Alerta de infección de IDP.ALEXA.53

Reporte Rkill


Rkill 2.9.1 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2021 BleepingComputer.com
More Information about Rkill can be found at this link:
 http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 05/31/2021 08:49:24 PM in x64 mode.
Windows Version: Windows 10 Home Single Language 

Checking for Windows services to stop:

 * No malware services found to stop.

Checking for processes to terminate:

 * No malware processes found to kill.

Checking Registry for malware related settings:

 * No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

 * Windows Defender Disabled

   [HKLM\SOFTWARE\Microsoft\Windows Defender]
   "DisableAntiSpyware" = dword:00000001

 * Reparse Point/Junctions Found (Most likely legitimate)!

     * C:\WINDOWS\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 => C:\WINDOWS\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\INetCache\IE [Dir]

Searching for Missing Digital Signatures: 

 * No issues found.

Checking HOSTS File: 

 * HOSTS file entries found: 

  127.0.0.1       localhost

Program finished at: 05/31/2021 08:49:39 PM
Execution time: 0 hours(s), 0 minute(s), and 15 seconds(s)

Reporte Dr. Web

Total 155578375309 bytes in 475402 files scanned (756630 objects)
Total 475350 files (756411 objects) are clean
There are no infected objects detected
Total 215 files are raised error condition
Scan time is 01:34:59.199

Reporte ESET Online scanner

01/06/2021 18:18:42 p. m.
Archivos explorados: 450744
Archivos detectados: 2
Archivos desinfectados: 2
Tiempo total de exploración 03:23:52
Estado de la exploración: Finalizado


C:\Users\Sandy\Downloads\Camtasia Studio v9.1.2 Full Español.rar	una variante de Win32/HackTool.Patcher.AD aplicación potencialmente no segura	eliminado
C:\Users\Sandy\Downloads\JDownloaderSetup.exe	una variante de Win32/WebCompanion.D aplicación potencialmente no deseada,una variante de MSIL/WebCompanion.H aplicación potencialmente no deseada	desinfectado por eliminación

Perfecto! Pasemos al “TERCER PASO”:

  1. "Instale y Descargue" los siguientes programas en el “ESCRITORIO” de su ordenador y siga los pasos “al Pie de la letra” y en el orden establecido con su respectivo "Manual de Uso"

Pásele de nuevo en primer lugar este programa: “Rkill by Grinler” lo tienes que iniciar con “Botón Secundario” y con Derechos de Administrador y lo debes de ejecutar “En El Escritorio” de tu ordenador, y cuando termine el proceso por completo “NO” debe reinicar el ordenador a no ser que se lo indique yo o lo solicite algún programa de desinfección de los que se van a emplear para dicha desinfección y seguidamente pásele el siguiente programa siguiendo su “Manual de Uso”.

Seguidamente pásele los siguientes programas y si le pide reiniciar el equipo para poder desinfectar las amenazas y/o infecciones lo reinicia, si no se lo pide dicho programa no lo reinicie: (Pásele los programas de UNO EN UNO CON SU RESPECTIVO “MANUAL DE USO”, es decir, primero le pasa un programa y cuando finalice de analizar por completo le pasa el siguiente programa)

-. Url Descarga: “Junkware Removal Tool”:https://www.infospyware.com/antispyware/jrt/

-. Url Descarga: "AdwCleaner:https://www.infospyware.com/antispyware/adwcleaner/

"MANUAL DE USO":

"Manual de Uso"“Junkware Removal Tool” y sigue los pasos por el orden establecido y al pie de la letra y sin saltarse ningún paso (CLICK DERECHO Y EJECUTAR COMO ADMINISTRADOR):

  • Desactivar momentáneamente el antivirus.

  • Cierra todos los navegadores de internet que tengas abiertos.

  • Ejecutar la herramienta en “El Escritorio” con “Derechos de Administrador” con clic derecho.

  • Pulsar cualquier tecla.

  • Esperar a que termine el proceso, puede demorar unos minutos.

  • Guardar el “Block de Notas” que genera, guardarlo en el escritorio y mandarme dicho informe.

Url descarga “Manual AdwCleaner” y sigue los pasos por el orden establecido: Manual de AdwCleaner

IMPORTANTE:

"CUANDO HAYA REALIZADO ESTE PROCEDIMIENTO ACTIVE NUEVAMENTE SU ANTIVIRUS"

UNA VEZ REALIZADOS ESTOS PROCEDIMIENTOS MANDEME DICHOS INFORMES.

1 me gusta

Reporte JRT:

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.1.4 (07.09.2017)
Operating System: Windows 10 Home x64 
Ran by Sandy (Administrator) on 01/06/2021 at 19:28:20.61
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




File System: 3 

Successfully deleted: C:\ProgramData\mntemp (File) 
Successfully deleted: C:\Users\Sandy\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio (Folder) 
Successfully deleted: C:\Users\Sandy\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\gkojfkhlekighikafcpjkiklfbnlmeio (Folder) 



Registry: 3 

Successfully deleted: HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{EF293C5A-9F37-49FD-91C4-2B867063FC54} (Registry Value) 
Successfully deleted: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C} (Registry Key)
Successfully deleted: HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C} (Registry Key)




~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 01/06/2021 at 19:33:07.69
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Reporte Adwcleanner:

# -------------------------------
# Malwarebytes AdwCleaner 8.2.0.0
# -------------------------------
# Build:    03-22-2021
# Database: 2021-05-17.1 (Cloud)
# Support:  https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start:    06-01-2021
# Duration: 00:00:11
# OS:       Windows 10 Home Single Language
# Scanned:  31977
# Detected: 0


***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

No malicious folders found.

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

No malicious registry entries found.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries found.

***** [ Chromium URLs ] *****

No malicious Chromium URLs found.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.

***** [ Hosts File Entries ] *****

No malicious hosts file entries found.

***** [ Preinstalled Software ] *****

No Preinstalled Software found.


AdwCleaner[S00].txt - [1955 octets] - [08/04/2020 18:56:01]
AdwCleaner[C00].txt - [2168 octets] - [08/04/2020 18:57:46]
AdwCleaner[S01].txt - [1892 octets] - [23/05/2021 15:00:56]
AdwCleaner[C01].txt - [1970 octets] - [23/05/2021 15:01:22]
AdwCleaner[S02].txt - [1666 octets] - [23/05/2021 15:02:23]
AdwCleaner[C02].txt - [1856 octets] - [23/05/2021 15:02:33]
AdwCleaner[S03].txt - [1788 octets] - [23/05/2021 15:03:35]
AdwCleaner[C03].txt - [1978 octets] - [23/05/2021 15:03:46]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S04].txt ##########

PERFECTO! PASEMOS AL “CUARTO PASO”:

"Descargue e Instale" los siguientes programas e inícielos con su respectivo “Manual de Uso” y al Pie de la Letra y en el orden establecido y sin saltarte ningún paso. (Es decir, primeramente le pasa un programa y cuando acabe por completo dicho proceso le pasa el siguiente programa):

"Url Descarga": “Ccleaner”:https://www.infospyware.com/herramientas/ccleaner/

"Manual de Uso": “Ccleaner”:https://forospyware.com/t/ccleaner-manual-de-uso-simple-y-avanzado/103 (REALICE ESTE PROCEDIMIENTO VARIAS VECES DESDE EL PRINCIPIO HASTA QUE DIGA QUE NO SE HAN ENCONTRADO PROBLEMAS Y RELICE DICHO PROCEDIMIENTO EN LA OPCIÓN DEL REGISTRO HASTA QUE TAMBIEN EL DICHO PROGRAMA DIGA QUE SE HAN REPARADO TODOS LOS PROBLEMAS ENCONTRADOS O ALGO PARECIDO)

"Url descarga": "Glary Utilities"https://www.infospyware.com/herramientas/glary-utilities/

"Manual de Uso" “Glary Utilities”:

  1. Abrir el programa “Glary Utilities” con "Derechos de Administrador

  2. Click donde pone la opción “Mantenimiento en 1-Click” y dejar “Todas las opciones Habilitadas” como se puede observar en esta imagen y click en la pestaña que pone “Buscar problemas” :

  3. Empezará el proceso. Una vez finalizado dicho proceso click en la pestaña que pone: “Reparar Problemas” . Dejar que termine dicho proceso, empezará a solucionar los problemas encontrados.

Repetir nuevamente todo este procedimiento desde el principio hasta que en todos los recuadros ponga que "NO se han encontrado problemas."

Cuando haya realizado dichos pasos aviseme

1 me gusta

Ya realicé los pasos que solicitó.

PASEMOS AL "QUINTO PASO"

"Descargue e Instale" los siguientes programas e inícielos con su respectivo “Manual de Uso” y al Pie de la Letra y en el orden establecido y sin saltarte ningún paso. (Es decir, “primeramente le pasa un programa y cuando acabe por completo dicho proceso le pasa el siguiente programa”):

Url descarga “Kaspersky Virus Removal Tool”:https://devbuilds.s.kaspersky-labs.com/devbuilds/KVRT/latest/full/KVRT.exe

Url descarga: “TDSSKILLER”:https://www.infospyware.com/antirootkits/tdsskiller/

*Url descarga* "Manual Kaspersky Removal Tool”: y sigue los pasos por el orden establecido:Manual de Kaspersky Virus Removal Tool (“ELIMINE TODO LO QUE ENCUENTRE DICHO PROGRAMA”)

Url descarga "Manual TDSKILLER”: y “sigue los pasos por el orden establecido”:Manual de TDSSKiller (“ELIMINE TODO LO QUE ENCUENTRE DICHO PROGRAMA”)

Cuando termine de realizar dichos procedimientos mándeme el Informe de dichos programas.

1 me gusta

No puedo descargar Inirem, me aparece esto: This ID doesn’t exist!

Por el momento el programa Inirem no se encuentra disponible debido a una actualización del programa, pásele el resto de programas que le he indicado y me envías dichos Informes de dichos programas, disculpe las molestias.

Sólo me aparece esto al finalizar el escaneo y dar click en details con Kaspersky Removal Tool, no sé si es lo ejecute mal.

REALIZA ESTOS PASOS AL PIE DE LA LETRA Y SIN SALTARTE NINGUN PASO Y EN EL ORDEN ESTABLECIDO Y SIGUIENDO SU “MANUAL DE USO”:

Eso te aparece porque te lo está bloqueando tu Antivirus Avast, en primer lugar DESACTIVE temporalmente tu Antivirus “AVAST”, seguidamente, pásele este programa:

Url Descarga: [u]Rkill by Grinler aqui. Una vez que esta fue ejecutada, es importante “NO” reiniciar el sistema hasta que se le solicite

Y cuando acabe por completo de Analizar “NO” reinicies el ordenador y realizas de nuevo el siguiente procedimiento:

Le pasas de nuevo dicho programa: Kaspersky Removal Tool y si al finalizar de Analizar dicho programa le pide “REINICIAR” para poder eliminar dichas Amenazas y/o infecciones lo “REINICIAS” si no te lo pidiera reiniciar dicho programa “NO” lo reinicies y sigues realizando el resto de procedimientos con su “Manual de Uso”.

Cuando termine de Analizar por completo me mandas los “Informes”.

Desactivé Avast y realicé los pasos que me mencionó y me sigue apareciendo esto, lo realicé 3 veces.

Vamos a realizar otro procedimiento para ver si te deja ejecutar dichos programas.

  1. Presiona la tecla del logotipo de "Windows + I" en el teclado para abrir “Configuración”. Si no funciona, seleccione el botón “Inicio” y, a continuación, busque y seleccione dentro de las opciones que salen, en la opción que pone: “Configuración”.

  2. Seleccione “Actualizazacion y Seguridad” en las opciones que salen click en la que pone: “Recuperación” > click en donde pone: “Inicio Avanzado” y click en la opción que pone: “Reiniciar Ahora” Se empezará a Reinicar el equipo y en dicho proceso saldrán las siguientes opciones:

  3. Cuando el PC se reinicie y llegue a la pantalla Elegir una opción , selecciona Solucionar problemas > “Opciones avanzadas” > “Configuración de inicio” > “Reiniciar”. Es posible que se te pida introducir tu clave

capturadaA1

capturadaA2

capturadaz32

Elegir la opción que pone: "Reiniciar"

capturadaA4

Una vez reiniciado el PC, verás una lista de opciones. Selecciona selecciona 5 o presiona F5 (O la opción que ponga: Cambiar el Inicio de Windows o la forma en que inicia windows o algo parecido para poder seleccionar el "Modo seguro con Funciones de Red"

capturadaz40

Y realiza los siguientes procedimientos:

Url Descarga: [u]"Rkill by Grinler" aqui. Una vez que esta fue ejecutada, es importante “NO” reiniciar el sistema hasta que se le solicite

Y cuando acabe por completo de Analizar “NO” reinicies el ordenador y realizas de nuevo el siguiente procedimiento:

Le pasas de nuevo dicho programa: “Kaspersky Removal Tool” y si al finalizar de Analizar dicho programa le pide “REINICIAR” para poder eliminar dichas Amenazas y/o infecciones lo “REINICIAS” si no te lo pidiera reiniciar dicho programa “NO” lo reinicies y sigues realizando el resto de procedimientos con su “Manual de Uso”.

Cuando termine de Analizar por completo me mandas los “Informes”.

1 me gusta

En modo seguro no puedo conectarme a la red ¿Reinico normalmente la lap? O lo hago de otra forma?

Pero has probado a ver si te deja pasar el programa: “Kaspersky Removal Tool” en dicho “Modo Seguro Con Funciones de Red” “SIN DESCARGARTE” “DE INTERNET” nuevamente dicho programa y ejecutando dicho programa desde tu escritorio de tu ordenador ya que dicho programa ya lo tienes descargado previamente.

Busca dicho programa en la hubicación de donde te hayas descargado previamente y hubica dicho programa en el escritorio de tu ordenador y prueba a pasarle dicho programa en dicho “Modo Seguro Con Funciones de Red” siguiendo el mismo procedimoento que has estado siguiendo pero probando en dicho “Modo Seguro Con Funciones de Red”.

Prueba y pasale dicho programa en dicho “Modo Seguro Con Funciones de Red” y si te sigue dando en mismo error dicho programa: “Kaspersky Removal Tool” reinicias el ordenador en modo normal y pruebas nuevamente a pasarle el programa “Kaspesrky Removal Tool” una vez reiniciado el ordenador en Modo Normal y de lo pasas de nuevo siguiendo exactemante el mismo procediniento que has seguido normalmente.

Si dicho programa te diera el mismo error realizando el mismo procediniento que has estado siguiendo una vez reiniciado el equipo en Modo Normal avisame y me lo comentas.

Hola, buen día.

Al presionar f5 durante el inicio me mandó directamente al modo seguro sin red y ahí hice todos los escaneo que me indicó.

Perfecto! Cuando terminen dichos programas de analizar por completo, le das a “Eliminar” “Todas” las infecciones y/o Amenazas que encuentre y “NO” le des a restaurar nada y me pasas dichos “Informes”.

¿Reinicio normalmente la PC para volver a tener red y mandarle los informes? O lo hago de otra manera?

