERS\vms3cap.sys
      18:38:44.0589 3952 s3cap - ok
      18:38:44.0604 3952 [ 0793F40B9B8A1BDD266296409DBD91EA ] SamSs C:\Windows\system32\lsass.exe
      18:38:44.0635 3952 SamSs - ok
      18:38:44.0667 3952 [ E3BBB89983DAF5622C1D50CF49F28227 ] sbp2port C:\Windows\system32\DRIVERS\sbp2port.sys
      18:38:44.0698 3952 sbp2port - ok
      18:38:44.0729 3952 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
      18:38:44.0807 3952 SCardSvr - ok
      18:38:44.0823 3952 [ C94DA20C7E3BA1DCA269BC8460D98387 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
      18:38:44.0869 3952 scfilter - ok
      18:38:44.0947 3952 [ 624D0F5FF99428BB90A5B8A4123E918E ] Schedule C:\Windows\system32\schedsvc.dll
      18:38:45.0025 3952 Schedule - ok
      18:38:45.0072 3952 [ 312E2F82AF11E79906898AC3E3D58A1F ] SCPolicySvc C:\Windows\System32\certprop.dll
      18:38:45.0150 3952 SCPolicySvc - ok
      18:38:45.0181 3952 [ 765A27C3279CE11D14CB9E4F5869FCA5 ] SDRSVC C:\Windows\System32\SDRSVC.dll
      18:38:45.0228 3952 SDRSVC - ok
      18:38:45.0259 3952 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
      18:38:45.0337 3952 secdrv - ok
      18:38:45.0369 3952 [ 463B386EBC70F98DA5DFF85F7E654346 ] seclogon C:\Windows\system32\seclogon.dll
      18:38:45.0447 3952 seclogon - ok
      18:38:45.0478 3952 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
      18:38:45.0556 3952 SENS - ok
      18:38:45.0587 3952 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
      18:38:45.0618 3952 SensrSvc - ok
      18:38:45.0665 3952 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
      18:38:45.0696 3952 Serenum - ok
      18:38:45.0727 3952 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
      18:38:45.0759 3952 Serial - ok
      18:38:45.0790 3952 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
      18:38:45.0837 3952 sermouse - ok
      18:38:45.0961 3952 [ 9BDE8F1F5D060E912FCF9FB58B71CBC1 ] ServiceLayer C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
      18:38:45.0993 3952 ServiceLayer - ok
      18:38:46.0039 3952 [ C3BC61CE47FF6F4E88AB8A3B429A36AF ] SessionEnv C:\Windows\system32\sessenv.dll
      18:38:46.0102 3952 SessionEnv - ok
      18:38:46.0102 3952 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
      18:38:46.0180 3952 sffdisk - ok
      18:38:46.0195 3952 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\DRIVERS\sffp_mmc.sys
      18:38:46.0242 3952 sffp_mmc - ok
      18:38:46.0273 3952 [ 5588B8C6193EB1522490C122EB94DFFA ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
      18:38:46.0305 3952 sffp_sd - ok
      18:38:46.0336 3952 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
      18:38:46.0367 3952 sfloppy - ok
      18:38:46.0414 3952 [ 0298AC45D0EFFFB2DB4BAA7DD186E7BF ] ShellHWDetection C:\Windows\System32\shsvcs.dll
      18:38:46.0461 3952 ShellHWDetection - ok
      18:38:46.0507 3952 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
      18:38:46.0523 3952 SiSRaid2 - ok
      18:38:46.0554 3952 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
      18:38:46.0585 3952 SiSRaid4 - ok
      18:38:46.0617 3952 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
      18:38:46.0710 3952 Smb - ok
      18:38:46.0757 3952 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
      18:38:46.0804 3952 SNMPTRAP - ok
      18:38:46.0819 3952 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
      18:38:46.0835 3952 spldr - ok
      18:38:46.0882 3952 [ F8E1FA03CB70D54A9892AC88B91D1E7B ] Spooler C:\Windows\System32\spoolsv.exe
      18:38:46.0929 3952 Spooler - ok
      18:38:47.0053 3952 [ 913D843498553A1BC8F8DBAD6358E49F ] sppsvc C:\Windows\system32\sppsvc.exe
      18:38:47.0131 3952 sppsvc - ok
      18:38:47.0163 3952 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
