• Registrarse
  • Iniciar sesión


  • Resultados 1 al 5 de 5

    ¿Es necesario formartear mi computadora ? Daños por virus

    Hola , no se si esta sea el area correcta del foro, pero bueno saludos les cuento mi problema inicio cuando busque Temple run para PC , mala idea , bueno en esos dias no ...

    1. #1
      Usuario Avatar de Leo08Mx
      Registrado
      ago 2012
      Ubicación
      Minatitlan, Ver "Tierra de flechadores"
      Mensajes
      7

      Triste ¿Es necesario formartear mi computadora ? Daños por virus

      Hola , no se si esta sea el area correcta del foro, pero bueno saludos les cuento mi problema inicio cuando busque Temple run para PC , mala idea , bueno en esos dias no tenia instalado ningun antivirus, descargue un archivo De este post LINK Peligroso , entonces ejecute ese Archivo [Temple Run.exe] y no aparecio nada, se me ocurre correrlo en modo de compatibilidad y derechos de administrador para ver si funcionaba. No paso nada solo aparecio una ventana de CMD.exe y se cerro. Dias despues instale un antivirus Comodo Internet Security Premium , escane me detecto el archivo y lo borro.

      Un dia despues en mis busquedas que hago en mi PC se me ocurre abrir la carpet TEMP y despues la carpeta Roaming es aqui donde encontre Miles de Capturas de mi pantalla comenzando desde que ejecute el programa, y terminando hasta que el antivirus borro el .exe . Me surgio la duda de que mas pudo haber echo ese virus asi que lo analise en Anubis .

      Este es el resultado: http://anubis.iseclab.org/?action=re...44&format=html

      Aqui me muestran algunos cambios que hizo este virus en mi sistema, quisiera saber si son peligrosos o puedo seguir usando mi PC con estos cambios indeseados.
      Última edición por Leo08Mx fecha: 11/02/13 a las 22:06:09

    2. #2
      Moderador
      Avatar de @MarioL
      Registrado
      nov 2006
      Ubicación
      Málaga - España
      Mensajes
      8.823

      Re: ¿Es necesario formartear mi computadora ? Daños por virus

      Hola y bienvenid@
      Vamos a realizar un análisis en profundidad de tú ordenador , estos pasos debes de hacerlo en modo normal, es importante que leas con detenemiento y sin ejecutarlas haz lo siguiente:


      1. Descarga en tú escritorio el TDSSKiller pero NO la ejecutes aún.
      2. Descarga, instala y actualiza el Malwarebytes.


      Ahora vamos a realizar estos pasos:

      1º- Ejecutamos el TDSSKiller según su manual.

      Recuerda marcar ambas opciones:


      Una vez terminado copia su reporte.



      2º- Ejecutamos el Malwarebytes y realizamos lo siguiente:


      1. Pestaña "Actualización" y luego al botón "Actualizar"
      2. Pestaña "Escáner" y luego a "Escaneo Completo" y seguido a "Escanear"
      3. Una vez acabado le das a la opción "Mostrar Resultados" y seguidamente a "Quitar elementos Seleccionado"
      4. Sí te pide reiniciar hazlo.
      5. Copia su último reporte ubicado en la pestaña "Registro"


      3º-
      Analiza tú máquina con ESET Online Scanner siguiendo los pasos con detenimiento
      Bien, una vez acabado el nod32 peganos tambien el reporte, una vez que lo tengamos ya continuamos con más pasos sí fuese necesario


      Resumen:

      • Colocar el reporte del Malwarebytes.
      • Colocar el reporte del TDSSkiller.
      • Colocar el reporte del ESET Online Scanner.
      • Comentar como va el ordenador.


      Un saludo.
      Invy

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    3. #3
      Usuario Avatar de Leo08Mx
      Registrado
      ago 2012
      Ubicación
      Minatitlan, Ver "Tierra de flechadores"
      Mensajes
      7

      Re: ¿Es necesario formartear mi computadora ? Daños por virus

      Gracias por tu respuesta , disculpa que consteste hasta ahora , esque tardo un poco en analizar. Aqui estan los reportes.

      Este es de TDSSkiller.