Antes de Reiniciar el ordenador en “Modo Seguro Sin Funciones de Red”:

Le pasaste los dos programas “TDSSKILLER” y el "Kaspersky Removal Tool” esos son los dos “Informes” que me tienes que enviar cuando hayan terminado por completo de analizar y le das a “ELIMINAR” “TODAS” las Amenazas y/o Infecciones. Si te ha faltado algún programa de los que te he nombrado páselo en dicho “Modo Seguro Sin Funciones de Red” y me mandas dichos "Informes"

Finalizado dicho paso, reinicias tu ordenador en “Modo Normal”, y me mandas dichos "Informes"

Del removal tool no me deja abrir el informe en la seccioón de reportes pero saque esta captura:

Reporte de TDS Skiller 1/2:

19:52:51.0345 0x0d50  TDSS rootkit removing tool 3.1.0.28 Apr  9 2019 21:11:46
19:52:51.0345 0x0d50  UEFI system
19:52:57.0374 0x0d50  ============================================================
19:52:57.0374 0x0d50  Current date / time: 2021/06/02 19:52:57.0374
19:52:57.0374 0x0d50  SystemInfo:
19:52:57.0374 0x0d50  
19:52:57.0374 0x0d50  OS Version: 10.0.18363 ServicePack: 0.0
19:52:57.0374 0x0d50  Product type: Workstation
19:52:57.0374 0x0d50  ComputerName: LAPTOP-GLGJRLU5
19:52:57.0374 0x0d50  UserName: Sandy
19:52:57.0374 0x0d50  Windows directory: C:\WINDOWS
19:52:57.0374 0x0d50  System windows directory: C:\WINDOWS
19:52:57.0374 0x0d50  Running under WOW64
19:52:57.0374 0x0d50  Processor architecture: Intel x64
19:52:57.0374 0x0d50  Number of processors: 4
19:52:57.0374 0x0d50  Page size: 0x1000
19:52:57.0374 0x0d50  Boot type: Safe boot with network
19:52:57.0374 0x0d50  CodeIntegrityOptions = 0x0000C001
19:52:57.0374 0x0d50  ============================================================
19:52:57.0984 0x0d50  KLMD registered as C:\WINDOWS\system32\drivers\68765196.sys
19:52:57.0984 0x0d50  KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 18362.1, osProperties = 0x19
19:52:58.0156 0x0d50  System UUID: {F2C378C0-83B5-E8CA-FCBE-DE005F783503}
19:52:58.0390 0x0d50  Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
19:52:58.0405 0x0d50  ============================================================
19:52:58.0405 0x0d50  \Device\Harddisk0\DR0:
19:52:58.0405 0x0d50  GPT partitions:
19:52:58.0405 0x0d50  \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {3443A1C3-1513-4FE9-85F4-D7F26E6BAEC2}, Name: EFI system partition, StartLBA 0x800, BlocksNum 0x82000
19:52:58.0405 0x0d50  \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {1A4B6056-C6D8-4DAB-BE84-35FE20A35BA1}, Name: Microsoft reserved partition, StartLBA 0x82800, BlocksNum 0x8000
19:52:58.0405 0x0d50  \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {DDBEFF70-3610-4915-8EAB-0BD35D4E58D8}, Name: Basic data partition, StartLBA 0x8A800, BlocksNum 0x71288000
19:52:58.0405 0x0d50  \Device\Harddisk0\DR0\Partition4: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {3818DC54-DFAF-497E-8B80-F0033AFE7E4D}, Name: Basic data partition, StartLBA 0x71312800, BlocksNum 0x3200000
19:52:58.0405 0x0d50  \Device\Harddisk0\DR0\Partition5: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {E49ADBAA-E397-48EB-BE83-FF1906204C95}, Name: Basic data partition, StartLBA 0x74512800, BlocksNum 0x1F4000
19:52:58.0405 0x0d50  MBR partitions:
19:52:58.0405 0x0d50  ============================================================
19:52:58.0437 0x0d50  C: <-> \Device\Harddisk0\DR0\Partition3
19:52:58.0468 0x0d50  D: <-> \Device\Harddisk0\DR0\Partition4
19:52:58.0468 0x0d50  ============================================================
19:52:58.0468 0x0d50  Initialize success
19:52:58.0468 0x0d50  ============================================================
19:54:03.0455 0x0f6c  ============================================================
19:54:03.0455 0x0f6c  Scan started
19:54:03.0455 0x0f6c  Mode: Manual; 
19:54:03.0455 0x0f6c  ============================================================
19:54:03.0455 0x0f6c  KSN ping started
19:54:03.0455 0x0f6c  KSN ping finished: false
19:54:09.0766 0x0f6c  ================ Scan BIOS =================================
19:54:09.0766 0x0f6c  BIOS info: vendor = LENOVO, version = 4WCN37WW, releaseDate = 12/04/2017
19:54:09.0766 0x0f6c  Base board info: manufacturer = LENOVO, product = LNVNB161216, version = SDK0J40679 WIN
19:54:12.0047 0x0f6c  [ C76FDCECC05884C525557E6EFFB9F368, 09D8A272D289B1929CC908B71E2E7D5C392C7E33528F510FDD8B39E2D76FF767 ] BIOS
19:54:12.0047 0x0f6c  BIOS - ok
19:54:12.0062 0x0f6c  ================ Scan system memory ========================
19:54:12.0062 0x0f6c  System memory - ok
19:54:12.0062 0x0f6c  ================ Scan services =============================
19:54:12.0328 0x0f6c  1394ohci - ok
19:54:12.0344 0x0f6c  3ware - ok
19:54:12.0344 0x0f6c  AarSvc - ok
19:54:12.0375 0x0f6c  ACPI - ok
19:54:12.0390 0x0f6c  AcpiDev - ok
19:54:12.0390 0x0f6c  acpiex - ok
19:54:12.0390 0x0f6c  acpipagr - ok
19:54:12.0422 0x0f6c  [ 48D460FAA6929BC81869CC7299A6B70A, 32A3A96B2708148B8F5461E666995BE9119F61C73DAB5EC373D014F0F13D0297 ] AcpiPmi         C:\WINDOWS\System32\drivers\acpipmi.sys
19:54:12.0453 0x0f6c  AcpiPmi - ok
19:54:12.0469 0x0f6c  acpitime - ok
19:54:12.0500 0x0f6c  [ 69FB8F601501CC28D4DD2A713D359EEB, 47DFCEF0A64240BFD924E3543C83E0B7B5396FF25047ADBB4399EC739F97C50E ] ACPIVPC         C:\WINDOWS\System32\drivers\AcpiVpc.sys
19:54:12.0500 0x0f6c  ACPIVPC - ok
19:54:12.0500 0x0f6c  Acx01000 - ok
19:54:12.0594 0x0f6c  [ 6708AE7C547668D65BDA0FDF8230E027, EC03CB66CE497E5F412D883D155BDD8DC4E8BABF47E53733C575E64445958EAF ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
19:54:12.0594 0x0f6c  AdobeFlashPlayerUpdateSvc - ok
19:54:12.0625 0x0f6c  ADP80XX - ok
19:54:12.0625 0x0f6c  AFD - ok
19:54:12.0640 0x0f6c  afunix - ok
19:54:12.0656 0x0f6c  ahcache - ok
19:54:12.0687 0x0f6c  [ 232B30ECEFBB1BEC07F2DF21D46DCDB6, BC840D8E3473A100BE396CDF977E4909303E3F9E2086DB4ABCED249ACF7F17D9 ] AJRouter        C:\WINDOWS\System32\AJRouter.dll
19:54:12.0703 0x0f6c  AJRouter - ok
19:54:12.0719 0x0f6c  ALG - ok
19:54:12.0719 0x0f6c  amdgpio2 - ok
19:54:12.0719 0x0f6c  amdi2c - ok
19:54:12.0750 0x0f6c  AmdK8 - ok
19:54:12.0750 0x0f6c  AmdPPM - ok
19:54:12.0750 0x0f6c  amdsata - ok
19:54:12.0750 0x0f6c  amdsbs - ok
19:54:12.0750 0x0f6c  amdxata - ok
19:54:12.0781 0x0f6c  AppID - ok
19:54:12.0797 0x0f6c  AppIDSvc - ok
19:54:12.0812 0x0f6c  Appinfo - ok
19:54:12.0812 0x0f6c  applockerfltr - ok
19:54:12.0843 0x0f6c  AppReadiness - ok
19:54:12.0859 0x0f6c  AppXSvc - ok
19:54:12.0875 0x0f6c  arcsas - ok
19:54:12.0890 0x0f6c  [ C187B6AA5AD6DBD4F181C74A3D8339AD, A65BC34E160A65B9C3EABA1C0C78A6044BDE8230555D6E4537C795EFC39F852F ] aswArDisk       C:\WINDOWS\system32\drivers\aswArDisk.sys
19:54:12.0922 0x0f6c  aswArDisk - ok
19:54:12.0937 0x0f6c  [ A2B013646BE3FB53D592FDA0BE626C00, 28E3985E559A64103541B4C0FEFA1F0072239E9C821CDA3A49C87FF13457743A ] aswArPot        C:\WINDOWS\system32\drivers\aswArPot.sys
19:54:12.0937 0x0f6c  aswArPot - ok
19:54:13.0234 0x0f6c  [ 34D7773092465CFB55F544BDCC9AD279, 612673AC197C6C5D9074949A95296A5101021C813FF700BF3D0C24864A76614E ] aswbIDSAgent    C:\Program Files\Avast Software\Avast\aswidsagent.exe
19:54:13.0484 0x0f6c  aswbIDSAgent - ok
19:54:13.0531 0x0f6c  [ CFB2A2CEFD764F0344A242F8B0325252, ACC635AE645D08EACC5D9DB0EC0349EA4068F31B5A3F1B70898EE71800C3F817 ] aswbidsdriver   C:\WINDOWS\system32\drivers\aswbidsdriver.sys
19:54:13.0531 0x0f6c  aswbidsdriver - ok
19:54:13.0562 0x0f6c  [ 3A86CCAFD9CCCD0C6E7602E4F7BE1915, DB8F8C752E2D0389F387B8DB6D2398B4E056A1C7C6EC7DFD78CCD4444EC02317 ] aswbidsh        C:\WINDOWS\system32\drivers\aswbidsh.sys
19:54:13.0578 0x0f6c  aswbidsh - ok
19:54:13.0578 0x0f6c  [ 399DB8912A113509F7B71AF3EF87EA86, F700587CB75990DC3A278A43DC95D301F26AD67E6A714FDCEEB39CD53C34FFEF ] aswbuniv        C:\WINDOWS\system32\drivers\aswbuniv.sys
19:54:13.0593 0x0f6c  aswbuniv - ok
19:54:13.0625 0x0f6c  [ 0D6C1266418D1CA2E19A150ADA9F1ADC, 64A671CEE39013F90D0DAA8D70994E72F2A7AA95F4C59906C026458003E7D66B ] aswElam         C:\WINDOWS\system32\drivers\aswElam.sys
19:54:13.0625 0x0f6c  aswElam - ok
19:54:13.0640 0x0f6c  [ EA58CEB0FD1B6EC936C32D1315EA564C, 0610C954F181D1D8CBC2BA37393AC2638CD09B1A5637092D81FAA5AFBE4E70B2 ] aswKbd          C:\WINDOWS\system32\drivers\aswKbd.sys
19:54:13.0640 0x0f6c  aswKbd - ok
19:54:13.0656 0x0f6c  [ EF35D15D1B99DCBADE32F421D2779581, 65972B7F9590425DBF6A0030220E5339BA6350DD1BB8AB5AB15DF9A472783704 ] aswMonFlt       C:\WINDOWS\system32\drivers\aswMonFlt.sys
19:54:13.0656 0x0f6c  aswMonFlt - ok
19:54:13.0687 0x0f6c  [ 13AFDE9B787DEDDDDD87E8696E58E7E6, 6A2E28ACDF2EF4EA438E4505AD68EA9C5313FB3B05EC254CC7C27E94D22A09CF ] aswNetHub       C:\WINDOWS\system32\drivers\aswNetHub.sys
19:54:13.0703 0x0f6c  aswNetHub - ok
19:54:13.0718 0x0f6c  [ E444124B9874FF4BD3190588E0A09775, 1426733FD7CA41210F6CADC3D71F8A438A47F929630C8F274608941F62F06B6C ] aswRdr          C:\WINDOWS\system32\drivers\aswRdr2.sys
19:54:13.0718 0x0f6c  aswRdr - ok
19:54:13.0734 0x0f6c  [ 173ADB19BFA3A0C9EF57525AB58204DB, B197CC65D02F1399BAEB78DA619C59363713B940E04FE0FED2E31977ADAC7FBB ] aswRvrt         C:\WINDOWS\system32\drivers\aswRvrt.sys
19:54:13.0734 0x0f6c  aswRvrt - ok
19:54:13.0781 0x0f6c  [ D5C53849905EBC9C72E1E2A0CD25D44E, A0DEBD5AFD41EEE76C59503357549EEFB8792842056F53BEDF29B7AAB815D78C ] aswSnx          C:\WINDOWS\system32\drivers\aswSnx.sys
19:54:13.0796 0x0f6c  aswSnx - ok
19:54:13.0828 0x0f6c  [ BDB5CDA17372B46E61AE0124152519B9, 427D8D1C76B878FB68D6C06B1FF05E453D6F885458F291935A561EC401252172 ] aswSP           C:\WINDOWS\system32\drivers\aswSP.sys
19:54:13.0843 0x0f6c  aswSP - ok
19:54:13.0859 0x0f6c  [ DAB207D3BE78E7A826CDB90F25B6D4D8, A19E0E30E2F179CA766225F48A7C84963DFB4E0CE0FA182CB558DDF09C438AB6 ] aswStm          C:\WINDOWS\system32\drivers\aswStm.sys
19:54:13.0859 0x0f6c  aswStm - ok
19:54:13.0875 0x0f6c  [ 5D842497ACF4E114F11CA1B4CAF2C574, BE3A439AB218A38F687A9E17A67074B2B9DB23DE1A203045316EA878959C81D1 ] aswVmm          C:\WINDOWS\system32\drivers\aswVmm.sys
19:54:13.0890 0x0f6c  aswVmm - ok
19:54:13.0890 0x0f6c  AsyncMac - ok
19:54:13.0906 0x0f6c  atapi - ok
