• Registrarse
  • Iniciar sesión


  • Página 1 de 2 12 ÚltimoÚltimo
    Resultados 1 al 10 de 11

    ya analize con TDSS, que hago ahora?

    Hola que tal soy nuevo y me presento con el siguiente inconveniente, Yo tenia el famoso virus Olmarik TDDSL 4 o algo asi y me volvio loco no sabia que hacer hasta que llege aca ...

    1. #1
      Usuario Avatar de The_rock_cs
      Registrado
      oct 2012
      Ubicación
      Argentina
      Mensajes
      11

      Molesto ya analize con TDSS, que hago ahora?

      Hola que tal soy nuevo y me presento con el siguiente inconveniente,

      Yo tenia el famoso virus Olmarik TDDSL 4 o algo asi y me volvio loco no sabia que hacer hasta que llege aca y en este foro me dijieron que haga 1 analisis Manual de TDSSKiller.

      Hice tal cual esta en ese tema Manual de TDSSKiller. y me surgieron los siguientes archivos sospechosos

      Subefotos.com - Comparte rapidamente tus fotos

      Subefotos.com - Comparte rapidamente tus fotos



      Esos 2 link son los screen shot que saque para que me digan que hacer en cuanto a si poner skip, cure o eliminar!
      que virus tengo? ya se ha borrado?¿



      y la otra pregunta que tengo es si el virus : Olmarik.TDL4 verdaderamente esta eliminado? ya que el NOD32 no me aparece mas el mensaje que decia "Wind32/Olmarik.TDL4 Imposible su desinfeccion" Les quiero comentar tambien que me bugeo todo windows 7 hizo que mis carpetas sean todas ocultas tube que configurar el menu de inicio porque carpetas como "Mi equipo" "mis documentos",(las borro de ahi y las tuve que poner devuelta) el escritorio se puso en negro y no aparecian los accesos directo rapidamente me di cuenta que el virus puso todo como oculto y recien ahi pude volver a ver todo lo que tenia, las borro de ahi y las tuve que poner devuelta

      Desde ya muchas gracias espero respuestas! Saludos
      Última edición por The_rock_cs fecha: 26/12/12 a las 00:13:49

    2. #2
      Usuario Avatar de M4RTYN
      Registrado
      jun 2012
      Ubicación
      Ecuador
      Mensajes
      5.520

      Re: ya analize con TDSS, que hago ahora?

      Hola!

      lo de las carpetas esta en orden?

      porfavor dale a TODO SKIP y traes su reporte (localizado en : C:\TDSSKiller.x.xx.x_xx.xx.xxxx_xx.xx.xx_log.txt, donde "x.xx.x_xx.xx.xxxx_xx.xx.xx" son versión, fecha y hora. )

      con ese reporte te indicare que eliminar y que no

      ahora si el NOD32 no te avisa pues debe haberse ido igual comprobaremos si deseas

    3. #3
      Usuario Avatar de The_rock_cs
      Registrado
      oct 2012
      Ubicación
      Argentina
      Mensajes
      11

      Re: ya analize con TDSS, que hago ahora?