      18:38:47.0241 3952 sppuinotify - ok
      18:38:47.0272 3952 [ 2408C0366D96BCDF63E8F1C78E4A29C5 ] srv C:\Windows\system32\DRIVERS\srv.sys
      18:38:47.0319 3952 srv - ok
      18:38:47.0350 3952 [ 76548F7B818881B47D8D1AE1BE9C11F8 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
      18:38:47.0397 3952 srv2 - ok
      18:38:47.0428 3952 [ 0AF6E19D39C70844C5CAA8FB0183C36E ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
      18:38:47.0475 3952 srvnet - ok
      18:38:47.0521 3952 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
      18:38:47.0584 3952 SSDPSRV - ok
      18:38:47.0615 3952 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
      18:38:47.0677 3952 SstpSvc - ok
      18:38:47.0771 3952 [ B1691AF4A072CB674D600DB16DD7308E ] StarWindServiceAE C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
      18:38:47.0802 3952 StarWindServiceAE ( UnsignedFile.Multi.Generic ) - warning
      18:38:47.0802 3952 StarWindServiceAE - detected UnsignedFile.Multi.Generic (1)
      18:38:47.0833 3952 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
      18:38:47.0865 3952 stexstor - ok
      18:38:47.0911 3952 [ 52D0E33B681BD0F33FDC08812FEE4F7D ] stisvc C:\Windows\System32\wiaservc.dll
      18:38:47.0958 3952 stisvc - ok
      18:38:48.0005 3952 [ FFD7A6F15B14234B5B0E5D49E7961895 ] storflt C:\Windows\system32\DRIVERS\vmstorfl.sys
      18:38:48.0021 3952 storflt - ok
      18:38:48.0052 3952 [ 8FCCBEFC5C440B3C23454656E551B09A ] storvsc C:\Windows\system32\DRIVERS\storvsc.sys
      18:38:48.0067 3952 storvsc - ok
      18:38:48.0083 3952 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
      18:38:48.0099 3952 swenum - ok
      18:38:48.0145 3952 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
      18:38:48.0239 3952 swprv - ok
      18:38:48.0286 3952 [ D8EDB37F6E235A47E12F1EAFD85C2B6F ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
      18:38:48.0333 3952 SynTP - ok
      18:38:48.0411 3952 [ 3C1284516A62078FB68F768DE4F1A7BE ] SysMain C:\Windows\system32\sysmain.dll
      18:38:48.0473 3952 SysMain - ok
      18:38:48.0489 3952 [ 238935C3CF2854886DC7CBB2A0E2CC66 ] TabletInputService C:\Windows\System32\TabSvc.dll
      18:38:48.0535 3952 TabletInputService - ok
      18:38:48.0567 3952 [ 884264AC597B690C5707C89723BB8E7B ] TapiSrv C:\Windows\System32\tapisrv.dll
      18:38:48.0629 3952 TapiSrv - ok
      18:38:48.0660 3952 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
      18:38:48.0738 3952 TBS - ok
      18:38:48.0816 3952 [ F18F56EFC0BFB9C87BA01C37B27F4DA5 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
      18:38:48.0894 3952 Tcpip - ok
      18:38:48.0957 3952 [ F18F56EFC0BFB9C87BA01C37B27F4DA5 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
      18:38:49.0003 3952 TCPIP6 - ok
      18:38:49.0019 3952 [ 76D078AF6F587B162D50210F761EB9ED ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
      18:38:49.0066 3952 tcpipreg - ok
      18:38:49.0128 3952 [ FD542B661BD22FA69CA789AD0AC58C29 ] tdcmdpst C:\Windows\system32\DRIVERS\tdcmdpst.sys
      18:38:49.0191 3952 tdcmdpst - ok
      18:38:49.0222 3952 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
      18:38:49.0300 3952 TDPIPE - ok
      18:38:49.0315 3952 [ E4245BDA3190A582D55ED09E137401A9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
      18:38:49.0362 3952 TDTCP - ok
      18:38:49.0393 3952 [ 079125C4B17B01FCAEEBCE0BCB290C0F ] tdx C:\Windows\system32\DRIVERS\tdx.sys
      18:38:49.0456 3952 tdx - ok
      18:38:49.0471 3952 [ C448651339196C0E869A355171875522 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
      18:38:49.0487 3952 TermDD - ok
      18:38:49.0534 3952 [ 0F05EC2887BFE197AD82A13287D2F404 ] TermService C:\Windows\System32\termsrv.dll