19:54:13.0937 0x0f6c  [ F83352D1D1FE0EAB593368DE538D10EF, D2522651D5DF71DDDF57B4654A6F14B5A70DFB47DBB7BE9DDC11E53FE059CDBE ] AtherosSvc      C:\WINDOWS\System32\drivers\AdminService.exe
19:54:13.0953 0x0f6c  AtherosSvc - ok
19:54:13.0968 0x0f6c  AudioEndpointBuilder - ok
19:54:13.0999 0x0f6c  Audiosrv - ok
19:54:14.0031 0x0f6c  autotimesvc - ok
19:54:14.0062 0x0f6c  [ 36F88A67D1FA6EE4E10A01AD2D0DDF21, ABDA6EDCCECEFB426464158C5A11B26CE1BE85FB2A1186BDCF498BD96148502F ] avast! Antivirus C:\Program Files\Avast Software\Avast\AvastSvc.exe
19:54:14.0078 0x0f6c  avast! Antivirus - ok
19:54:14.0093 0x0f6c  [ 602084D9CA85EBB9EACAB928649C675D, 180AA401E9C1651BA32615BE7303C5AF277A376EDFB3DF569F4E5C902A025B3F ] avast! Tools    C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
19:54:14.0109 0x0f6c  avast! Tools - ok
19:54:14.0109 0x0f6c  [ 1B231B5C4D36DE4750A587F08338DEDE, 79E53D36A40951AB328E153BAC9C1E3ADF3330B45899345E645889B9046F06E0 ] AvastWscReporter C:\Program Files\Avast Software\Avast\wsc_proxy.exe
19:54:14.0140 0x0f6c  AvastWscReporter - ok
19:54:14.0234 0x0f6c  [ 152EA58B5A112A9F9477E7BC90274D7C, 5067D8A4696D4F91D1E70CCEA66D3E3B7F8A41717024BBA124EDA55EEF5BF077 ] AVP21.2         C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.2\avp.exe
19:54:14.0265 0x0f6c  AVP21.2 - ok
19:54:14.0343 0x0f6c  [ 40B796B7CECDFB672934733CCDB8BD45, 58B3BF5A01B12DE8409BE50147F5715AA0B5E920EB944C282A92CD0E7193ECDF ] AVP21.3         C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\avp.exe
19:54:14.0374 0x0f6c  AVP21.3 - ok
19:54:14.0406 0x0f6c  AxInstSV - ok
19:54:14.0421 0x0f6c  b06bdrv - ok
19:54:14.0468 0x0f6c  [ 96ECA99B219CBB4F7C95176E492F53BF, 8189D0DBA3331145FB99D4EE188DE48799F0940DE79D46FB9444914C5B4D4146 ] bam             C:\WINDOWS\system32\drivers\bam.sys
19:54:14.0484 0x0f6c  bam - ok
19:54:14.0562 0x0f6c  BasicDisplay - ok
19:54:14.0562 0x0f6c  BasicRender - ok
19:54:14.0593 0x0f6c  BcastDVRUserService - ok
19:54:14.0624 0x0f6c  [ 739D089777D2B66DBE7201E5EA4BA2D7, 9AD12E18A042C5B8EFB19297BC2E7BD1FEF75A138FEFB64C6BF0261FD3E53AB1 ] bcmfn2          C:\WINDOWS\System32\drivers\bcmfn2.sys
19:54:14.0624 0x0f6c  bcmfn2 - ok
19:54:14.0656 0x0f6c  BDESVC - ok
19:54:14.0671 0x0f6c  [ A5D43CA19863A29D219C3C588D936FFC, EECA12E6D5BB7C827BE0B7E5C4484BECEEDF53E5E9BF81B7EEBE7EC43CA8AD53 ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
19:54:14.0671 0x0f6c  Beep - ok
19:54:14.0702 0x0f6c  BFE - ok
19:54:14.0718 0x0f6c  bindflt - ok
19:54:14.0749 0x0f6c  BITS - ok
19:54:14.0765 0x0f6c  BluetoothUserService - ok
19:54:14.0781 0x0f6c  bowser - ok
19:54:14.0796 0x0f6c  BrokerInfrastructure - ok
19:54:14.0827 0x0f6c  [ 63A00CDBEB300522C49EC7CA77324060, 99CB6D37C7D898982A192AAA8DE5CE255E6FA482E19FE9032BAA7069E652F6F5 ] BrSerIb         C:\WINDOWS\System32\drivers\BrSerIb.sys
19:54:14.0843 0x0f6c  BrSerIb - ok
19:54:14.0874 0x0f6c  [ BBCFD6C6EF66449F55AF1BFDB08C9B12, D6D5D408FCFFF9ED69D095948E786C08EEECD5F55905A3D8FE2BB08944C5E1F2 ] BrUsbSIb        C:\WINDOWS\System32\drivers\BrUsbSIb.sys
19:54:14.0890 0x0f6c  BrUsbSIb - ok
19:54:14.0937 0x0f6c  [ 065818B8A2CD7F08D6DC8C598191548C, 08982EB22484ECCA1A7FD0C6A10E6D0BB09F624CEBC397C9B241C2D75C984C70 ] BrYNSvc         C:\Program Files (x86)\Browny02\BrYNSvc.exe
19:54:14.0937 0x0f6c  BrYNSvc - ok
19:54:14.0968 0x0f6c  BTAGService - ok
19:54:14.0984 0x0f6c  [ 4AA0D5F13062B5134C8961F51A77C70B, 7D7F7CFCFA7C92E4451EB85FD6CC3B58FC5B34A0AF99A09C0E21A22670D1B21F ] BtFilter        C:\WINDOWS\System32\drivers\btfilter.sys
19:54:14.0984 0x0f6c  BtFilter - ok
19:54:14.0984 0x0f6c  BthA2dp - ok
19:54:15.0015 0x0f6c  BthAvctpSvc - ok
19:54:15.0030 0x0f6c  BthEnum - ok
19:54:15.0062 0x0f6c  [ 48AE897A64019A816D694241BF62E266, E2F7F0318DC412497AD4906314C08488979F9B9D84AB5FAB404461D324B50A27 ] BthHFEnum       C:\WINDOWS\System32\drivers\bthhfenum.sys
19:54:15.0062 0x0f6c  BthHFEnum - ok
19:54:15.0109 0x0f6c  [ 9E958ED983C0DD9C690248084219C2DE, 2F6DE7E74D1F82FAF07A513AF8A5F9307A05715D261A276B874575EED903F4EF ] BthLEEnum       C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys
19:54:15.0187 0x0f6c  BthLEEnum - ok
19:54:15.0187 0x0f6c  BthMini - ok
19:54:15.0202 0x0f6c  [ 98C477D98674C799758B3C6E9950E11A, D864987FC3DEA86E713539DD440B7FB981FF2F41BD2840BF12601411C8CF5099 ] BTHMODEM        C:\WINDOWS\System32\drivers\bthmodem.sys
19:54:15.0218 0x0f6c  BTHMODEM - ok
19:54:15.0234 0x0f6c  [ BCD11BDC707A4A2563774476AF6FCCBB, 8D55D6211A3839827EE2EF788F6B75A935E52C1E56E5E73A2B5F46E73EAD37FD ] BthPan          C:\WINDOWS\System32\drivers\bthpan.sys
19:54:15.0234 0x0f6c  BthPan - ok
19:54:15.0234 0x0f6c  BTHPORT - ok
19:54:15.0265 0x0f6c  bthserv - ok
19:54:15.0280 0x0f6c  BTHUSB - ok
19:54:15.0296 0x0f6c  bttflt - ok
19:54:15.0296 0x0f6c  buttonconverter - ok
19:54:15.0312 0x0f6c  [ D3FC817DA4694E586135A3221811B409, B889FD8F588023358AA3EC0017CB5392D9F4F8A8B5DB637BE18A044C8C7982C4 ] CAD             C:\WINDOWS\System32\drivers\CAD.sys
19:54:15.0312 0x0f6c  CAD - ok
19:54:15.0343 0x0f6c  camsvc - ok
19:54:15.0359 0x0f6c  CaptureService - ok
19:54:15.0359 0x0f6c  cbdhsvc - ok
19:54:15.0421 0x0f6c  cdfs - ok
19:54:15.0421 0x0f6c  CDPSvc - ok
19:54:15.0437 0x0f6c  CDPUserSvc - ok
19:54:15.0437 0x0f6c  cdrom - ok
19:54:15.0468 0x0f6c  CertPropSvc - ok
19:54:15.0468 0x0f6c  cht4iscsi - ok
19:54:15.0468 0x0f6c  cht4vbd - ok
19:54:15.0484 0x0f6c  [ B7FCEF757304710463D78C1155764BA7, 35F30E3016742879CD51A3786DE5EAE685BFCE9ECFA4F05942625A207CBBAD83 ] circlass        C:\WINDOWS\System32\drivers\circlass.sys
19:54:15.0484 0x0f6c  circlass - ok
19:54:15.0499 0x0f6c  CldFlt - ok
19:54:15.0515 0x0f6c  CLFS - ok
19:54:15.0858 0x0f6c  [ 1102F99919A9D244EF38F884CB4C4A19, 7566C5E451A158D4EF5C42AA362A36BDA887A0F03B3C20478795255E84DBD014 ] ClickToRunSvc   C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
19:54:16.0140 0x0f6c  ClickToRunSvc - ok
19:54:16.0155 0x0f6c  ClipSVC - ok
19:54:16.0233 0x0f6c  clr_optimization_v2.0.50727_32 - ok
19:54:16.0233 0x0f6c  CmBatt - ok
19:54:16.0265 0x0f6c  [ DC92C71B4E8E375C79EF6B2AC2835B6B, E0402D011B7D3D5C89DAAB4F3B49611675A6C7B60FDA856B953659300E47AF74 ] cm_km           C:\WINDOWS\system32\DRIVERS\cm_km.sys
19:54:16.0280 0x0f6c  cm_km - ok
19:54:16.0296 0x0f6c  CNG - ok
19:54:16.0296 0x0f6c  [ 6FD42010608BC1B77D60947175E0BFD9, 81C84FB81A0A6AAC064CC6E12AD60FE0CF667440621BCA191FF83C2F66EFD2CF ] cnghwassist     C:\WINDOWS\system32\DRIVERS\cnghwassist.sys
19:54:16.0296 0x0f6c  cnghwassist - ok
19:54:16.0311 0x0f6c  CompositeBus - ok
19:54:16.0311 0x0f6c  COMSysApp - ok
19:54:16.0343 0x0f6c  condrv - ok
19:54:16.0374 0x0f6c  ConsentUxUserSvc - ok
19:54:16.0405 0x0f6c  CoreMessagingRegistrar - ok
19:54:16.0452 0x0f6c  [ 2FE8482451DB3CFE1D6D2CE7BA39A3D5, ED7AD55E4FAD693973E3585CA7BA58F33959994848B7AFFDEA1633D027B1BBE4 ] cphs            C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_6d34ac0763025a06\IntelCpHeciSvc.exe
19:54:16.0452 0x0f6c  cphs - ok
19:54:16.0483 0x0f6c  [ 5377AF777BBAEBCC484575BBE74ECDAD, D4B585F5848952716D62682CD66E36F44338233DFD8AA047DEE8E6AAD7778786 ] cplspcon        C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_6d34ac0763025a06\IntelCpHDCPSvc.exe
19:54:16.0483 0x0f6c  cplspcon - ok
19:54:16.0515 0x0f6c  CredentialEnrollmentManagerUserSvc - ok
19:54:16.0530 0x0f6c  CredentialEnrollmentManagerUserSvc_275c2 - ok
19:54:16.0546 0x0f6c  CryptSvc - ok
19:54:16.0561 0x0f6c  [ D32047ED7F2718871AFC215FFF4760C2, A3F954BC3C22EEEC50610039CB8E6082C1533AE5C92C12C85BAF3569D499A7BE ] dam             C:\WINDOWS\system32\drivers\dam.sys
19:54:16.0577 0x0f6c  dam - ok
19:54:16.0608 0x0f6c  [ A1F58FFF448E4099297D6EE0641D4D0E, 47839789332AAF8861F7731BF2D3FBB5E0991EA0D0B457BB4C8C1784F76C73DC ] dbupdate        C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
19:54:16.0608 0x0f6c  dbupdate - ok
19:54:16.0624 0x0f6c  [ A1F58FFF448E4099297D6EE0641D4D0E, 47839789332AAF8861F7731BF2D3FBB5E0991EA0D0B457BB4C8C1784F76C73DC ] dbupdatem       C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
19:54:16.0624 0x0f6c  dbupdatem - ok
19:54:16.0639 0x0f6c  [ 4E97E07BB15E0D6B8F8A9411DB7AB0E7, 25453DF67EA32233DA94FAB76A11E73256719CF831BB4898924F33F7EF26248E ] DbxSvc          C:\WINDOWS\system32\DbxSvc.exe
19:54:16.0811 0x0f6c  DbxSvc - ok
19:54:16.0843 0x0f6c  DcomLaunch - ok
19:54:16.0843 0x0f6c  defragsvc - ok
19:54:16.0858 0x0f6c  DeviceAssociationBrokerSvc - ok
19:54:16.0874 0x0f6c  DeviceAssociationService - ok
19:54:16.0905 0x0f6c  DeviceInstall - ok
19:54:16.0921 0x0f6c  DevicePickerUserSvc - ok
19:54:16.0936 0x0f6c  DevicesFlowUserSvc - ok
19:54:16.0952 0x0f6c  DevQueryBroker - ok
19:54:16.0952 0x0f6c  Dfsc - ok
19:54:16.0983 0x0f6c  [ 7696E56D3918EC9BBF5BC65E241002DC, 4FF3ADE6A47160D84ED1FDCA261EC29BF408944BAFA159A3E381DDC958300265 ] dg_ssudbus      C:\WINDOWS\system32\DRIVERS\ssudbus2.sys
19:54:16.0999 0x0f6c  dg_ssudbus - ok
19:54:17.0014 0x0f6c  Dhcp - ok
19:54:17.0046 0x0f6c  diagnosticshub.standardcollector.service - ok
19:54:17.0046 0x0f6c  diagsvc - ok
19:54:17.0046 0x0f6c  DiagTrack - ok
19:54:17.0061 0x0f6c  disk - ok
19:54:17.0077 0x0f6c  DispBrokerDesktopSvc - ok
19:54:17.0077 0x0f6c  DisplayEnhancementService - ok
19:54:17.0108 0x0f6c  DmEnrollmentSvc - ok
19:54:17.0124 0x0f6c  dmvsc - ok
19:54:17.0139 0x0f6c  [ A4F5D5C81B9690B8ACB8798A5C711D31, A30F92686E84544CE1D36682F4E81836BDDAE9C1F08C2524BAB9671F7B5CD14C ] dmwappushservice C:\WINDOWS\system32\dmwappushsvc.dll
19:54:17.0171 0x0f6c  dmwappushservice - ok
19:54:17.0186 0x0f6c  Dnscache - ok
19:54:17.0233 0x0f6c  [ F813CE5D2332091D799C5C9F622C98AF, 98FD2070D5C8A95DC74EC0349887434557E80D5C0B999308FCC2D0DEFF059CAF ] Dolby DAX2 API Service C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe
19:54:17.0233 0x0f6c  Dolby DAX2 API Service - ok
19:54:17.0233 0x0f6c  dot3svc - ok
19:54:17.0264 0x0f6c  [ FC37ABA7F9026FFB255CEC78AC2410E4, EEBE379C184D39F821BB0B11EB3F7A68EBEF2964CACCCC0197A79A1E770FBCA5 ] DPS             C:\WINDOWS\system32\dps.dll
19:54:17.0280 0x0f6c  DPS - ok
19:54:17.0311 0x0f6c  drmkaud - ok
19:54:17.0327 0x0f6c  DsmSvc - ok
19:54:17.0342 0x0f6c  DsSvc - ok