      00:56:20.0420 2372 TDSS rootkit removing tool 2.8.10.0 Sep 17 2012 19:23:24
      00:56:34.0167 2372 ============================================================
      00:56:34.0167 2372 Current date / time: 2012/12/26 00:56:34.0167
      00:56:34.0167 2372 SystemInfo:
      00:56:34.0167 2372
      00:56:34.0167 2372 OS Version: 6.1.7601 ServicePack: 1.0
      00:56:34.0167 2372 Product type: Workstation
      00:56:34.0167 2372 ComputerName: NAZA-PC
      00:56:34.0167 2372 UserName: Naza
      00:56:34.0167 2372 Windows directory: C:\Windows
      00:56:34.0167 2372 System windows directory: C:\Windows
      00:56:34.0167 2372 Running under WOW64
      00:56:34.0167 2372 Processor architecture: Intel x64
      00:56:34.0167 2372 Number of processors: 4
      00:56:34.0167 2372 Page size: 0x1000
      00:56:34.0167 2372 Boot type: Normal boot
      00:56:34.0167 2372 ============================================================
      00:56:36.0370 2372 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xFC59, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000040
      00:56:36.0379 2372 ============================================================
      00:56:36.0379 2372 \Device\Harddisk0\DR0:
      00:56:36.0379 2372 MBR partitions:
      00:56:36.0379 2372 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
      00:56:36.0379 2372 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x3A34C030
      00:56:36.0379 2372 ============================================================
      00:56:36.0407 2372 C: <-> \Device\Harddisk0\DR0\Partition2
      00:56:36.0407 2372 ============================================================
      00:56:36.0407 2372 Initialize success
      00:56:36.0407 2372 ============================================================
      00:56:41.0933 3368 ============================================================
      00:56:41.0933 3368 Scan started
      00:56:41.0933 3368 Mode: Manual;
      00:56:41.0933 3368 ============================================================
      00:56:44.0236 3368 ================ Scan system memory ========================
      00:56:44.0236 3368 System memory - ok
      00:56:44.0236 3368 ================ Scan services =============================
      00:56:44.0385 3368 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
      00:56:44.0443 3368 1394ohci - ok
      00:56:44.0486 3368 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
      00:56:44.0489 3368 ACPI - ok
      00:56:44.0532 3368 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
      00:56:44.0556 3368 AcpiPmi - ok
      00:56:44.0656 3368 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
      00:56:44.0658 3368 AdobeARMservice - ok
      00:56:44.0774 3368 [ 95CE557D16A75606CCC2D7F3B0B0BCCB ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
      00:56:44.0778 3368 AdobeFlashPlayerUpdateSvc - ok
      00:56:44.0818 3368 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
      00:56:44.0867 3368 adp94xx - ok
      00:56:44.0891 3368 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
      00:56:44.0916 3368 adpahci - ok
      00:56:44.0933 3368 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
      00:56:44.0938 3368 adpu320 - ok
      00:56:44.0960 3368 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
      00:56:44.0961 3368 AeLookupSvc - ok
      00:56:45.0014 3368 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
      00:56:45.0055 3368 AFD - ok
      00:56:45.0106 3368 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
      00:56:45.0143 3368 agp440 - ok
      00:56:45.0153 3368 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
      00:56:45.0156 3368 ALG - ok
      00:56:45.0162 3368 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
      00:56:45.0176 3368 aliide - ok
      00:56:45.0184 3368 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
      00:56:45.0195 3368 amdide - ok
      00:56:45.0204 3368 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
      00:56:45.0216 3368 AmdK8 - ok
      00:56:45.0225 3368 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
      00:56:45.0237 3368 AmdPPM - ok
      00:56:45.0286 3368 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
      00:56:45.0334 3368 amdsata - ok
      00:56:45.0418 3368 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
      00:56:45.0452 3368 amdsbs - ok
      00:56:45.0467 3368 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
      00:56:45.0467 3368 amdxata - ok
      00:56:45.0480 3368 ANIWConnService - ok
      00:56:45.0522 3368 [ AA3D68F26B2A27F660AFC46039B061A4 ] ANIWZCSdService C:\Program Files (x86)\ANI\ANIWZCS2 Service\ANIWZCSdS.exe
      00:56:45.0526 3368 ANIWZCSdService - ok
      00:56:45.0553 3368 [ 4CCF421E6C4B2A4CBCE000715911F7CC ] anodlwf C:\Windows\system32\DRIVERS\anodlwfx.sys
      00:56:45.0556 3368 anodlwf - ok
      00:56:45.0611 3368 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
      00:56:45.0637 3368 AppID - ok
      00:56:45.0649 3368 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
      00:56:45.0652 3368 AppIDSvc - ok
      00:56:45.0694 3368 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
      00:56:45.0698 3368 Appinfo - ok
      00:56:45.0757 3368 [ 20F6F19FE9E753F2780DC2FA083AD597 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
      00:56:45.0759 3368 Apple Mobile Device - ok
      00:56:45.0801 3368 [ 301AA64F9643BC453D90A66C4C0E7204 ] AppleCharger C:\Windows\system32\DRIVERS\AppleCharger.sys
      00:56:45.0805 3368 AppleCharger - ok
      00:56:45.0822 3368 [ 95EF7247C50C7241FDAE39A9B3AFF4AE ] AppleChargerSrv C:\Windows\system32\AppleChargerSrv.exe
      00:56:45.0826 3368 AppleChargerSrv - ok
      00:56:45.0855 3368 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll
      00:56:45.0861 3368 AppMgmt - ok
      00:56:45.0898 3368 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
      00:56:45.0922 3368 arc - ok
      00:56:45.0937 3368 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
      00:56:45.0941 3368 arcsas - ok
      00:56:45.0973 3368 ASAPIW2k - ok
      00:56:46.0016 3368 aspnet_state - ok
      00:56:46.0052 3368 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
      00:56:46.0080 3368 AsyncMac - ok
      00:56:46.0128 3368 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
      00:56:46.0129 3368 atapi - ok
      00:56:46.0181 3368 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
      00:56:46.0199 3368 AudioEndpointBuilder - ok
      00:56:46.0220 3368 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
      00:56:46.0224 3368 AudioSrv - ok
      00:56:46.0273 3368 [ 6FDDD18A650764A59302A018765E5521 ] AVP C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\avp.exe
      00:56:46.0276 3368 AVP - ok
      00:56:46.0341 3368 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
      00:56:46.0345 3368 AxInstSV - ok
      00:56:46.0389 3368 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
      00:56:46.0400 3368 b06bdrv - ok
      00:56:46.0436 3368 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
      00:56:46.0470 3368 b57nd60a - ok
      00:56:46.0504 3368 [ 382B151DAFFE4A9CE9DA9F564B66761E ] BCUService C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exe
      00:56:46.0507 3368 BCUService - ok
      00:56:46.0535 3368 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
      00:56:46.0539 3368 BDESVC - ok
      00:56:46.0552 3368 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
      00:56:46.0554 3368 Beep - ok
      00:56:46.0622 3368 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
      00:56:46.0638 3368 BFE - ok
      00:56:46.0697 3368 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
      00:56:46.0764 3368 BITS - ok
      00:56:46.0784 3368 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
      00:56:46.0807 3368 blbdrive - ok
      00:56:46.0863 3368 [ 1C87705CCB2F60172B0FC86B5D82F00D ] Bonjour Service C:\Program Files (x86)\Bonjour\mDNSResponder.exe
      00:56:46.0870 3368 Bonjour Service - ok
      00:56:46.0924 3368 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
      00:56:46.0967 3368 bowser - ok
      00:56:47.0014 3368 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
      00:56:47.0017 3368 BrFiltLo - ok
      00:56:47.0026 3368 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
      00:56:47.0029 3368 BrFiltUp - ok
      00:56:47.0094 3368 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
      00:56:47.0105 3368 Browser - ok
      00:56:47.0138 3368 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
      00:56:47.0179 3368 Brserid - ok
      00:56:47.0196 3368 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
      00:56:47.0210 3368 BrSerWdm - ok
      00:56:47.0222 3368 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
      00:56:47.0236 3368 BrUsbMdm - ok
      00:56:47.0247 3368 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
      00:56:47.0249 3368 BrUsbSer - ok
      00:56:47.0268 3368 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
      00:56:47.0282 3368 BTHMODEM - ok
      00:56:47.0310 3368 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
      00:56:47.0314 3368 bthserv - ok
      00:56:47.0323 3368 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
      00:56:47.0326 3368 cdfs - ok
      00:56:47.0403 3368 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
      00:56:47.0434 3368 cdrom - ok
      00:56:47.0501 3368 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
      00:56:47.0505 3368 CertPropSvc - ok
      00:56:47.0525 3368 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
      00:56:47.0557 3368 circlass - ok
      00:56:47.0589 3368 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
      00:56:47.0630 3368 CLFS - ok
      00:56:47.0651 3368 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
      00:56:47.0666 3368 clr_optimization_v2.0.50727_32 - ok
      00:56:47.0707 3368 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
      00:56:47.0712 3368 clr_optimization_v2.0.50727_64 - ok
      00:56:47.0881 3368 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
      00:56:47.0907 3368 clr_optimization_v4.0.30319_32 - ok
      00:56:47.0957 3368 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
      00:56:47.0960 3368 clr_optimization_v4.0.30319_64 - ok
      00:56:47.0985 3368 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
      00:56:48.0005 3368 CmBatt - ok
      00:56:48.0050 3368 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
      00:56:48.0088 3368 cmdide - ok
      00:56:48.0161 3368 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
      00:56:48.0193 3368 CNG - ok
      00:56:48.0226 3368 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
      00:56:48.0241 3368 Compbatt - ok
      00:56:48.0291 3368 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
      00:56:48.0293 3368 CompositeBus - ok
      00:56:48.0301 3368 COMSysApp - ok
      00:56:48.0311 3368 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
      00:56:48.0314 3368 crcdisk - ok
      00:56:48.0360 3368 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
      00:56:48.0365 3368 CryptSvc - ok
      00:56:48.0420 3368 [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC C:\Windows\system32\drivers\csc.sys
      00:56:48.0436 3368 CSC - ok
      00:56:48.0489 3368 [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService C:\Windows\System32\cscsvc.dll
      00:56:48.0505 3368 CscService - ok
      00:56:48.0521 3368 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
      00:56:48.0528 3368 DcomLaunch - ok
      00:56:48.0548 3368 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
      00:56:48.0551 3368 defragsvc - ok
      00:56:48.0598 3368 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
      00:56:48.0603 3368 DfsC - ok
      00:56:48.0632 3368 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
      00:56:48.0639 3368 Dhcp - ok
      00:56:48.0662 3368 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
      00:56:48.0697 3368 discache - ok
      00:56:48.0721 3368 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
      00:56:48.0733 3368 Disk - ok
      00:56:48.0777 3368 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
      00:56:48.0782 3368 Dnscache - ok
      00:56:48.0828 3368 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
      00:56:48.0835 3368 dot3svc - ok