      18:38:49.0643 3952 TermService - ok
      18:38:49.0659 3952 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
      18:38:49.0690 3952 Themes - ok
      18:38:49.0721 3952 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
      18:38:49.0752 3952 THREADORDER - ok
      18:38:49.0799 3952 [ ED32035BDFECED1AD66D459FD9CC1140 ] TODDSrv C:\Windows\system32\TODDSrv.exe
      18:38:49.0830 3952 TODDSrv - ok
      18:38:49.0939 3952 [ 06C61275ADC64F1E36240A2287998A5E ] TosCoSrv C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
      18:38:49.0955 3952 TosCoSrv - ok
      18:38:50.0049 3952 [ AB2D61A032A01BF9E84F03CAA9D22932 ] TOSHIBA Bluetooth Service C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
      18:38:50.0064 3952 TOSHIBA Bluetooth Service - ok
      18:38:50.0111 3952 Tosrfcom - ok
      18:38:50.0158 3952 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
      18:38:50.0236 3952 TrkWks - ok
      18:38:50.0298 3952 [ 840F7FB849F5887A49BA18C13B2DA920 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
      18:38:50.0345 3952 TrustedInstaller - ok
      18:38:50.0376 3952 [ 61B96C26131E37B24E93327A0BD1FB95 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
      18:38:50.0454 3952 tssecsrv - ok
      18:38:50.0501 3952 [ 3836171A2CDF3AF8EF10856DB9835A70 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
      18:38:50.0579 3952 tunnel - ok
      18:38:50.0595 3952 [ 550B567F9364D8F7684C3FB3EA665A72 ] TVALZ C:\Windows\system32\DRIVERS\TVALZ_O.SYS
      18:38:50.0641 3952 TVALZ - ok
      18:38:50.0657 3952 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
      18:38:50.0673 3952 uagp35 - ok
      18:38:50.0719 3952 [ D47BAEAD86C65D4F4069D7CE0A4EDCEB ] udfs C:\Windows\system32\DRIVERS\udfs.sys
      18:38:50.0782 3952 udfs - ok
      18:38:50.0813 3952 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
      18:38:50.0844 3952 UI0Detect - ok
      18:38:50.0875 3952 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\DRIVERS\uliagpkx.sys
      18:38:50.0891 3952 uliagpkx - ok
      18:38:50.0938 3952 [ EAB6C35E62B1B0DB0D1B48B671D3A117 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
      18:38:50.0985 3952 umbus - ok
      18:38:51.0016 3952 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
      18:38:51.0047 3952 UmPass - ok
      18:38:51.0078 3952 [ AF0AC98EE5077EB844413EB54287FDE3 ] UmRdpService C:\Windows\System32\umrdp.dll
      18:38:51.0141 3952 UmRdpService - ok
      18:38:51.0234 3952 [ 4847639D852763EE39415C929470F672 ] UnlockerDriver5 C:\Program Files (x86)\Unlocker\UnlockerDriver5.sys
      18:38:51.0234 3952 UnlockerDriver5 ( UnsignedFile.Multi.Generic ) - warning
      18:38:51.0234 3952 UnlockerDriver5 - detected UnsignedFile.Multi.Generic (1)
      18:38:51.0281 3952 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
      18:38:51.0375 3952 upnphost - ok
      18:38:51.0437 3952 [ 907F50B8695DAA65A9445D27AD306E65 ] upperdev C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys
      18:38:51.0499 3952 upperdev - ok
      18:38:51.0562 3952 [ AA33FC47ED58C34E6E9261E4F850B7EB ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
      18:38:51.0624 3952 USBAAPL64 - ok
      18:38:51.0671 3952 [ 77B01BC848298223A95D4EC23E1785A1 ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
      18:38:51.0718 3952 usbaudio - ok
      18:38:51.0749 3952 [ 7B6A127C93EE590E4D79A5F2A76FE46F ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
      18:38:51.0796 3952 usbccgp - ok
      18:38:51.0827 3952 USBCCID - ok
      18:38:51.0858 3952 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\DRIVERS\usbcir.sys
      18:38:51.0905 3952 usbcir - ok
      18:38:51.0952 3952 [ 92969BA5AC44E229C55A332864F79677 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