19:54:17.0374 0x0f6c  DusmSvc - ok
19:54:17.0374 0x0f6c  DXGKrnl - ok
19:54:17.0374 0x0f6c  Eaphost - ok
19:54:17.0405 0x0f6c  [ B78BADD332F4026A96154C0CE3DB9412, 16E7E3802956C9409A47DC1A2713447DD9E605836231CFAF524A1B35B051AD44 ] EasyAntiCheat   C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe
19:54:17.0436 0x0f6c  EasyAntiCheat - ok
19:54:17.0436 0x0f6c  ebdrv - ok
19:54:17.0467 0x0f6c  [ D21437C262283650E8349AFA573AC03A, 9C256D462F0640855E1AB3D2C658CB4EDD7E061EB2782FD03481196D5ED93DB5 ] edgeupdate      C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
19:54:17.0467 0x0f6c  edgeupdate - ok
19:54:17.0483 0x0f6c  [ D21437C262283650E8349AFA573AC03A, 9C256D462F0640855E1AB3D2C658CB4EDD7E061EB2782FD03481196D5ED93DB5 ] edgeupdatem     C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
19:54:17.0483 0x0f6c  edgeupdatem - ok
19:54:17.0483 0x0f6c  EFS - ok
19:54:17.0483 0x0f6c  EhStorClass - ok
19:54:17.0499 0x0f6c  EhStorTcgDrv - ok
19:54:17.0530 0x0f6c  embeddedmode - ok
19:54:17.0561 0x0f6c  EntAppSvc - ok
19:54:17.0655 0x0f6c  [ D6819EA41722241D257985D18667E3D9, 7D78F5F299B27DBF534F459D4E225AB38A41936F7239D830E55A50D90F63B5AC ] EpicOnlineServices C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe
19:54:17.0686 0x0f6c  EpicOnlineServices - ok
19:54:17.0686 0x0f6c  ErrDev - ok
19:54:17.0733 0x0f6c  [ DDA71461530278710309182132EC22FA, 4B9AB1223A306D2816465AD7EC01FD3DE9D12591855DF31980C10F5AE3D8DE76 ] ETD             C:\WINDOWS\system32\DRIVERS\ETD.sys
19:54:17.0749 0x0f6c  ETD - ok
19:54:17.0780 0x0f6c  [ 3497642480CF21D4B1C06F7052BAB906, 0B255E53670EC5CF2373A51D2D866863ACFBE6FB2BA30DC127F9082A780F119B ] ETDHCF          C:\WINDOWS\System32\drivers\ETDHCF.sys
19:54:17.0780 0x0f6c  ETDHCF - ok
19:54:17.0811 0x0f6c  [ F1E73492F9626513413B95F97F788003, ADB0C2D218829AE9FE26FBD0F0BBD999D63F7B470BD531013EE1C13FA2C2189A ] ETDService      C:\Program Files\Elantech\ETDService.exe
19:54:17.0827 0x0f6c  ETDService - ok
19:54:17.0827 0x0f6c  EventLog - ok
19:54:17.0858 0x0f6c  EventSystem - ok
19:54:17.0874 0x0f6c  exfat - ok
19:54:17.0905 0x0f6c  [ F7A7DA530618C3700A449FE7971DB924, 20A40AC38B08983EB1D93B3159E6AB22A36C6A0EA9D5FABC07C944F2010F342C ] ezplay          C:\WINDOWS\System32\Drivers\ezplay.sys
19:54:17.0905 0x0f6c  ezplay - ok
19:54:17.0920 0x0f6c  fastfat - ok
19:54:17.0920 0x0f6c  Fax - ok
19:54:17.0920 0x0f6c  fdc - ok
19:54:17.0952 0x0f6c  [ 574937AAC16BC828BA35DA6639972660, BCC1431B0062AFA56B2A754EC381FD3BDDF0864929BB16B174E13827D2088D9C ] fdPHost         C:\WINDOWS\system32\fdPHost.dll
19:54:17.0999 0x0f6c  fdPHost - ok
19:54:18.0014 0x0f6c  [ 5414A54236322C5ED8691CEC1A38EF80, A66E093F96383FAD9AB11C350A9712D64016F3EF7753124ABA368F969B74B276 ] FDResPub        C:\WINDOWS\system32\fdrespub.dll
19:54:18.0030 0x0f6c  FDResPub - ok
19:54:18.0030 0x0f6c  fhsvc - ok
19:54:18.0045 0x0f6c  [ 35E6FE3288B6147F844B1845564FF161, 167F38BBDE88FDF7F30A626D7E1AF59006FE936D40D14C27FAEBDFCB2ECB6DAF ] FileCrypt       C:\WINDOWS\system32\drivers\filecrypt.sys
19:54:18.0045 0x0f6c  FileCrypt - ok
19:54:18.0045 0x0f6c  FileInfo - ok
19:54:18.0061 0x0f6c  Filetrace - ok
19:54:18.0077 0x0f6c  flpydisk - ok
19:54:18.0077 0x0f6c  FltMgr - ok
19:54:18.0108 0x0f6c  FontCache - ok
19:54:18.0170 0x0f6c  FontCache3.0.0.0 - ok
19:54:18.0170 0x0f6c  FrameServer - ok
19:54:18.0202 0x0f6c  FsDepends - ok
19:54:18.0202 0x0f6c  Fs_Rec - ok
19:54:18.0217 0x0f6c  fvevol - ok
19:54:18.0248 0x0f6c  [ EF8A6E4DDD8A6F5840B96C1C238B59EC, 55BD969E15AE16EABC399D99AA48FB7A9CF7FDB73CAD8B2A79095B37B3731C75 ] gencounter      C:\WINDOWS\System32\drivers\vmgencounter.sys
19:54:18.0311 0x0f6c  gencounter - ok
19:54:18.0342 0x0f6c  genericusbfn - ok
19:54:18.0436 0x0f6c  [ 001E289286FAD33D4583C0FF2A37BD93, 354C2A1816F0EE249FD5C9D7709ED018655ACC1B8BBA6BE1C7FD6DD6E0CC84C3 ] GoogleChromeElevationService C:\Program Files (x86)\Google\Chrome\Application\90.0.4430.212\elevation_service.exe
19:54:18.0498 0x0f6c  GoogleChromeElevationService - ok
19:54:18.0530 0x0f6c  GPIOClx0101 - ok
19:54:18.0530 0x0f6c  gpsvc - ok
19:54:18.0545 0x0f6c  [ ECF72E76711455EEB362E2E175395F87, 14E3D4396678303BACA9EE6A60869CE3EBBCEF58E71B25FA077D6DA4F94F1390 ] GpuEnergyDrv    C:\WINDOWS\system32\drivers\gpuenergydrv.sys
19:54:18.0545 0x0f6c  GpuEnergyDrv - ok
19:54:18.0561 0x0f6c  GraphicsPerfSvc - ok
19:54:18.0670 0x0f6c  [ BFD95C199722FA351C4496B2D1D1C59C, 28F1C53AB5C7297952EDEF5035DC3B570EB8D89D30E18AA9BD1A359898900E01 ] GUBootService   C:\Program Files (x86)\Glary Utilities 5\GUBootService.exe
19:54:18.0686 0x0f6c  GUBootService - ok
19:54:18.0717 0x0f6c  [ AC39540BE310F556ED22BD8750140118, 7A1D803CB28A5E0A32C15AEFE484F1B426117AFC9E4C8BABF3CADACBFFEC05EA ] GUBootStartup   C:\WINDOWS\System32\drivers\GUBootStartup.sys
19:54:18.0717 0x0f6c  GUBootStartup - ok
19:54:18.0748 0x0f6c  [ 79B804E8A81BFD9C6A3749B4F3EE86E2, BFBDD26604FC653E01976EF23C92CF7ADB59F9E80F47350F1A72B7876BBED60A ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
19:54:18.0748 0x0f6c  gupdate - ok
19:54:18.0748 0x0f6c  [ 79B804E8A81BFD9C6A3749B4F3EE86E2, BFBDD26604FC653E01976EF23C92CF7ADB59F9E80F47350F1A72B7876BBED60A ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
19:54:18.0748 0x0f6c  gupdatem - ok
19:54:18.0764 0x0f6c  HdAudAddService - ok
19:54:18.0795 0x0f6c  HDAudBus - ok
19:54:18.0795 0x0f6c  HidBatt - ok
19:54:18.0811 0x0f6c  HidBth - ok
19:54:18.0811 0x0f6c  hidi2c - ok
19:54:18.0826 0x0f6c  hidinterrupt - ok
19:54:18.0842 0x0f6c  [ C789878B45C886DBD967826B491C9C19, 29ACA42E3B8307078D03FD77831A534DE3EFF38A20ABB08EDF81089A94E2E585 ] HidIr           C:\WINDOWS\System32\drivers\hidir.sys
19:54:18.0842 0x0f6c  HidIr - ok
19:54:18.0858 0x0f6c  hidserv - ok
19:54:18.0889 0x0f6c  hidspi - ok
19:54:18.0905 0x0f6c  HidUsb - ok
19:54:18.0920 0x0f6c  HpSAMD - ok
19:54:18.0936 0x0f6c  HTTP - ok
19:54:18.0967 0x0f6c  [ 6E7C4CAE43DA57A46DE9AC07D3400719, 3F5552758C8DF6D3C2A06FB19A3DB104916E2DCBD0C85DF15A40463EE5E0A614 ] hvcrash         C:\WINDOWS\System32\drivers\hvcrash.sys
19:54:18.0967 0x0f6c  hvcrash - ok
19:54:18.0998 0x0f6c  HvHost - ok
19:54:18.0998 0x0f6c  hvservice - ok
19:54:19.0030 0x0f6c  [ C1AE2929CAD05CD2AA1FA835B06023A0, 4FA13362C7132114904C31EE2D96AED773BD0473FF73713B6D8C1030A4C2FE13 ] HwNClx0101      C:\WINDOWS\system32\Drivers\mshwnclx.sys
19:54:19.0030 0x0f6c  HwNClx0101 - ok
19:54:19.0030 0x0f6c  hwpolicy - ok
19:54:19.0030 0x0f6c  hyperkbd - ok
19:54:19.0045 0x0f6c  HyperVideo - ok
19:54:19.0045 0x0f6c  i8042prt - ok
19:54:19.0045 0x0f6c  iagpio - ok
19:54:19.0045 0x0f6c  iai2c - ok
19:54:19.0045 0x0f6c  iaLPSS2i_GPIO2 - ok
19:54:19.0061 0x0f6c  iaLPSS2i_GPIO2_BXT_P - ok
19:54:19.0061 0x0f6c  iaLPSS2i_GPIO2_CNL - ok
19:54:19.0076 0x0f6c  iaLPSS2i_GPIO2_GLK - ok
19:54:19.0076 0x0f6c  iaLPSS2i_I2C - ok
19:54:19.0076 0x0f6c  iaLPSS2i_I2C_BXT_P - ok
19:54:19.0076 0x0f6c  iaLPSS2i_I2C_CNL - ok
19:54:19.0076 0x0f6c  iaLPSS2i_I2C_GLK - ok
19:54:19.0108 0x0f6c  [ 5AEE62F78A0958CC0C78F5CEAC4B2424, 7B9D7DC6C02E28CADC98F35AD18714EB9714623377911C4D0DBD076378AC6C76 ] iaLPSS2_SPI     C:\WINDOWS\System32\drivers\iaLPSS2_SPI.sys
19:54:19.0123 0x0f6c  iaLPSS2_SPI - ok
19:54:19.0155 0x0f6c  [ 028910C366973233F56D3C87CE2409CE, A9ED520F7D4112E2DB84487B6F98CCE9292469C10E3237FB8C0D8EDA24497934 ] iaLPSS2_UART2   C:\WINDOWS\System32\drivers\iaLPSS2_UART2.sys
19:54:19.0155 0x0f6c  iaLPSS2_UART2 - ok
19:54:19.0170 0x0f6c  iaLPSSi_GPIO - ok
19:54:19.0170 0x0f6c  iaLPSSi_I2C - ok
19:54:19.0217 0x0f6c  [ 0C03EA90CAB8B82FBF6F043E412646AE, D333F52F2283EC91FA47FBD990AB4F3B0599CBC48BE2C722710DB47A7B273B07 ] iaStorA         C:\WINDOWS\system32\drivers\iaStorA.sys
19:54:19.0233 0x0f6c  iaStorA - ok
19:54:19.0233 0x0f6c  [ 68BE5FA6A4EDE634F1E14102983BBE74, 95346A9EE7516DADE49F57F29135C273F918EDC2941D6AE6873A6A5BF72BE645 ] iaStorAfs       C:\WINDOWS\System32\drivers\iaStorAfs.sys
19:54:19.0233 0x0f6c  iaStorAfs - ok
19:54:19.0311 0x0f6c  [ 8DAECE630FF53AF881F12FE593A00A07, 5B295E1BCBDF6548C207F00A8E0CF8A55FE3B6C5F3DB353AA5CC33ACC206C4E1 ] iaStorAfsService C:\WINDOWS\IAStorAfsService\iaStorAfsService.exe
19:54:19.0404 0x0f6c  iaStorAfsService - ok
19:54:19.0420 0x0f6c  iaStorAVC - ok
19:54:19.0420 0x0f6c  iaStorV - ok
19:54:19.0420 0x0f6c  ibbus - ok
19:54:19.0436 0x0f6c  icssvc - ok
19:54:19.0811 0x0f6c  [ 086060C287954ECEB300CF4B39F23280, C1D3FF9BDD59B543DBECD69726163354AB91409DD00877DBCD8E1A38472E665B ] igfx            C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_6d34ac0763025a06\igdkmd64.sys
19:54:20.0154 0x0f6c  igfx - ok
19:54:20.0186 0x0f6c  [ C8C32B0ADBE87DE6F51621678517DD94, B048B1D8F207AC6E2469E5B8251035043C10F116FC9409AB0726E9F6B8533AC5 ] igfxCUIService2.0.0.0 C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_6d34ac0763025a06\igfxCUIService.exe
19:54:20.0186 0x0f6c  igfxCUIService2.0.0.0 - ok
19:54:20.0217 0x0f6c  IKEEXT - ok
19:54:20.0264 0x0f6c  [ 7EDB7CCEDC86F03D3254274564DB0E99, 58C7B50D8306E3B2334634DDF81B99B61E2EBF4D35B3E43BE02C7BEFECA77E0C ] IndirectKmd     C:\WINDOWS\System32\drivers\IndirectKmd.sys
19:54:20.0264 0x0f6c  IndirectKmd - ok
19:54:20.0279 0x0f6c  InstallService - ok
19:54:20.0451 0x0f6c  [ 4E0A25283B8DF45CA9589679701643C2, 33BB8A462242F726F7224A709F80FC754808F1394B8CB7BC5C37F5D3FF6C2EAC ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RTKVHD64.sys
19:54:20.0607 0x0f6c  IntcAzAudAddService - ok
19:54:20.0639 0x0f6c  [ F84EBFD61D5B4BF6336A3E519EB6A548, 3ADC293D41DAFC35AFA814F74060CA09CCB57EB9DC9741117EC46C2132633151 ] IntcDAud        C:\WINDOWS\System32\DriverStore\FileRepository\intcdaud.inf_amd64_3b876fb0bfb3390a\IntcDAud.sys
19:54:20.0654 0x0f6c  IntcDAud - ok
19:54:20.0670 0x0f6c  intelide - ok
19:54:20.0670 0x0f6c  intelpep - ok
19:54:20.0701 0x0f6c  [ 8D6ADFE99C1DC577C74B0148E70ED5BB, 3CB473C80B1F0B4BF32D5F76A600A972D4AFB5E62882FB09F48B6D40F3285F07 ] intelpmax       C:\WINDOWS\System32\drivers\intelpmax.sys
19:54:20.0717 0x0f6c  intelpmax - ok
19:54:20.0732 0x0f6c  intelppm - ok
19:54:20.0763 0x0f6c  [ A89BF4378628224DA411A76FF6913E95, 2572614EB43DA5BE591B8484CD05D4F8FB991BF3331A976A87A03DC3585FB100 ] iorate          C:\WINDOWS\system32\drivers\iorate.sys