      00:56:48.0883 3368 [ B42ED0320C6E41102FDE0005154849BB ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
      00:56:48.0916 3368 Dot4 - ok
      00:56:48.0960 3368 [ E9F5969233C5D89F3C35E3A66A52A361 ] Dot4Print C:\Windows\system32\DRIVERS\Dot4Prt.sys
      00:56:48.0984 3368 Dot4Print - ok
      00:56:49.0012 3368 [ FD05A02B0370BC3000F402E543CA5814 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
      00:56:49.0013 3368 dot4usb - ok
      00:56:49.0061 3368 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
      00:56:49.0064 3368 DPS - ok
      00:56:49.0101 3368 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
      00:56:49.0124 3368 drmkaud - ok
      00:56:49.0182 3368 [ 8462304CBD54857A5943BDA8A6EDE5ED ] DSDrv4 C:\PROGRA~2\DScaler\DSDrv4.sys
      00:56:49.0207 3368 DSDrv4 - ok
      00:56:49.0254 3368 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
      00:56:49.0272 3368 DXGKrnl - ok
      00:56:49.0305 3368 [ ACA3FE4F18A945B7BF2618A79F6F670B ] eamonm C:\Windows\system32\DRIVERS\eamonm.sys
      00:56:49.0330 3368 eamonm - ok
      00:56:49.0348 3368 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
      00:56:49.0351 3368 EapHost - ok
      00:56:49.0419 3368 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
      00:56:49.0498 3368 ebdrv - ok
      00:56:49.0536 3368 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
      00:56:49.0541 3368 EFS - ok
      00:56:49.0586 3368 [ 6672438BDCBFD87250D22112D458294D ] ehdrv C:\Windows\system32\DRIVERS\ehdrv.sys
      00:56:49.0636 3368 ehdrv - ok
      00:56:49.0707 3368 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
      00:56:49.0725 3368 ehRecvr - ok
      00:56:49.0745 3368 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
      00:56:49.0749 3368 ehSched - ok
      00:56:49.0814 3368 [ DEB2B067745D92FF17A5068DFD2360BC ] EhttpSrv C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
      00:56:49.0816 3368 EhttpSrv - ok
      00:56:49.0877 3368 [ 191D8ECCC40F05B52FAC0513F35BA01D ] ekrn C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
      00:56:49.0892 3368 ekrn - ok
      00:56:49.0948 3368 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
      00:56:49.0959 3368 elxstor - ok
      00:56:49.0993 3368 [ 954FADE8E59F159B0A71D0CFCC99A76E ] epfwwfpr C:\Windows\system32\DRIVERS\epfwwfpr.sys
      00:56:50.0016 3368 epfwwfpr - ok
      00:56:50.0056 3368 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
      00:56:50.0070 3368 ErrDev - ok
      00:56:50.0102 3368 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
      00:56:50.0106 3368 EventSystem - ok
      00:56:50.0127 3368 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
      00:56:50.0161 3368 exfat - ok
      00:56:50.0178 3368 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
      00:56:50.0203 3368 fastfat - ok
      00:56:50.0265 3368 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
      00:56:50.0282 3368 Fax - ok
      00:56:50.0301 3368 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
      00:56:50.0330 3368 fdc - ok
      00:56:50.0348 3368 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
      00:56:50.0350 3368 fdPHost - ok
      00:56:50.0363 3368 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
      00:56:50.0366 3368 FDResPub - ok
      00:56:50.0397 3368 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
      00:56:50.0397 3368 FileInfo - ok
      00:56:50.0401 3368 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
      00:56:50.0415 3368 Filetrace - ok
      00:56:50.0418 3368 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
      00:56:50.0420 3368 flpydisk - ok
      00:56:50.0462 3368 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
      00:56:50.0496 3368 FltMgr - ok
      00:56:50.0554 3368 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
      00:56:50.0588 3368 FontCache - ok
      00:56:50.0657 3368 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
      00:56:50.0662 3368 FontCache3.0.0.0 - ok
      00:56:50.0690 3368 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
      00:56:50.0715 3368 FsDepends - ok
      00:56:50.0762 3368 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
      00:56:50.0791 3368 Fs_Rec - ok
      00:56:50.0853 3368 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
      00:56:50.0902 3368 fvevol - ok
      00:56:50.0927 3368 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
      00:56:50.0963 3368 gagp30kx - ok
      00:56:50.0975 3368 [ 7907E14F9BCF3A4689C9A74A1A873CB6 ] gdrv C:\Windows\gdrv.sys
      00:56:50.0989 3368 gdrv - ok
      00:56:51.0029 3368 [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
      00:56:51.0031 3368 GEARAspiWDM - ok
      00:56:51.0085 3368 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
      00:56:51.0102 3368 gpsvc - ok
      00:56:51.0144 3368 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
      00:56:51.0151 3368 gupdate - ok
      00:56:51.0177 3368 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
      00:56:51.0179 3368 gupdatem - ok
      00:56:51.0200 3368 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
      00:56:51.0208 3368 gusvc - ok
      00:56:51.0242 3368 [ 8126331FBD4ED29EB3B356F9C905064D ] GVTDrv64 C:\Windows\GVTDrv64.sys
      00:56:51.0270 3368 GVTDrv64 - ok
      00:56:51.0312 3368 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
      00:56:51.0314 3368 hcw85cir - ok
      00:56:51.0373 3368 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
      00:56:51.0382 3368 HdAudAddService - ok
      00:56:51.0399 3368 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
      00:56:51.0402 3368 HDAudBus - ok
      00:56:51.0443 3368 [ B6AC71AAA2B10848F57FC49D55A651AF ] HECIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
      00:56:51.0448 3368 HECIx64 - ok
      00:56:51.0452 3368 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
      00:56:51.0489 3368 HidBatt - ok
      00:56:51.0500 3368 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
      00:56:51.0521 3368 HidBth - ok
      00:56:51.0548 3368 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
      00:56:51.0575 3368 HidIr - ok
      00:56:51.0591 3368 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
      00:56:51.0594 3368 hidserv - ok
      00:56:51.0637 3368 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
      00:56:51.0664 3368 HidUsb - ok
      00:56:51.0712 3368 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
      00:56:51.0716 3368 hkmsvc - ok
      00:56:51.0776 3368 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
      00:56:51.0783 3368 HomeGroupListener - ok
      00:56:51.0830 3368 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
      00:56:51.0836 3368 HomeGroupProvider - ok
      00:56:51.0905 3368 [ 1DAE5C46D42B02A6D5862E1482EFB390 ] hpqcxs08 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
      00:56:51.0914 3368 hpqcxs08 - ok
      00:56:51.0931 3368 [ 99E8EEF42FE2F4AF29B08C3355DD7685 ] hpqddsvc C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
      00:56:51.0936 3368 hpqddsvc - ok
      00:56:51.0997 3368 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
      00:56:52.0001 3368 HpSAMD - ok
      00:56:52.0061 3368 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
      00:56:52.0095 3368 HTTP - ok
      00:56:52.0143 3368 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
      00:56:52.0171 3368 hwpolicy - ok
      00:56:52.0223 3368 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
      00:56:52.0236 3368 i8042prt - ok
      00:56:52.0285 3368 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
      00:56:52.0310 3368 iaStorV - ok
      00:56:52.0367 3368 [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
      00:56:52.0371 3368 IDriverT - ok
      00:56:52.0431 3368 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
      00:56:52.0480 3368 idsvc - ok
      00:56:53.0051 3368 [ F4F91789C7C7A159CE8215C1F69F2A85 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
      00:56:53.0237 3368 igfx - ok
      00:56:53.0275 3368 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
      00:56:53.0299 3368 iirsp - ok
      00:56:53.0342 3368 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
      00:56:53.0360 3368 IKEEXT - ok
      00:56:53.0436 3368 [ 163F94EBF8F8A98616A6B804AF08D736 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
      00:56:53.0488 3368 IntcAzAudAddService - ok
      00:56:53.0500 3368 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
      00:56:53.0502 3368 intelide - ok
      00:56:53.0523 3368 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
      00:56:53.0535 3368 intelppm - ok
      00:56:53.0570 3368 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
      00:56:53.0580 3368 IPBusEnum - ok
      00:56:53.0620 3368 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
      00:56:53.0625 3368 IpFilterDriver - ok
      00:56:53.0695 3368 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
      00:56:53.0707 3368 iphlpsvc - ok
      00:56:53.0743 3368 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
      00:56:53.0757 3368 IPMIDRV - ok
      00:56:53.0770 3368 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
      00:56:53.0791 3368 IPNAT - ok
      00:56:53.0841 3368 [ FDF57F795098AB29AF780824315C9859 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
      00:56:53.0850 3368 iPod Service - ok
      00:56:53.0870 3368 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
      00:56:53.0873 3368 IRENUM - ok
      00:56:53.0926 3368 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
      00:56:53.0957 3368 isapnp - ok
      00:56:54.0021 3368 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
      00:56:54.0067 3368 iScsiPrt - ok
      00:56:54.0096 3368 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
      00:56:54.0100 3368 kbdclass - ok
      00:56:54.0150 3368 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
      00:56:54.0170 3368 kbdhid - ok
      00:56:54.0203 3368 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
      00:56:54.0205 3368 KeyIso - ok
      00:56:54.0293 3368 [ 549F9D454E9E6697B108F16C569B505A ] KL1 C:\Windows\system32\DRIVERS\kl1.sys
      00:56:54.0313 3368 KL1 - ok
      00:56:54.0346 3368 [ 08DF1B7A82837B92096EC7597C00889A ] KLIF C:\Windows\system32\DRIVERS\klif.sys
      00:56:54.0371 3368 KLIF - ok
      00:56:54.0412 3368 [ A7DFA9A2554143667E830E8ABE452D70 ] KLIM6 C:\Windows\system32\DRIVERS\klim6.sys
      00:56:54.0451 3368 KLIM6 - ok
      00:56:54.0490 3368 [ E6FAA395058F7BAF0F3529CDBA9B7133 ] klkbdflt C:\Windows\system32\DRIVERS\klkbdflt.sys
      00:56:54.0501 3368 klkbdflt - ok
      00:56:54.0511 3368 [ D398DABD44FDDDBED305442BB7BCDB29 ] klmouflt C:\Windows\system32\DRIVERS\klmouflt.sys
      00:56:54.0516 3368 klmouflt - ok
      00:56:54.0526 3368 [ B9B2AEEE5E17B2CEBC034FF2748577A0 ] kltdi C:\Windows\system32\DRIVERS\kltdi.sys
      00:56:54.0553 3368 kltdi - ok
      00:56:54.0574 3368 [ 8E880E08D7453DB58DAC36C2C48FFD45 ] kneps C:\Windows\system32\DRIVERS\kneps.sys
      00:56:54.0576 3368 kneps - ok
      00:56:54.0623 3368 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
      00:56:54.0625 3368 KSecDD - ok
      00:56:54.0694 3368 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
      00:56:54.0699 3368 KSecPkg - ok
      00:56:54.0732 3368 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
      00:56:54.0759 3368 ksthunk - ok
      00:56:54.0861 3368 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
      00:56:54.0880 3368 KtmRm - ok
      00:56:54.0956 3368 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
      00:56:54.0965 3368 LanmanServer - ok
      00:56:55.0018 3368 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
      00:56:55.0024 3368 LanmanWorkstation - ok
      00:56:55.0051 3368 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
      00:56:55.0076 3368 lltdio - ok
      00:56:55.0101 3368 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
      00:56:55.0116 3368 lltdsvc - ok
      00:56:55.0135 3368 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
      00:56:55.0141 3368 lmhosts - ok
      00:56:55.0259 3368 [ E38775922D4A4C05B5D96733AB4CE169 ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
      00:56:55.0264 3368 LMS - ok

    4. #4
      Usuario Avatar de The_rock_cs
      Registrado
      oct 2012
      Ubicación
      Argentina
      Mensajes
      11

      Re: ya analize con TDSS, que hago ahora?