      18:38:51.0983 3952 usbehci - ok
      18:38:52.0030 3952 [ E7DF1CFD28CA86B35EF5ADD0735CEEF3 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
      18:38:52.0061 3952 usbhub - ok
      18:38:52.0108 3952 [ F1BB1E55F1E7A65C5839CCC7B36D773E ] usbohci C:\Windows\system32\drivers\usbohci.sys
      18:38:52.0155 3952 usbohci - ok
      18:38:52.0201 3952 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
      18:38:52.0264 3952 usbprint - ok
      18:38:52.0311 3952 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
      18:38:52.0342 3952 usbscan - ok
      18:38:52.0389 3952 [ 3F7498527B48657091C355F683BEB0DD ] UsbserFilt C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys
      18:38:52.0435 3952 UsbserFilt - ok
      18:38:52.0482 3952 [ F39983647BC1F3E6100778DDFE9DCE29 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
      18:38:52.0545 3952 USBSTOR - ok
      18:38:52.0576 3952 [ BC3070350A491D84B518D7CCA9ABD36F ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
      18:38:52.0607 3952 usbuhci - ok
      18:38:52.0654 3952 [ D501E12614B00A3252073101D6A1A74B ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
      18:38:52.0685 3952 usbvideo - ok
      18:38:52.0716 3952 [ 70D05EE263568A742D14E1876DF80532 ] usb_rndisx C:\Windows\system32\DRIVERS\usb8023x.sys
      18:38:52.0763 3952 usb_rndisx - ok
      18:38:52.0794 3952 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
      18:38:52.0872 3952 UxSms - ok
      18:38:52.0888 3952 [ 0793F40B9B8A1BDD266296409DBD91EA ] VaultSvc C:\Windows\system32\lsass.exe
      18:38:52.0903 3952 VaultSvc - ok
      18:38:52.0981 3952 [ F6B266FDA43A39924E40B1A42B91C983 ] VBoxDrv C:\Windows\system32\DRIVERS\VBoxDrv.sys
      18:38:53.0075 3952 VBoxDrv - ok
      18:38:53.0122 3952 [ D119C47F337B5B5A80E259563703A922 ] VBoxNetAdp C:\Windows\system32\DRIVERS\VBoxNetAdp.sys
      18:38:53.0169 3952 VBoxNetAdp - ok
      18:38:53.0200 3952 [ A10EB38D1395F5FCE91E07608E0185B6 ] VBoxNetFlt C:\Windows\system32\DRIVERS\VBoxNetFlt.sys
      18:38:53.0247 3952 VBoxNetFlt - ok
      18:38:53.0293 3952 [ 9AFCAB8E11A233A768CD53489D339B3D ] VBoxUSB C:\Windows\system32\Drivers\VBoxUSB.sys
      18:38:53.0325 3952 VBoxUSB - ok
      18:38:53.0387 3952 [ 6DD88EA539217A9CFEFF4EF888C9D101 ] VBoxUSBMon C:\Windows\system32\DRIVERS\VBoxUSBMon.sys
      18:38:53.0449 3952 VBoxUSBMon - ok
      18:38:53.0496 3952 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\DRIVERS\vdrvroot.sys
      18:38:53.0527 3952 vdrvroot - ok
      18:38:53.0559 3952 [ 44D73E0BBC1D3C8981304BA15135C2F2 ] vds C:\Windows\System32\vds.exe
      18:38:53.0605 3952 vds - ok
      18:38:53.0652 3952 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
      18:38:53.0683 3952 vga - ok
      18:38:53.0699 3952 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
      18:38:53.0777 3952 VgaSave - ok
      18:38:53.0808 3952 [ C82E748660F62A242B2DFAC1442F22A4 ] vhdmp C:\Windows\system32\DRIVERS\vhdmp.sys
      18:38:53.0839 3952 vhdmp - ok
      18:38:53.0855 3952 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\DRIVERS\viaide.sys
      18:38:53.0886 3952 viaide - ok
      18:38:53.0917 3952 [ 1501699D7EDA984ABC4155A7DA5738D1 ] vmbus C:\Windows\system32\DRIVERS\vmbus.sys
      18:38:53.0949 3952 vmbus - ok
      18:38:53.0964 3952 [ AE10C35761889E65A6F7176937C5592C ] VMBusHID C:\Windows\system32\DRIVERS\VMBusHID.sys
      18:38:54.0011 3952 VMBusHID - ok
      18:38:54.0058 3952 [ 2B1A3DAE2B4E70DBBA822B7A03FBD4A3 ] volmgr C:\Windows\system32\DRIVERS\volmgr.sys
      18:38:54.0073 3952 volmgr - ok
      18:38:54.0089 3952 [ 99B0CBB569CA79ACAED8C91461D765FB ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
      18:38:54.0120 3952 volmgrx - ok