      19:28:30.0621 5584 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
      19:28:31.0394 5584 ============================================================
      19:28:31.0394 5584 Current date / time: 2013/02/12 19:28:31.0394
      19:28:31.0394 5584 SystemInfo:
      19:28:31.0394 5584
      19:28:31.0394 5584 OS Version: 6.1.7601 ServicePack: 1.0
      19:28:31.0395 5584 Product type: Workstation
      19:28:31.0395 5584 ComputerName: RAMÍREZ-PC
      19:28:31.0395 5584 UserName: RAMÍREZ
      19:28:31.0395 5584 Windows directory: C:\Windows
      19:28:31.0395 5584 System windows directory: C:\Windows
      19:28:31.0395 5584 Running under WOW64
      19:28:31.0395 5584 Processor architecture: Intel x64
      19:28:31.0395 5584 Number of processors: 2
      19:28:31.0395 5584 Page size: 0x1000
      19:28:31.0395 5584 Boot type: Normal boot
      19:28:31.0395 5584 ============================================================
      19:28:31.0806 5584 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
      19:28:31.0810 5584 ============================================================
      19:28:31.0810 5584 \Device\Harddisk0\DR0:
      19:28:31.0811 5584 MBR partitions:
      19:28:31.0811 5584 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2000800, BlocksNum 0x32000
      19:28:31.0811 5584 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x2032800, BlocksNum 0x1DCE3000
      19:28:31.0827 5584 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x1FD16000, BlocksNum 0x1A66F800
      19:28:31.0827 5584 ============================================================
      19:28:31.0865 5584 C: <-> \Device\Harddisk0\DR0\Partition2
      19:28:31.0903 5584 D: <-> \Device\Harddisk0\DR0\Partition3
      19:28:31.0903 5584 ============================================================
      19:28:31.0903 5584 Initialize success
      19:28:31.0903 5584 ============================================================
      19:30:43.0954 5008 ============================================================
      19:30:43.0954 5008 Scan started
      19:30:43.0954 5008 Mode: Manual; SigCheck; TDLFS;
      19:30:43.0954 5008 ============================================================
      19:30:44.0341 5008 ================ Scan system memory ========================
      19:30:44.0341 5008 System memory - ok
      19:30:44.0342 5008 ================ Scan services =============================
      19:30:44.0470 5008 [ 581D88B25C4D4121824FED2CA38E562F ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
      19:30:44.0524 5008 !SASCORE - ok
      19:30:44.0760 5008 [ F3634A1A8F4CB923E707BCE7FA3D4B9B ] 0902508drv C:\Windows\system32\DRIVERS\0902508drv.sys
      19:30:44.0764 5008 Suspicious file (Forged): C:\Windows\system32\DRIVERS\0902508drv.sys. Real md5: F3634A1A8F4CB923E707BCE7FA3D4B9B, Fake md5: AF34937075FC9B5FBF3D9F7E9C4BBCEB
      19:30:44.0765 5008 0902508drv ( ForgedFile.Multi.Generic ) - warning
      19:30:44.0765 5008 0902508drv - detected ForgedFile.Multi.Generic (1)
      19:30:44.0800 5008 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
      19:30:44.0835 5008 1394ohci - ok
      19:30:44.0963 5008 [ B33CF4DE909A5B30F526D82053A63C8E ] ABBYY.Licensing.FineReader.Sprint.9.0 C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
      19:30:44.0989 5008 ABBYY.Licensing.FineReader.Sprint.9.0 - ok
      19:30:45.0034 5008 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
      19:30:45.0055 5008 ACPI - ok
      19:30:45.0101 5008 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
      19:30:45.0137 5008 AcpiPmi - ok
      19:30:45.0219 5008 [ 3927397AC60D943DAF8808AFFED582B7 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
      19:30:45.0233 5008 AdobeARMservice - ok
      19:30:45.0281 5008 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
      19:30:45.0305 5008 adp94xx - ok
      19:30:45.0335 5008 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys
      19:30:45.0356 5008 adpahci - ok
      19:30:45.0396 5008 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
      19:30:45.0413 5008 adpu320 - ok
      19:30:45.0474 5008 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
      19:30:45.0539 5008 AeLookupSvc - ok
      19:30:45.0602 5008 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
      19:30:45.0631 5008 AFD - ok
      19:30:45.0658 5008 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
      19:30:45.0672 5008 agp440 - ok
      19:30:45.0706 5008 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
      19:30:45.0737 5008 ALG - ok
      19:30:45.0767 5008 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
      19:30:45.0782 5008 aliide - ok
      19:30:45.0787 5008 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
      19:30:45.0801 5008 amdide - ok
      19:30:45.0815 5008 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
      19:30:45.0832 5008 AmdK8 - ok
      19:30:45.0846 5008 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
      19:30:45.0882 5008 AmdPPM - ok
      19:30:45.0918 5008 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
      19:30:45.0934 5008 amdsata - ok
      19:30:45.0972 5008 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
      19:30:45.0989 5008 amdsbs - ok
      19:30:46.0006 5008 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
      19:30:46.0021 5008 amdxata - ok
      19:30:46.0057 5008 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
      19:30:46.0130 5008 AppID - ok
      19:30:46.0162 5008 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
      19:30:46.0240 5008 AppIDSvc - ok
      19:30:46.0261 5008 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
      19:30:46.0317 5008 Appinfo - ok
      19:30:46.0375 5008 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll
      19:30:46.0421 5008 AppMgmt - ok
      19:30:46.0470 5008 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys
      19:30:46.0485 5008 arc - ok
      19:30:46.0496 5008 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys
      19:30:46.0513 5008 arcsas - ok
      19:30:46.0640 5008 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
      19:30:46.0672 5008 aspnet_state - ok
      19:30:46.0718 5008 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
      19:30:46.0781 5008 AsyncMac - ok
      19:30:46.0812 5008 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
      19:30:46.0827 5008 atapi - ok
      19:30:46.0901 5008 [ CC406DA84E7DD3FA3AD20340DBC66CF2 ] athr C:\Windows\system32\DRIVERS\athrx.sys
      19:30:46.0968 5008 athr - ok
      19:30:47.0015 5008 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
      19:30:47.0077 5008 AudioEndpointBuilder - ok
      19:30:47.0105 5008 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
      19:30:47.0159 5008 AudioSrv - ok
      19:30:47.0233 5008 [ 32A5DEFDDC3562BF89D73586F5915B34 ] Autodesk Licensing Service C:\Program Files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exe
      19:30:47.0245 5008 Autodesk Licensing Service - ok
      19:30:47.0283 5008 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
      19:30:47.0324 5008 AxInstSV - ok
      19:30:47.0378 5008 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
      19:30:47.0428 5008 b06bdrv - ok
      19:30:47.0449 5008 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
      19:30:47.0489 5008 b57nd60a - ok
      19:30:47.0543 5008 [ 93EE7D9C35AE7E9FFDA148D7805F1421 ] BBSvc C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE
      19:30:47.0560 5008 BBSvc - ok
      19:30:47.0592 5008 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
      19:30:47.0644 5008 BDESVC - ok
      19:30:47.0667 5008 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
      19:30:47.0743 5008 Beep - ok
      19:30:47.0779 5008 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
      19:30:47.0848 5008 BFE - ok
      19:30:47.0889 5008 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
      19:30:47.0955 5008 BITS - ok
      19:30:47.0997 5008 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
      19:30:48.0028 5008 blbdrive - ok
      19:30:48.0059 5008 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
      19:30:48.0088 5008 bowser - ok
      19:30:48.0119 5008 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
      19:30:48.0139 5008 BrFiltLo - ok
      19:30:48.0144 5008 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
      19:30:48.0164 5008 BrFiltUp - ok
      19:30:48.0200 5008 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
      19:30:48.0229 5008 Browser - ok
      19:30:48.0251 5008 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
      19:30:48.0317 5008 Brserid - ok
      19:30:48.0321 5008 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
      19:30:48.0357 5008 BrSerWdm - ok
      19:30:48.0380 5008 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
      19:30:48.0414 5008 BrUsbMdm - ok
      19:30:48.0430 5008 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
      19:30:48.0459 5008 BrUsbSer - ok
      19:30:48.0464 5008 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
      19:30:48.0498 5008 BTHMODEM - ok
      19:30:48.0534 5008 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
      19:30:48.0593 5008 bthserv - ok
      19:30:48.0631 5008 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
      19:30:48.0690 5008 cdfs - ok
      19:30:48.0733 5008 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
      19:30:48.0762 5008 cdrom - ok
      19:30:48.0784 5008 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
      19:30:48.0849 5008 CertPropSvc - ok
      19:30:48.0881 5008 CFRMD - ok
      19:30:48.0916 5008 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\drivers\circlass.sys
      19:30:48.0945 5008 circlass - ok
      19:30:48.0965 5008 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
      19:30:48.0985 5008 CLFS - ok
      19:30:49.0034 5008 [ 3A7C27F5880CE978487C5FF42A5D9080 ] CLPSLauncher C:\Program Files (x86)\Common Files\Comodo\launcher_service.exe
      19:30:49.0049 5008 CLPSLauncher - ok
      19:30:49.0092 5008 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
      19:30:49.0105 5008 clr_optimization_v2.0.50727_32 - ok
      19:30:49.0139 5008 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
      19:30:49.0151 5008 clr_optimization_v2.0.50727_64 - ok
      19:30:49.0216 5008 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
      19:30:49.0244 5008 clr_optimization_v4.0.30319_32 - ok
      19:30:49.0267 5008 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
      19:30:49.0281 5008 clr_optimization_v4.0.30319_64 - ok
      19:30:49.0319 5008 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\drivers\CmBatt.sys
      19:30:49.0352 5008 CmBatt - ok
      19:30:49.0490 5008 [ 5739E651DAD5BA8216AD3BB0450C2E3A ] cmdAgent C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
      19:30:49.0582 5008 cmdAgent - ok
      19:30:49.0612 5008 [ 57F363A3F1C4EC88B3A8739928BE48FE ] cmderd C:\Windows\system32\DRIVERS\cmderd.sys
      19:30:49.0624 5008 cmderd - ok
      19:30:49.0671 5008 [ A4A328ECC7892BED9EC957748FA551B8 ] cmdGuard C:\Windows\system32\DRIVERS\cmdguard.sys
      19:30:49.0697 5008 cmdGuard - ok
      19:30:49.0729 5008 [ F83599D056E111F4DD2EB236D0774419 ] cmdHlp C:\Windows\system32\DRIVERS\cmdhlp.sys
      19:30:49.0742 5008 cmdHlp - ok
      19:30:49.0763 5008 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
      19:30:49.0776 5008 cmdide - ok
      19:30:49.0816 5008 [ ABE06E030311E1E4AA8E3BBA7B3B5FBC ] cmdvirth C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe
      19:30:49.0831 5008 cmdvirth - ok
      19:30:49.0870 5008 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
      19:30:49.0898 5008 CNG - ok
      19:30:49.0955 5008 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
      19:30:49.0968 5008 Compbatt - ok
      19:30:49.0997 5008 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
      19:30:50.0027 5008 CompositeBus - ok
      19:30:50.0040 5008 COMSysApp - ok
      19:30:50.0053 5008 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
      19:30:50.0066 5008 crcdisk - ok
      19:30:50.0109 5008 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
      19:30:50.0148 5008 CryptSvc - ok