      00:56:55.0293 3368 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
      00:56:55.0311 3368 LSI_FC - ok
      00:56:55.0328 3368 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
      00:56:55.0340 3368 LSI_SAS - ok
      00:56:55.0348 3368 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
      00:56:55.0361 3368 LSI_SAS2 - ok
      00:56:55.0372 3368 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
      00:56:55.0385 3368 LSI_SCSI - ok
      00:56:55.0407 3368 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
      00:56:55.0410 3368 luafv - ok
      00:56:55.0460 3368 [ F453D1E6D881E8F8717E20CCD4199E85 ] McComponentHostService C:\Program Files (x86)\McAfee Security Scan\2.0.181\McCHSvc.exe
      00:56:55.0464 3368 McComponentHostService - ok
      00:56:55.0500 3368 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
      00:56:55.0513 3368 Mcx2Svc - ok
      00:56:55.0529 3368 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
      00:56:55.0551 3368 megasas - ok
      00:56:55.0563 3368 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
      00:56:55.0567 3368 MegaSR - ok
      00:56:55.0728 3368 [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
      00:56:55.0734 3368 Microsoft Office Groove Audit Service - ok
      00:56:55.0765 3368 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
      00:56:55.0768 3368 MMCSS - ok
      00:56:55.0817 3368 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
      00:56:55.0838 3368 Modem - ok
      00:56:55.0969 3368 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
      00:56:55.0993 3368 monitor - ok
      00:56:56.0065 3368 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\drivers\mouclass.sys
      00:56:56.0088 3368 mouclass - ok
      00:56:56.0115 3368 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
      00:56:56.0118 3368 mouhid - ok
      00:56:56.0168 3368 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
      00:56:56.0170 3368 mountmgr - ok
      00:56:56.0224 3368 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
      00:56:56.0237 3368 mpio - ok
      00:56:56.0255 3368 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
      00:56:56.0270 3368 mpsdrv - ok
      00:56:56.0416 3368 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
      00:56:56.0440 3368 MpsSvc - ok
      00:56:56.0492 3368 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
      00:56:56.0497 3368 MRxDAV - ok
      00:56:56.0558 3368 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
      00:56:56.0562 3368 mrxsmb - ok
      00:56:56.0610 3368 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
      00:56:56.0615 3368 mrxsmb10 - ok
      00:56:56.0660 3368 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
      00:56:56.0686 3368 mrxsmb20 - ok
      00:56:56.0736 3368 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
      00:56:56.0763 3368 msahci - ok
      00:56:56.0782 3368 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
      00:56:56.0799 3368 msdsm - ok
      00:56:56.0811 3368 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
      00:56:56.0815 3368 MSDTC - ok
      00:56:56.0842 3368 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
      00:56:56.0844 3368 Msfs - ok
      00:56:56.0861 3368 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
      00:56:56.0864 3368 mshidkmdf - ok
      00:56:56.0879 3368 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
      00:56:56.0879 3368 msisadrv - ok
      00:56:56.0907 3368 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
      00:56:56.0912 3368 MSiSCSI - ok
      00:56:56.0916 3368 msiserver - ok
      00:56:56.0934 3368 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
      00:56:56.0937 3368 MSKSSRV - ok
      00:56:56.0949 3368 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
      00:56:56.0951 3368 MSPCLOCK - ok
      00:56:56.0955 3368 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
      00:56:56.0971 3368 MSPQM - ok
      00:56:57.0027 3368 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
      00:56:57.0034 3368 MsRPC - ok
      00:56:57.0080 3368 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
      00:56:57.0083 3368 mssmbios - ok
      00:56:57.0088 3368 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
      00:56:57.0091 3368 MSTEE - ok
      00:56:57.0108 3368 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
      00:56:57.0111 3368 MTConfig - ok
      00:56:57.0131 3368 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
      00:56:57.0154 3368 Mup - ok
      00:56:57.0232 3368 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
      00:56:57.0251 3368 napagent - ok
      00:56:57.0284 3368 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
      00:56:57.0350 3368 NativeWifiP - ok
      00:56:57.0384 3368 [ 79B47FD40D9A817E932F9D26FAC0A81C ] NDIS C:\Windows\system32\drivers\ndis.sys
      00:56:57.0423 3368 NDIS - ok
      00:56:57.0452 3368 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
      00:56:57.0474 3368 NdisCap - ok
      00:56:57.0498 3368 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
      00:56:57.0501 3368 NdisTapi - ok
      00:56:57.0562 3368 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
      00:56:57.0567 3368 Ndisuio - ok
      00:56:57.0611 3368 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
      00:56:57.0644 3368 NdisWan - ok
      00:56:57.0690 3368 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
      00:56:57.0733 3368 NDProxy - ok
      00:56:57.0890 3368 [ 40D7D0A208EE863BCA8D89E299216F15 ] Nero BackItUp Scheduler 3 C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBService.exe
      00:56:57.0915 3368 Nero BackItUp Scheduler 3 - ok
      00:56:57.0942 3368 [ D5AC41AE382738483FAFFBD7E373D49A ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
      00:56:57.0946 3368 Net Driver HPZ12 - ok
      00:56:57.0991 3368 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
      00:56:57.0993 3368 NetBIOS - ok
      00:56:58.0044 3368 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
      00:56:58.0086 3368 NetBT - ok
      00:56:58.0103 3368 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
      00:56:58.0105 3368 Netlogon - ok
      00:56:58.0144 3368 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
      00:56:58.0153 3368 Netman - ok
      00:56:58.0175 3368 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
      00:56:58.0186 3368 netprofm - ok
      00:56:58.0234 3368 [ A59F1436CE2D7E9B0FFAB90E629DA0BE ] netr28ux C:\Windows\system32\DRIVERS\netr28ux.sys
      00:56:58.0283 3368 netr28ux - ok
      00:56:58.0300 3368 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
      00:56:58.0303 3368 NetTcpPortSharing - ok
      00:56:58.0336 3368 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
      00:56:58.0360 3368 nfrd960 - ok
      00:56:58.0417 3368 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
      00:56:58.0426 3368 NlaSvc - ok
      00:56:58.0526 3368 [ EBA1B4BF2E2375ABDADEDB649F283541 ] NMIndexingService C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe
      00:56:58.0535 3368 NMIndexingService - ok
      00:56:58.0551 3368 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
      00:56:58.0578 3368 Npfs - ok
      00:56:58.0589 3368 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
      00:56:58.0594 3368 nsi - ok
      00:56:58.0605 3368 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
      00:56:58.0619 3368 nsiproxy - ok
      00:56:58.0685 3368 [ A2F74975097F52A00745F9637451FDD8 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
      00:56:58.0727 3368 Ntfs - ok
      00:56:58.0740 3368 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
      00:56:58.0754 3368 Null - ok
      00:56:58.0772 3368 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
      00:56:58.0785 3368 nvraid - ok
      00:56:58.0858 3368 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
      00:56:58.0862 3368 nvstor - ok
      00:56:58.0987 3368 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
      00:56:59.0067 3368 nv_agp - ok
      00:56:59.0163 3368 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
      00:56:59.0169 3368 odserv - ok
      00:56:59.0213 3368 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
      00:56:59.0238 3368 ohci1394 - ok
      00:56:59.0270 3368 [ D2C9339E67D851B51D766802AECC02F5 ] OlmarikFixer C:\Windows\system32\drivers\OlmarikFixer.sys
      00:56:59.0294 3368 OlmarikFixer - ok
      00:56:59.0339 3368 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
      00:56:59.0345 3368 ose - ok
      00:56:59.0412 3368 [ 40830794D55301D71010FCD382C26D5B ] ose64 C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
      00:56:59.0418 3368 ose64 - ok
      00:56:59.0456 3368 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
      00:56:59.0465 3368 p2pimsvc - ok
      00:56:59.0494 3368 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
      00:56:59.0504 3368 p2psvc - ok
      00:56:59.0531 3368 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
      00:56:59.0533 3368 Parport - ok
      00:56:59.0580 3368 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
      00:56:59.0603 3368 partmgr - ok
      00:56:59.0616 3368 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
      00:56:59.0621 3368 PcaSvc - ok
      00:56:59.0665 3368 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
      00:56:59.0667 3368 pci - ok
      00:56:59.0674 3368 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
      00:56:59.0675 3368 pciide - ok
      00:56:59.0693 3368 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
      00:56:59.0718 3368 pcmcia - ok
      00:56:59.0729 3368 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
      00:56:59.0730 3368 pcw - ok
      00:56:59.0750 3368 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
      00:56:59.0784 3368 PEAUTH - ok
      00:56:59.0822 3368 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
      00:56:59.0854 3368 PeerDistSvc - ok
      00:56:59.0932 3368 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
      00:56:59.0987 3368 PerfHost - ok
      00:57:00.0068 3368 [ 1E81496AFF9D7FA2B4C4032B746DE5B9 ] Ph3xIB64 C:\Windows\system32\DRIVERS\Ph3xIB64.sys
      00:57:00.0163 3368 Ph3xIB64 - ok
      00:57:00.0322 3368 [ 478D9A1E760F9089DE19925616689F0D ] PinnacleSys.MediaServer C:\Program Files (x86)\Pinnacle\Shared Files\Programs\MediaServer\PMSHost.exe
      00:57:00.0331 3368 PinnacleSys.MediaServer - ok
      00:57:00.0394 3368 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
      00:57:00.0438 3368 pla - ok
      00:57:00.0484 3368 [ 875E4E0661F3A5994DF9E5E3A0A4F96B ] PLFlash DeviceIoControl Service C:\Windows\SysWOW64\IoctlSvc.exe
      00:57:00.0489 3368 PLFlash DeviceIoControl Service - ok
      00:57:00.0586 3368 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
      00:57:00.0601 3368 PlugPlay - ok
      00:57:00.0617 3368 [ 37F6046CDC630442D7DC087501FF6FC6 ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
      00:57:00.0621 3368 Pml Driver HPZ12 - ok
      00:57:00.0648 3368 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
      00:57:00.0653 3368 PNRPAutoReg - ok
      00:57:00.0673 3368 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
      00:57:00.0678 3368 PNRPsvc - ok
      00:57:00.0699 3368 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
      00:57:00.0708 3368 PolicyAgent - ok
      00:57:00.0742 3368 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
      00:57:00.0748 3368 Power - ok
      00:57:00.0801 3368 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
      00:57:00.0857 3368 PptpMiniport - ok
      00:57:00.0873 3368 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
      00:57:00.0885 3368 Processor - ok
      00:57:00.0901 3368 [ 5C78838B4D166D1A27DB3A8A820C799A ] ProfSvc C:\Windows\system32\profsvc.dll
      00:57:00.0906 3368 ProfSvc - ok
      00:57:00.0912 3368 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
      00:57:00.0913 3368 ProtectedStorage - ok
      00:57:00.0974 3368 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
      00:57:01.0000 3368 Psched - ok
      00:57:01.0045 3368 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
      00:57:01.0109 3368 ql2300 - ok
      00:57:01.0125 3368 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
      00:57:01.0130 3368 ql40xx - ok
      00:57:01.0151 3368 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
      00:57:01.0159 3368 QWAVE - ok
      00:57:01.0175 3368 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
      00:57:01.0199 3368 QWAVEdrv - ok
      00:57:01.0212 3368 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
      00:57:01.0224 3368 RasAcd - ok
      00:57:01.0243 3368 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
      00:57:01.0246 3368 RasAgileVpn - ok
      00:57:01.0250 3368 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
      00:57:01.0253 3368 RasAuto - ok
      00:57:01.0303 3368 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
      00:57:01.0356 3368 Rasl2tp - ok
      00:57:01.0538 3368 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
      00:57:01.0549 3368 RasMan - ok
      00:57:01.0568 3368 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
      00:57:01.0573 3368 RasPppoe - ok
      00:57:01.0586 3368 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
      00:57:01.0611 3368 RasSstp - ok
      00:57:01.0684 3368 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
      00:57:01.0702 3368 rdbss - ok
      00:57:01.0720 3368 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
      00:57:01.0758 3368 rdpbus - ok
      00:57:01.0784 3368 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
      00:57:01.0787 3368 RDPCDD - ok
      00:57:01.0851 3368 [ 1B6163C503398B23FF8B939C67747683 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
      00:57:01.0885 3368 RDPDR - ok
      00:57:01.0898 3368 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
      00:57:01.0900 3368 RDPENCDD - ok
      00:57:01.0905 3368 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
      00:57:01.0907 3368 RDPREFMP - ok
      00:57:01.0963 3368 [ 70CBA1A0C98600A2AA1863479B35CB90 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
      00:57:01.0991 3368 RdpVideoMiniport - ok
      00:57:02.0062 3368 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
      00:57:02.0102 3368 RDPWD - ok
      00:57:02.0157 3368 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
      00:57:02.0170 3368 rdyboost - ok
      00:57:02.0186 3368 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
      00:57:02.0191 3368 RemoteAccess - ok
      00:57:02.0214 3368 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
      00:57:02.0221 3368 RemoteRegistry - ok
      00:57:02.0240 3368 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
      00:57:02.0245 3368 RpcEptMapper - ok
      00:57:02.0272 3368 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
      00:57:02.0290 3368 RpcLocator - ok
      00:57:02.0331 3368 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
      00:57:02.0339 3368 RpcSs - ok
      00:57:02.0366 3368 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
      00:57:02.0408 3368 rspndr - ok
      00:57:02.0449 3368 [ 7EA8D2EB9BBFD2AB8A3117A1E96D3B3A ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
      00:57:02.0474 3368 RTL8167 - ok
      00:57:02.0513 3368 [ E60C0A09F997826C7627B244195AB581 ] s3cap C:\Windows\system32\drivers\vms3cap.sys
      00:57:02.0528 3368 s3cap - ok
      00:57:02.0545 3368 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
      00:57:02.0547 3368 SamSs - ok
      00:57:02.0592 3368 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
      00:57:02.0625 3368 sbp2port - ok
      00:57:02.0647 3368 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
      00:57:02.0653 3368 SCardSvr - ok
      00:57:02.0696 3368 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
      00:57:02.0714 3368 scfilter - ok
      00:57:02.0772 3368 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
      00:57:02.0802 3368 Schedule - ok
      00:57:02.0843 3368 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
      00:57:02.0844 3368 SCPolicySvc - ok
      00:57:02.0890 3368 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
      00:57:02.0909 3368 SDRSVC - ok
      00:57:02.0941 3368 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
      00:57:02.0967 3368 secdrv - ok
      00:57:03.0010 3368 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
      00:57:03.0016 3368 seclogon - ok
      00:57:03.0035 3368 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
      00:57:03.0041 3368 SENS - ok
      00:57:03.0055 3368 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
      00:57:03.0060 3368 SensrSvc - ok
      00:57:03.0113 3368 [ 3DC3EC72952BD60C438E397781FF0572 ] Ser2pl C:\Windows\system32\DRIVERS\ser2pl64.sys
      00:57:03.0125 3368 Ser2pl - ok
      00:57:03.0142 3368 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
      00:57:03.0161 3368 Serenum - ok
      00:57:03.0179 3368 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
      00:57:03.0225 3368 Serial - ok
      00:57:03.0285 3368 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
      00:57:03.0311 3368 sermouse - ok
      00:57:03.0376 3368 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
      00:57:03.0392 3368 SessionEnv - ok
      00:57:03.0436 3368 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
      00:57:03.0460 3368 sffdisk - ok
      00:57:03.0474 3368 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
      00:57:03.0491 3368 sffp_mmc - ok
      00:57:03.0494 3368 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
      00:57:03.0497 3368 sffp_sd - ok
      00:57:03.0511 3368 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
      00:57:03.0526 3368 sfloppy - ok
      00:57:03.0541 3368 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
      00:57:03.0547 3368 SharedAccess - ok
      00:57:03.0617 3368 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
      00:57:03.0627 3368 ShellHWDetection - ok
      00:57:03.0660 3368 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
      00:57:03.0697 3368 SiSRaid2 - ok
      00:57:03.0707 3368 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
      00:57:03.0719 3368 SiSRaid4 - ok
      00:57:03.0782 3368 [ A4FAB5F7818A69DA6E740943CB8F7CA9 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
      00:57:03.0785 3368 SkypeUpdate - ok
      00:57:03.0809 3368 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
      00:57:03.0814 3368 Smb - ok
      00:57:03.0856 3368 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
      00:57:03.0861 3368 SNMPTRAP - ok
      00:57:03.0870 3368 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
      00:57:03.0871 3368 spldr - ok
      00:57:03.0922 3368 [ B96C17B5DC1424D56EEA3A99E97428CD ] Spooler C:\Windows\System32\spoolsv.exe
      00:57:03.0938 3368 Spooler - ok
      00:57:04.0041 3368 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
      00:57:04.0156 3368 sppsvc - ok
      00:57:04.0169 3368 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
      00:57:04.0174 3368 sppuinotify - ok
      00:57:04.0240 3368 [ 51DE15CA5C05BCA46D8B110CD00A02FB ] sptd C:\Windows\system32\Drivers\sptd.sys
      00:57:04.0241 3368 Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: 51DE15CA5C05BCA46D8B110CD00A02FB
      00:57:04.0243 3368 sptd ( LockedFile.Multi.Generic ) - warning
      00:57:04.0243 3368 sptd - detected LockedFile.Multi.Generic (1)