      18:38:54.0136 3952 [ 58F82EED8CA24B461441F9C3E4F0BF5C ] volsnap C:\Windows\system32\DRIVERS\volsnap.sys
      18:38:54.0151 3952 volsnap - ok
      18:38:54.0198 3952 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
      18:38:54.0214 3952 vsmraid - ok
      18:38:54.0276 3952 [ 787898BF9FB6D7BD87A36E2D95C899BA ] VSS C:\Windows\system32\vssvc.exe
      18:38:54.0370 3952 VSS - ok
      18:38:54.0385 3952 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
      18:38:54.0417 3952 vwifibus - ok
      18:38:54.0448 3952 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
      18:38:54.0463 3952 vwififlt - ok
      18:38:54.0510 3952 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
      18:38:54.0541 3952 vwifimp - ok
      18:38:54.0588 3952 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
      18:38:54.0682 3952 W32Time - ok
      18:38:54.0697 3952 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
      18:38:54.0729 3952 WacomPen - ok
      18:38:54.0775 3952 [ 47CA49400643EFFD3F1C9A27E1D69324 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
      18:38:54.0853 3952 WANARP - ok
      18:38:54.0869 3952 [ 47CA49400643EFFD3F1C9A27E1D69324 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
      18:38:54.0916 3952 Wanarpv6 - ok
      18:38:54.0978 3952 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
      18:38:55.0025 3952 WatAdminSvc - ok
      18:38:55.0103 3952 [ 5AB1BB85BD8B5089CC5D64200DEDAE68 ] wbengine C:\Windows\system32\wbengine.exe
      18:38:55.0212 3952 wbengine - ok
      18:38:55.0228 3952 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
      18:38:55.0259 3952 WbioSrvc - ok
      18:38:55.0290 3952 [ 8BDA6DB43AA54E8BB5E0794541DDC209 ] WcesComm C:\Windows\WindowsMobile\wcescomm.dll
      18:38:55.0306 3952 WcesComm - ok
      18:38:55.0353 3952 [ DD1BAE8EBFC653824D29CCF8C9054D68 ] wcncsvc C:\Windows\System32\wcncsvc.dll
      18:38:55.0415 3952 wcncsvc - ok
      18:38:55.0446 3952 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
      18:38:55.0493 3952 WcsPlugInService - ok
      18:38:55.0509 3952 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
      18:38:55.0540 3952 Wd - ok
      18:38:55.0571 3952 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
      18:38:55.0602 3952 Wdf01000 - ok
      18:38:55.0618 3952 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
      18:38:55.0665 3952 WdiServiceHost - ok
      18:38:55.0680 3952 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
      18:38:55.0727 3952 WdiSystemHost - ok
      18:38:55.0758 3952 [ 733006127F235BE7C35354EBEE7B9A7B ] WebClient C:\Windows\System32\webclnt.dll
      18:38:55.0836 3952 WebClient - ok
      18:38:55.0867 3952 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
      18:38:55.0977 3952 Wecsvc - ok
      18:38:56.0008 3952 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
      18:38:56.0070 3952 wercplsupport - ok
      18:38:56.0117 3952 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
      18:38:56.0195 3952 WerSvc - ok
      18:38:56.0211 3952 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
      18:38:56.0257 3952 WfpLwf - ok
      18:38:56.0289 3952 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
      18:38:56.0320 3952 WIMMount - ok
      18:38:56.0335 3952 WinHttpAutoProxySvc - ok
      18:38:56.0382 3952 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
      18:38:56.0445 3952 Winmgmt - ok
      18:38:56.0523 3952 [ 41FBB751936B387F9179E7F03A74FE29 ] WinRM C:\Windows\system32\WsmSvc.dll
      18:38:56.0647 3952 WinRM - ok
      18:38:56.0725 3952 [ 817EAFF5D38674EDD7713B9DFB8E9791 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
      18:38:56.0741 3952 WinUsb - ok