      19:30:50.0190 5008 [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC C:\Windows\system32\drivers\csc.sys
      19:30:50.0242 5008 CSC - ok
      19:30:50.0285 5008 [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService C:\Windows\System32\cscsvc.dll
      19:30:50.0315 5008 CscService - ok
      19:30:50.0421 5008 [ 72794D112CBAFF3BC0C29BF7350D4741 ] cvhsvc C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
      19:30:50.0451 5008 cvhsvc - ok
      19:30:50.0503 5008 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
      19:30:50.0566 5008 DcomLaunch - ok
      19:30:50.0608 5008 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
      19:30:50.0667 5008 defragsvc - ok
      19:30:50.0699 5008 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
      19:30:50.0758 5008 DfsC - ok
      19:30:50.0805 5008 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
      19:30:50.0873 5008 Dhcp - ok
      19:30:50.0885 5008 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
      19:30:50.0941 5008 discache - ok
      19:30:50.0973 5008 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\drivers\disk.sys
      19:30:50.0988 5008 Disk - ok
      19:30:51.0017 5008 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
      19:30:51.0043 5008 Dnscache - ok
      19:30:51.0075 5008 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
      19:30:51.0142 5008 dot3svc - ok
      19:30:51.0161 5008 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
      19:30:51.0217 5008 DPS - ok
      19:30:51.0358 5008 [ 11D030A18B4CA496B8691278511B3AB5 ] DragonUpdater C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
      19:30:51.0409 5008 DragonUpdater - ok
      19:30:51.0442 5008 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
      19:30:51.0470 5008 drmkaud - ok
      19:30:51.0517 5008 [ 32C2CD16DC801AEF9EDAAFEA0DBD769E ] DsiWMIService C:\Program Files (x86)\Launch Manager\dsiwmis.exe
      19:30:51.0535 5008 DsiWMIService - ok
      19:30:51.0578 5008 [ 46571ED73AE84469DCA53081D33CF3C8 ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys
      19:30:51.0594 5008 dtsoftbus01 - ok
      19:30:51.0628 5008 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
      19:30:51.0659 5008 DXGKrnl - ok
      19:30:51.0686 5008 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
      19:30:51.0743 5008 EapHost - ok
      19:30:51.0810 5008 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\drivers\evbda.sys
      19:30:51.0873 5008 ebdrv - ok
      19:30:51.0904 5008 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
      19:30:51.0950 5008 EFS - ok
      19:30:51.0999 5008 [ 03E6888DA1A85ACF14AC2A3C328A9E62 ] EgisTec Ticket Service C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe
      19:30:52.0012 5008 EgisTec Ticket Service - ok
      19:30:52.0090 5008 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
      19:30:52.0135 5008 ehRecvr - ok
      19:30:52.0153 5008 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
      19:30:52.0172 5008 ehSched - ok
      19:30:52.0260 5008 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys
      19:30:52.0283 5008 elxstor - ok
      19:30:52.0362 5008 [ EB1C213A8550F066B2CCC29C9F41E2AE ] ePowerSvc C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
      19:30:52.0389 5008 ePowerSvc - ok
      19:30:52.0401 5008 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
      19:30:52.0423 5008 ErrDev - ok
      19:30:52.0477 5008 [ DBAA0C650C9549DC5C599D1E81DEDAAD ] ETD C:\Windows\system32\DRIVERS\ETD.sys
      19:30:52.0492 5008 ETD - ok
      19:30:52.0527 5008 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
      19:30:52.0590 5008 EventSystem - ok
      19:30:52.0605 5008 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
      19:30:52.0655 5008 exfat - ok
      19:30:52.0684 5008 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
      19:30:52.0749 5008 fastfat - ok
      19:30:52.0787 5008 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
      19:30:52.0837 5008 Fax - ok
      19:30:52.0947 5008 [ 0F85A3FB1CE963534A6476DC84A9E05B ] FBDiskOptimizer C:\Program Files (x86)\FixBee\FBDefragSrv64.exe
      19:30:52.0969 5008 FBDiskOptimizer - ok
      19:30:52.0990 5008 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\drivers\fdc.sys
      19:30:53.0023 5008 fdc - ok
      19:30:53.0053 5008 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
      19:30:53.0102 5008 fdPHost - ok
      19:30:53.0116 5008 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
      19:30:53.0163 5008 FDResPub - ok
      19:30:53.0182 5008 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
      19:30:53.0196 5008 FileInfo - ok
      19:30:53.0209 5008 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
      19:30:53.0273 5008 Filetrace - ok
      19:30:53.0316 5008 [ BB0667B0171B632B97EA759515476F07 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
      19:30:53.0338 5008 FLEXnet Licensing Service - ok
      19:30:53.0357 5008 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
      19:30:53.0372 5008 flpydisk - ok
      19:30:53.0390 5008 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
      19:30:53.0409 5008 FltMgr - ok
      19:30:53.0444 5008 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
      19:30:53.0501 5008 FontCache - ok
      19:30:53.0561 5008 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
      19:30:53.0573 5008 FontCache3.0.0.0 - ok
      19:30:53.0594 5008 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
      19:30:53.0609 5008 FsDepends - ok
      19:30:53.0662 5008 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
      19:30:53.0676 5008 Fs_Rec - ok
      19:30:53.0712 5008 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
      19:30:53.0732 5008 fvevol - ok
      19:30:53.0763 5008 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
      19:30:53.0777 5008 gagp30kx - ok
      19:30:53.0852 5008 [ AE63D0DB96C07CAE5DC4CDB2B2A719A0 ] GeekBuddyRSP C:\Program Files (x86)\Common Files\Comodo\GeekBuddyRSP.exe
      19:30:53.0899 5008 GeekBuddyRSP - ok
      19:30:53.0948 5008 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
      19:30:54.0004 5008 gpsvc - ok
      19:30:54.0070 5008 [ 0191DEE9B9EB7902AF2CF4F67301095D ] GREGService C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
      19:30:54.0082 5008 GREGService - ok
      19:30:54.0103 5008 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
      19:30:54.0154 5008 hcw85cir - ok
      19:30:54.0193 5008 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
      19:30:54.0223 5008 HdAudAddService - ok
      19:30:54.0249 5008 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
      19:30:54.0280 5008 HDAudBus - ok
      19:30:54.0317 5008 [ B6AC71AAA2B10848F57FC49D55A651AF ] HECIx64 C:\Windows\system32\drivers\HECIx64.sys
      19:30:54.0328 5008 HECIx64 - ok
      19:30:54.0348 5008 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
      19:30:54.0373 5008 HidBatt - ok
      19:30:54.0384 5008 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\drivers\hidbth.sys
      19:30:54.0411 5008 HidBth - ok
      19:30:54.0415 5008 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\drivers\hidir.sys
      19:30:54.0435 5008 HidIr - ok
      19:30:54.0456 5008 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
      19:30:54.0522 5008 hidserv - ok
      19:30:54.0554 5008 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
      19:30:54.0570 5008 HidUsb - ok
      19:30:54.0604 5008 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
      19:30:54.0680 5008 hkmsvc - ok
      19:30:54.0703 5008 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
      19:30:54.0742 5008 HomeGroupListener - ok
      19:30:54.0770 5008 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
      19:30:54.0801 5008 HomeGroupProvider - ok
      19:30:54.0823 5008 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
      19:30:54.0837 5008 HpSAMD - ok
      19:30:54.0875 5008 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
      19:30:54.0936 5008 HTTP - ok
      19:30:54.0960 5008 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
      19:30:54.0973 5008 hwpolicy - ok
      19:30:54.0995 5008 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
      19:30:55.0013 5008 i8042prt - ok
      19:30:55.0054 5008 [ 1384872112E8E7FD5786ECEB8BDDF4C9 ] iaStor C:\Windows\system32\drivers\iaStor.sys
      19:30:55.0074 5008 iaStor - ok
      19:30:55.0150 5008 [ 6B24D1C3096DE796D15571079EA5E98C ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
      19:30:55.0160 5008 IAStorDataMgrSvc - ok
      19:30:55.0199 5008 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
      19:30:55.0220 5008 iaStorV - ok
      19:30:55.0271 5008 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
      19:30:55.0298 5008 idsvc - ok
      19:30:55.0514 5008 [ 31569A2E836C12014148BF7342716946 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
      19:30:55.0677 5008 igfx - ok
      19:30:55.0708 5008 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\drivers\iirsp.sys
      19:30:55.0722 5008 iirsp - ok
      19:30:55.0757 5008 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
      19:30:55.0823 5008 IKEEXT - ok
      19:30:55.0858 5008 [ DD587A55390ED2295BCE6D36AD567DA9 ] Impcd C:\Windows\system32\DRIVERS\Impcd.sys
      19:30:55.0881 5008 Impcd - ok
      19:30:55.0932 5008 [ 6B30F07E71411FF1EACCC8FE31214C92 ] inspect C:\Windows\system32\DRIVERS\inspect.sys
      19:30:55.0946 5008 inspect - ok
      19:30:56.0047 5008 [ 650D06E28A43E365A01EC4EE0946FC24 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
      19:30:56.0109 5008 IntcAzAudAddService - ok
      19:30:56.0153 5008 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
      19:30:56.0167 5008 intelide - ok
      19:30:56.0196 5008 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
      19:30:56.0220 5008 intelppm - ok
      19:30:56.0259 5008 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
      19:30:56.0318 5008 IPBusEnum - ok
      19:30:56.0326 5008 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
      19:30:56.0373 5008 IpFilterDriver - ok
      19:30:56.0403 5008 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
      19:30:56.0441 5008 iphlpsvc - ok
      19:30:56.0446 5008 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
      19:30:56.0463 5008 IPMIDRV - ok
      19:30:56.0482 5008 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
      19:30:56.0550 5008 IPNAT - ok
      19:30:56.0574 5008 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
      19:30:56.0597 5008 IRENUM - ok
      19:30:56.0614 5008 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
      19:30:56.0628 5008 isapnp - ok
      19:30:56.0650 5008 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
      19:30:56.0668 5008 iScsiPrt - ok
      19:30:56.0722 5008 [ 0469BFF65BBDEE9E46D0C45EE32A08BD ] k57nd60a C:\Windows\system32\DRIVERS\k57nd60a.sys
      19:30:56.0741 5008 k57nd60a - ok
      19:30:56.0761 5008 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
      19:30:56.0776 5008 kbdclass - ok
      19:30:56.0807 5008 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
      19:30:56.0836 5008 kbdhid - ok
      19:30:56.0848 5008 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
      19:30:56.0864 5008 KeyIso - ok
      19:30:56.0893 5008 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
      19:30:56.0908 5008 KSecDD - ok
      19:30:56.0923 5008 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
      19:30:56.0939 5008 KSecPkg - ok
      19:30:56.0959 5008 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
      19:30:57.0016 5008 ksthunk - ok
      19:30:57.0039 5008 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
      19:30:57.0103 5008 KtmRm - ok
      19:30:57.0146 5008 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
      19:30:57.0212 5008 LanmanServer - ok
      19:30:57.0240 5008 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
      19:30:57.0294 5008 LanmanWorkstation - ok
      19:30:57.0357 5008 [ 6BCEE9C766815BFFF89DE7D81AF34CE1 ] Live Updater Service C:\Program Files\Acer\Acer Updater\UpdaterService.exe
      19:30:57.0371 5008 Live Updater Service - ok
      19:30:57.0415 5008 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