      00:57:04.0301 3368 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
      00:57:04.0308 3368 srv - ok
      00:57:04.0353 3368 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
      00:57:04.0385 3368 srv2 - ok
      00:57:04.0394 3368 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
      00:57:04.0396 3368 srvnet - ok
      00:57:04.0416 3368 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
      00:57:04.0422 3368 SSDPSRV - ok
      00:57:04.0434 3368 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
      00:57:04.0438 3368 SstpSvc - ok
      00:57:04.0497 3368 [ 415205B445C60B09E779F78D6DF25667 ] StarPortLite C:\Windows\system32\DRIVERS\StarPortLite.sys
      00:57:04.0502 3368 StarPortLite - ok
      00:57:04.0546 3368 Steam Client Service - ok
      00:57:04.0589 3368 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
      00:57:04.0593 3368 stexstor - ok
      00:57:04.0638 3368 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
      00:57:04.0656 3368 stisvc - ok
      00:57:04.0716 3368 [ 7785DC213270D2FC066538DAF94087E7 ] storflt C:\Windows\system32\drivers\vmstorfl.sys
      00:57:04.0719 3368 storflt - ok
      00:57:04.0765 3368 [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc C:\Windows\system32\drivers\storvsc.sys
      00:57:04.0790 3368 storvsc - ok
      00:57:04.0829 3368 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
      00:57:04.0866 3368 swenum - ok
      00:57:04.0890 3368 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
      00:57:04.0896 3368 swprv - ok
      00:57:04.0916 3368 Synth3dVsc - ok
      00:57:04.0987 3368 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
      00:57:05.0026 3368 SysMain - ok
      00:57:05.0070 3368 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
      00:57:05.0076 3368 TabletInputService - ok
      00:57:05.0124 3368 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
      00:57:05.0142 3368 TapiSrv - ok
      00:57:05.0162 3368 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
      00:57:05.0168 3368 TBS - ok
      00:57:05.0343 3368 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] Tcpip C:\Windows\system32\drivers\tcpip.sys
      00:57:05.0371 3368 Tcpip - ok
      00:57:05.0412 3368 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
      00:57:05.0423 3368 TCPIP6 - ok
      00:57:05.0473 3368 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
      00:57:05.0477 3368 tcpipreg - ok
      00:57:05.0503 3368 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
      00:57:05.0527 3368 TDPIPE - ok
      00:57:05.0574 3368 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
      00:57:05.0586 3368 TDTCP - ok
      00:57:05.0630 3368 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
      00:57:05.0653 3368 tdx - ok
      00:57:05.0689 3368 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
      00:57:05.0715 3368 TermDD - ok
      00:57:05.0782 3368 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
      00:57:05.0800 3368 TermService - ok
      00:57:05.0837 3368 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
      00:57:05.0842 3368 Themes - ok
      00:57:05.0865 3368 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
      00:57:05.0868 3368 THREADORDER - ok
      00:57:05.0884 3368 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
      00:57:05.0890 3368 TrkWks - ok
      00:57:05.0953 3368 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
      00:57:05.0959 3368 TrustedInstaller - ok
      00:57:06.0012 3368 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
      00:57:06.0028 3368 tssecsrv - ok
      00:57:06.0081 3368 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
      00:57:06.0133 3368 TsUsbFlt - ok
      00:57:06.0136 3368 tsusbhub - ok
      00:57:06.0194 3368 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
      00:57:06.0222 3368 tunnel - ok
      00:57:06.0242 3368 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
      00:57:06.0268 3368 uagp35 - ok
      00:57:06.0285 3368 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
      00:57:06.0290 3368 udfs - ok
      00:57:06.0310 3368 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
      00:57:06.0313 3368 UI0Detect - ok
      00:57:06.0340 3368 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
      00:57:06.0352 3368 uliagpkx - ok
      00:57:06.0404 3368 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
      00:57:06.0441 3368 umbus - ok
      00:57:06.0454 3368 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
      00:57:06.0468 3368 UmPass - ok
      00:57:06.0519 3368 [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService C:\Windows\System32\umrdp.dll
      00:57:06.0528 3368 UmRdpService - ok
      00:57:06.0678 3368 [ 02C298382359653BEC4C737C2AB7F9C5 ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
      00:57:06.0716 3368 UNS - ok
      00:57:06.0739 3368 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
      00:57:06.0747 3368 upnphost - ok
      00:57:06.0790 3368 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
      00:57:06.0815 3368 usbccgp - ok
      00:57:06.0860 3368 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
      00:57:06.0864 3368 usbcir - ok
      00:57:06.0908 3368 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys
      00:57:06.0938 3368 usbehci - ok
      00:57:06.0962 3368 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
      00:57:06.0995 3368 usbhub - ok
      00:57:07.0038 3368 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
      00:57:07.0063 3368 usbohci - ok
      00:57:07.0085 3368 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
      00:57:07.0102 3368 usbprint - ok
      00:57:07.0144 3368 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
      00:57:07.0148 3368 usbscan - ok
      00:57:07.0161 3368 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
      00:57:07.0198 3368 USBSTOR - ok
      00:57:07.0212 3368 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
      00:57:07.0215 3368 usbuhci - ok
      00:57:07.0242 3368 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
      00:57:07.0245 3368 UxSms - ok
      00:57:07.0253 3368 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
      00:57:07.0254 3368 VaultSvc - ok
      00:57:07.0299 3368 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
      00:57:07.0300 3368 vdrvroot - ok
      00:57:07.0346 3368 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
      00:57:07.0369 3368 vds - ok
      00:57:07.0390 3368 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
      00:57:07.0393 3368 vga - ok
      00:57:07.0398 3368 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
      00:57:07.0422 3368 VgaSave - ok
      00:57:07.0434 3368 VGPU - ok
      00:57:07.0484 3368 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
      00:57:07.0517 3368 vhdmp - ok
      00:57:07.0524 3368 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
      00:57:07.0542 3368 viaide - ok
      00:57:07.0586 3368 [ 86EA3E79AE350FEA5331A1303054005F ] vmbus C:\Windows\system32\drivers\vmbus.sys
      00:57:07.0595 3368 vmbus - ok
      00:57:07.0606 3368 [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
      00:57:07.0635 3368 VMBusHID - ok
      00:57:07.0685 3368 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
      00:57:07.0686 3368 volmgr - ok
      00:57:07.0760 3368 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
      00:57:07.0770 3368 volmgrx - ok
      00:57:07.0794 3368 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
      00:57:07.0798 3368 volsnap - ok
      00:57:07.0822 3368 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
      00:57:07.0855 3368 vsmraid - ok
      00:57:07.0924 3368 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
      00:57:07.0982 3368 VSS - ok
      00:57:08.0006 3368 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
      00:57:08.0030 3368 vwifibus - ok
      00:57:08.0064 3368 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
      00:57:08.0072 3368 W32Time - ok
      00:57:08.0089 3368 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
      00:57:08.0092 3368 WacomPen - ok
      00:57:08.0146 3368 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
      00:57:08.0174 3368 WANARP - ok
      00:57:08.0179 3368 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
      00:57:08.0181 3368 Wanarpv6 - ok
      00:57:08.0325 3368 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
      00:57:08.0347 3368 WatAdminSvc - ok
      00:57:08.0491 3368 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
      00:57:08.0521 3368 wbengine - ok
      00:57:08.0550 3368 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
      00:57:08.0558 3368 WbioSrvc - ok
      00:57:08.0606 3368 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
      00:57:08.0616 3368 wcncsvc - ok
      00:57:08.0621 3368 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
      00:57:08.0626 3368 WcsPlugInService - ok
      00:57:08.0648 3368 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
      00:57:08.0651 3368 Wd - ok
      00:57:08.0674 3368 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
      00:57:08.0683 3368 Wdf01000 - ok
      00:57:08.0698 3368 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
      00:57:08.0704 3368 WdiServiceHost - ok
      00:57:08.0709 3368 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
      00:57:08.0713 3368 WdiSystemHost - ok
      00:57:08.0783 3368 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
      00:57:08.0797 3368 WebClient - ok
      00:57:08.0806 3368 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
      00:57:08.0814 3368 Wecsvc - ok
      00:57:08.0835 3368 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
      00:57:08.0840 3368 wercplsupport - ok
      00:57:08.0857 3368 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
      00:57:08.0861 3368 WerSvc - ok
      00:57:08.0885 3368 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
      00:57:08.0902 3368 WfpLwf - ok
      00:57:08.0928 3368 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
      00:57:08.0942 3368 WIMMount - ok
      00:57:08.0946 3368 WinHttpAutoProxySvc - ok
      00:57:08.0997 3368 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
      00:57:09.0003 3368 Winmgmt - ok
      00:57:09.0060 3368 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
      00:57:09.0115 3368 WinRM - ok
      00:57:09.0197 3368 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
      00:57:09.0219 3368 WinUsb - ok
      00:57:09.0274 3368 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
      00:57:09.0291 3368 Wlansvc - ok
      00:57:09.0632 3368 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
      00:57:09.0717 3368 wlidsvc - ok
      00:57:09.0771 3368 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
      00:57:09.0815 3368 WmiAcpi - ok
      00:57:09.0844 3368 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
      00:57:09.0848 3368 wmiApSrv - ok
      00:57:09.0879 3368 WMPNetworkSvc - ok
      00:57:09.0906 3368 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
      00:57:09.0912 3368 WPCSvc - ok
      00:57:09.0961 3368 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
      00:57:09.0968 3368 WPDBusEnum - ok
      00:57:09.0993 3368 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
      00:57:10.0019 3368 ws2ifsl - ok
      00:57:10.0024 3368 WSearch - ok
      00:57:10.0511 3368 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
      00:57:10.0571 3368 wuauserv - ok
      00:57:10.0582 3368 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
      00:57:10.0607 3368 WudfPf - ok
      00:57:10.0658 3368 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
      00:57:10.0691 3368 WUDFRd - ok
      00:57:10.0736 3368 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
      00:57:10.0746 3368 wudfsvc - ok
      00:57:10.0766 3368 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
      00:57:10.0774 3368 WwanSvc - ok
      00:57:10.0781 3368 ================ Scan global ===============================
      00:57:10.0799 3368 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
      00:57:10.0843 3368 [ 72CC564BBC70DE268784BCE91EB8A28F ] C:\Windows\system32\winsrv.dll
      00:57:10.0874 3368 [ 72CC564BBC70DE268784BCE91EB8A28F ] C:\Windows\system32\winsrv.dll
      00:57:10.0913 3368 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
      00:57:10.0951 3368 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
      00:57:10.0959 3368 [Global] - ok
      00:57:10.0959 3368 ================ Scan MBR ==================================
      00:57:10.0970 3368 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
      00:57:11.0762 3368 \Device\Harddisk0\DR0 - ok
      00:57:11.0762 3368 ================ Scan VBR ==================================
      00:57:11.0777 3368 [ 86F789486BFCC022001D8F758C458DB5 ] \Device\Harddisk0\DR0\Partition1
      00:57:11.0789 3368 \Device\Harddisk0\DR0\Partition1 - ok
      00:57:11.0806 3368 [ FB6D7A36EABB118230FA390F71D15331 ] \Device\Harddisk0\DR0\Partition2
      00:57:11.0807 3368 \Device\Harddisk0\DR0\Partition2 - ok
      00:57:11.0808 3368 ============================================================
      00:57:11.0808 3368 Scan finished
      00:57:11.0808 3368 ============================================================
      00:57:11.0819 3200 Detected object count: 1
      00:57:11.0819 3200 Actual detected object count: 1
      00:57:20.0832 3200 sptd ( LockedFile.Multi.Generic ) - skipped by user
      00:57:20.0832 3200 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
      00:57:32.0938 3956 ============================================================
      00:57:32.0938 3956 Scan started
      00:57:32.0938 3956 Mode: Manual;
      00:57:32.0938 3956 ============================================================
      00:57:33.0145 3956 ================ Scan system memory ========================
      00:57:33.0145 3956 System memory - ok
      00:57:33.0145 3956 ================ Scan services =============================
      00:57:33.0276 3956 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
      00:57:33.0279 3956 1394ohci - ok
      00:57:33.0328 3956 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
      00:57:33.0331 3956 ACPI - ok
      00:57:33.0373 3956 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
      00:57:33.0395 3956 AcpiPmi - ok
      00:57:33.0472 3956 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
      00:57:33.0473 3956 AdobeARMservice - ok
      00:57:33.0581 3956 [ 95CE557D16A75606CCC2D7F3B0B0BCCB ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
      00:57:33.0585 3956 AdobeFlashPlayerUpdateSvc - ok
      00:57:33.0619 3956 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
      00:57:33.0666 3956 adp94xx - ok
      00:57:33.0683 3956 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
      00:57:33.0685 3956 adpahci - ok
      00:57:33.0697 3956 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
      00:57:33.0698 3956 adpu320 - ok
      00:57:33.0718 3956 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
      00:57:33.0719 3956 AeLookupSvc - ok
      00:57:33.0764 3956 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
      00:57:33.0770 3956 AFD - ok
      00:57:33.0814 3956 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
      00:57:33.0815 3956 agp440 - ok
      00:57:33.0828 3956 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
      00:57:33.0829 3956 ALG - ok
      00:57:33.0845 3956 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
      00:57:33.0846 3956 aliide - ok
      00:57:33.0858 3956 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
      00:57:33.0859 3956 amdide - ok
      00:57:33.0870 3956 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
      00:57:33.0872 3956 AmdK8 - ok
      00:57:33.0883 3956 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
      00:57:33.0905 3956 AmdPPM - ok
      00:57:33.0952 3956 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
      00:57:33.0953 3956 amdsata - ok
      00:57:33.0958 3956 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
      00:57:33.0961 3956 amdsbs - ok
      00:57:33.0975 3956 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
      00:57:33.0975 3956 amdxata - ok
      00:57:33.0979 3956 ANIWConnService - ok
      00:57:34.0013 3956 [ AA3D68F26B2A27F660AFC46039B061A4 ] ANIWZCSdService C:\Program Files (x86)\ANI\ANIWZCS2 Service\ANIWZCSdS.exe
      00:57:34.0014 3956 ANIWZCSdService - ok
      00:57:34.0045 3956 [ 4CCF421E6C4B2A4CBCE000715911F7CC ] anodlwf C:\Windows\system32\DRIVERS\anodlwfx.sys
      00:57:34.0046 3956 anodlwf - ok
      00:57:34.0086 3956 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
      00:57:34.0087 3956 AppID - ok
      00:57:34.0099 3956 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
      00:57:34.0100 3956 AppIDSvc - ok
      00:57:34.0144 3956 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
      00:57:34.0145 3956 Appinfo - ok
      00:57:34.0174 3956 [ 20F6F19FE9E753F2780DC2FA083AD597 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
      00:57:34.0175 3956 Apple Mobile Device - ok
      00:57:34.0210 3956 [ 301AA64F9643BC453D90A66C4C0E7204 ] AppleCharger C:\Windows\system32\DRIVERS\AppleCharger.sys
      00:57:34.0210 3956 AppleCharger - ok
      00:57:34.0230 3956 [ 95EF7247C50C7241FDAE39A9B3AFF4AE ] AppleChargerSrv C:\Windows\system32\AppleChargerSrv.exe
      00:57:34.0232 3956 AppleChargerSrv - ok
      00:57:34.0254 3956 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll
      00:57:34.0257 3956 AppMgmt - ok
      00:57:34.0281 3956 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
      00:57:34.0283 3956 arc - ok
      00:57:34.0295 3956 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
      00:57:34.0296 3956 arcsas - ok
      00:57:34.0302 3956 ASAPIW2k - ok
      00:57:34.0341 3956 aspnet_state - ok
      00:57:34.0352 3956 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
      00:57:34.0353 3956 AsyncMac - ok
      00:57:34.0395 3956 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
      00:57:34.0396 3956 atapi - ok
      00:57:34.0447 3956 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
      00:57:34.0455 3956 AudioEndpointBuilder - ok
      00:57:34.0481 3956 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
      00:57:34.0487 3956 AudioSrv - ok
      00:57:34.0531 3956 [ 6FDDD18A650764A59302A018765E5521 ] AVP C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\avp.exe
      00:57:34.0534 3956 AVP - ok
      00:57:34.0582 3956 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
      00:57:34.0584 3956 AxInstSV - ok
      00:57:34.0606 3956 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
      00:57:34.0610 3956 b06bdrv - ok
      00:57:34.0627 3956 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
      00:57:34.0630 3956 b57nd60a - ok
      00:57:34.0662 3956 [ 382B151DAFFE4A9CE9DA9F564B66761E ] BCUService C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exe
      00:57:34.0665 3956 BCUService - ok
      00:57:34.0693 3956 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
      00:57:34.0695 3956 BDESVC - ok
      00:57:34.0710 3956 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
      00:57:34.0711 3956 Beep - ok
      00:57:34.0763 3956 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
      00:57:34.0770 3956 BFE - ok
      00:57:34.0829 3956 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll

    5. #5
      Usuario Avatar de The_rock_cs
      Registrado
      oct 2012
      Ubicación
      Argentina
      Mensajes
      11

      Re: ya analize con TDSS, que hago ahora?

      00:57:34.0838 3956 BITS - ok
      00:57:34.0850 3956 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
      00:57:34.0852 3956 blbdrive - ok
      00:57:34.0897 3956 [ 1C87705CCB2F60172B0FC86B5D82F00D ] Bonjour Service C:\Program Files (x86)\Bonjour\mDNSResponder.exe
      00:57:34.0901 3956 Bonjour Service - ok
      00:57:34.0957 3956 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
      00:57:34.0958 3956 bowser - ok
      00:57:34.0973 3956 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
      00:57:34.0973 3956 BrFiltLo - ok
      00:57:34.0985 3956 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
      00:57:34.0985 3956 BrFiltUp - ok
      00:57:35.0026 3956 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
      00:57:35.0028 3956 Browser - ok
      00:57:35.0047 3956 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
      00:57:35.0050 3956 Brserid - ok
      00:57:35.0063 3956 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
      00:57:35.0064 3956 BrSerWdm - ok
      00:57:35.0072 3956 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
      00:57:35.0073 3956 BrUsbMdm - ok
      00:57:35.0080 3956 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
      00:57:35.0081 3956 BrUsbSer - ok
      00:57:35.0101 3956 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
      00:57:35.0102 3956 BTHMODEM - ok
      00:57:35.0127 3956 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
      00:57:35.0129 3956 bthserv - ok
      00:57:35.0140 3956 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
      00:57:35.0142 3956 cdfs - ok
      00:57:35.0181 3956 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
      00:57:35.0183 3956 cdrom - ok
      00:57:35.0226 3956 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
      00:57:35.0230 3956 CertPropSvc - ok
      00:57:35.0250 3956 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
      00:57:35.0251 3956 circlass - ok
      00:57:35.0272 3956 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
      00:57:35.0276 3956 CLFS - ok
      00:57:35.0301 3956 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
      00:57:35.0303 3956 clr_optimization_v2.0.50727_32 - ok
      00:57:35.0340 3956 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
      00:57:35.0341 3956 clr_optimization_v2.0.50727_64 - ok
      00:57:35.0430 3956 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
      00:57:35.0433 3956 clr_optimization_v4.0.30319_32 - ok
      00:57:35.0490 3956 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
      00:57:35.0492 3956 clr_optimization_v4.0.30319_64 - ok
      00:57:35.0509 3956 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
      00:57:35.0510 3956 CmBatt - ok
      00:57:35.0558 3956 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
      00:57:35.0559 3956 cmdide - ok
      00:57:35.0609 3956 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
      00:57:35.0614 3956 CNG - ok
      00:57:35.0634 3956 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
      00:57:35.0635 3956 Compbatt - ok
      00:57:35.0682 3956 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
      00:57:35.0685 3956 CompositeBus - ok
      00:57:35.0690 3956 COMSysApp - ok
      00:57:35.0703 3956 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
      00:57:35.0704 3956 crcdisk - ok
      00:57:35.0751 3956 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
      00:57:35.0754 3956 CryptSvc - ok
      00:57:35.0803 3956 [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC C:\Windows\system32\drivers\csc.sys
      00:57:35.0809 3956 CSC - ok
      00:57:35.0865 3956 [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService C:\Windows\System32\cscsvc.dll
      00:57:35.0872 3956 CscService - ok
      00:57:35.0934 3956 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
      00:57:35.0942 3956 DcomLaunch - ok
      00:57:35.0965 3956 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
      00:57:35.0970 3956 defragsvc - ok
      00:57:36.0015 3956 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
      00:57:36.0017 3956 DfsC - ok
      00:57:36.0032 3956 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
      00:57:36.0035 3956 Dhcp - ok
      00:57:36.0045 3956 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
      00:57:36.0046 3956 discache - ok
      00:57:36.0063 3956 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
      00:57:36.0065 3956 Disk - ok
      00:57:36.0111 3956 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
      00:57:36.0114 3956 Dnscache - ok
      00:57:36.0161 3956 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
      00:57:36.0165 3956 dot3svc - ok
      00:57:36.0207 3956 [ B42ED0320C6E41102FDE0005154849BB ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
      00:57:36.0233 3956 Dot4 - ok
      00:57:36.0276 3956 [ E9F5969233C5D89F3C35E3A66A52A361 ] Dot4Print C:\Windows\system32\DRIVERS\Dot4Prt.sys
      00:57:36.0277 3956 Dot4Print - ok
      00:57:36.0304 3956 [ FD05A02B0370BC3000F402E543CA5814 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
      00:57:36.0306 3956 dot4usb - ok
      00:57:36.0352 3956 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
      00:57:36.0356 3956 DPS - ok
      00:57:36.0384 3956 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
      00:57:36.0385 3956 drmkaud - ok
      00:57:36.0432 3956 [ 8462304CBD54857A5943BDA8A6EDE5ED ] DSDrv4 C:\PROGRA~2\DScaler\DSDrv4.sys
      00:57:36.0433 3956 DSDrv4 - ok
      00:57:36.0490 3956 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
      00:57:36.0500 3956 DXGKrnl - ok
      00:57:36.0530 3956 [ ACA3FE4F18A945B7BF2618A79F6F670B ] eamonm C:\Windows\system32\DRIVERS\eamonm.sys
      00:57:36.0531 3956 eamonm - ok
      00:57:36.0556 3956 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
      00:57:36.0558 3956 EapHost - ok
      00:57:36.0643 3956 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
      00:57:36.0668 3956 ebdrv - ok
      00:57:36.0711 3956 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
      00:57:36.0714 3956 EFS - ok
      00:57:36.0744 3956 [ 6672438BDCBFD87250D22112D458294D ] ehdrv C:\Windows\system32\DRIVERS\ehdrv.sys
      00:57:36.0746 3956 ehdrv - ok
      00:57:36.0790 3956 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
      00:57:36.0797 3956 ehRecvr - ok
      00:57:36.0820 3956 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
      00:57:36.0822 3956 ehSched - ok
      00:57:36.0889 3956 [ DEB2B067745D92FF17A5068DFD2360BC ] EhttpSrv C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
      00:57:36.0890 3956 EhttpSrv - ok
      00:57:36.0950 3956 [ 191D8ECCC40F05B52FAC0513F35BA01D ] ekrn C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
      00:57:36.0960 3956 ekrn - ok
      00:57:36.0998 3956 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
      00:57:37.0004 3956 elxstor - ok
      00:57:37.0026 3956 [ 954FADE8E59F159B0A71D0CFCC99A76E ] epfwwfpr C:\Windows\system32\DRIVERS\epfwwfpr.sys
      00:57:37.0028 3956 epfwwfpr - ok
      00:57:37.0072 3956 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
      00:57:37.0073 3956 ErrDev - ok
      00:57:37.0102 3956 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
      00:57:37.0107 3956 EventSystem - ok
      00:57:37.0128 3956 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
      00:57:37.0130 3956 exfat - ok
      00:57:37.0145 3956 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
      00:57:37.0148 3956 fastfat - ok
      00:57:37.0206 3956 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
      00:57:37.0214 3956 Fax - ok
      00:57:37.0235 3956 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
      00:57:37.0236 3956 fdc - ok
      00:57:37.0248 3956 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
      00:57:37.0251 3956 fdPHost - ok
      00:57:37.0263 3956 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
      00:57:37.0266 3956 FDResPub - ok
      00:57:37.0280 3956 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
      00:57:37.0299 3956 FileInfo - ok
      00:57:37.0303 3956 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
      00:57:37.0304 3956 Filetrace - ok
      00:57:37.0307 3956 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
      00:57:37.0309 3956 flpydisk - ok
      00:57:37.0354 3956 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
      00:57:37.0396 3956 FltMgr - ok
      00:57:37.0457 3956 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
      00:57:37.0471 3956 FontCache - ok
      00:57:37.0532 3956 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
      00:57:37.0536 3956 FontCache3.0.0.0 - ok
      00:57:37.0548 3956 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
      00:57:37.0549 3956 FsDepends - ok
      00:57:37.0595 3956 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
      00:57:37.0597 3956 Fs_Rec - ok
      00:57:37.0644 3956 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
      00:57:37.0647 3956 fvevol - ok
      00:57:37.0661 3956 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
      00:57:37.0662 3956 gagp30kx - ok
      00:57:37.0675 3956 [ 7907E14F9BCF3A4689C9A74A1A873CB6 ] gdrv C:\Windows\gdrv.sys
      00:57:37.0676 3956 gdrv - ok
      00:57:37.0703 3956 [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
      00:57:37.0704 3956 GEARAspiWDM - ok
      00:57:37.0760 3956 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
      00:57:37.0770 3956 gpsvc - ok
      00:57:37.0818 3956 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
      00:57:37.0820 3956 gupdate - ok
      00:57:37.0826 3956 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
      00:57:37.0828 3956 gupdatem - ok
      00:57:37.0850 3956 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
      00:57:37.0856 3956 gusvc - ok
      00:57:37.0884 3956 [ 8126331FBD4ED29EB3B356F9C905064D ] GVTDrv64 C:\Windows\GVTDrv64.sys
      00:57:37.0885 3956 GVTDrv64 - ok
      00:57:37.0912 3956 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
      00:57:37.0913 3956 hcw85cir - ok
      00:57:37.0965 3956 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
      00:57:37.0968 3956 HdAudAddService - ok
      00:57:37.0982 3956 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
      00:57:37.0984 3956 HDAudBus - ok
      00:57:38.0018 3956 [ B6AC71AAA2B10848F57FC49D55A651AF ] HECIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
      00:57:38.0019 3956 HECIx64 - ok
      00:57:38.0024 3956 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
      00:57:38.0025 3956 HidBatt - ok
      00:57:38.0042 3956 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
      00:57:38.0043 3956 HidBth - ok
      00:57:38.0056 3956 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
      00:57:38.0057 3956 HidIr - ok
      00:57:38.0074 3956 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
      00:57:38.0076 3956 hidserv - ok
      00:57:38.0095 3956 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
      00:57:38.0096 3956 HidUsb - ok
      00:57:38.0145 3956 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
      00:57:38.0149 3956 hkmsvc - ok
      00:57:38.0200 3956 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
      00:57:38.0205 3956 HomeGroupListener - ok
      00:57:38.0255 3956 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
      00:57:38.0259 3956 HomeGroupProvider - ok
      00:57:38.0321 3956 [ 1DAE5C46D42B02A6D5862E1482EFB390 ] hpqcxs08 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
      00:57:38.0326 3956 hpqcxs08 - ok
      00:57:38.0336 3956 [ 99E8EEF42FE2F4AF29B08C3355DD7685 ] hpqddsvc C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
      00:57:38.0338 3956 hpqddsvc - ok
      00:57:38.0355 3956 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
      00:57:38.0356 3956 HpSAMD - ok
      00:57:38.0411 3956 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
      00:57:38.0419 3956 HTTP - ok
      00:57:38.0454 3956 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
      00:57:38.0455 3956 hwpolicy - ok
      00:57:38.0481 3956 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
      00:57:38.0482 3956 i8042prt - ok
      00:57:38.0503 3956 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
      00:57:38.0505 3956 iaStorV - ok
      00:57:38.0550 3956 [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
      00:57:38.0551 3956 IDriverT - ok
      00:57:38.0611 3956 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
      00:57:38.0617 3956 idsvc - ok
      00:57:38.0830 3956 [ F4F91789C7C7A159CE8215C1F69F2A85 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
      00:57:39.0008 3956 igfx - ok
      00:57:39.0042 3956 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
      00:57:39.0042 3956 iirsp - ok
      00:57:39.0102 3956 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
      00:57:39.0113 3956 IKEEXT - ok
      00:57:39.0158 3956 [ 163F94EBF8F8A98616A6B804AF08D736 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
      00:57:39.0172 3956 IntcAzAudAddService - ok
      00:57:39.0183 3956 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
      00:57:39.0184 3956 intelide - ok
      00:57:39.0198 3956 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
      00:57:39.0199 3956 intelppm - ok
      00:57:39.0220 3956 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
      00:57:39.0222 3956 IPBusEnum - ok
      00:57:39.0261 3956 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
      00:57:39.0263 3956 IpFilterDriver - ok
      00:57:39.0318 3956 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
      00:57:39.0325 3956 iphlpsvc - ok
      00:57:39.0368 3956 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
      00:57:39.0369 3956 IPMIDRV - ok
      00:57:39.0387 3956 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
      00:57:39.0389 3956 IPNAT - ok
      00:57:39.0420 3956 [ FDF57F795098AB29AF780824315C9859 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
      00:57:39.0428 3956 iPod Service - ok
      00:57:39.0437 3956 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
      00:57:39.0438 3956 IRENUM - ok
      00:57:39.0484 3956 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
      00:57:39.0485 3956 isapnp - ok
      00:57:39.0529 3956 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
      00:57:39.0532 3956 iScsiPrt - ok
      00:57:39.0547 3956 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
      00:57:39.0549 3956 kbdclass - ok
      00:57:39.0591 3956 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
      00:57:39.0594 3956 kbdhid - ok
      00:57:39.0603 3956 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
      00:57:39.0605 3956 KeyIso - ok
      00:57:39.0661 3956 [ 549F9D454E9E6697B108F16C569B505A ] KL1 C:\Windows\system32\DRIVERS\kl1.sys
      00:57:39.0688 3956 KL1 - ok
      00:57:39.0721 3956 [ 08DF1B7A82837B92096EC7597C00889A ] KLIF C:\Windows\system32\DRIVERS\klif.sys
      00:57:39.0723 3956 KLIF - ok
      00:57:39.0770 3956 [ A7DFA9A2554143667E830E8ABE452D70 ] KLIM6 C:\Windows\system32\DRIVERS\klim6.sys
      00:57:39.0771 3956 KLIM6 - ok
      00:57:39.0777 3956 [ E6FAA395058F7BAF0F3529CDBA9B7133 ] klkbdflt C:\Windows\system32\DRIVERS\klkbdflt.sys
      00:57:39.0778 3956 klkbdflt - ok
      00:57:39.0786 3956 [ D398DABD44FDDDBED305442BB7BCDB29 ] klmouflt C:\Windows\system32\DRIVERS\klmouflt.sys
      00:57:39.0787 3956 klmouflt - ok
      00:57:39.0801 3956 [ B9B2AEEE5E17B2CEBC034FF2748577A0 ] kltdi C:\Windows\system32\DRIVERS\kltdi.sys
      00:57:39.0802 3956 kltdi - ok