      18:38:56.0803 3952 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
      18:38:56.0866 3952 Wlansvc - ok
      18:38:57.0022 3952 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
      18:38:57.0084 3952 wlidsvc - ok
      18:38:57.0100 3952 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
      18:38:57.0131 3952 WmiAcpi - ok
      18:38:57.0178 3952 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
      18:38:57.0193 3952 wmiApSrv - ok
      18:38:57.0225 3952 WMPNetworkSvc - ok
      18:38:57.0271 3952 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
      18:38:57.0318 3952 WPCSvc - ok
      18:38:57.0334 3952 [ 2E57DDF2880A7E52E76F41C7E96D327B ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
      18:38:57.0412 3952 WPDBusEnum - ok
      18:38:57.0443 3952 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
      18:38:57.0537 3952 ws2ifsl - ok
      18:38:57.0537 3952 WSearch - ok
      18:38:57.0646 3952 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
      18:38:57.0724 3952 wuauserv - ok
      18:38:57.0739 3952 [ 7CADC74271DD6461C452C271B30BD378 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
      18:38:57.0802 3952 WudfPf - ok
      18:38:57.0849 3952 [ 3B197AF0FFF08AA66B6B2241CA538D64 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
      18:38:57.0911 3952 WUDFRd - ok
      18:38:57.0942 3952 [ B551D6637AA0E132C18AC6E504F7B79B ] wudfsvc C:\Windows\System32\WUDFSvc.dll
      18:38:58.0020 3952 wudfsvc - ok
      18:38:58.0051 3952 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
      18:38:58.0098 3952 WwanSvc - ok
      18:38:58.0161 3952 ================ Scan global ===============================
      18:38:58.0176 3952 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
      18:38:58.0223 3952 [ 0CB6EBF4B461A6043353C570BD72A1E1 ] C:\Windows\system32\winsrv.dll
      18:38:58.0239 3952 [ 0CB6EBF4B461A6043353C570BD72A1E1 ] C:\Windows\system32\winsrv.dll
      18:38:58.0270 3952 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
      18:38:58.0317 3952 [ 50BEA589F7D7958BDD2528A8F69D05CC ] C:\Windows\system32\services.exe
      18:38:58.0332 3952 C:\Windows\system32\services.exe ( Virus.Win64.ZAccess.a ) - infected
      18:38:58.0332 3952 C:\Windows\system32\services.exe - detected Virus.Win64.ZAccess.a (0)
      18:38:58.0332 3952 ================ Scan MBR ==================================
      18:38:58.0348 3952 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
      18:38:59.0767 3952 \Device\Harddisk0\DR0 - ok
      18:38:59.0767 3952 ================ Scan VBR ==================================
      18:38:59.0799 3952 [ 6DAB2432665747164543C8FE711BB746 ] \Device\Harddisk0\DR0\Partition1
      18:38:59.0799 3952 \Device\Harddisk0\DR0\Partition1 - ok
      18:38:59.0845 3952 [ 1ACCBF9FA8BF0B0C25DF4B3BD5369285 ] \Device\Harddisk0\DR0\Partition2
      18:38:59.0845 3952 \Device\Harddisk0\DR0\Partition2 - ok
      18:38:59.0845 3952 ============================================================
      18:38:59.0845 3952 Scan finished
      18:38:59.0845 3952 ============================================================
      18:38:59.0861 2016 Detected object count: 3
      18:38:59.0861 2016 Actual detected object count: 3
      18:39:29.0392 2016 StarWindServiceAE ( UnsignedFile.Multi.Generic ) - skipped by user
      18:39:29.0392 2016 StarWindServiceAE ( UnsignedFile.Multi.Generic ) - User select action: Skip
      18:39:29.0392 2016 UnlockerDriver5 ( UnsignedFile.Multi.Generic ) - skipped by user
      18:39:29.0392 2016 UnlockerDriver5 ( UnsignedFile.Multi.Generic ) - User select action: Skip
      18:39:29.0813 2016 C:\Windows\system32\services.exe - copied to quarantine
      18:40:16.0098 2016 Backup copy not found, trying to cure infected file..