19:54:20.0763 0x0f6c  iorate - ok
19:54:20.0810 0x0f6c  [ 02A2D46896B4312F084D5095D00B6DE7, 0D27C86EC5B2D9DEC9F88729AB16F79638769455179ABE23C86A519858104176 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
19:54:20.0810 0x0f6c  IpFilterDriver - ok
19:54:20.0842 0x0f6c  iphlpsvc - ok
19:54:20.0842 0x0f6c  IPMIDRV - ok
19:54:20.0873 0x0f6c  [ 5E05C0FEA671B910FEBC634E796C38B5, 7531CA77A2586E6F7085E1776EB6E5B665EAE3782C5EA7C2B7E5D3039F922397 ] IPNAT           C:\WINDOWS\system32\drivers\ipnat.sys
19:54:20.0873 0x0f6c  IPNAT - ok
19:54:20.0904 0x0f6c  [ 3BB90B22F0D8A58B261A1B1AE6B80EAD, 6F5246DAA62C8F4E318E88EDAA48CD9ABD00591111F1E3F421E3E8D1D3377AF7 ] IPT             C:\WINDOWS\System32\drivers\ipt.sys
19:54:20.0904 0x0f6c  IPT - ok
19:54:20.0935 0x0f6c  [ 5B4848FF9C6D605563BE8E21D4D2F70F, 394335BF90F7761515914A63D0F9DA122465D755D1C0E27329289228E15384FD ] IpxlatCfgSvc    C:\WINDOWS\System32\IpxlatCfg.dll
19:54:21.0013 0x0f6c  IpxlatCfgSvc - ok
19:54:21.0045 0x0f6c  [ 5722AE97A72F9FBE12231EC9C8446E1E, 560093D6B6B1608CB69BFF59656F29A4E487512A2CF654440E9483EA684400DF ] iriuna0         C:\WINDOWS\system32\drivers\iriuna0.sys
19:54:21.0045 0x0f6c  iriuna0 - ok
19:54:21.0060 0x0f6c  [ A939B81296EDD29995534C13B528987F, C86698E75A275A2858E05598D2A4672A32785D89C4D60D89FCB9D6B4F909F93C ] iriunv0         C:\WINDOWS\System32\DriverStore\FileRepository\iriunvid.inf_amd64_58518cc843573ae0\iriunv0.sys
19:54:21.0076 0x0f6c  iriunv0 - ok
19:54:21.0076 0x0f6c  isapnp - ok
19:54:21.0092 0x0f6c  iScsiPrt - ok
19:54:21.0092 0x0f6c  ItSas35i - ok
19:54:21.0092 0x0f6c  kbdclass - ok
19:54:21.0107 0x0f6c  kbdhid - ok
19:54:21.0107 0x0f6c  kdnic - ok
19:54:21.0138 0x0f6c  KeyIso - ok
19:54:21.0170 0x0f6c  [ E666B0F9E4A1E80BB5E6E8BAD3AB2F12, E6FA0B39C09E9B185806DF7C69AFB91AC49DF5FE7E0E00AD44550FA4A896B23A ] klbackupdisk    C:\WINDOWS\system32\DRIVERS\klbackupdisk.sys
19:54:21.0170 0x0f6c  klbackupdisk - ok
19:54:21.0185 0x0f6c  [ B3E2671C5394DF68ED9ECD8D4B5CB4DB, 8DF7C785069F84DDFEBE526BD29B1D0DE0766DFDBBFFE8CA6774DB08E4019459 ] klbackupflt     C:\WINDOWS\system32\DRIVERS\klbackupflt.sys
19:54:21.0185 0x0f6c  klbackupflt - ok
19:54:21.0201 0x0f6c  [ FD099C01864F484FD325B99500BE81E3, 612E2C59997CD940306D7AB6C68992A7BAD9C86443E9E17ECA1790323F42B094 ] kldisk          C:\WINDOWS\system32\DRIVERS\kldisk.sys
19:54:21.0201 0x0f6c  kldisk - ok
19:54:21.0217 0x0f6c  [ 99A4B7EC381F93AEDA3B20019C38C8E8, 6C5FB38B4626C10E1A974278439C48FC5079A7117440ADF6E424891C28E33C82 ] klelam          C:\WINDOWS\system32\DRIVERS\klelam.sys
19:54:21.0217 0x0f6c  klelam - ok
19:54:21.0248 0x0f6c  [ 9510130F04E3147BC284D5F5E2898B5D, 1D94611392C16D478F6189D3AB2E2AAACE3DE93E9C73865FB977F9D32CC286C3 ] klflt           C:\WINDOWS\system32\DRIVERS\klflt.sys
19:54:21.0263 0x0f6c  klflt - ok
19:54:21.0295 0x0f6c  [ 7F343D6691032E8FAFF3857A55356A48, 457C90BC48BC875EEFF17884056A13F5A68BB1FD95DB0637361AAE9F81D13D87 ] klgse           C:\WINDOWS\system32\DRIVERS\klgse.sys
19:54:21.0310 0x0f6c  klgse - ok
19:54:21.0357 0x0f6c  [ E1B7CF815A42A5D799087065FFF403E5, 40DB9FD292D7C41D28A312F64DDCEBE78D015FFE2A4F34870C3AA1891D194B72 ] klhk            C:\WINDOWS\system32\DRIVERS\klhk.sys
19:54:21.0420 0x0f6c  klhk - ok
19:54:21.0513 0x0f6c  [ 955B240E60FE066B330E226DBB2F6F06, 9A2D74B8589A85A172611C991D99B6B24380D133980166AFF946DF2E490696D8 ] klids           C:\ProgramData\Kaspersky Lab\AVP21.2\Bases\klids.sys
19:54:21.0513 0x0f6c  klids - ok
19:54:21.0576 0x0f6c  [ 0E0B98C867F6D5F273F65F2F7FA194E3, 6AD40A1CD83338BC00F6CBF12234D37E2A84665D0D66EAAE2A21933C679E2565 ] KLIF            C:\WINDOWS\system32\DRIVERS\klif.sys
19:54:21.0591 0x0f6c  KLIF - ok
19:54:21.0607 0x0f6c  [ D53985057C132B3EA277EB724FFFBE7A, 6A1268B52DE44824ACA77082A72F94AFF2A7AF8E4C7953C0FED7D51E7076F1CE ] klim6           C:\WINDOWS\system32\DRIVERS\klim6.sys
19:54:21.0607 0x0f6c  klim6 - ok
19:54:21.0623 0x0f6c  [ EB43A968AF84C0D9024B4C077F1F964C, DA05F52938A42B4DA00910C8362455A82BD0AAFB09BED6D11CE070223F607C1D ] klkbdflt        C:\WINDOWS\system32\DRIVERS\klkbdflt.sys
19:54:21.0638 0x0f6c  klkbdflt - ok
19:54:21.0654 0x0f6c  [ C0A8B26DB146D3CAFA31CCD237647E27, 8E491C49C61469BA396411B2D73839A64CF536DF0376EB0973FEAB49EFE81A1A ] klmouflt        C:\WINDOWS\system32\DRIVERS\klmouflt.sys
19:54:21.0654 0x0f6c  klmouflt - ok
19:54:21.0685 0x0f6c  [ E058954C4279D581AA490A171C3C65D8, 60219805C5C9039AE9B5C42ACF0892BCCA91A89829E2089D660642C048E1733C ] klpd            C:\WINDOWS\system32\DRIVERS\klpd.sys
19:54:21.0685 0x0f6c  klpd - ok
19:54:21.0701 0x0f6c  [ 9D63CB07370A753109D8F3182F8196C6, D2989E0CD596BF75C36F0B88B8C4EFE9F68EB751C9F772AEC4AF0FD328AFC2A8 ] klpnpflt        C:\WINDOWS\system32\DRIVERS\klpnpflt.sys
19:54:21.0701 0x0f6c  klpnpflt - ok
19:54:21.0716 0x0f6c  [ 0E972768BB14405B1DD09861D709C658, 0CF3EF10691E6272FA69FDE00108A38380842617C7FE59F04079AD76DB348211 ] kltap           C:\WINDOWS\System32\drivers\kltap.sys
19:54:21.0716 0x0f6c  kltap - ok
19:54:21.0748 0x0f6c  [ 58F379760B519E358F7C46FF4D7FB49E, 5DF3317D507D8E56D7434167CA81E01826970736387524F240D8A2484307AC31 ] klupd_klif_arkmon C:\WINDOWS\system32\Drivers\klupd_klif_arkmon.sys
19:54:21.0748 0x0f6c  klupd_klif_arkmon - ok
19:54:21.0779 0x0f6c  [ 847736BFEA593398A79C498481628EF8, BAF7BD372CB97018D28A7FE4274CF97137D3BC9F5DD65498596598CB7E5FCBA9 ] klupd_klif_klark C:\WINDOWS\system32\Drivers\klupd_klif_klark.sys
19:54:21.0779 0x0f6c  klupd_klif_klark - ok
19:54:21.0810 0x0f6c  [ 7B462BA869ABCDBB21D56C70D343991B, 13005C5B6BD9BF8A5B1C7D08FC66308D5968E29262307008242033015E987430 ] klupd_klif_klbg C:\WINDOWS\system32\Drivers\klupd_klif_klbg.sys
19:54:21.0810 0x0f6c  klupd_klif_klbg - ok
19:54:21.0841 0x0f6c  [ 463B1CA97DAE4D7210CBF5967CF392B7, 70C23DE6BBA97160462C152F4F588B593574CB58E6E806CD8EF3D398D2DC45D8 ] klupd_klif_mark C:\WINDOWS\system32\Drivers\klupd_klif_mark.sys
19:54:21.0857 0x0f6c  klupd_klif_mark - ok
19:54:21.0935 0x0f6c  [ 3554950D681990DF3C8CF2502CBDB1F7, 4236A5066D71D5A899A76940C9110640949733BBBE7A4684E5971803F7C7DE39 ] klvssbridge64_21.2 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.2\x64\vssbridge64.exe
19:54:21.0951 0x0f6c  klvssbridge64_21.2 - ok
19:54:22.0044 0x0f6c  [ 309E3BE60B378CD218C6459F40E29B54, 4968D0EA06C5574E7AA0ACB9F6B8984E6AD16A10EBC16C4153DE356F1A25D0E8 ] klvssbridge64_21.3 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\x64\vssbridge64.exe
19:54:22.0060 0x0f6c  klvssbridge64_21.3 - ok
19:54:22.0107 0x0f6c  [ C6C3309BF11774B193D8C6B2280860F3, 38ABF4D6A054261F97C0908D4873F2ADE5779E0375294080113304CDB824D518 ] klwfp           C:\WINDOWS\system32\DRIVERS\klwfp.sys
19:54:22.0107 0x0f6c  klwfp - ok
19:54:22.0123 0x0f6c  [ 2F68A1357C2C1FB2D3F926447101D878, D338A3797A4D2F71EE271DDA7756ACBEDCD2A852E26CC36C431C817775F18E32 ] klwtp           C:\WINDOWS\system32\DRIVERS\klwtp.sys
19:54:22.0123 0x0f6c  klwtp - ok
19:54:22.0169 0x0f6c  [ D42318A036A20340C5704CC8B819AA09, 93260BA8EAE69816D26C420C3CBADFCB9439BB750E62193F6E81AB7CCCDDD545 ] kneps           C:\WINDOWS\system32\DRIVERS\kneps.sys
19:54:22.0169 0x0f6c  kneps - ok
19:54:22.0216 0x0f6c  [ 61E3D4A6A376D724C785A0347CCDD75A, E3DA5C0AAB81D928E732A0CCA98D72F21EDCC3FAC4FFD3854C9B783115311335 ] KSDE5.3         C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.3\ksde.exe
19:54:22.0232 0x0f6c  KSDE5.3 - ok
19:54:22.0232 0x0f6c  KSecDD - ok
19:54:22.0263 0x0f6c  KSecPkg - ok
19:54:22.0263 0x0f6c  ksthunk - ok
19:54:22.0294 0x0f6c  [ 2A4F33C288355AF81387C4030C00FEBB, 2A2263CD1670D14DE27F7B5FA70E4037ADFE00A65D93A0C6B3C584435FD93FCE ] KtmRm           C:\WINDOWS\system32\msdtckrm.dll
19:54:22.0404 0x0f6c  KtmRm - ok
19:54:22.0404 0x0f6c  LanmanServer - ok
19:54:22.0466 0x0f6c  LanmanWorkstation - ok
19:54:22.0529 0x0f6c  [ 13C530A2493DEA19FB6EA68252CDC757, FEE3B0D5BC307253975CAEFB1D78638BE8C958F140A9159B6F662FD3AB421C16 ] LenovoVantageService C:\Program Files (x86)\Lenovo\VantageService\LenovoVantageService.exe
19:54:22.0529 0x0f6c  LenovoVantageService - ok
19:54:22.0560 0x0f6c  [ C74D6825D4F8F587AFBFE4CFAFA6CCE2, 8E00369E9DF24BAB5314B7BFC748A5413124654DA9CA37DE90B9309FD68139AE ] lfsvc           C:\WINDOWS\System32\lfsvc.dll
19:54:22.0576 0x0f6c  lfsvc - ok
19:54:22.0622 0x0f6c  LicenseManager - ok
19:54:22.0654 0x0f6c  [ A0D1856F57DFCF58D8A9E23D8B205886, 228803C88590C8AC10A1730CADA38A48DEB0236FDC6695673D70C40F91F3948D ] lltdio          C:\WINDOWS\system32\drivers\lltdio.sys
19:54:22.0654 0x0f6c  lltdio - ok
19:54:22.0669 0x0f6c  lltdsvc - ok
19:54:22.0685 0x0f6c  lmhosts - ok
19:54:22.0701 0x0f6c  LSI_SAS - ok
19:54:22.0701 0x0f6c  LSI_SAS2i - ok
19:54:22.0701 0x0f6c  LSI_SAS3i - ok
19:54:22.0701 0x0f6c  LSI_SSS - ok
19:54:22.0732 0x0f6c  LSM - ok
19:54:22.0747 0x0f6c  luafv - ok
19:54:22.0763 0x0f6c  luminati_net_updater_win_hola_org - ok
19:54:22.0794 0x0f6c  LxpSvc - ok
19:54:22.0841 0x0f6c  [ 1294A83A7E61544E5C3678A40237F842, 120EC51CAA8D917E6B6FBD1E22E7AC59858C148EADA9B3F81EB03D82DD608EFD ] MapsBroker      C:\WINDOWS\System32\moshost.dll
19:54:22.0841 0x0f6c  MapsBroker - ok
19:54:22.0857 0x0f6c  mausbhost - ok
19:54:22.0857 0x0f6c  mausbip - ok
19:54:22.0919 0x0f6c  [ E8AAA5EF5EBD3BBFFFA581B14056C1B9, 6519A70E8AFFE122E1DB69BA22CF14EC9B88BDA5AA4031FF0EC9834AC18D57BE ] MBAMChameleon   C:\WINDOWS\System32\Drivers\MbamChameleon.sys
19:54:22.0919 0x0f6c  MBAMChameleon - ok
19:54:22.0950 0x0f6c  [ BF46AFE0CC03D9A5883E74438170B841, 43309A4DBCF15F09AB3066E96C498785C4F41DBCA8467B0385FCA467AE370980 ] MbamElam        C:\WINDOWS\system32\DRIVERS\MbamElam.sys
19:54:22.0950 0x0f6c  MbamElam - ok
19:54:23.0169 0x0f6c  [ 9D9B0C772D127F480330E152DB673573, C2902DC7A03EB8D95CF4FB255576779B14B7517BBAA828348748FC0DD412AD46 ] MBAMService     C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
19:54:23.0357 0x0f6c  MBAMService - ok
19:54:23.0388 0x0f6c  [ 0B17A8F4956ABD5FA1A0851B59FF960E, 1B62082ACA96EF78A61AFDB33EF77260292C5D08E5E35B56F7F8F0A3A837ED9B ] MBAMSwissArmy   C:\WINDOWS\System32\Drivers\mbamswissarmy.sys
19:54:23.0403 0x0f6c  MBAMSwissArmy - ok