      00:57:39.0849 3956 [ 8E880E08D7453DB58DAC36C2C48FFD45 ] kneps C:\Windows\system32\DRIVERS\kneps.sys
      00:57:39.0851 3956 kneps - ok
      00:57:39.0897 3956 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
      00:57:39.0899 3956 KSecDD - ok
      00:57:39.0910 3956 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
      00:57:39.0912 3956 KSecPkg - ok
      00:57:39.0941 3956 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
      00:57:39.0942 3956 ksthunk - ok
      00:57:39.0969 3956 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
      00:57:39.0974 3956 KtmRm - ok
      00:57:40.0020 3956 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
      00:57:40.0026 3956 LanmanServer - ok
      00:57:40.0068 3956 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
      00:57:40.0072 3956 LanmanWorkstation - ok
      00:57:40.0084 3956 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
      00:57:40.0085 3956 lltdio - ok
      00:57:40.0110 3956 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
      00:57:40.0114 3956 lltdsvc - ok
      00:57:40.0127 3956 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
      00:57:40.0129 3956 lmhosts - ok
      00:57:40.0185 3956 [ E38775922D4A4C05B5D96733AB4CE169 ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
      00:57:40.0188 3956 LMS - ok
      00:57:40.0210 3956 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
      00:57:40.0212 3956 LSI_FC - ok
      00:57:40.0237 3956 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
      00:57:40.0239 3956 LSI_SAS - ok
      00:57:40.0248 3956 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
      00:57:40.0249 3956 LSI_SAS2 - ok
      00:57:40.0264 3956 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
      00:57:40.0265 3956 LSI_SCSI - ok
      00:57:40.0274 3956 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
      00:57:40.0275 3956 luafv - ok
      00:57:40.0310 3956 [ F453D1E6D881E8F8717E20CCD4199E85 ] McComponentHostService C:\Program Files (x86)\McAfee Security Scan\2.0.181\McCHSvc.exe
      00:57:40.0311 3956 McComponentHostService - ok
      00:57:40.0351 3956 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
      00:57:40.0352 3956 Mcx2Svc - ok
      00:57:40.0371 3956 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
      00:57:40.0371 3956 megasas - ok
      00:57:40.0389 3956 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
      00:57:40.0392 3956 MegaSR - ok
      00:57:40.0513 3956 [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
      00:57:40.0515 3956 Microsoft Office Groove Audit Service - ok
      00:57:40.0540 3956 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
      00:57:40.0543 3956 MMCSS - ok
      00:57:40.0558 3956 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
      00:57:40.0560 3956 Modem - ok
      00:57:40.0577 3956 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
      00:57:40.0578 3956 monitor - ok
      00:57:40.0623 3956 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\drivers\mouclass.sys
      00:57:40.0626 3956 mouclass - ok
      00:57:40.0640 3956 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
      00:57:40.0642 3956 mouhid - ok
      00:57:40.0693 3956 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
      00:57:40.0695 3956 mountmgr - ok
      00:57:40.0734 3956 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
      00:57:40.0736 3956 mpio - ok
      00:57:40.0755 3956 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
      00:57:40.0756 3956 mpsdrv - ok
      00:57:40.0808 3956 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
      00:57:40.0819 3956 MpsSvc - ok
      00:57:40.0867 3956 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
      00:57:40.0869 3956 MRxDAV - ok
      00:57:40.0910 3956 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
      00:57:40.0913 3956 mrxsmb - ok
      00:57:40.0961 3956 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
      00:57:40.0964 3956 mrxsmb10 - ok
      00:57:41.0010 3956 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
      00:57:41.0012 3956 mrxsmb20 - ok
      00:57:41.0061 3956 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
      00:57:41.0062 3956 msahci - ok
      00:57:41.0083 3956 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
      00:57:41.0085 3956 msdsm - ok
      00:57:41.0103 3956 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
      00:57:41.0106 3956 MSDTC - ok
      00:57:41.0126 3956 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
      00:57:41.0127 3956 Msfs - ok
      00:57:41.0145 3956 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
      00:57:41.0146 3956 mshidkmdf - ok
      00:57:41.0162 3956 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
      00:57:41.0163 3956 msisadrv - ok
      00:57:41.0190 3956 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
      00:57:41.0193 3956 MSiSCSI - ok
      00:57:41.0197 3956 msiserver - ok
      00:57:41.0209 3956 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
      00:57:41.0210 3956 MSKSSRV - ok
      00:57:41.0224 3956 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
      00:57:41.0225 3956 MSPCLOCK - ok
      00:57:41.0228 3956 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
      00:57:41.0230 3956 MSPQM - ok
      00:57:41.0275 3956 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
      00:57:41.0277 3956 MsRPC - ok
      00:57:41.0320 3956 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
      00:57:41.0322 3956 mssmbios - ok
      00:57:41.0327 3956 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
      00:57:41.0329 3956 MSTEE - ok
      00:57:41.0341 3956 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
      00:57:41.0343 3956 MTConfig - ok
      00:57:41.0355 3956 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
      00:57:41.0373 3956 Mup - ok
      00:57:41.0431 3956 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
      00:57:41.0438 3956 napagent - ok
      00:57:41.0459 3956 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
      00:57:41.0462 3956 NativeWifiP - ok
      00:57:41.0489 3956 [ 79B47FD40D9A817E932F9D26FAC0A81C ] NDIS C:\Windows\system32\drivers\ndis.sys
      00:57:41.0495 3956 NDIS - ok
      00:57:41.0509 3956 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
      00:57:41.0525 3956 NdisCap - ok
      00:57:41.0539 3956 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
      00:57:41.0541 3956 NdisTapi - ok
      00:57:41.0586 3956 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
      00:57:41.0587 3956 Ndisuio - ok
      00:57:41.0627 3956 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
      00:57:41.0629 3956 NdisWan - ok
      00:57:41.0681 3956 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
      00:57:41.0683 3956 NDProxy - ok
      00:57:41.0822 3956 [ 40D7D0A208EE863BCA8D89E299216F15 ] Nero BackItUp Scheduler 3 C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBService.exe
      00:57:41.0831 3956 Nero BackItUp Scheduler 3 - ok
      00:57:41.0858 3956 [ D5AC41AE382738483FAFFBD7E373D49A ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
      00:57:41.0860 3956 Net Driver HPZ12 - ok
      00:57:41.0865 3956 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
      00:57:41.0866 3956 NetBIOS - ok
      00:57:41.0918 3956 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
      00:57:41.0921 3956 NetBT - ok
      00:57:41.0936 3956 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
      00:57:41.0938 3956 Netlogon - ok
      00:57:41.0968 3956 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
      00:57:41.0971 3956 Netman - ok
      00:57:41.0989 3956 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
      00:57:41.0995 3956 netprofm - ok
      00:57:42.0031 3956 [ A59F1436CE2D7E9B0FFAB90E629DA0BE ] netr28ux C:\Windows\system32\DRIVERS\netr28ux.sys
      00:57:42.0036 3956 netr28ux - ok
      00:57:42.0058 3956 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
      00:57:42.0059 3956 NetTcpPortSharing - ok
      00:57:42.0069 3956 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
      00:57:42.0070 3956 nfrd960 - ok
      00:57:42.0115 3956 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
      00:57:42.0119 3956 NlaSvc - ok
      00:57:42.0216 3956 [ EBA1B4BF2E2375ABDADEDB649F283541 ] NMIndexingService C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe
      00:57:42.0222 3956 NMIndexingService - ok
      00:57:42.0242 3956 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
      00:57:42.0243 3956 Npfs - ok
      00:57:42.0249 3956 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
      00:57:42.0252 3956 nsi - ok
      00:57:42.0262 3956 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
      00:57:42.0264 3956 nsiproxy - ok
      00:57:42.0339 3956 [ A2F74975097F52A00745F9637451FDD8 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
      00:57:42.0354 3956 Ntfs - ok
      00:57:42.0364 3956 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
      00:57:42.0365 3956 Null - ok
      00:57:42.0379 3956 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
      00:57:42.0380 3956 nvraid - ok
      00:57:42.0420 3956 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
      00:57:42.0422 3956 nvstor - ok
      00:57:42.0469 3956 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
      00:57:42.0471 3956 nv_agp - ok
      00:57:42.0544 3956 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
      00:57:42.0549 3956 odserv - ok
      00:57:42.0587 3956 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
      00:57:42.0588 3956 ohci1394 - ok
      00:57:42.0611 3956 [ D2C9339E67D851B51D766802AECC02F5 ] OlmarikFixer C:\Windows\system32\drivers\OlmarikFixer.sys
      00:57:42.0612 3956 OlmarikFixer - ok
      00:57:42.0654 3956 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
      00:57:42.0656 3956 ose - ok
      00:57:42.0728 3956 [ 40830794D55301D71010FCD382C26D5B ] ose64 C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
      00:57:42.0730 3956 ose64 - ok
      00:57:42.0764 3956 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
      00:57:42.0770 3956 p2pimsvc - ok
      00:57:42.0793 3956 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
      00:57:42.0798 3956 p2psvc - ok
      00:57:42.0830 3956 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
      00:57:42.0831 3956 Parport - ok
      00:57:42.0870 3956 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
      00:57:42.0871 3956 partmgr - ok
      00:57:42.0883 3956 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
      00:57:42.0887 3956 PcaSvc - ok
      00:57:42.0934 3956 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
      00:57:42.0938 3956 pci - ok
      00:57:42.0948 3956 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
      00:57:42.0949 3956 pciide - ok
      00:57:42.0967 3956 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
      00:57:42.0969 3956 pcmcia - ok
      00:57:42.0986 3956 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
      00:57:42.0987 3956 pcw - ok
      00:57:43.0008 3956 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
      00:57:43.0027 3956 PEAUTH - ok
      00:57:43.0065 3956 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
      00:57:43.0075 3956 PeerDistSvc - ok
      00:57:43.0148 3956 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
      00:57:43.0151 3956 PerfHost - ok
      00:57:43.0209 3956 [ 1E81496AFF9D7FA2B4C4032B746DE5B9 ] Ph3xIB64 C:\Windows\system32\DRIVERS\Ph3xIB64.sys
      00:57:43.0225 3956 Ph3xIB64 - ok
      00:57:43.0321 3956 [ 478D9A1E760F9089DE19925616689F0D ] PinnacleSys.MediaServer C:\Program Files (x86)\Pinnacle\Shared Files\Programs\MediaServer\PMSHost.exe
      00:57:43.0322 3956 PinnacleSys.MediaServer - ok
      00:57:43.0386 3956 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
      00:57:43.0399 3956 pla - ok
      00:57:43.0441 3956 [ 875E4E0661F3A5994DF9E5E3A0A4F96B ] PLFlash DeviceIoControl Service C:\Windows\SysWOW64\IoctlSvc.exe
      00:57:43.0446 3956 PLFlash DeviceIoControl Service - ok
      00:57:43.0496 3956 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
      00:57:43.0503 3956 PlugPlay - ok
      00:57:43.0516 3956 [ 37F6046CDC630442D7DC087501FF6FC6 ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
      00:57:43.0518 3956 Pml Driver HPZ12 - ok
      00:57:43.0539 3956 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
      00:57:43.0544 3956 PNRPAutoReg - ok
      00:57:43.0564 3956 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
      00:57:43.0568 3956 PNRPsvc - ok
      00:57:43.0590 3956 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
      00:57:43.0595 3956 PolicyAgent - ok
      00:57:43.0624 3956 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
      00:57:43.0629 3956 Power - ok
      00:57:43.0667 3956 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
      00:57:43.0669 3956 PptpMiniport - ok
      00:57:43.0697 3956 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
      00:57:43.0698 3956 Processor - ok
      00:57:43.0718 3956 [ 5C78838B4D166D1A27DB3A8A820C799A ] ProfSvc C:\Windows\system32\profsvc.dll
      00:57:43.0721 3956 ProfSvc - ok
      00:57:43.0736 3956 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
      00:57:43.0738 3956 ProtectedStorage - ok
      00:57:43.0786 3956 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
      00:57:43.0788 3956 Psched - ok
      00:57:43.0822 3956 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
      00:57:43.0837 3956 ql2300 - ok
      00:57:43.0849 3956 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
      00:57:43.0850 3956 ql40xx - ok
      00:57:43.0875 3956 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
      00:57:43.0879 3956 QWAVE - ok
      00:57:43.0890 3956 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
      00:57:43.0914 3956 QWAVEdrv - ok
      00:57:43.0928 3956 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
      00:57:43.0932 3956 RasAcd - ok
      00:57:43.0951 3956 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
      00:57:43.0952 3956 RasAgileVpn - ok
      00:57:43.0958 3956 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
      00:57:43.0962 3956 RasAuto - ok
      00:57:44.0010 3956 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
      00:57:44.0011 3956 Rasl2tp - ok
      00:57:44.0054 3956 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
      00:57:44.0059 3956 RasMan - ok
      00:57:44.0076 3956 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
      00:57:44.0078 3956 RasPppoe - ok
      00:57:44.0085 3956 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
      00:57:44.0087 3956 RasSstp - ok
      00:57:44.0133 3956 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
      00:57:44.0137 3956 rdbss - ok
      00:57:44.0144 3956 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
      00:57:44.0146 3956 rdpbus - ok
      00:57:44.0159 3956 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
      00:57:44.0160 3956 RDPCDD - ok
      00:57:44.0200 3956 [ 1B6163C503398B23FF8B939C67747683 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
      00:57:44.0239 3956 RDPDR - ok
      00:57:44.0247 3956 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
      00:57:44.0248 3956 RDPENCDD - ok
      00:57:44.0253 3956 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
      00:57:44.0254 3956 RDPREFMP - ok
      00:57:44.0304 3956 [ 70CBA1A0C98600A2AA1863479B35CB90 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
      00:57:44.0305 3956 RdpVideoMiniport - ok
      00:57:44.0345 3956 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
      00:57:44.0348 3956 RDPWD - ok
      00:57:44.0389 3956 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys

    6. #6
      Usuario Avatar de The_rock_cs
      Registrado
      oct 2012
      Ubicación
      Argentina
      Mensajes
      11

      Re: ya analize con TDSS, que hago ahora?

      00:57:44.0392 3956 rdyboost - ok
      00:57:44.0410 3956 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
      00:57:44.0413 3956 RemoteAccess - ok
      00:57:44.0437 3956 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
      00:57:44.0440 3956 RemoteRegistry - ok
      00:57:44.0455 3956 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
      00:57:44.0458 3956 RpcEptMapper - ok
      00:57:44.0488 3956 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
      00:57:44.0491 3956 RpcLocator - ok
      00:57:44.0538 3956 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
      00:57:44.0544 3956 RpcSs - ok
      00:57:44.0565 3956 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
      00:57:44.0566 3956 rspndr - ok
      00:57:44.0598 3956 [ 7EA8D2EB9BBFD2AB8A3117A1E96D3B3A ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
      00:57:44.0601 3956 RTL8167 - ok
      00:57:44.0646 3956 [ E60C0A09F997826C7627B244195AB581 ] s3cap C:\Windows\system32\drivers\vms3cap.sys
      00:57:44.0647 3956 s3cap - ok
      00:57:44.0661 3956 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
      00:57:44.0664 3956 SamSs - ok
      00:57:44.0707 3956 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
      00:57:44.0709 3956 sbp2port - ok
      00:57:44.0738 3956 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
      00:57:44.0742 3956 SCardSvr - ok
      00:57:44.0787 3956 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
      00:57:44.0810 3956 scfilter - ok
      00:57:44.0862 3956 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
      00:57:44.0874 3956 Schedule - ok
      00:57:44.0917 3956 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
      00:57:44.0919 3956 SCPolicySvc - ok
      00:57:44.0964 3956 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
      00:57:44.0970 3956 SDRSVC - ok
      00:57:44.0998 3956 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
      00:57:44.0999 3956 secdrv - ok
      00:57:45.0043 3956 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
      00:57:45.0046 3956 seclogon - ok
      00:57:45.0059 3956 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
      00:57:45.0062 3956 SENS - ok
      00:57:45.0067 3956 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
      00:57:45.0070 3956 SensrSvc - ok
      00:57:45.0112 3956 [ 3DC3EC72952BD60C438E397781FF0572 ] Ser2pl C:\Windows\system32\DRIVERS\ser2pl64.sys
      00:57:45.0121 3956 Ser2pl - ok
      00:57:45.0133 3956 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
      00:57:45.0134 3956 Serenum - ok
      00:57:45.0145 3956 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
      00:57:45.0206 3956 Serial - ok
      00:57:45.0251 3956 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
      00:57:45.0252 3956 sermouse - ok
      00:57:45.0308 3956 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
      00:57:45.0312 3956 SessionEnv - ok
      00:57:45.0352 3956 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
      00:57:45.0353 3956 sffdisk - ok
      00:57:45.0365 3956 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
      00:57:45.0365 3956 sffp_mmc - ok
      00:57:45.0370 3956 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
      00:57:45.0371 3956 sffp_sd - ok
      00:57:45.0386 3956 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
      00:57:45.0387 3956 sfloppy - ok
      00:57:45.0406 3956 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
      00:57:45.0410 3956 SharedAccess - ok
      00:57:45.0458 3956 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
      00:57:45.0464 3956 ShellHWDetection - ok
      00:57:45.0476 3956 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
      00:57:45.0478 3956 SiSRaid2 - ok
      00:57:45.0489 3956 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
      00:57:45.0500 3956 SiSRaid4 - ok
      00:57:45.0551 3956 [ A4FAB5F7818A69DA6E740943CB8F7CA9 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
      00:57:45.0553 3956 SkypeUpdate - ok
      00:57:45.0559 3956 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
      00:57:45.0561 3956 Smb - ok
      00:57:45.0597 3956 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
      00:57:45.0599 3956 SNMPTRAP - ok
      00:57:45.0611 3956 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
      00:57:45.0613 3956 spldr - ok
      00:57:45.0671 3956 [ B96C17B5DC1424D56EEA3A99E97428CD ] Spooler C:\Windows\System32\spoolsv.exe
      00:57:45.0680 3956 Spooler - ok
      00:57:45.0774 3956 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
      00:57:45.0793 3956 sppsvc - ok
      00:57:45.0801 3956 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
      00:57:45.0803 3956 sppuinotify - ok
      00:57:45.0836 3956 [ 51DE15CA5C05BCA46D8B110CD00A02FB ] sptd C:\Windows\system32\Drivers\sptd.sys
      00:57:45.0837 3956 Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: 51DE15CA5C05BCA46D8B110CD00A02FB
      00:57:45.0838 3956 sptd ( LockedFile.Multi.Generic ) - warning
      00:57:45.0838 3956 sptd - detected LockedFile.Multi.Generic (1)
      00:57:45.0883 3956 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
      00:57:45.0889 3956 srv - ok
      00:57:45.0938 3956 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
      00:57:45.0942 3956 srv2 - ok
      00:57:45.0961 3956 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
      00:57:45.0963 3956 srvnet - ok
      00:57:45.0983 3956 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
      00:57:45.0987 3956 SSDPSRV - ok
      00:57:46.0000 3956 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
      00:57:46.0003 3956 SstpSvc - ok
      00:57:46.0046 3956 [ 415205B445C60B09E779F78D6DF25667 ] StarPortLite C:\Windows\system32\DRIVERS\StarPortLite.sys
      00:57:46.0047 3956 StarPortLite - ok
      00:57:46.0070 3956 Steam Client Service - ok
      00:57:46.0105 3956 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
      00:57:46.0106 3956 stexstor - ok
      00:57:46.0155 3956 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
      00:57:46.0164 3956 stisvc - ok
      00:57:46.0216 3956 [ 7785DC213270D2FC066538DAF94087E7 ] storflt C:\Windows\system32\drivers\vmstorfl.sys
      00:57:46.0217 3956 storflt - ok
      00:57:46.0256 3956 [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc C:\Windows\system32\drivers\storvsc.sys
      00:57:46.0257 3956 storvsc - ok
      00:57:46.0295 3956 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
      00:57:46.0296 3956 swenum - ok
      00:57:46.0315 3956 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
      00:57:46.0323 3956 swprv - ok
      00:57:46.0329 3956 Synth3dVsc - ok
      00:57:46.0403 3956 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
      00:57:46.0417 3956 SysMain - ok
      00:57:46.0461 3956 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
      00:57:46.0464 3956 TabletInputService - ok
      00:57:46.0507 3956 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
      00:57:46.0513 3956 TapiSrv - ok
      00:57:46.0528 3956 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
      00:57:46.0532 3956 TBS - ok
      00:57:46.0608 3956 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] Tcpip C:\Windows\system32\drivers\tcpip.sys
      00:57:46.0626 3956 Tcpip - ok
      00:57:46.0661 3956 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
      00:57:46.0673 3956 TCPIP6 - ok
      00:57:46.0722 3956 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
      00:57:46.0724 3956 tcpipreg - ok
      00:57:46.0744 3956 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
      00:57:46.0745 3956 TDPIPE - ok
      00:57:46.0790 3956 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
      00:57:46.0791 3956 TDTCP - ok
      00:57:46.0837 3956 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
      00:57:46.0839 3956 tdx - ok
      00:57:46.0879 3956 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
      00:57:46.0881 3956 TermDD - ok
      00:57:46.0933 3956 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
      00:57:46.0944 3956 TermService - ok
      00:57:46.0978 3956 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
      00:57:46.0980 3956 Themes - ok
      00:57:47.0006 3956 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
      00:57:47.0009 3956 THREADORDER - ok
      00:57:47.0025 3956 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
      00:57:47.0029 3956 TrkWks - ok
      00:57:47.0103 3956 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
      00:57:47.0105 3956 TrustedInstaller - ok
      00:57:47.0153 3956 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
      00:57:47.0154 3956 tssecsrv - ok
      00:57:47.0205 3956 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
      00:57:47.0206 3956 TsUsbFlt - ok
      00:57:47.0211 3956 tsusbhub - ok
      00:57:47.0260 3956 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
      00:57:47.0262 3956 tunnel - ok
      00:57:47.0283 3956 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
      00:57:47.0284 3956 uagp35 - ok
      00:57:47.0327 3956 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
      00:57:47.0331 3956 udfs - ok
      00:57:47.0359 3956 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
      00:57:47.0362 3956 UI0Detect - ok
      00:57:47.0373 3956 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
      00:57:47.0374 3956 uliagpkx - ok
      00:57:47.0420 3956 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
      00:57:47.0422 3956 umbus - ok
      00:57:47.0437 3956 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
      00:57:47.0438 3956 UmPass - ok
      00:57:47.0485 3956 [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService C:\Windows\System32\umrdp.dll
      00:57:47.0490 3956 UmRdpService - ok
      00:57:47.0595 3956 [ 02C298382359653BEC4C737C2AB7F9C5 ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
      00:57:47.0613 3956 UNS - ok
      00:57:47.0629 3956 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
      00:57:47.0632 3956 upnphost - ok
      00:57:47.0681 3956 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
      00:57:47.0683 3956 usbccgp - ok
      00:57:47.0727 3956 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
      00:57:47.0729 3956 usbcir - ok
      00:57:47.0782 3956 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys
      00:57:47.0784 3956 usbehci - ok
      00:57:47.0803 3956 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
      00:57:47.0806 3956 usbhub - ok
      00:57:47.0854 3956 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
      00:57:47.0855 3956 usbohci - ok
      00:57:47.0868 3956 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
      00:57:47.0869 3956 usbprint - ok
      00:57:47.0918 3956 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
      00:57:47.0919 3956 usbscan - ok
      00:57:47.0935 3956 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
      00:57:47.0936 3956 USBSTOR - ok
      00:57:47.0953 3956 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
      00:57:47.0954 3956 usbuhci - ok
      00:57:47.0983 3956 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
      00:57:47.0987 3956 UxSms - ok
      00:57:48.0002 3956 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
      00:57:48.0005 3956 VaultSvc - ok
      00:57:48.0048 3956 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
      00:57:48.0049 3956 vdrvroot - ok
      00:57:48.0096 3956 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
      00:57:48.0104 3956 vds - ok
      00:57:48.0131 3956 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
      00:57:48.0132 3956 vga - ok
      00:57:48.0135 3956 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
      00:57:48.0137 3956 VgaSave - ok
      00:57:48.0140 3956 VGPU - ok
      00:57:48.0200 3956 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
      00:57:48.0203 3956 vhdmp - ok
      00:57:48.0215 3956 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
      00:57:48.0216 3956 viaide - ok
      00:57:48.0261 3956 [ 86EA3E79AE350FEA5331A1303054005F ] vmbus C:\Windows\system32\drivers\vmbus.sys
      00:57:48.0263 3956 vmbus - ok
      00:57:48.0268 3956 [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
      00:57:48.0269 3956 VMBusHID - ok
      00:57:48.0317 3956 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
      00:57:48.0319 3956 volmgr - ok
      00:57:48.0376 3956 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
      00:57:48.0380 3956 volmgrx - ok
      00:57:48.0394 3956 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
      00:57:48.0397 3956 volsnap - ok
      00:57:48.0413 3956 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
      00:57:48.0415 3956 vsmraid - ok
      00:57:48.0482 3956 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
      00:57:48.0515 3956 VSS - ok
      00:57:48.0530 3956 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
      00:57:48.0532 3956 vwifibus - ok
      00:57:48.0555 3956 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
      00:57:48.0559 3956 W32Time - ok
      00:57:48.0571 3956 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
      00:57:48.0572 3956 WacomPen - ok
      00:57:48.0587 3956 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
      00:57:48.0588 3956 WANARP - ok
      00:57:48.0591 3956 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
      00:57:48.0592 3956 Wanarpv6 - ok
      00:57:48.0657 3956 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
      00:57:48.0670 3956 WatAdminSvc - ok
      00:57:48.0740 3956 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
      00:57:48.0757 3956 wbengine - ok
      00:57:48.0774 3956 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
      00:57:48.0780 3956 WbioSrvc - ok
      00:57:48.0830 3956 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
      00:57:48.0836 3956 wcncsvc - ok
      00:57:48.0841 3956 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
      00:57:48.0846 3956 WcsPlugInService - ok
      00:57:48.0855 3956 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
      00:57:48.0856 3956 Wd - ok
      00:57:48.0881 3956 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
      00:57:48.0887 3956 Wdf01000 - ok
      00:57:48.0898 3956 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
      00:57:48.0901 3956 WdiServiceHost - ok
      00:57:48.0905 3956 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
      00:57:48.0907 3956 WdiSystemHost - ok
      00:57:48.0956 3956 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
      00:57:48.0959 3956 WebClient - ok
      00:57:48.0965 3956 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
      00:57:48.0969 3956 Wecsvc - ok
      00:57:48.0985 3956 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
      00:57:48.0987 3956 wercplsupport - ok
      00:57:48.0998 3956 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
      00:57:49.0001 3956 WerSvc - ok
      00:57:49.0009 3956 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
      00:57:49.0010 3956 WfpLwf - ok
      00:57:49.0019 3956 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
      00:57:49.0020 3956 WIMMount - ok
      00:57:49.0024 3956 WinHttpAutoProxySvc - ok
      00:57:49.0088 3956 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
      00:57:49.0092 3956 Winmgmt - ok
      00:57:49.0159 3956 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
      00:57:49.0177 3956 WinRM - ok
      00:57:49.0213 3956 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
      00:57:49.0214 3956 WinUsb - ok
      00:57:49.0247 3956 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
      00:57:49.0254 3956 Wlansvc - ok
      00:57:49.0381 3956 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
      00:57:49.0395 3956 wlidsvc - ok
      00:57:49.0437 3956 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
      00:57:49.0438 3956 WmiAcpi - ok
      00:57:49.0453 3956 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
      00:57:49.0456 3956 wmiApSrv - ok
      00:57:49.0471 3956 WMPNetworkSvc - ok
      00:57:49.0490 3956 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
      00:57:49.0494 3956 WPCSvc - ok
      00:57:49.0545 3956 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
      00:57:49.0549 3956 WPDBusEnum - ok
      00:57:49.0577 3956 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
      00:57:49.0595 3956 ws2ifsl - ok
      00:57:49.0599 3956 WSearch - ok
      00:57:49.0680 3956 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
      00:57:49.0695 3956 wuauserv - ok
      00:57:49.0707 3956 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
      00:57:49.0719 3956 WudfPf - ok
      00:57:49.0758 3956 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
      00:57:49.0769 3956 WUDFRd - ok
      00:57:49.0811 3956 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
      00:57:49.0816 3956 wudfsvc - ok
      00:57:49.0842 3956 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
      00:57:49.0848 3956 WwanSvc - ok
      00:57:49.0857 3956 ================ Scan global ===============================
      00:57:49.0874 3956 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
      00:57:49.0919 3956 [ 72CC564BBC70DE268784BCE91EB8A28F ] C:\Windows\system32\winsrv.dll
      00:57:49.0931 3956 [ 72CC564BBC70DE268784BCE91EB8A28F ] C:\Windows\system32\winsrv.dll
      00:57:49.0963 3956 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
      00:57:50.0001 3956 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
      00:57:50.0007 3956 [Global] - ok
      00:57:50.0007 3956 ================ Scan MBR ==================================
      00:57:50.0020 3956 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
      00:57:50.0198 3956 \Device\Harddisk0\DR0 - ok
      00:57:50.0199 3956 ================ Scan VBR ==================================
      00:57:50.0202 3956 [ 86F789486BFCC022001D8F758C458DB5 ] \Device\Harddisk0\DR0\Partition1
      00:57:50.0204 3956 \Device\Harddisk0\DR0\Partition1 - ok
      00:57:50.0214 3956 [ FB6D7A36EABB118230FA390F71D15331 ] \Device\Harddisk0\DR0\Partition2
      00:57:50.0216 3956 \Device\Harddisk0\DR0\Partition2 - ok
      00:57:50.0217 3956 ============================================================
      00:57:50.0217 3956 Scan finished
      00:57:50.0217 3956 ============================================================
      00:57:50.0225 3752 Detected object count: 1
      00:57:50.0225 3752 Actual detected object count: 1
      00:58:01.0162 3752 sptd ( LockedFile.Multi.Generic ) - skipped by user
      00:58:01.0162 3752 sptd ( LockedFile.Multi.Generic ) - User select action: Skip

    7. #7
      Usuario Avatar de The_rock_cs
      Registrado
      oct 2012
      Ubicación
      Argentina
      Mensajes
      11

      Re: ya analize con TDSS, que hago ahora?

      Cita Originalmente publicado por M4RTYN Ver Mensaje
      Hola!

      lo de las carpetas esta en orden?

      porfavor dale a TODO SKIP y traes su reporte (localizado en : C:\TDSSKiller.x.xx.x_xx.xx.xxxx_xx.xx.xx_log.txt, donde "x.xx.x_xx.xx.xxxx_xx.xx.xx" son versión, fecha y hora. )

      con ese reporte te indicare que eliminar y que no

      ahora si el NOD32 no te avisa pues debe haberse ido igual comprobaremos si deseas

      ya esta martin ahora que pasara?

    8. #8
      Usuario Avatar de M4RTYN
      Registrado
      jun 2012
      Ubicación
      Ecuador
      Mensajes
      5.520

      Re: ya analize con TDSS, que hago ahora?

      Hola el reporte se ve limpio (solo hay un objeto sospechoso el cual no es virus) en la imagen no se veia mayor cosa (tendrias que decirme si sigues teniendo problemas o si el NOD sigue alertando)

      PD: ese es el reporte del analisis mostrado en las imagenes?

      Saludos y suerte

    9. #9
      Usuario Avatar de The_rock_cs
      Registrado
      oct 2012
      Ubicación
      Argentina
      Mensajes
      11

      Re: ya analize con TDSS, que hago ahora?

      el reporte lo copie directamente del tdss no abri ninguna carpeta ni nada porque no encontre asi como analizo asi como lo fui copiando! GRACIAS!!!!! entonces esta todo limpio, lo que no entiendo es porque las carpetas se volvieron ocultas todas!!! tube q ue ir a configuraciones y poner ver carpetas ocultas y archivos, no quiero eso aparecen archivos raros q nunca voy a abrir

    10. #10
      Usuario Avatar de M4RTYN
      Registrado
      jun 2012
      Ubicación
      Ecuador
      Mensajes
      5.520

      Re: ya analize con TDSS, que hago ahora?

      Oks entonces el unico problema ews el de las carpetas (para enfocarnos en eso) y pudo ser un efecto del virus

      saludos!

    Página 1 de 2 12 ÚltimoÚltimo