      19:30:57.0480 5008 lltdio - ok
      19:30:57.0512 5008 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
      19:30:57.0569 5008 lltdsvc - ok
      19:30:57.0582 5008 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
      19:30:57.0641 5008 lmhosts - ok
      19:30:57.0707 5008 [ DBC1136A62BD4DECC3632DF650284C2E ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
      19:30:57.0722 5008 LMS - ok
      19:30:57.0756 5008 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
      19:30:57.0772 5008 LSI_FC - ok
      19:30:57.0829 5008 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
      19:30:57.0844 5008 LSI_SAS - ok
      19:30:57.0849 5008 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
      19:30:57.0864 5008 LSI_SAS2 - ok
      19:30:57.0869 5008 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
      19:30:57.0885 5008 LSI_SCSI - ok
      19:30:57.0912 5008 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
      19:30:57.0977 5008 luafv - ok
      19:30:58.0043 5008 [ 92EB844D90615CB266F84C3202B8786E ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
      19:30:58.0054 5008 MBAMProtector - ok
      19:30:58.0143 5008 [ 1ACAA67676E9E7BDA5E0C41B6E0DECAF ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
      19:30:58.0159 5008 MBAMScheduler - ok
      19:30:58.0196 5008 [ 916B8954AC3E06DC9E898AFFB41F3FB6 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
      19:30:58.0218 5008 MBAMService - ok
      19:30:58.0252 5008 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
      19:30:58.0282 5008 Mcx2Svc - ok
      19:30:58.0310 5008 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\drivers\megasas.sys
      19:30:58.0324 5008 megasas - ok
      19:30:58.0346 5008 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
      19:30:58.0366 5008 MegaSR - ok
      19:30:58.0395 5008 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
      19:30:58.0451 5008 MMCSS - ok
      19:30:58.0464 5008 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
      19:30:58.0525 5008 Modem - ok
      19:30:58.0542 5008 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
      19:30:58.0560 5008 monitor - ok
      19:30:58.0579 5008 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
      19:30:58.0593 5008 mouclass - ok
      19:30:58.0621 5008 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
      19:30:58.0653 5008 mouhid - ok
      19:30:58.0658 5008 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
      19:30:58.0673 5008 mountmgr - ok
      19:30:58.0732 5008 [ 74A748CDF9C91ED29AA9076D9F3A54DD ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
      19:30:58.0747 5008 MozillaMaintenance - ok
      19:30:58.0770 5008 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
      19:30:58.0787 5008 mpio - ok
      19:30:58.0803 5008 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
      19:30:58.0851 5008 mpsdrv - ok
      19:30:58.0896 5008 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
      19:30:58.0963 5008 MpsSvc - ok
      19:30:58.0969 5008 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
      19:30:58.0995 5008 MRxDAV - ok
      19:30:59.0016 5008 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
      19:30:59.0039 5008 mrxsmb - ok
      19:30:59.0057 5008 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
      19:30:59.0073 5008 mrxsmb10 - ok
      19:30:59.0092 5008 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
      19:30:59.0122 5008 mrxsmb20 - ok
      19:30:59.0139 5008 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
      19:30:59.0154 5008 msahci - ok
      19:30:59.0173 5008 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
      19:30:59.0190 5008 msdsm - ok
      19:30:59.0212 5008 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
      19:30:59.0246 5008 MSDTC - ok
      19:30:59.0266 5008 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
      19:30:59.0331 5008 Msfs - ok
      19:30:59.0358 5008 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
      19:30:59.0419 5008 mshidkmdf - ok
      19:30:59.0432 5008 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
      19:30:59.0446 5008 msisadrv - ok
      19:30:59.0467 5008 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
      19:30:59.0530 5008 MSiSCSI - ok
      19:30:59.0534 5008 msiserver - ok
      19:30:59.0558 5008 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
      19:30:59.0615 5008 MSKSSRV - ok
      19:30:59.0629 5008 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
      19:30:59.0687 5008 MSPCLOCK - ok
      19:30:59.0690 5008 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
      19:30:59.0749 5008 MSPQM - ok
      19:30:59.0771 5008 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
      19:30:59.0794 5008 MsRPC - ok
      19:30:59.0809 5008 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
      19:30:59.0823 5008 mssmbios - ok
      19:30:59.0834 5008 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
      19:30:59.0889 5008 MSTEE - ok
      19:30:59.0893 5008 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
      19:30:59.0909 5008 MTConfig - ok
      19:30:59.0919 5008 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
      19:30:59.0933 5008 Mup - ok
      19:30:59.0948 5008 [ 9B1EAC6FAF6F37305E822F5588DC8056 ] mwlPSDFilter C:\Windows\system32\DRIVERS\mwlPSDFilter.sys
      19:30:59.0958 5008 mwlPSDFilter - ok
      19:30:59.0968 5008 [ AD55C1524B296280ED9C6E0D730D35DA ] mwlPSDNServ C:\Windows\system32\DRIVERS\mwlPSDNServ.sys
      19:30:59.0978 5008 mwlPSDNServ - ok
      19:30:59.0982 5008 [ 2B599E6EC8843637BDD62E7F8F3BA201 ] mwlPSDVDisk C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys
      19:30:59.0993 5008 mwlPSDVDisk - ok
      19:31:00.0033 5008 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
      19:31:00.0104 5008 napagent - ok
      19:31:00.0145 5008 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
      19:31:00.0188 5008 NativeWifiP - ok
      19:31:00.0238 5008 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
      19:31:00.0270 5008 NDIS - ok
      19:31:00.0299 5008 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
      19:31:00.0346 5008 NdisCap - ok
      19:31:00.0370 5008 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
      19:31:00.0424 5008 NdisTapi - ok
      19:31:00.0449 5008 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
      19:31:00.0495 5008 Ndisuio - ok
      19:31:00.0500 5008 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
      19:31:00.0554 5008 NdisWan - ok
      19:31:00.0569 5008 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
      19:31:00.0614 5008 NDProxy - ok
      19:31:00.0622 5008 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
      19:31:00.0680 5008 NetBIOS - ok
      19:31:00.0686 5008 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
      19:31:00.0732 5008 NetBT - ok
      19:31:00.0747 5008 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
      19:31:00.0762 5008 Netlogon - ok
      19:31:00.0784 5008 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
      19:31:00.0843 5008 Netman - ok
      19:31:00.0880 5008 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
      19:31:00.0894 5008 NetMsmqActivator - ok
      19:31:00.0898 5008 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
      19:31:00.0911 5008 NetPipeActivator - ok
      19:31:00.0920 5008 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
      19:31:00.0983 5008 netprofm - ok
      19:31:00.0999 5008 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
      19:31:01.0012 5008 NetTcpActivator - ok
      19:31:01.0016 5008 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
      19:31:01.0028 5008 NetTcpPortSharing - ok
      19:31:01.0056 5008 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
      19:31:01.0069 5008 nfrd960 - ok
      19:31:01.0170 5008 [ 4AC278F2E2B1F153DD93C14420CB4677 ] NitroDriverReadSpool8 C:\Program Files\Common Files\Nitro\Pro\8.0\NitroPDFDriverService8x64.exe
      19:31:01.0185 5008 NitroDriverReadSpool8 - ok
      19:31:01.0223 5008 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
      19:31:01.0242 5008 NlaSvc - ok
      19:31:01.0346 5008 [ 5839A8027D6D324A7CD494051A96628C ] NOBU C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
      19:31:01.0409 5008 NOBU - ok
      19:31:01.0426 5008 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
      19:31:01.0472 5008 Npfs - ok
      19:31:01.0602 5008 [ 35C5DED1E298FFDC9ECA103A0136482B ] NSFProt-H C:\Windows\SysWOW64\DRIVERS\NSFProt-H.sys
      19:31:01.0615 5008 NSFProt-H - ok
      19:31:01.0647 5008 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
      19:31:01.0703 5008 nsi - ok
      19:31:01.0721 5008 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
      19:31:01.0783 5008 nsiproxy - ok
      19:31:01.0840 5008 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
      19:31:01.0908 5008 Ntfs - ok
      19:31:01.0967 5008 [ 773EED20BBF50809437373C0285BFA5E ] NTI IScheduleSvc C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe
      19:31:01.0982 5008 NTI IScheduleSvc - ok
      19:31:02.0014 5008 [ EE3BA1024594D5D09E314F206B94069E ] NTIDrvr C:\Windows\system32\drivers\NTIDrvr.sys
      19:31:02.0025 5008 NTIDrvr - ok
      19:31:02.0041 5008 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
      19:31:02.0089 5008 Null - ok
      19:31:02.0118 5008 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
      19:31:02.0134 5008 nvraid - ok
      19:31:02.0166 5008 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
      19:31:02.0182 5008 nvstor - ok
      19:31:02.0205 5008 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
      19:31:02.0221 5008 nv_agp - ok
      19:31:02.0225 5008 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
      19:31:02.0241 5008 ohci1394 - ok
      19:31:02.0295 5008 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
      19:31:02.0308 5008 ose - ok
      19:31:02.0445 5008 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
      19:31:02.0550 5008 osppsvc - ok
      19:31:02.0582 5008 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
      19:31:02.0632 5008 p2pimsvc - ok
      19:31:02.0649 5008 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
      19:31:02.0670 5008 p2psvc - ok
      19:31:02.0693 5008 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\drivers\parport.sys
      19:31:02.0710 5008 Parport - ok
      19:31:02.0734 5008 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
      19:31:02.0749 5008 partmgr - ok
      19:31:02.0755 5008 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
      19:31:02.0793 5008 PcaSvc - ok
      19:31:02.0808 5008 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
      19:31:02.0824 5008 pci - ok
      19:31:02.0837 5008 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
      19:31:02.0851 5008 pciide - ok
      19:31:02.0857 5008 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
      19:31:02.0874 5008 pcmcia - ok
      19:31:02.0878 5008 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
      19:31:02.0892 5008 pcw - ok
      19:31:02.0923 5008 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
      19:31:02.0995 5008 PEAUTH - ok
      19:31:03.0053 5008 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
      19:31:03.0122 5008 PeerDistSvc - ok
      19:31:03.0154 5008 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
      19:31:03.0179 5008 PerfHost - ok
      19:31:03.0238 5008 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
      19:31:03.0317 5008 pla - ok
      19:31:03.0346 5008 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
      19:31:03.0393 5008 PlugPlay - ok
      19:31:03.0412 5008 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
      19:31:03.0444 5008 PNRPAutoReg - ok
      19:31:03.0460 5008 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
      19:31:03.0480 5008 PNRPsvc - ok
      19:31:03.0517 5008 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
      19:31:03.0581 5008 PolicyAgent - ok
      19:31:03.0620 5008 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
      19:31:03.0671 5008 Power - ok
      19:31:03.0710 5008 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