Resporte TDS Skiller 2/2:

19:54:23.0419 0x0f6c  MbbCx - ok
19:54:23.0435 0x0f6c  megasas - ok
19:54:23.0435 0x0f6c  megasas2i - ok
19:54:23.0435 0x0f6c  megasas35i - ok
19:54:23.0435 0x0f6c  megasr - ok
19:54:23.0482 0x0f6c  [ 0AC256421B38CEF110FD2C6A22421E65, 5D8AF9775DF9A1C3BA0AF87A042621B0587CA2F36BFCACEDF10F4CDCB0F0A2AB ] MEIx64          C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys
19:54:23.0482 0x0f6c  MEIx64 - ok
19:54:23.0528 0x0f6c  [ 39FF928D8EC49A318B40761DD7C1CDF3, 9E18ED94739AE711585E397A8EA2F7E1B05E00BD23F57FBB7606C4498192C5E0 ] MEmuDrv         C:\WINDOWS\system32\DRIVERS\MEmuDrv.sys
19:54:23.0528 0x0f6c  MEmuDrv - ok
19:54:23.0591 0x0f6c  [ 7926F886BD4328540D88C1E8492BDE7B, 9BEA7C04E8E491DF1091BB3AF8BD4370B2F6EEE69FA3D09E5FEAA2497AE7B12B ] MEmuSVC         C:\Program Files (x86)\Microvirt\MEmu\MemuService.exe
19:54:23.0591 0x0f6c  MEmuSVC - ok
19:54:23.0638 0x0f6c  MessagingService - ok
19:54:23.0763 0x0f6c  [ 43F1C4CE5D72403A305C560A195D1ECF, AF2D77B14455B8F85A48278430E8EEF88255060C95B36E247B69014266D839F4 ] MicrosoftEdgeElevationService C:\Program Files (x86)\Microsoft\Edge\Application\91.0.864.37\elevation_service.exe
19:54:23.0810 0x0f6c  MicrosoftEdgeElevationService - ok
19:54:23.0857 0x0f6c  [ 41A35E2FFC5F68F2345CAFDBA29D59E3, DCF1E7EE3A79A670E8AE9B2F83013F01F52DDB23CDAC0BEDCD874543E99F1B9F ] Microsoft_Bluetooth_AvrcpTransport C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.AvrcpTransport.sys
19:54:23.0857 0x0f6c  Microsoft_Bluetooth_AvrcpTransport - ok
19:54:23.0888 0x0f6c  MixedRealityOpenXRSvc - ok
19:54:23.0888 0x0f6c  mlx4_bus - ok
19:54:23.0888 0x0f6c  MMCSS - ok
19:54:23.0903 0x0f6c  Modem - ok
19:54:23.0919 0x0f6c  monitor - ok
19:54:23.0935 0x0f6c  mouclass - ok
19:54:23.0935 0x0f6c  mouhid - ok
19:54:23.0950 0x0f6c  mountmgr - ok
19:54:23.0950 0x0f6c  mpsdrv - ok
19:54:23.0966 0x0f6c  mpssvc - ok
19:54:23.0997 0x0f6c  MRxDAV - ok
19:54:23.0997 0x0f6c  mrxsmb - ok
19:54:24.0013 0x0f6c  mrxsmb20 - ok
19:54:24.0028 0x0f6c  [ 90F0B61C3A11A7D2E718FC70EDF55942, A0DB00D8C0D2928D2004CEAE96B2F6971FD909FD149B56F74F110203A314A7D2 ] MsBridge        C:\WINDOWS\system32\drivers\bridge.sys
19:54:24.0044 0x0f6c  MsBridge - ok
19:54:24.0060 0x0f6c  [ DC59FE37CFF118B6DAC426FE9923B32C, 8DDC6D67A14B549946D103F2A5E7B1EB23C68BB6E7B8ECBC192365C7323EC458 ] MSDTC           C:\WINDOWS\System32\msdtc.exe
19:54:24.0060 0x0f6c  MSDTC - ok
19:54:24.0091 0x0f6c  Msfs - ok
19:54:24.0106 0x0f6c  [ 5CC4AE59BAC4DDE8C0ECB05A4A965D19, 56618151F45271CDAE0E6EAF9E5358B1B0E46761633234E14E7571722449443D ] msgpiowin32     C:\WINDOWS\System32\drivers\msgpiowin32.sys
19:54:24.0106 0x0f6c  msgpiowin32 - ok
19:54:24.0122 0x0f6c  mshidkmdf - ok
19:54:24.0138 0x0f6c  [ ED11DC4C201FF6C06F171E18B379B589, 37E1901ECF54A22D016B844B68847B3894EDCA7854D713C46951BD41684735BB ] mshidumdf       C:\WINDOWS\System32\drivers\mshidumdf.sys
19:54:24.0153 0x0f6c  mshidumdf - ok
19:54:24.0169 0x0f6c  msisadrv - ok
19:54:24.0169 0x0f6c  MSiSCSI - ok
19:54:24.0185 0x0f6c  msiserver - ok
19:54:24.0185 0x0f6c  MSKSSRV - ok
19:54:24.0200 0x0f6c  [ D65874265E85BEF4E54740FB69803430, 5A368710766359A45B9E5ED0C381D2B3DD971C4D4BA563EAF2464AC3E372F7DE ] MsLldp          C:\WINDOWS\system32\drivers\mslldp.sys
19:54:24.0200 0x0f6c  MsLldp - ok
19:54:24.0200 0x0f6c  MSPCLOCK - ok
19:54:24.0200 0x0f6c  MSPQM - ok
19:54:24.0200 0x0f6c  MsRPC - ok
19:54:24.0216 0x0f6c  mssmbios - ok
19:54:24.0216 0x0f6c  MSTEE - ok
19:54:24.0216 0x0f6c  MTConfig - ok
19:54:24.0231 0x0f6c  Mup - ok
19:54:24.0231 0x0f6c  mvumis - ok
19:54:24.0263 0x0f6c  NativeWifiP - ok
19:54:24.0278 0x0f6c  NaturalAuthentication - ok
19:54:24.0294 0x0f6c  NcaSvc - ok
19:54:24.0310 0x0f6c  NcbService - ok
19:54:24.0341 0x0f6c  [ 9EB402A3A00433B271C2DE5B904AA770, 4E95FECBF1C71F7CB574651FA2B1F8B23AE16543887D80432D178809A5833C42 ] NcdAutoSetup    C:\WINDOWS\System32\NcdAutoSetup.dll
19:54:24.0388 0x0f6c  NcdAutoSetup - ok
19:54:24.0388 0x0f6c  ndfltr - ok
19:54:24.0388 0x0f6c  NDIS - ok
19:54:24.0403 0x0f6c  NdisCap - ok
19:54:24.0435 0x0f6c  NdisImPlatform - ok
19:54:24.0435 0x0f6c  NdisTapi - ok
19:54:24.0435 0x0f6c  Ndisuio - ok
19:54:24.0450 0x0f6c  NdisVirtualBus - ok
19:54:24.0450 0x0f6c  NdisWan - ok
19:54:24.0450 0x0f6c  ndiswanlegacy - ok
19:54:24.0466 0x0f6c  [ C91AE4E1A91B338F85D2F64667F0C6AA, FF3FB1764DC5B95B6238DE8BB7152B14FADE799B2D712499C7CA758C204E9071 ] NDKPing         C:\WINDOWS\system32\drivers\NDKPing.sys
19:54:24.0466 0x0f6c  NDKPing - ok
19:54:24.0466 0x0f6c  ndproxy - ok
19:54:24.0481 0x0f6c  [ 340AC1BF4E5727DC58E16E9F0806B36F, 5BFB10B9BAECBCBC6C8E61FF3E9D82CB3F1779681268687AFB742B015C5F1740 ] Ndu             C:\WINDOWS\system32\drivers\Ndu.sys
19:54:24.0481 0x0f6c  Ndu - ok
19:54:24.0497 0x0f6c  NetAdapterCx - ok
19:54:24.0497 0x0f6c  NetBIOS - ok
19:54:24.0513 0x0f6c  NetBT - ok
19:54:24.0528 0x0f6c  Netlogon - ok
19:54:24.0544 0x0f6c  Netman - ok
19:54:24.0575 0x0f6c  netprofm - ok
19:54:24.0606 0x0f6c  NetSetupSvc - ok
19:54:24.0669 0x0f6c  NetTcpPortSharing - ok
19:54:24.0684 0x0f6c  netvsc - ok
19:54:24.0716 0x0f6c  NgcCtnrSvc - ok
19:54:24.0716 0x0f6c  NgcSvc - ok
19:54:24.0747 0x0f6c  NlaSvc - ok
19:54:24.0763 0x0f6c  Npfs - ok
19:54:24.0763 0x0f6c  npsvctrig - ok
19:54:24.0778 0x0f6c  nsi - ok
19:54:24.0825 0x0f6c  nsiproxy - ok
19:54:24.0841 0x0f6c  Ntfs - ok
19:54:24.0841 0x0f6c  Null - ok
19:54:24.0841 0x0f6c  nvdimm - ok
19:54:24.0841 0x0f6c  nvraid - ok
19:54:24.0841 0x0f6c  nvstor - ok
19:54:24.0888 0x0f6c  OneSyncSvc - ok
19:54:24.0919 0x0f6c  p2pimsvc - ok
19:54:24.0934 0x0f6c  p2psvc - ok
19:54:24.0934 0x0f6c  Parport - ok
19:54:24.0934 0x0f6c  partmgr - ok
19:54:24.0966 0x0f6c  PcaSvc - ok
19:54:24.0981 0x0f6c  pci - ok
19:54:25.0012 0x0f6c  pciide - ok
19:54:25.0012 0x0f6c  pcmcia - ok
19:54:25.0012 0x0f6c  pcw - ok
19:54:25.0028 0x0f6c  pdc - ok
19:54:25.0044 0x0f6c  PEAUTH - ok
19:54:25.0122 0x0f6c  perceptionsimulation - ok
19:54:25.0122 0x0f6c  percsas2i - ok
19:54:25.0122 0x0f6c  percsas3i - ok
19:54:25.0184 0x0f6c  [ 0EC027E95D4B022102940FA3CD930E46, A802DE40D4F9FEA20516D4D8BA65942F48E47546DEB116C75B7A9EDB1F2EAAC6 ] PerfHost        C:\WINDOWS\SysWow64\perfhost.exe
19:54:25.0216 0x0f6c  PerfHost - ok
19:54:25.0247 0x0f6c  PhoneSvc - ok
19:54:25.0262 0x0f6c  PimIndexMaintenanceSvc - ok
19:54:25.0278 0x0f6c  PktMon - ok
19:54:25.0278 0x0f6c  pla - ok
19:54:25.0294 0x0f6c  PlugPlay - ok
19:54:25.0294 0x0f6c  pmem - ok
19:54:25.0309 0x0f6c  [ 4689DC2AEF21B8764CC4F4AD6712210A, 9D2747224CA01271EA7665AF3636C5F9507EF5C70033D5EC8C923D1AC5C8A31B ] PNPMEM          C:\WINDOWS\System32\drivers\pnpmem.sys
19:54:25.0325 0x0f6c  PNPMEM - ok
19:54:25.0325 0x0f6c  [ 65272396F9B8D1F01E020639E1AC5DC3, 852FEA677D3D500BC208BE0C6E759EC668AD9DD6D694119ABE736DEB3D136F32 ] PNRPAutoReg     C:\WINDOWS\system32\pnrpauto.dll
19:54:25.0372 0x0f6c  PNRPAutoReg - ok
19:54:25.0372 0x0f6c  PNRPsvc - ok
19:54:25.0387 0x0f6c  PolicyAgent - ok
19:54:25.0387 0x0f6c  portcfg - ok
19:54:25.0419 0x0f6c  Power - ok
19:54:25.0419 0x0f6c  PptpMiniport - ok
19:54:25.0590 0x0f6c  [ 9CBF6BB27947208750740006440B94A5, C16B4918DACC332CD9651BBFC5E89D1F0A70BF9FEFA97192A1B912F373F60A05 ] PrintNotify     C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll
19:54:25.0700 0x0f6c  PrintNotify - ok
19:54:25.0731 0x0f6c  PrintWorkflowUserSvc - ok
19:54:25.0747 0x0f6c  Processor - ok
19:54:25.0762 0x0f6c  ProfSvc - ok
19:54:25.0794 0x0f6c  [ C0EF1DA7CB74EB2E0B87686AB7AA7454, 2053809FAD23211A336F30F306B5C11D93F6DE5E7A38CE021CD535E5E5EDE21D ] Psched          C:\WINDOWS\system32\drivers\pacer.sys
19:54:25.0794 0x0f6c  Psched - ok
19:54:25.0825 0x0f6c  PushToInstall - ok
19:54:25.0919 0x0f6c  [ 2CF671BBE8E4F42C2395C7896436CB44, DDBDCECA004626093C1A9866B7EB3EC3B8A5992CAF8BB60F41456E134E2425C2 ] Qcamain10x64    C:\WINDOWS\System32\drivers\Qcamain10x64.sys
19:54:25.0997 0x0f6c  Qcamain10x64 - ok
19:54:26.0059 0x0f6c  [ E862021CE0B9DA301969D8843A6F6AD8, 03772F4AACB9F7F9D65E53A63F1247B36A3863444AFA28578B430445FFABF082 ] QWAVE           C:\WINDOWS\system32\qwave.dll
19:54:26.0059 0x0f6c  QWAVE - ok
19:54:26.0090 0x0f6c  [ 00664026ACC782597B77AAAB5B65E715, F4B18D321BBAD9DF4EC7C44742FB65D09C70EE7AD26A30E26EE583305B643F82 ] QWAVEdrv        C:\WINDOWS\system32\drivers\qwavedrv.sys
19:54:26.0090 0x0f6c  QWAVEdrv - ok
19:54:26.0090 0x0f6c  Ramdisk - ok
19:54:26.0106 0x0f6c  RasAcd - ok
19:54:26.0122 0x0f6c  RasAgileVpn - ok
19:54:26.0122 0x0f6c  RasAuto - ok
19:54:26.0122 0x0f6c  Rasl2tp - ok
19:54:26.0153 0x0f6c  RasMan - ok
19:54:26.0153 0x0f6c  RasPppoe - ok
19:54:26.0153 0x0f6c  RasSstp - ok
19:54:26.0153 0x0f6c  rdbss - ok
19:54:26.0184 0x0f6c  [ D02EA52890750A5980EE970586942695, 4E321C27D0DC476F27A3B0720BC1188F6E549D1FA7B7E77E6BDE5F869E983A08 ] rdpbus          C:\WINDOWS\System32\drivers\rdpbus.sys
19:54:26.0184 0x0f6c  rdpbus - ok
19:54:26.0200 0x0f6c  RDPDR - ok
19:54:26.0231 0x0f6c  RdpVideoMiniport - ok
19:54:26.0262 0x0f6c  [ CD3A6A87C682363E227F065B8E59D94C, F7174E6F5A7ECBEEBC68A79C500890C12F826A70594C46C7817A49D992C6F030 ] rdyboost        C:\WINDOWS\system32\drivers\rdyboost.sys
19:54:26.0262 0x0f6c  rdyboost - ok
19:54:26.0278 0x0f6c  ReFS - ok
19:54:26.0293 0x0f6c  ReFSv1 - ok
19:54:26.0309 0x0f6c  RemoteAccess - ok
19:54:26.0340 0x0f6c  [ 15D9B88C7258263375BA462B96E61860, 3209521819139C2DC44B45E31907B5249CC780A3B11F7029E8DE9E94C29B8296 ] RemoteRegistry  C:\WINDOWS\system32\regsvc.dll
19:54:26.0340 0x0f6c  RemoteRegistry - ok
19:54:26.0356 0x0f6c  RetailDemo - ok
19:54:26.0372 0x0f6c  [ FF46B8795B06BAB591F082FBEF17DC91, 080098FED6F70BF410A5833D1AB991DEBF7D8549D49BA0958F0403A6A24D71E7 ] RFCOMM          C:\WINDOWS\System32\drivers\rfcomm.sys
19:54:26.0372 0x0f6c  RFCOMM - ok
19:54:26.0387 0x0f6c  [ E3DE6D17049E592A710284B4C811E7BF, 3290298073AE13C3AEB166E77B1B2F570607571385C585D52FC392968659181E ] rhproxy         C:\WINDOWS\System32\drivers\rhproxy.sys
19:54:26.0387 0x0f6c  rhproxy - ok
19:54:26.0403 0x0f6c  RmSvc - ok
19:54:26.0418 0x0f6c  RpcEptMapper - ok
19:54:26.0450 0x0f6c  [ A089120B99842F0A3CE8AE586A31BD56, CDFAA0429D8EF28E7011CFEB00C8CB08F63A4AF53A1FA6D41D23F86D85D80CA5 ] RpcLocator      C:\WINDOWS\system32\locator.exe
19:54:26.0465 0x0f6c  RpcLocator - ok
19:54:26.0465 0x0f6c  RpcSs - ok
19:54:26.0481 0x0f6c  [ CCF4A5CEC8FA38035007AB19EB0EBE2E, 05C7701A1A2FCEDCD0F5EC6EF069F73C48D920448EFB010E5E7FBEEA3438F014 ] rspndr          C:\WINDOWS\system32\drivers\rspndr.sys
19:54:26.0481 0x0f6c  rspndr - ok
19:54:26.0528 0x0f6c  [ 88DF73053468633EA476B07AAC9DE895, 1430B5575C196DDCDC1947154F45000F3CA758A483987D62024AE47D854870DE ] rt640x64        C:\WINDOWS\System32\drivers\rt640x64.sys
19:54:26.0559 0x0f6c  rt640x64 - ok
19:54:26.0621 0x0f6c  [ 54202A4924C26F0BB6A84639C973F7F5, AE1FE1FFC9249FF6882681438C9E7A73AA5AAC34E11150BEE7A9A75546DB6686 ] RtkAudioService C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
19:54:26.0621 0x0f6c  RtkAudioService - ok
19:54:26.0668 0x0f6c  [ 4EB99484BA0119B13BDCE8EFFAD7B6E2, 543E347B61EB4277A19FF08059C3FF4CE641D357533A79445D14AA70A457E5F5 ] RTSUER          C:\WINDOWS\system32\Drivers\RtsUer.sys
19:54:26.0668 0x0f6c  RTSUER - ok
19:54:26.0778 0x0f6c  [ DA1B57416D2074501AD8C7F5F69E285C, 801FE1A42A692A04C430BC525B724BFFEF23053DC51E511117BEF991EF4E3438 ] rtsuvc          C:\WINDOWS\system32\DRIVERS\rtsuvc.sys
19:54:26.0871 0x0f6c  rtsuvc - ok