      18:40:16.0098 2016 C:\Windows\system32\services.exe - Cure failed (FFFFFFFF)
      18:40:16.0098 2016 C:\Windows\system32\services.exe - processing error
      18:40:16.0098 2016 C:\Windows\system32\services.exe ( Virus.Win64.ZAccess.a ) - User select action: Cure
      18:41:06.0643 4820 Deinitialize success

    4. #4
      Ex-Colaborador Avatar de Gemsa_03
      Registrado
      feb 2012
      Ubicación
      Málaga-España
      Mensajes
      6.615

      Re: No puedo eliminar WIN64ZAccess.a

      Hola!

      No me has realizado los pasos que te he pedido en el post 2 ya que me has adjuntado un reporte del TDSSKiller antiguo.

      Bueno, vamos a hacerlo de otra manera:

      Sigue el procedimiento del post 2 y cuando hayas bajado el zip del TDSSKiller, reinicia en Modo Seguro y ejecuta como "Administrador el TDSSKiller, y luego el Malwarebytes.

      Reinicia en Modo Seguro con Funciones de Red. Ejecuta un anális Online con Antivirus Online Gratis, consigue toda la protección con el Online Scanner de ESET. => http://www.forospyware.com/t133936.html, teniendo en cuenta que antes de iniciar el análisis tienes que tener las casillas seleccionadas tal y como se ven en la imagen Y DESHABILITAR TEMPORALMENTE TU ANTIVIRUS => Cómo deshabilitar temporalmente su Antivirus



      El análisis lo puedes hacer con Internet Explorer o con Mozilla/Chrome, en este último caso tendrás que instalar => IE Tab - Abrir Internet Explorer dentro de Firefox y Chrome.

      Seguimos en Modo Seguro con Funciones de red, Realiza un SCAN COMPLETO con el Panda Active Scan 2.0 => Panda Activescan | Antivirus online Gratis contra virus | Desinfectar Virus Gratis - Panda Security. Para poder hacerlo, necesitará instalarte unas carpetas ligeras en tu equipo, vas diciendo que sí hasta que llegues a la pantalla de Scan. Hazlo de preferencia con el IE si lo haces con el Mozilla tendrás que seguir las instrucciones de este link => IE Tab - Abrir Internet Explorer dentro de Firefox y Chrome Para cualquier duda referente a la ejecución del programa te dejo su Manual de Panda ActiveScan 2.0. Al finalizar el Scan, no olvides GUARDAR REPORTE.

      Nos adjuntas, el nuevo Informe del TDSSKiller que se encontrará en la raiz del Disco Duro
      TDSSKiller.x.xx.x_xx.xx.xxxx_xx.xx.xx_log.txt donde "x.xx.x_xx.xx.xxxx_xx.xx.xx" son versión, fecha y hora.
      el del Malwarebytes de la pestaña Registros, el del ESET Online y el del Panda.

      Saludos.