      19:31:03.0770 5008 PptpMiniport - ok
      19:31:03.0785 5008 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\drivers\processr.sys
      19:31:03.0801 5008 Processor - ok
      19:31:03.0851 5008 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
      19:31:03.0890 5008 ProfSvc - ok
      19:31:03.0902 5008 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
      19:31:03.0919 5008 ProtectedStorage - ok
      19:31:03.0943 5008 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
      19:31:04.0007 5008 Psched - ok
      19:31:04.0057 5008 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
      19:31:04.0099 5008 ql2300 - ok
      19:31:04.0105 5008 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
      19:31:04.0120 5008 ql40xx - ok
      19:31:04.0148 5008 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
      19:31:04.0173 5008 QWAVE - ok
      19:31:04.0187 5008 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
      19:31:04.0227 5008 QWAVEdrv - ok
      19:31:04.0230 5008 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
      19:31:04.0278 5008 RasAcd - ok
      19:31:04.0316 5008 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
      19:31:04.0362 5008 RasAgileVpn - ok
      19:31:04.0413 5008 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
      19:31:04.0476 5008 RasAuto - ok
      19:31:04.0508 5008 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
      19:31:04.0568 5008 Rasl2tp - ok
      19:31:04.0588 5008 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
      19:31:04.0637 5008 RasMan - ok
      19:31:04.0642 5008 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
      19:31:04.0702 5008 RasPppoe - ok
      19:31:04.0707 5008 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
      19:31:04.0766 5008 RasSstp - ok
      19:31:04.0772 5008 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
      19:31:04.0820 5008 rdbss - ok
      19:31:04.0831 5008 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
      19:31:04.0856 5008 rdpbus - ok
      19:31:04.0872 5008 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
      19:31:04.0919 5008 RDPCDD - ok
      19:31:04.0951 5008 [ 1B6163C503398B23FF8B939C67747683 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
      19:31:04.0990 5008 RDPDR - ok
      19:31:05.0020 5008 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
      19:31:05.0082 5008 RDPENCDD - ok
      19:31:05.0094 5008 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
      19:31:05.0141 5008 RDPREFMP - ok
      19:31:05.0205 5008 [ 70CBA1A0C98600A2AA1863479B35CB90 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
      19:31:05.0255 5008 RdpVideoMiniport - ok
      19:31:05.0284 5008 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
      19:31:05.0318 5008 RDPWD - ok
      19:31:05.0329 5008 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
      19:31:05.0346 5008 rdyboost - ok
      19:31:05.0376 5008 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
      19:31:05.0436 5008 RemoteAccess - ok
      19:31:05.0477 5008 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
      19:31:05.0540 5008 RemoteRegistry - ok
      19:31:05.0561 5008 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
      19:31:05.0620 5008 RpcEptMapper - ok
      19:31:05.0648 5008 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
      19:31:05.0681 5008 RpcLocator - ok
      19:31:05.0690 5008 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
      19:31:05.0742 5008 RpcSs - ok
      19:31:05.0777 5008 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
      19:31:05.0825 5008 rspndr - ok
      19:31:05.0865 5008 [ 0E3DCF76F11DC431B088A2DFD7265CDA ] RSUSBSTOR C:\Windows\system32\Drivers\RtsUStor.sys
      19:31:05.0880 5008 RSUSBSTOR - ok
      19:31:05.0891 5008 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
      19:31:05.0907 5008 SamSs - ok
      19:31:05.0960 5008 [ 3289766038DB2CB14D07DC84392138D5 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
      19:31:05.0971 5008 SASDIFSV - ok
      19:31:05.0993 5008 [ 58A38E75F3316A83C23DF6173D41F2B5 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
      19:31:06.0003 5008 SASKUTIL - ok
      19:31:06.0015 5008 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
      19:31:06.0031 5008 sbp2port - ok
      19:31:06.0060 5008 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
      19:31:06.0109 5008 SCardSvr - ok
      19:31:06.0136 5008 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
      19:31:06.0199 5008 scfilter - ok
      19:31:06.0237 5008 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
      19:31:06.0310 5008 Schedule - ok
      19:31:06.0339 5008 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
      19:31:06.0385 5008 SCPolicySvc - ok
      19:31:06.0405 5008 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
      19:31:06.0442 5008 SDRSVC - ok
      19:31:06.0554 5008 [ 206387AB881E93A1A6EB89966C8651F1 ] SDScannerService C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
      19:31:06.0586 5008 SDScannerService - ok
      19:31:06.0652 5008 [ A529CFE32565C0B145578FFB2B32C9A5 ] SDUpdateService C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
      19:31:06.0687 5008 SDUpdateService - ok
      19:31:06.0716 5008 [ CB63BDB77BB86549FC3303C2F11EDC18 ] SDWSCService C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
      19:31:06.0730 5008 SDWSCService - ok
      19:31:06.0788 5008 [ CC781378E7EDA615D2CDCA3B17829FA4 ] SeaPort C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
      19:31:06.0806 5008 SeaPort - ok
      19:31:06.0856 5008 [ 3EA8A16169C26AFBEB544E0E48421186 ] Secdrv C:\Windows\system32\drivers\SECDRV.SYS
      19:31:06.0919 5008 Secdrv - ok
      19:31:06.0950 5008 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
      19:31:06.0995 5008 seclogon - ok
      19:31:07.0015 5008 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
      19:31:07.0072 5008 SENS - ok
      19:31:07.0102 5008 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
      19:31:07.0148 5008 SensrSvc - ok
      19:31:07.0176 5008 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\drivers\serenum.sys
      19:31:07.0203 5008 Serenum - ok
      19:31:07.0230 5008 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\drivers\serial.sys
      19:31:07.0264 5008 Serial - ok
      19:31:07.0275 5008 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\drivers\sermouse.sys
      19:31:07.0299 5008 sermouse - ok
      19:31:07.0324 5008 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
      19:31:07.0384 5008 SessionEnv - ok
      19:31:07.0388 5008 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
      19:31:07.0408 5008 sffdisk - ok
      19:31:07.0413 5008 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
      19:31:07.0431 5008 sffp_mmc - ok
      19:31:07.0435 5008 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
      19:31:07.0453 5008 sffp_sd - ok
      19:31:07.0457 5008 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
      19:31:07.0472 5008 sfloppy - ok
      19:31:07.0507 5008 [ C6CC9297BD53E5229653303E556AA539 ] Sftfs C:\Windows\system32\DRIVERS\Sftfslh.sys
      19:31:07.0533 5008 Sftfs - ok
      19:31:07.0618 5008 [ 13693B6354DD6E72DC5131DA7D764B90 ] sftlist C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
      19:31:07.0638 5008 sftlist - ok
      19:31:07.0667 5008 [ 390AA7BC52CEE43F6790CDEA1E776703 ] Sftplay C:\Windows\system32\DRIVERS\Sftplaylh.sys
      19:31:07.0683 5008 Sftplay - ok
      19:31:07.0698 5008 [ 617E29A0B0A2807466560D4C4E338D3E ] Sftredir C:\Windows\system32\DRIVERS\Sftredirlh.sys
      19:31:07.0710 5008 Sftredir - ok
      19:31:07.0725 5008 [ 8F571F016FA1976F445147E9E6C8AE9B ] Sftvol C:\Windows\system32\DRIVERS\Sftvollh.sys
      19:31:07.0736 5008 Sftvol - ok
      19:31:07.0754 5008 [ C3CDDD18F43D44AB713CF8C4916F7696 ] sftvsa C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
      19:31:07.0769 5008 sftvsa - ok
      19:31:07.0805 5008 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
      19:31:07.0861 5008 SharedAccess - ok
      19:31:07.0896 5008 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
      19:31:07.0953 5008 ShellHWDetection - ok
      19:31:07.0993 5008 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
      19:31:08.0007 5008 SiSRaid2 - ok
      19:31:08.0011 5008 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
      19:31:08.0027 5008 SiSRaid4 - ok
      19:31:08.0054 5008 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
      19:31:08.0105 5008 Smb - ok
      19:31:08.0138 5008 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
      19:31:08.0168 5008 SNMPTRAP - ok
      19:31:08.0217 5008 [ 12583AF6CBE0050651EAF2723B3AD7B3 ] speedfan C:\Windows\syswow64\speedfan.sys
      19:31:08.0231 5008 speedfan - ok
      19:31:08.0250 5008 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
      19:31:08.0265 5008 spldr - ok
      19:31:08.0301 5008 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
      19:31:08.0366 5008 Spooler - ok
      19:31:08.0449 5008 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
      19:31:08.0539 5008 sppsvc - ok
      19:31:08.0555 5008 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
      19:31:08.0601 5008 sppuinotify - ok
      19:31:08.0653 5008 [ 7812FAA01DAF3E3CE9E8A2A7C4ABCDF0 ] SpyEmrg C:\Windows\system32\Drivers\spyemrg.sys
      19:31:08.0666 5008 SpyEmrg - ok
      19:31:08.0681 5008 [ 70B90B8F3733194A72A7FEDC8567EB3D ] SpyEmrgAccess C:\Windows\system32\Drivers\spyemrg_access.sys
      19:31:08.0693 5008 SpyEmrgAccess - ok
      19:31:08.0698 5008 [ 3F87AD9594BBAE33215014C794C95B42 ] SpyEmrgGuard C:\Windows\system32\Drivers\spyemrg_guard.sys
      19:31:08.0710 5008 SpyEmrgGuard - ok
      19:31:08.0825 5008 [ B057025F5C96560EEEF753A3A7488E55 ] SpyEmrgSrv C:\Program Files\NETGATE\Spy Emergency\SpyEmergencySrv.exe
      19:31:08.0919 5008 SpyEmrgSrv - ok
      19:31:08.0958 5008 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
      19:31:08.0986 5008 srv - ok
      19:31:09.0008 5008 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
      19:31:09.0046 5008 srv2 - ok
      19:31:09.0064 5008 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
      19:31:09.0082 5008 srvnet - ok
      19:31:09.0125 5008 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
      19:31:09.0184 5008 SSDPSRV - ok
      19:31:09.0205 5008 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
      19:31:09.0252 5008 SstpSvc - ok
      19:31:09.0284 5008 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\drivers\stexstor.sys
      19:31:09.0298 5008 stexstor - ok
      19:31:09.0352 5008 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
      19:31:09.0397 5008 stisvc - ok
      19:31:09.0424 5008 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
      19:31:09.0438 5008 swenum - ok
      19:31:09.0462 5008 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
      19:31:09.0524 5008 swprv - ok
      19:31:09.0528 5008 Synth3dVsc - ok
      19:31:09.0575 5008 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
      19:31:09.0634 5008 SysMain - ok
      19:31:09.0734 5008 [ 196E20CE11EDB0EA3EDA491FCD3C943B ] SystemExplorerHelpService C:\Program Files (x86)\System Explorer\service\SystemExplorerService64.exe
      19:31:09.0766 5008 SystemExplorerHelpService - ok
      19:31:09.0809 5008 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
      19:31:09.0832 5008 TabletInputService - ok
      19:31:09.0870 5008 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
      19:31:09.0934 5008 TapiSrv - ok
      19:31:09.0950 5008 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
      19:31:09.0998 5008 TBS - ok
      19:31:10.0065 5008 [ 37608401DFDB388CAF66917F6B2D6FB0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
      19:31:10.0149 5008 Tcpip - ok
      19:31:10.0183 5008 [ 37608401DFDB388CAF66917F6B2D6FB0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
      19:31:10.0231 5008 TCPIP6 - ok
      19:31:10.0250 5008 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
      19:31:10.0265 5008 tcpipreg - ok
      19:31:10.0294 5008 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