19:54:26.0934 0x0f6c  [ 40CD5DB1671197EFBD5C3AB16B9B037C, A1DB4872DB0AF87E4E1F8506483200838E62B0FCE17E77ED9DEA47DE1C230C84 ] s3cap           C:\WINDOWS\System32\drivers\vms3cap.sys
19:54:26.0934 0x0f6c  s3cap - ok
19:54:26.0950 0x0f6c  SamSs - ok
19:54:26.0965 0x0f6c  sbp2port - ok
19:54:26.0996 0x0f6c  SCardSvr - ok
19:54:27.0028 0x0f6c  ScDeviceEnum - ok
19:54:27.0043 0x0f6c  scfilter - ok
19:54:27.0059 0x0f6c  Schedule - ok
19:54:27.0059 0x0f6c  scmbus - ok
19:54:27.0075 0x0f6c  SCPolicySvc - ok
19:54:27.0106 0x0f6c  sdbus - ok
19:54:27.0137 0x0f6c  [ 801D9B80964AC7240F82C452709E28F8, 061103B80623B2A406F14AC3635A1B73D70F2523A96765FB846531C2112B2999 ] SDFRd           C:\WINDOWS\System32\drivers\SDFRd.sys
19:54:27.0137 0x0f6c  SDFRd - ok
19:54:27.0168 0x0f6c  SDRSVC - ok
19:54:27.0199 0x0f6c  sdstor - ok
19:54:27.0231 0x0f6c  [ 512FD6039A256324A745DF4FA01D5D02, 5EDDB6B714C2D35085D09BFDA3FED3365385B949DD62C6A405EC161C9F9AC2EA ] seclogon        C:\WINDOWS\system32\seclogon.dll
19:54:27.0246 0x0f6c  seclogon - ok
19:54:27.0278 0x0f6c  SecurityHealthService - ok
19:54:27.0278 0x0f6c  SEMgrSvc - ok
19:54:27.0309 0x0f6c  [ 84F8DAF82B643F63D5D6EF93F8F5BB95, B946740A87C875713829F4ED88C44B2D8ADF7132683CDF8E89B70D16B77B60B8 ] SENS            C:\WINDOWS\System32\sens.dll
19:54:27.0324 0x0f6c  SENS - ok
19:54:27.0324 0x0f6c  SensorDataService - ok
19:54:27.0371 0x0f6c  [ D83530B2386434C004C0E4E41DD61843, 2D66E1AA30E1CFF0471E515817B350D1A637D88934790295D2EDE03A9443F2C0 ] SensorService   C:\WINDOWS\system32\SensorService.dll
19:54:27.0387 0x0f6c  SensorService - ok
19:54:27.0418 0x0f6c  [ 706087D7D9D2A5347F6B327B353E9E08, 9962FF6718615913C2C42E3C3C26C082E8D1E7FDAC7C7454E4CDCB14AA6948C8 ] SensrSvc        C:\WINDOWS\system32\sensrsvc.dll
19:54:27.0418 0x0f6c  SensrSvc - ok
19:54:27.0434 0x0f6c  SerCx - ok
19:54:27.0434 0x0f6c  SerCx2 - ok
19:54:27.0434 0x0f6c  Serenum - ok
19:54:27.0434 0x0f6c  Serial - ok
19:54:27.0449 0x0f6c  sermouse - ok
19:54:27.0481 0x0f6c  SessionEnv - ok
19:54:27.0481 0x0f6c  sfloppy - ok
19:54:27.0512 0x0f6c  [ C0F588AB65EE3869C38C1BD10A0AEF85, 8395188C4194A65B1106C0A9B1287DEB60513B1D5443DE6E55AB58C71EE49A1E ] SgrmAgent       C:\WINDOWS\system32\drivers\SgrmAgent.sys
19:54:27.0512 0x0f6c  SgrmAgent - ok
19:54:27.0543 0x0f6c  [ C51AA0BB954EA45E85572E6CC29BA6F4, 2DF8A183B3DCA4DE156433280FD69B49E7B20B474211D7125FBE256CA25D769C ] SgrmBroker      C:\WINDOWS\system32\SgrmBroker.exe
19:54:27.0559 0x0f6c  SgrmBroker - ok
19:54:27.0606 0x0f6c  SharedAccess - ok
19:54:27.0621 0x0f6c  SharedRealitySvc - ok
19:54:27.0652 0x0f6c  [ 66E6C9C7AEB812EF3F7ED69143E8E287, 4C85FF6D3281EBD05DA823B6FD272EFA53C3AFD2C41A86E4684BB43E4FCF003A ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
19:54:27.0668 0x0f6c  ShellHWDetection - ok
19:54:27.0699 0x0f6c  shpamsvc - ok
19:54:27.0699 0x0f6c  SiSRaid2 - ok
19:54:27.0715 0x0f6c  SiSRaid4 - ok
19:54:27.0715 0x0f6c  SmartSAMD - ok
19:54:27.0731 0x0f6c  smphost - ok
19:54:27.0746 0x0f6c  SmsRouter - ok
19:54:27.0793 0x0f6c  [ 78172782B1E1E26933D67A9DA912158C, 354CFFF20D10A00A1DEFCD1B6B225C5B258D98D8CD94FDD905678DF8A62EDE34 ] SNMPTRAP        C:\WINDOWS\System32\snmptrap.exe
19:54:27.0793 0x0f6c  SNMPTRAP - ok
19:54:27.0809 0x0f6c  spaceport - ok
19:54:27.0840 0x0f6c  [ B0FC1C59BC63170BE57D66837FB6BEED, 58C979A655FA6EAD84DA6A0D606A917903C71A59D0D8CD16F2C7282CC76D5A2E ] SpatialGraphFilter C:\WINDOWS\system32\drivers\SpatialGraphFilter.sys
19:54:27.0840 0x0f6c  SpatialGraphFilter - ok
19:54:27.0840 0x0f6c  SpbCx - ok
19:54:27.0856 0x0f6c  spectrum - ok
19:54:27.0871 0x0f6c  Spooler - ok
19:54:27.0871 0x0f6c  sppsvc - ok
19:54:27.0871 0x0f6c  srv2 - ok
19:54:27.0902 0x0f6c  srvnet - ok
19:54:27.0902 0x0f6c  SSDPSRV - ok
19:54:27.0981 0x0f6c  [ 9FFECD197D09FF33B00D5E5B78A48146, 79C03E83B42E3C0402680B47A2493C3C506E2D212062859BD7C4EBACA46F3AD5 ] ssh-agent       C:\WINDOWS\System32\OpenSSH\ssh-agent.exe
19:54:27.0981 0x0f6c  ssh-agent - ok
19:54:27.0996 0x0f6c  SstpSvc - ok
19:54:28.0027 0x0f6c  [ DB1FA4DDD8641E5631969744695DA856, 7D0B4E051C0644C50A079C407ADAC029858FF5E151F420F8A8B44CE1D2B64BB8 ] ssudmdm         C:\WINDOWS\system32\DRIVERS\ssudmdm.sys
19:54:28.0027 0x0f6c  ssudmdm - ok
19:54:28.0121 0x0f6c  [ 5B714E150D5D813721E6269220E0E0CC, 0635748FD142D03D7C8F2846F3A25E0D16E46D690694723258A5362AAFE34DB9 ] ss_conn_service2 C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe
19:54:28.0137 0x0f6c  ss_conn_service2 - ok
19:54:28.0152 0x0f6c  StateRepository - ok
19:54:28.0277 0x0f6c  [ 25E7D1240FAB49DB2A942666D7B40ACE, BD2CCD45766CB2FCB04538924633B6329525E0F0B7C5DBF52AEE38C9A57407B4 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
19:54:28.0371 0x0f6c  Steam Client Service - ok
19:54:28.0387 0x0f6c  stexstor - ok
19:54:28.0418 0x0f6c  stisvc - ok
19:54:28.0434 0x0f6c  storahci - ok
19:54:28.0449 0x0f6c  storflt - ok
19:54:28.0496 0x0f6c  stornvme - ok
19:54:28.0512 0x0f6c  storqosflt - ok
19:54:28.0527 0x0f6c  StorSvc - ok
19:54:28.0559 0x0f6c  storufs - ok
19:54:28.0590 0x0f6c  storvsc - ok
19:54:28.0590 0x0f6c  svsvc - ok
19:54:28.0637 0x0f6c  swenum - ok
19:54:28.0668 0x0f6c  swprv - ok
19:54:28.0699 0x0f6c  Synth3dVsc - ok
19:54:28.0715 0x0f6c  SysMain - ok
19:54:28.0730 0x0f6c  SystemEventsBroker - ok
19:54:28.0746 0x0f6c  TabletInputService - ok
19:54:28.0762 0x0f6c  TapiSrv - ok
19:54:28.0762 0x0f6c  Tcpip - ok
19:54:28.0762 0x0f6c  Tcpip6 - ok
19:54:28.0808 0x0f6c  [ 6A6D4EE00469704BC0091AF5AC73C6DD, E2504FCFF084F8004BD5EA3735426D2DDEBF4372A7512EEFF4CB13076C77C213 ] tcpipreg        C:\WINDOWS\system32\drivers\tcpipreg.sys
19:54:28.0808 0x0f6c  tcpipreg - ok
19:54:28.0808 0x0f6c  tdx - ok
19:54:28.0840 0x0f6c  [ BACB822DEC72FECEFC809449FD3C7CD3, 3F71D97CF24F74E315874DDB4BB2429B745F9E36E7EDFC0A37BCE8EB23947FA2 ] terminpt        C:\WINDOWS\System32\drivers\terminpt.sys
19:54:28.0855 0x0f6c  terminpt - ok
19:54:28.0855 0x0f6c  TermService - ok
19:54:28.0887 0x0f6c  [ 3B09BAB568BD4ED4B7A1998D47ECCF0C, E3668B4D57174032C36987AA97043E9F7D731E3E5D7A14EB10B5A18E339DCB09 ] Themes          C:\WINDOWS\system32\themeservice.dll
19:54:28.0933 0x0f6c  Themes - ok
19:54:28.0980 0x0f6c  TieringEngineService - ok
19:54:28.0996 0x0f6c  TimeBrokerSvc - ok
19:54:29.0012 0x0f6c  TokenBroker - ok
19:54:29.0043 0x0f6c  TPM - ok
19:54:29.0074 0x0f6c  [ F47972C77B03F421BE57CFEEE384D98B, 8015327D5DE0E632276B5F6B079DBBFB453872175E463ECC4814E4AA9EB8138C ] TrkWks          C:\WINDOWS\System32\trkwks.dll
19:54:29.0074 0x0f6c  TrkWks - ok
19:54:29.0105 0x0f6c  TroubleshootingSvc - ok
19:54:29.0137 0x0f6c  TrustedInstaller - ok
19:54:29.0168 0x0f6c  [ 4D66CADB97981EE7390E95C5D59319F1, 0E0016522D5C4C0471A893ECD7E29F790DDB7895F4392BBE6142FBB17CE76407 ] TsUsbFlt        C:\WINDOWS\system32\drivers\tsusbflt.sys
19:54:29.0183 0x0f6c  TsUsbFlt - ok
19:54:29.0199 0x0f6c  TsUsbGD - ok
19:54:29.0215 0x0f6c  tunnel - ok
19:54:29.0246 0x0f6c  tzautoupdate - ok
19:54:29.0261 0x0f6c  UASPStor - ok
19:54:29.0293 0x0f6c  [ 4CFC014F7268E18414D115D2915E7636, FE783E47F63494F15A13309DAB7F8E702E594ADC53E5E34CFD705EC065F31A10 ] UcmCx0101       C:\WINDOWS\system32\Drivers\UcmCx.sys
19:54:29.0308 0x0f6c  UcmCx0101 - ok
19:54:29.0340 0x0f6c  [ C6ABD73AA3C86F3252E476FD34FC4D66, 98B1A2BD72021FD3CE338C253FFEC5DEBB333A265822663A17E85DD67E9790CE ] UcmTcpciCx0101  C:\WINDOWS\system32\Drivers\UcmTcpciCx.sys
19:54:29.0340 0x0f6c  UcmTcpciCx0101 - ok
19:54:29.0386 0x0f6c  [ A10EF89D243B4A011E4A7618319B5D57, A048B1C4E7695E6E24EF3B0641C89BB908EB7B3D0047602B54740A4DE339AF83 ] UcmUcsiAcpiClient C:\WINDOWS\System32\drivers\UcmUcsiAcpiClient.sys
19:54:29.0386 0x0f6c  UcmUcsiAcpiClient - ok
19:54:29.0418 0x0f6c  [ 777028ECD134FD8A094F4613475F099B, 52D24A96D10A455816AE3EF3CD2E563B3899DAB336E405D6AE31F3551C17C0C1 ] UcmUcsiCx0101   C:\WINDOWS\system32\Drivers\UcmUcsiCx.sys
19:54:29.0418 0x0f6c  UcmUcsiCx0101 - ok
19:54:29.0418 0x0f6c  Ucx01000 - ok
19:54:29.0433 0x0f6c  UdeCx - ok
19:54:29.0449 0x0f6c  udfs - ok
19:54:29.0449 0x0f6c  UEFI - ok
19:54:29.0480 0x0f6c  Ufx01000 - ok
19:54:29.0480 0x0f6c  UfxChipidea - ok
19:54:29.0511 0x0f6c  ufxsynopsys - ok
19:54:29.0543 0x0f6c  [ 8E5A8EDD11AD66358BAF7790F7C6206F, 7DF6C315F841AFFFF47A260DFEB02D9860868F6E5519398DC16AE0C581BFB42D ] uhssvc          C:\Program Files\Microsoft Update Health Tools\uhssvc.exe
19:54:29.0543 0x0f6c  uhssvc - ok
19:54:29.0558 0x0f6c  umbus - ok
19:54:29.0558 0x0f6c  UmPass - ok
19:54:29.0574 0x0f6c  UmRdpService - ok
19:54:29.0590 0x0f6c  UnistoreSvc - ok
19:54:29.0605 0x0f6c  upnphost - ok
19:54:29.0621 0x0f6c  UrsChipidea - ok
19:54:29.0636 0x0f6c  [ A7BE0A24B7F11060394A3BFAE21C783F, 159E8ED944B7C3243AFC07BD85A36F9DA7DE6FBE66C2F3DA75D25C531663075B ] UrsCx01000      C:\WINDOWS\system32\drivers\urscx01000.sys
19:54:29.0636 0x0f6c  UrsCx01000 - ok
19:54:29.0652 0x0f6c  UrsSynopsys - ok
19:54:29.0683 0x0f6c  usbaudio - ok
19:54:29.0683 0x0f6c  usbaudio2 - ok
19:54:29.0683 0x0f6c  usbccgp - ok
19:54:29.0699 0x0f6c  [ 4A2A90FC52DD031BD5135BF2B6F95CDD, D15010BCC02CF48C63612F32E0F166311D713F2103B58224B87E1583AA25630C ] usbcir          C:\WINDOWS\System32\drivers\usbcir.sys
19:54:29.0715 0x0f6c  usbcir - ok
19:54:29.0715 0x0f6c  usbehci - ok
19:54:29.0715 0x0f6c  usbhub - ok
19:54:29.0730 0x0f6c  USBHUB3 - ok
19:54:29.0730 0x0f6c  usbohci - ok
19:54:29.0761 0x0f6c  [ 11724C8F4354F87EC7F96CBCBD18A612, 0807A61EF7D56D5E208957F189D4A75E86DFB6A33FCBEEE46CCB93BB3602332A ] usbprint        C:\WINDOWS\System32\drivers\usbprint.sys
19:54:29.0777 0x0f6c  usbprint - ok
19:54:29.0777 0x0f6c  usbrndis6 - ok
19:54:29.0808 0x0f6c  usbscan - ok
19:54:29.0824 0x0f6c  usbser - ok
19:54:29.0839 0x0f6c  USBSTOR - ok
19:54:29.0839 0x0f6c  usbuhci - ok
19:54:29.0871 0x0f6c  USBXHCI - ok
19:54:29.0886 0x0f6c  UserDataSvc - ok
19:54:29.0902 0x0f6c  UserManager - ok
19:54:29.0918 0x0f6c  UsoSvc - ok
19:54:29.0933 0x0f6c  VacSvc - ok
19:54:29.0964 0x0f6c  VaultSvc - ok
19:54:29.0964 0x0f6c  vdrvroot - ok
19:54:29.0980 0x0f6c  vds - ok
19:54:29.0980 0x0f6c  VerifierExt - ok
19:54:29.0996 0x0f6c  vhdmp - ok
19:54:29.0996 0x0f6c  vhf - ok
19:54:29.0996 0x0f6c  Vid - ok
19:54:30.0011 0x0f6c  vmbus - ok
19:54:30.0011 0x0f6c  VMBusHID - ok
19:54:30.0027 0x0f6c  [ 32480E0760E0C3D21964CE3992001D5F, 135AE6162F52A314CB99F4A13DF78BE371280FAAC7EF85CD9B8D806460B7FA79 ] vmgid           C:\WINDOWS\System32\drivers\vmgid.sys
19:54:30.0027 0x0f6c  vmgid - ok
19:54:30.0043 0x0f6c  vmicguestinterface - ok
19:54:30.0058 0x0f6c  vmicheartbeat - ok
19:54:30.0058 0x0f6c  vmickvpexchange - ok
19:54:30.0089 0x0f6c  vmicrdv - ok
19:54:30.0089 0x0f6c  vmicshutdown - ok
19:54:30.0089 0x0f6c  vmictimesync - ok
19:54:30.0089 0x0f6c  vmicvmsession - ok
19:54:30.0105 0x0f6c  vmicvss - ok
19:54:30.0105 0x0f6c  volmgr - ok
19:54:30.0105 0x0f6c  volmgrx - ok
19:54:30.0121 0x0f6c  volsnap - ok
19:54:30.0121 0x0f6c  volume - ok
19:54:30.0152 0x0f6c  [ CF1C674D2149ECCDF3C93EECA1EA2F61, 1F9CE82225402E4BD0A0E1167F039B805036FB87CD8D16A2DDE44A8A8FCD2045 ] vpci            C:\WINDOWS\System32\drivers\vpci.sys
19:54:30.0152 0x0f6c  vpci - ok
19:54:30.0152 0x0f6c  vsmraid - ok
19:54:30.0168 0x0f6c  VSS - ok
19:54:30.0168 0x0f6c  VSTXRAID - ok
19:54:30.0183 0x0f6c  vwifibus - ok
19:54:30.0183 0x0f6c  vwififlt - ok
19:54:30.0183 0x0f6c  vwifimp - ok
19:54:30.0214 0x0f6c  W32Time - ok
19:54:30.0230 0x0f6c  WaaSMedicSvc - ok
19:54:30.0246 0x0f6c  WacomPen - ok