      19:31:10.0343 5008 TDPIPE - ok
      19:31:10.0355 5008 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
      19:31:10.0370 5008 TDTCP - ok
      19:31:10.0403 5008 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
      19:31:10.0451 5008 tdx - ok
      19:31:10.0463 5008 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
      19:31:10.0477 5008 TermDD - ok
      19:31:10.0513 5008 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
      19:31:10.0580 5008 TermService - ok
      19:31:10.0596 5008 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
      19:31:10.0619 5008 Themes - ok
      19:31:10.0650 5008 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
      19:31:10.0697 5008 THREADORDER - ok
      19:31:10.0714 5008 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
      19:31:10.0780 5008 TrkWks - ok
      19:31:10.0822 5008 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
      19:31:10.0869 5008 TrustedInstaller - ok
      19:31:10.0903 5008 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
      19:31:10.0964 5008 tssecsrv - ok
      19:31:10.0980 5008 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
      19:31:11.0011 5008 TsUsbFlt - ok
      19:31:11.0019 5008 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
      19:31:11.0036 5008 TsUsbGD - ok
      19:31:11.0042 5008 tsusbhub - ok
      19:31:11.0073 5008 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
      19:31:11.0128 5008 tunnel - ok
      19:31:11.0152 5008 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
      19:31:11.0167 5008 uagp35 - ok
      19:31:11.0181 5008 [ A17D5E1A6DF4EAB0A480F2C490DE4C9D ] UBHelper C:\Windows\system32\drivers\UBHelper.sys
      19:31:11.0193 5008 UBHelper - ok
      19:31:11.0216 5008 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
      19:31:11.0285 5008 udfs - ok
      19:31:11.0314 5008 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
      19:31:11.0332 5008 UI0Detect - ok
      19:31:11.0363 5008 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
      19:31:11.0378 5008 uliagpkx - ok
      19:31:11.0396 5008 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
      19:31:11.0421 5008 umbus - ok
      19:31:11.0437 5008 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\drivers\umpass.sys
      19:31:11.0466 5008 UmPass - ok
      19:31:11.0496 5008 [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService C:\Windows\System32\umrdp.dll
      19:31:11.0528 5008 UmRdpService - ok
      19:31:11.0579 5008 [ 9DC07E73A4ABB9ACF692113B36A5009F ] UnlockerDriver5 C:\Program Files\Unlocker\UnlockerDriver5.sys
      19:31:11.0591 5008 UnlockerDriver5 - ok
      19:31:11.0696 5008 [ 7466809E6DA561D60C2F1CE8EDE3C73F ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
      19:31:11.0750 5008 UNS - ok
      19:31:11.0789 5008 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
      19:31:11.0842 5008 upnphost - ok
      19:31:11.0878 5008 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
      19:31:11.0923 5008 usbccgp - ok
      19:31:11.0966 5008 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
      19:31:11.0987 5008 usbcir - ok
      19:31:12.0007 5008 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys
      19:31:12.0035 5008 usbehci - ok
      19:31:12.0068 5008 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
      19:31:12.0107 5008 usbhub - ok
      19:31:12.0125 5008 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
      19:31:12.0157 5008 usbohci - ok
      19:31:12.0186 5008 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
      19:31:12.0218 5008 usbprint - ok
      19:31:12.0250 5008 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
      19:31:12.0284 5008 usbscan - ok
      19:31:12.0307 5008 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
      19:31:12.0347 5008 USBSTOR - ok
      19:31:12.0371 5008 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
      19:31:12.0398 5008 usbuhci - ok
      19:31:12.0430 5008 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
      19:31:12.0452 5008 usbvideo - ok
      19:31:12.0487 5008 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
      19:31:12.0544 5008 UxSms - ok
      19:31:12.0558 5008 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
      19:31:12.0574 5008 VaultSvc - ok
      19:31:12.0612 5008 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
      19:31:12.0627 5008 vdrvroot - ok
      19:31:12.0665 5008 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
      19:31:12.0734 5008 vds - ok
      19:31:12.0761 5008 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
      19:31:12.0780 5008 vga - ok
      19:31:12.0792 5008 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
      19:31:12.0837 5008 VgaSave - ok
      19:31:12.0841 5008 VGPU - ok
      19:31:12.0856 5008 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
      19:31:12.0874 5008 vhdmp - ok
      19:31:12.0893 5008 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
      19:31:12.0907 5008 viaide - ok
      19:31:12.0920 5008 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
      19:31:12.0935 5008 volmgr - ok
      19:31:12.0943 5008 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
      19:31:12.0964 5008 volmgrx - ok
      19:31:12.0972 5008 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
      19:31:12.0991 5008 volsnap - ok
      19:31:13.0020 5008 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
      19:31:13.0037 5008 vsmraid - ok
      19:31:13.0099 5008 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
      19:31:13.0203 5008 VSS - ok
      19:31:13.0218 5008 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
      19:31:13.0249 5008 vwifibus - ok
      19:31:13.0253 5008 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
      19:31:13.0282 5008 vwififlt - ok
      19:31:13.0308 5008 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
      19:31:13.0360 5008 W32Time - ok
      19:31:13.0379 5008 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\drivers\wacompen.sys
      19:31:13.0403 5008 WacomPen - ok
      19:31:13.0417 5008 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
      19:31:13.0478 5008 WANARP - ok
      19:31:13.0482 5008 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
      19:31:13.0528 5008 Wanarpv6 - ok
      19:31:13.0608 5008 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
      19:31:13.0669 5008 WatAdminSvc - ok
      19:31:13.0726 5008 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
      19:31:13.0808 5008 wbengine - ok
      19:31:13.0826 5008 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
      19:31:13.0852 5008 WbioSrvc - ok
      19:31:13.0872 5008 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
      19:31:13.0915 5008 wcncsvc - ok
      19:31:13.0933 5008 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
      19:31:13.0965 5008 WcsPlugInService - ok
      19:31:13.0999 5008 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\drivers\wd.sys
      19:31:14.0013 5008 Wd - ok
      19:31:14.0057 5008 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
      19:31:14.0092 5008 Wdf01000 - ok
      19:31:14.0097 5008 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
      19:31:14.0197 5008 WdiServiceHost - ok
      19:31:14.0201 5008 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
      19:31:14.0226 5008 WdiSystemHost - ok
      19:31:14.0245 5008 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
      19:31:14.0283 5008 WebClient - ok
      19:31:14.0308 5008 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
      19:31:14.0371 5008 Wecsvc - ok
      19:31:14.0386 5008 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
      19:31:14.0433 5008 wercplsupport - ok
      19:31:14.0456 5008 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
      19:31:14.0504 5008 WerSvc - ok
      19:31:14.0543 5008 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
      19:31:14.0596 5008 WfpLwf - ok
      19:31:14.0613 5008 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
      19:31:14.0628 5008 WIMMount - ok
      19:31:14.0656 5008 WinDefend - ok
      19:31:14.0669 5008 WinHttpAutoProxySvc - ok
      19:31:14.0738 5008 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
      19:31:14.0792 5008 Winmgmt - ok
      19:31:14.0881 5008 [ 0C0195C48B6B8582FA6F6373032118DA ] WinRing0_1_2_0 C:\Program Files (x86)\IObit\Game Booster 3\Driver\WinRing0x64.sys
      19:31:14.0895 5008 WinRing0_1_2_0 - ok
      19:31:14.0956 5008 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
      19:31:15.0028 5008 WinRM - ok
      19:31:15.0087 5008 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
      19:31:15.0109 5008 WinUsb - ok
      19:31:15.0153 5008 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
      19:31:15.0205 5008 Wlansvc - ok
      19:31:15.0258 5008 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
      19:31:15.0271 5008 wlcrasvc - ok
      19:31:15.0364 5008 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
      19:31:15.0419 5008 wlidsvc - ok
      19:31:15.0455 5008 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
      19:31:15.0477 5008 WmiAcpi - ok
      19:31:15.0506 5008 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
      19:31:15.0542 5008 wmiApSrv - ok
      19:31:15.0576 5008 WMPNetworkSvc - ok
      19:31:15.0603 5008 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
      19:31:15.0642 5008 WPCSvc - ok
      19:31:15.0660 5008 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
      19:31:15.0680 5008 WPDBusEnum - ok
      19:31:15.0707 5008 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
      19:31:15.0755 5008 ws2ifsl - ok
      19:31:15.0776 5008 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
      19:31:15.0811 5008 wscsvc - ok
      19:31:15.0815 5008 WSearch - ok
      19:31:15.0878 5008 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
      19:31:15.0938 5008 wuauserv - ok
      19:31:15.0980 5008 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
      19:31:16.0023 5008 WudfPf - ok
      19:31:16.0049 5008 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
      19:31:16.0083 5008 WUDFRd - ok
      19:31:16.0126 5008 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
      19:31:16.0159 5008 wudfsvc - ok
      19:31:16.0197 5008 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
      19:31:16.0232 5008 WwanSvc - ok
      19:31:16.0273 5008 X6va011 - ok
      19:31:16.0281 5008 ================ Scan global ===============================
      19:31:16.0314 5008 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
      19:31:16.0350 5008 [ 72CC564BBC70DE268784BCE91EB8A28F ] C:\Windows\system32\winsrv.dll
      19:31:16.0359 5008 [ 72CC564BBC70DE268784BCE91EB8A28F ] C:\Windows\system32\winsrv.dll
      19:31:16.0376 5008 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
      19:31:16.0410 5008 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
      19:31:16.0416 5008 [Global] - ok
      19:31:16.0416 5008 ================ Scan MBR ==================================
      19:31:16.0427 5008 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
      19:31:17.0070 5008 \Device\Harddisk0\DR0 - ok
      19:31:17.0072 5008 ================ Scan VBR ==================================
      19:31:17.0075 5008 [ 0756CBB46C876F0AB6F1FAA9500C80AC ] \Device\Harddisk0\DR0\Partition1
      19:31:17.0076 5008 \Device\Harddisk0\DR0\Partition1 - ok
      19:31:17.0103 5008 [ 1596CD149443F5B68B57C441685320EC ] \Device\Harddisk0\DR0\Partition2
      19:31:17.0106 5008 \Device\Harddisk0\DR0\Partition2 - ok
      19:31:17.0128 5008 [ 4CE908AB23AB6FEF3BE107CAF6E672C3 ] \Device\Harddisk0\DR0\Partition3
      19:31:17.0130 5008 \Device\Harddisk0\DR0\Partition3 - ok
      19:31:17.0131 5008 ============================================================
      19:31:17.0131 5008 Scan finished
      19:31:17.0131 5008 ============================================================
      19:31:17.0140 2596 Detected object count: 1
      19:31:17.0140 2596 Actual detected object count: 1
      19:31:41.0331 2596 0902508drv ( ForgedFile.Multi.Generic ) - skipped by user
      19:31:41.0331 2596 0902508drv ( ForgedFile.Multi.Generic ) - User select action: Skip