19:54:30.0246 0x0f6c  WalletService - ok
19:54:30.0261 0x0f6c  wanarp - ok
19:54:30.0261 0x0f6c  wanarpv6 - ok
19:54:30.0308 0x0f6c  [ FA45D9FF48626207024305DADAD40AAB, 79B388312F9B143DA75F7972EEAD2627329C9ACB49DF07307102A4BC3A111FEB ] WarpJITSvc      C:\WINDOWS\System32\Windows.WARP.JITService.dll
19:54:30.0417 0x0f6c  WarpJITSvc - ok
19:54:30.0449 0x0f6c  wbengine - ok
19:54:30.0464 0x0f6c  WbioSrvc - ok
19:54:30.0480 0x0f6c  wcifs - ok
19:54:30.0496 0x0f6c  Wcmsvc - ok
19:54:30.0511 0x0f6c  wcncsvc - ok
19:54:30.0511 0x0f6c  wcnfs - ok
19:54:30.0527 0x0f6c  WdBoot - ok
19:54:30.0558 0x0f6c  Wdf01000 - ok
19:54:30.0558 0x0f6c  WdFilter - ok
19:54:30.0574 0x0f6c  [ AA843CF3C016B79340C6FDACDA20D75D, 1BC8F5BBE7BCBB194406D74FD0EABE763F2F7BBBF6CBC81300355050AB44B675 ] WdiServiceHost  C:\WINDOWS\system32\wdi.dll
19:54:30.0589 0x0f6c  WdiServiceHost - ok
19:54:30.0589 0x0f6c  [ AA843CF3C016B79340C6FDACDA20D75D, 1BC8F5BBE7BCBB194406D74FD0EABE763F2F7BBBF6CBC81300355050AB44B675 ] WdiSystemHost   C:\WINDOWS\system32\wdi.dll
19:54:30.0605 0x0f6c  WdiSystemHost - ok
19:54:30.0605 0x0f6c  wdiwifi - ok
19:54:30.0621 0x0f6c  [ 35ED849BBAD731509E4E8D3A015CE5FA, 087494CA0B94BACB61B5EC7E5295FCB733EE47328A6A69D5942BF1324D50C499 ] WdmCompanionFilter C:\WINDOWS\system32\drivers\WdmCompanionFilter.sys
19:54:30.0621 0x0f6c  WdmCompanionFilter - ok
19:54:30.0636 0x0f6c  WdNisDrv - ok
19:54:30.0699 0x0f6c  WdNisSvc - ok
19:54:30.0730 0x0f6c  [ 96F813A401A00A1C0477C0738DE64E3A, CF869EC31169D18697FADF82DE1F3E30C99A5870686F0C9CAA7591B3832800AD ] WebClient       C:\WINDOWS\System32\webclnt.dll
19:54:30.0746 0x0f6c  WebClient - ok
19:54:30.0777 0x0f6c  Wecsvc - ok
19:54:30.0792 0x0f6c  [ FAF9800B056767E9F525C143C90F4F9E, 16F3DFA02E227B157A64141D95B6DFE4C8F57D017430BF2D9F3466403AFBB8EA ] WEPHOSTSVC      C:\WINDOWS\system32\wephostsvc.dll
19:54:30.0808 0x0f6c  WEPHOSTSVC - ok
19:54:30.0839 0x0f6c  wercplsupport - ok
19:54:30.0839 0x0f6c  WerSvc - ok
19:54:30.0870 0x0f6c  [ 5FB0717636A54C5C37082E79A6605902, 389B657CB93645CB2DEC3C576204EAAF284CD95956985E3278396D1D022972D7 ] WFDSConMgrSvc   C:\WINDOWS\System32\wfdsconmgrsvc.dll
19:54:30.0902 0x0f6c  WFDSConMgrSvc - ok
19:54:30.0917 0x0f6c  WFPLWFS - ok
19:54:30.0933 0x0f6c  WiaRpc - ok
19:54:30.0933 0x0f6c  WIMMount - ok
19:54:30.0933 0x0f6c  WinDefend - ok
19:54:30.0964 0x0f6c  [ 9FCCEAAF76F60F712C2DCEE6FC0B07A2, F4AE6C93FD8BE874ED6A5EC28DE4F74DC2ABA41010F0AEB248500FC0078F8606 ] WindowsTrustedRT C:\WINDOWS\system32\drivers\WindowsTrustedRT.sys
19:54:30.0964 0x0f6c  WindowsTrustedRT - ok
19:54:31.0011 0x0f6c  [ C696815C9B8DD3F40454A949E30ECA0B, 85F15CA27389CC78701FBBCC974C3F8DF8D6F34CF3A717C9960D2621011C002C ] WindowsTrustedRTProxy C:\WINDOWS\system32\drivers\WindowsTrustedRTProxy.sys
19:54:31.0011 0x0f6c  WindowsTrustedRTProxy - ok
19:54:31.0042 0x0f6c  WinHttpAutoProxySvc - ok
19:54:31.0058 0x0f6c  WinMad - ok
19:54:31.0089 0x0f6c  Winmgmt - ok
19:54:31.0105 0x0f6c  WinNat - ok
19:54:31.0120 0x0f6c  WinQuic - ok
19:54:31.0136 0x0f6c  WinRM - ok
19:54:31.0167 0x0f6c  [ 7C8733775E291E3211F918A30B425742, EF4DC11990E88B19C8BB565B8E67CE9A146D69A4779D859474BA1EFFAC993280 ] WINUSB          C:\WINDOWS\System32\drivers\WinUsb.sys
19:54:31.0167 0x0f6c  WINUSB - ok
19:54:31.0167 0x0f6c  WinVerbs - ok
19:54:31.0199 0x0f6c  wisvc - ok
19:54:31.0214 0x0f6c  WlanSvc - ok
19:54:31.0230 0x0f6c  wlidsvc - ok
19:54:31.0245 0x0f6c  wlpasvc - ok
19:54:31.0261 0x0f6c  WManSvc - ok
19:54:31.0277 0x0f6c  WmiAcpi - ok
19:54:31.0292 0x0f6c  wmiApSrv - ok
19:54:31.0308 0x0f6c  WMPNetworkSvc - ok
19:54:31.0324 0x0f6c  Wof - ok
19:54:31.0370 0x0f6c  [ BF02EF8B07C241E378ED51B9F7FF955C, AB5E0FE3121DC4FAF4DE115AC855EAF87DCA2BADB668E06535FECA5734F281F6 ] Wondershare InstallAssist C:\ProgramData\Wondershare\Service\InstallAssistService.exe
19:54:31.0386 0x0f6c  Wondershare InstallAssist - ok
19:54:31.0417 0x0f6c  workfolderssvc - ok
19:54:31.0433 0x0f6c  WpcMonSvc - ok
19:54:31.0448 0x0f6c  WPDBusEnum - ok
19:54:31.0480 0x0f6c  [ 58CD56BD6647BCAD784D9EB172D3132B, 7343D35C3883B44575BAFABD15EF057172393C3A952AD1E26C9F4636BDE0F254 ] WpdUpFltr       C:\WINDOWS\system32\drivers\WpdUpFltr.sys
19:54:31.0480 0x0f6c  WpdUpFltr - ok
19:54:31.0495 0x0f6c  WpnService - ok
19:54:31.0527 0x0f6c  WpnUserService - ok
19:54:31.0527 0x0f6c  ws2ifsl - ok
19:54:31.0605 0x0f6c  [ 25D9FDDCC8A341E697FE619BDBDF34CD, 94A16109F81A2909FBC67B0D44A813CB1A295E71FAEFEA34EEE15C46AA761FF6 ] WsAppService3   C:\Program Files (x86)\Wondershare\WAF3\3.0.0.308\WsAppService3.exe
19:54:31.0620 0x0f6c  WsAppService3 - ok
19:54:31.0652 0x0f6c  wscsvc - ok
19:54:31.0652 0x0f6c  [ C9276B244EE4E8FC133150BAD1A263D7, C16133410BE3CFC5DFA5B3645E3CEF93910C9181FB937B8F71345C0A80AFA524 ] WSDPrintDevice  C:\WINDOWS\System32\drivers\WSDPrint.sys
19:54:31.0652 0x0f6c  WSDPrintDevice - ok
19:54:31.0745 0x0f6c  [ 4CCC255E36D9F3BD220B8DAEA8C7EC23, 2B9B2EC47CE4CC7ADAEA3B32317F6A93A826F3E5CBBD6A2FCC576BDE0513BCDF ] WsDrvInst       C:\Program Files (x86)\Wondershare\dr.fone\Library\DriverInstaller\DriverInstall.exe
19:54:31.0745 0x0f6c  WsDrvInst - ok
19:54:31.0745 0x0f6c  WSDScan - ok
19:54:31.0761 0x0f6c  WSearch - ok
19:54:31.0761 0x0f6c  wuauserv - ok
19:54:31.0792 0x0f6c  [ 28F033782B14D59DDBCA1E2FAE674B8A, 409E9B4F53BEC370AEB7D104FE929CD1DBA60C2AC83A4823FA82C67CED2BEC32 ] WudfPf          C:\WINDOWS\system32\drivers\WudfPf.sys
19:54:31.0792 0x0f6c  WudfPf - ok
19:54:31.0839 0x0f6c  [ C339B551B1233A139AFD73C9DD8B50EC, 1921C9B41516E3028E707D03077EC59080BA88CA596508E14CC3A7A10910DDAC ] WUDFRd          C:\WINDOWS\System32\drivers\WUDFRd.sys
19:54:31.0839 0x0f6c  WUDFRd - ok
19:54:31.0855 0x0f6c  [ C339B551B1233A139AFD73C9DD8B50EC, 1921C9B41516E3028E707D03077EC59080BA88CA596508E14CC3A7A10910DDAC ] WUDFWpdFs       C:\WINDOWS\System32\drivers\WUDFRd.sys
19:54:31.0855 0x0f6c  WUDFWpdFs - ok
19:54:31.0870 0x0f6c  [ C339B551B1233A139AFD73C9DD8B50EC, 1921C9B41516E3028E707D03077EC59080BA88CA596508E14CC3A7A10910DDAC ] WUDFWpdMtp      C:\WINDOWS\System32\drivers\WUDFRd.sys
19:54:31.0870 0x0f6c  WUDFWpdMtp - ok
19:54:31.0901 0x0f6c  WwanSvc - ok
19:54:31.0917 0x0f6c  XblAuthManager - ok
19:54:31.0917 0x0f6c  XblGameSave - ok
19:54:31.0933 0x0f6c  xboxgip - ok
19:54:31.0948 0x0f6c  XboxGipSvc - ok
19:54:31.0980 0x0f6c  XboxNetApiSvc - ok
19:54:31.0980 0x0f6c  xinputhid - ok
19:54:31.0995 0x0f6c  [ AEF749C365B72E511BE4A17AA50363DD, 6310FF557F3B101A908C3B8ED81E4EE61ED1B877630A1FBD264A4269EAF4CBC4 ] xusb22          C:\WINDOWS\System32\drivers\xusb22.sys
19:54:32.0011 0x0f6c  xusb22 - ok
19:54:32.0011 0x0f6c  ================ Scan global ===============================
19:54:32.0073 0x0f6c  [ Global ] - ok
19:54:32.0089 0x0f6c  ================ Scan MBR ==================================
19:54:32.0105 0x0f6c  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
19:54:32.0105 0x0f6c  \Device\Harddisk0\DR0 - ok
19:54:32.0105 0x0f6c  ================ Scan VBR ==================================
19:54:32.0120 0x0f6c  [ B71CD71CE0B963C40A722463726D76FF ] \Device\Harddisk0\DR0\Partition1
19:54:32.0120 0x0f6c  \Device\Harddisk0\DR0\Partition1 - ok
19:54:32.0136 0x0f6c  [ B1E27AA018409DE6BFD73F8AFB883A65 ] \Device\Harddisk0\DR0\Partition2
19:54:32.0136 0x0f6c  \Device\Harddisk0\DR0\Partition2 - ok
19:54:32.0151 0x0f6c  [ B4B9A257236ADAE230130EBEA38EA2BF ] \Device\Harddisk0\DR0\Partition3
19:54:32.0151 0x0f6c  \Device\Harddisk0\DR0\Partition3 - ok
19:54:32.0167 0x0f6c  [ E15975483E8737C76FDBA5EBC8C47777 ] \Device\Harddisk0\DR0\Partition4
19:54:32.0167 0x0f6c  \Device\Harddisk0\DR0\Partition4 - ok
19:54:32.0183 0x0f6c  [ 92934DB3676E36CA6015E904B7969A26 ] \Device\Harddisk0\DR0\Partition5
19:54:32.0183 0x0f6c  \Device\Harddisk0\DR0\Partition5 - ok
19:54:32.0183 0x0f6c  ================ Scan generic autorun ======================
19:54:32.0214 0x0f6c  SecurityHealth - ok
19:54:32.0276 0x0f6c  [ AF135500E32B4E95ED733F1F801A7B8D, 9A3A5596143317FE178D02CCFDB73A6932B44A5381D3C25F6A158CEFCE57F97F ] C:\Program Files\Dolby\Dolby DAX2\DAX2_APP\DolbyDAX2TrayIcon.exe
19:54:32.0308 0x0f6c  DAX2_APP - ok
19:54:32.0355 0x0f6c  [ 4894E653F50B777FC2A61839B540C8C3, FEC65E94176137AF30D40230F50DAA17599A7977245664B17C7257EDE1C9F763 ] C:\Program Files\Avast Software\Avast\AvLaunch.exe
19:54:32.0370 0x0f6c  AvastUI.exe - ok
19:54:32.0479 0x0f6c  [ AF7C7284E59978C02D33B7E858D3BB21, 39BE1033A31EF73701C8F9E3EEBE5DDEDBDF22C8A1543CC1FBF75CAB65859E8B ] C:\Users\Sandy\AppData\Local\Temp\{98299399-c2e2-45b2-a1c1-121927b898c1}\151a54b6-1052-45c5-86cc-449b00e96e16.cmd
19:54:32.0479 0x0f6c  151a54b6-1052-45c5-86cc-449b00e96e16 - ok
19:54:32.0698 0x0f6c  [ 04F13A461C9FB1B0CA46A08C46279823, 88CEBFF603E9317BCC2E8CD85DA1B4CDF65B45799A9CBDF2A4BCE6BC1C772126 ] C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
19:54:32.0854 0x0f6c  Dropbox - ok
19:54:32.0901 0x0f6c  [ 40754D93AEB60577897FADEE6941B2B1, 150D74C7EFE5C06CDE603E1A9C6DBA89FC83B86F2E94BBEA92C3D9CEC9373142 ] C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe
19:54:32.0901 0x0f6c  ControlCenter4 - ok
19:54:33.0057 0x0f6c  [ 22310E2C6AE375142ABBB9EF384ECD40, A8673DF56546E4CDD7A0099D8CCB889415125089F786D0637E8D9B21CE53AB4D ] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
19:54:33.0198 0x0f6c  BrStsMon00 - ok
19:54:33.0276 0x0f6c  [ 0C0DD390CF53D506414AC2CAA68E7F34, C64A9BAF0FDA5161B9361FC454CA36E7595E6BC969A6FA03993C5949373D8A00 ] C:\Program Files (x86)\Brother\Brother Help\BrotherHelp.exe
19:54:33.0339 0x0f6c  BrHelp - ok
19:54:33.0417 0x0f6c  OneDriveSetup - ok
19:54:33.0417 0x0f6c  OneDriveSetup - ok
19:54:33.0432 0x0f6c  CCleaner Smart Cleaning - ok
19:54:33.0573 0x0f6c  [ 3DDE2B8419767D0B70B1E17567555174, DAE9DF68B0567CBA36C0C11DEADA197CCFE6923EBCD15D818216667DD77C876E ] C:\Program Files (x86)\Steam\steam.exe
19:54:33.0682 0x0f6c  Steam - ok
19:54:33.0870 0x0f6c  [ 28A21AFB4BDC543B4B0309BB78B8BA4A, 672AEB85A07EC1A25DBCF48B64D3BDE24DD0691C2BB27ED74A536776F63B5D27 ] C:\Users\Sandy\AppData\Local\Programs\Opera GX\assistant\browser_assistant.exe
19:54:33.0963 0x0f6c  Opera GX Browser Assistant - ok
19:54:34.0057 0x0f6c  EpicGamesLauncher - ok
19:54:34.0135 0x0f6c  [ 521374E1FF9247E26F288BD9094A4370, 81CEF893B1FA0719BAFDB6C0BF2AB05F8B62E26BA357A7451ADAB513EC81791E ] C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe
19:54:34.0135 0x0f6c  GUDelayStartup - ok
19:54:34.0401 0x0f6c  AV detected via SS2: Kaspersky Security Cloud, C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.2\wmiav.exe ( 21.2.16.590 ), 0x40000 ( disabled : updated )
19:54:34.0401 0x0f6c  AV detected via SS2: Avast Antivirus, C:\Program Files\Avast Software\Avast\wsc_proxy.exe ( 21.4.6162.0 ), 0x42000 ( disabled : updated )
19:54:34.0401 0x0f6c  AV detected via SS2: Malwarebytes, C:\Program Files\Malwarebytes\Anti-Malware\MBAMWsc.exe ( 3.0.0.207 ), 0x60000 ( disabled : updated )
19:54:34.0401 0x0f6c  FW detected via SS2: Kaspersky Security Cloud, C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.2\wmiav.exe ( 21.2.16.590 ), 0x40000 ( disabled )
19:54:34.0417 0x0f6c  Win FW state via NFP2: enabled ( trusted )
19:54:34.0417 0x0f6c  ============================================================
19:54:34.0417 0x0f6c  Scan finished
19:54:34.0417 0x0f6c  ============================================================
19:54:34.0417 0x09fc  Detected object count: 0
19:54:34.0417 0x09fc  Actual detected object count: 0