      Aquie esta el reporte de MalwareBytes

      Malwarebytes Anti-Malware 1.70.0.1100
      Malwarebytes : Free anti-malware download

      Versión de la Base de Datos: v2013.02.12.10

      Windows 7 Service Pack 1 x64 NTFS
      Internet Explorer 9.0.8112.16421
      RAMÍREZ :: RAMÍREZ-PC [administrador]

      12/02/2013 07:34:12 p.m.
      mbam-log-2013-02-12 (19-34-12).txt

      Tipos de Análisis: Análisis Completo (C:\|D:\|)
      Opciones de análisis activado: Memoria | Inicio | Registro | Sistema de archivos | Heurística/Extra | Heurística/Shuriken | PUP | PUM
      Opciones de análisis desactivados: P2P
      Objetos examinados: 399715
      Tiempo transcurrido: 52 minuto(s), 59 segundo(s)

      Procesos en Memoria Detectados: 0
      (No se han detectado elementos maliciosos)

      Módulos de Memoria Detectados: 0
      (No se han detectado elementos maliciosos)

      Claves del Registro Detectados: 0
      (No se han detectado elementos maliciosos)

      Valores del Registro Detectados: 0
      (No se han detectado elementos maliciosos)

      Elementos de Datos del Registro Detectados: 0
      (No se han detectado elementos maliciosos)

      Carpetas Detectadas: 0
      (No se han detectado elementos maliciosos)

      Archivos Detectados: 0
      (No se han detectado elementos maliciosos)

      fin)

    4. #4
      Usuario Avatar de Leo08Mx
      Registrado
      ago 2012
      Ubicación
      Minatitlan, Ver "Tierra de flechadores"
      Mensajes
      7

      Re: ¿Es necesario formartear mi computadora ? Daños por virus

      Finalmente el reporte de ESET Online Scanner detecto troyanos y mas virus .

      [email protected] as downloader log:
      Can not open [email protected] as downloader log:
      Can not open internetCan not open [email protected] as downloader log:
      Can not open internet# version=8
      # OnlineScannerApp.exe=1.0.0.1
      # OnlineScanner.ocx=1.0.0.6920
      # api_version=3.0.2
      # EOSSerial=42b1c880a4931e49ba1c05258ff8dfd6
      # engine=13141
      # end=finished
      # remove_checked=true
      # archives_checked=true
      # unwanted_checked=true
      # unsafe_checked=true
      # antistealth_checked=true
      # utc_time=2013-02-13 05:42:52
      # local_time=2013-02-12 11:42:52 (-0600, Hora estándar central (México))
      # country="Mexico"
      # lang=3082
      # osver=6.1.7601 NT Service Pack 1
      # compatibility_mode=2817 16777215 100 100 9465419 10674360 0 0
      # compatibility_mode=3074 16777213 100 84 37894 6240794 0 0
      # compatibility_mode=5893 16776574 100 94 375685 112277622 0 0
      # scanned=194085
      # found=20
      # cleaned=15
      # scan_time=11050
      sh=9FD9BEC45843342454E373877E1A64BA6DE7976D ft=1 fh=c71c0011d30996b5 vn="una variante de MSIL/Spy.Agent.BO Troyano" ac=I fn="C:\Users\All Users\COMODO\Cis\Quarantine\data\{17425ACE-9D8F-4731-B9A3-F32082CA4604}"
      sh=9FD9BEC45843342454E373877E1A64BA6DE7976D ft=1 fh=c71c0011d30996b5 vn="una variante de MSIL/Spy.Agent.BO Troyano" ac=I fn="C:\Users\All Users\COMODO\Cis\Quarantine\data\{2D598F56-6999-44A5-9D6D-8E4B74667A8A}"
      sh=9FD9BEC45843342454E373877E1A64BA6DE7976D ft=1 fh=c71c0011d30996b5 vn="una variante de MSIL/Spy.Agent.BO Troyano" ac=I fn="C:\Users\All Users\COMODO\Cis\Quarantine\data\{7F28C0E8-6422-4908-947F-0BC45C4010A4}"
      sh=9FD9BEC45843342454E373877E1A64BA6DE7976D ft=1 fh=c71c0011d30996b5 vn="una variante de MSIL/Spy.Agent.BO Troyano" ac=I fn="C:\Users\All Users\COMODO\Cis\Quarantine\data\{B6B65B8F-1B97-4CAD-AA2F-75A8CDD240BC}"
      sh=9FD9BEC45843342454E373877E1A64BA6DE7976D ft=1 fh=c71c0011d30996b5 vn="una variante de MSIL/Spy.Agent.BO Troyano" ac=I fn="C:\Users\All Users\COMODO\Cis\Quarantine\data\{E79F3C5E-D31E-49A1-99C7-9B8DD1BBCED5}"
      sh=88F07DB216F388A603179649D83BF1FC9AC8CB06 ft=1 fh=b538b1f51b2210a0 vn="una variante de Win32/HackTool.CheatEngine.AB aplicación (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena)" ac=C fn="C:\Program Files (x86)\Cheat Engine 6.2\cheatengine-i386.exe"
      sh=CA3F51EC1897756636232998193325B830F22F26 ft=1 fh=3702c3e3af3ccb17 vn="una variante de Win32/HackTool.CheatEngine.AF aplicación (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena)" ac=C fn="C:\Program Files (x86)\Cheat Engine 6.2\standalonephase1.dat"
      sh=4E4B43D455DFCE149ECFA144EB8B55381D8F7F73 ft=1 fh=fce5b4acdadb2c87 vn="probablemente una variante de Win32/1AntiVirus aplicación (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena)" ac=C fn="C:\Program Files (x86)\Loaris\Trojan Remover 1.2\ltr12.exe"
      sh=9FD9BEC45843342454E373877E1A64BA6DE7976D ft=1 fh=c71c0011d30996b5 vn="una variante de MSIL/Spy.Agent.BO Troyano (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena)" ac=C fn="C:\ProgramData\COMODO\Cis\Quarantine\data\{17425ACE-9D8F-4731-B9A3-F32082CA4604}"
      sh=9FD9BEC45843342454E373877E1A64BA6DE7976D ft=1 fh=c71c0011d30996b5 vn="una variante de MSIL/Spy.Agent.BO Troyano (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena)" ac=C fn="C:\ProgramData\COMODO\Cis\Quarantine\data\{2D598F56-6999-44A5-9D6D-8E4B74667A8A}"
      sh=9FD9BEC45843342454E373877E1A64BA6DE7976D ft=1 fh=c71c0011d30996b5 vn="una variante de MSIL/Spy.Agent.BO Troyano (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena)" ac=C fn="C:\ProgramData\COMODO\Cis\Quarantine\data\{7F28C0E8-6422-4908-947F-0BC45C4010A4}"
      sh=9FD9BEC45843342454E373877E1A64BA6DE7976D ft=1 fh=c71c0011d30996b5 vn="una variante de MSIL/Spy.Agent.BO Troyano (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena)" ac=C fn="C:\ProgramData\COMODO\Cis\Quarantine\data\{B6B65B8F-1B97-4CAD-AA2F-75A8CDD240BC}"
      sh=9FD9BEC45843342454E373877E1A64BA6DE7976D ft=1 fh=c71c0011d30996b5 vn="una variante de MSIL/Spy.Agent.BO Troyano (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena)" ac=C fn="C:\ProgramData\COMODO\Cis\Quarantine\data\{E79F3C5E-D31E-49A1-99C7-9B8DD1BBCED5}"
      sh=5BC63A1264D124BA96333BB6ED05F725DE01E0EF ft=0 fh=0000000000000000 vn="Win32/PSWTool.KonBoot.A aplicación (eliminado - puesto en Cuarentena)" ac=C fn="C:\Users\RAMÍREZ\Downloads\ubcd511.iso"
      sh=7529ADEBC4DF9FB6EDDA414130CAB2EEAAB946B8 ft=0 fh=0000000000000000 vn="una variante de Win32/Somoto.A aplicación (eliminado - puesto en Cuarentena)" ac=C fn="C:\Users\RAMÍREZ\Downloads\´Boot\SARDU_2.0.6.1.zip"
      sh=F1C947B04B80F13F3A914C70B38CDBF2058396CE ft=0 fh=0000000000000000 vn="una variante de Win32/HackTool.Patcher.T aplicación (eliminado - puesto en Cuarentena)" ac=C fn="D:\Descargas\ParetoLogic.Inc.Data.Recovery.Pro.v1.1-Lz0.rar"
      sh=24F459D9CB7F0511CE06EE83FF17139E07B351E1 ft=0 fh=0000000000000000 vn="múltiples amenazas (eliminado - puesto en Cuarentena)" ac=C fn="D:\Descargas\RB2011 + Serial.rar"
      sh=AE486BCEAED8A6FF9D206EE17B64B028DB99CA9E ft=0 fh=0000000000000000 vn="Win32/OpenCandy aplicación (eliminado - puesto en Cuarentena)" ac=C fn="D:\Descargas\SetupBatteryCare.zip"
      sh=B807523DCA569D41FF3FFA8523A6693D930D8768 ft=1 fh=250619b7ed6e391c vn="Win32/Toolbar.Widgi aplicación (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena)" ac=C fn="D:\Descargas\Instaladores\Setup_FreeFlvConverter.exe"

      Encontre una una carpeta llamada VTRoot en C: sera algo normal

    5. #5
      Moderador
      Avatar de @MarioL
      Registrado
      nov 2006
      Ubicación
      Málaga - España
      Mensajes
      8.823

      Re: ¿Es necesario formartear mi computadora ? Daños por virus

      ¿Como notas el ordenador? Las infecciones que han detectado o son de la cuarentena de Comodo o "chetos" que usas en algún juego o programas con su crack/ keygen que detecta como infectados..
      Invy

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    6. #6
      Usuario Avatar de Leo08Mx
      Registrado
      ago 2012
      Ubicación
      Minatitlan, Ver "Tierra de flechadores"
      Mensajes
      7

      Re: ¿Es necesario formartear mi computadora ? Daños por virus

      Mi ordenador va bien , creo que mi sistema esta limpio de bichos Gracias , espero no surgan mas problemas. Gracias
      Última edición por Leo08Mx fecha: 14/02/13 a las 21:54:38