informe TDSSKILLER . Como no deja entero lo corto en varios mensajes .
1
20:02:35.0790 0x20b4 TDSS rootkit removing tool 3.1.0.28 Apr 9 2019 21:11:46
20:02:38.0087 0x20b4 ============================================================
20:02:38.0087 0x20b4 Current date / time: 2022/05/27 20:02:38.0087
20:02:38.0087 0x20b4 SystemInfo:
20:02:38.0087 0x20b4
20:02:38.0087 0x20b4 OS Version: 10.0.19044 ServicePack: 0.0
20:02:38.0087 0x20b4 Product type: Workstation
20:02:38.0087 0x20b4 ComputerName: GINES-PC
20:02:38.0087 0x20b4 UserName: Gines
20:02:38.0087 0x20b4 Windows directory: C:\WINDOWS
20:02:38.0087 0x20b4 System windows directory: C:\WINDOWS
20:02:38.0087 0x20b4 Running under WOW64
20:02:38.0087 0x20b4 Processor architecture: Intel x64
20:02:38.0087 0x20b4 Number of processors: 2
20:02:38.0087 0x20b4 Page size: 0x1000
20:02:38.0087 0x20b4 Boot type: Normal boot
20:02:38.0087 0x20b4 CodeIntegrityOptions = 0x00000001
20:02:38.0087 0x20b4 ============================================================
20:02:38.0087 0x20b4 KLMD ARK init status: drvProperties = 0xEF0F02, osBuild = 19041.0, osProperties = 0x1D
20:02:38.0087 0x20b4 KLMD BG init status: drvProperties = 0xEF0F02, osBuild = 19041.0, osProperties = 0x1D
20:02:38.0087 0x20b4 BG loaded
20:02:45.0242 0x20b4 System UUID: {2A4E367D-B0B5-120D-270E-38CC4A6984E0}
20:02:51.0273 0x20b4 !crdlk
20:02:51.0601 0x20b4 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'A'
20:02:51.0664 0x20b4 ============================================================
20:02:51.0664 0x20b4 \Device\Harddisk0\DR0:
20:02:51.0695 0x20b4 MBR partitions:
20:02:51.0695 0x20b4 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
20:02:51.0695 0x20b4 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0xC2041E1
20:02:51.0695 0x20b4 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0xC350800, BlocksNum 0x683B5800
20:02:51.0695 0x20b4 ============================================================
20:02:51.0898 0x20b4 C: <-> \Device\Harddisk0\DR0\Partition2
20:02:52.0289 0x20b4 D: <-> \Device\Harddisk0\DR0\Partition3
20:02:52.0289 0x20b4 ============================================================
20:02:52.0289 0x20b4 Initialize success
20:02:52.0289 0x20b4 ============================================================
20:33:21.0619 0x0e4c ============================================================
20:33:21.0619 0x0e4c Scan started
20:33:21.0619 0x0e4c Mode: Manual;
20:33:21.0619 0x0e4c ============================================================
20:33:21.0619 0x0e4c KSN ping started
20:33:41.0742 0x0e4c KSN ping finished: true
20:33:47.0507 0x0e4c ================ Scan BIOS =================================
20:33:47.0507 0x0e4c BIOS info: vendor = American Megatrends Inc., version = F6, releaseDate = 07/09/2014
20:33:47.0507 0x0e4c Base board info: manufacturer = Gigabyte Technology Co., Ltd., product = H81M-HD3, version = x.x
20:33:48.0944 0x0e4c [ D675D3AC9585008E336418C27B6DAF86, F08F6E538A90458C83806C0A93A4F415DDD9DCC05FA17AE5408AD9D6C04701F8 ] BIOS
20:33:48.0944 0x0e4c BIOS - ok
20:33:48.0944 0x0e4c ================ Scan system memory ========================
20:33:48.0944 0x0e4c System memory - ok
20:33:48.0944 0x0e4c ================ Scan services =============================
20:33:49.0116 0x0e4c [ AF50A9D10FF7B1D999BA99D00CC128B3, 3D6E0579821BFA91B7F0A6E6DDC6E03BD3389202AD1A079B825D18D2A76250A0 ] 1394ohci C:\WINDOWS\System32\drivers\1394ohci.sys
20:33:49.0132 0x0e4c 1394ohci - ok
20:33:49.0210 0x0e4c [ 1C29610EDF5FE3C9D313207BD65BCDD0, 5A29D80AF47D08998125CB81BC1D4E84093291A74DE422B63F7BBDA7BDE95311 ] 3ware C:\WINDOWS\system32\drivers\3ware.sys
20:33:49.0210 0x0e4c 3ware - ok
20:33:49.0257 0x0e4c [ D8EB495D2FE95C49E82DEE759EC952F1, C456AEE4D9867AB4725778CBDEE73A645B2357BB70A3A545B8B8769121D03345 ] AarSvc C:\WINDOWS\System32\AarSvc.dll
20:33:49.0257 0x0e4c AarSvc - ok
20:33:49.0304 0x0e4c [ 43FB8BB52B9333E8C6A76DDEC0BF8CFC, 37328E9BDF7242B8A44CE71A2750FFB7BB7B3C761BD3214C16A36D4E2944840B ] ACPI C:\WINDOWS\system32\drivers\ACPI.sys
20:33:49.0319 0x0e4c ACPI - ok
20:33:49.0335 0x0e4c [ 6A424E6ABD1970E23ECF3DA85725B6BF, 1D576471A8035AD3FF5B0616F47B79E43AA367ECDF009D7CADDA0F11F13A1345 ] AcpiDev C:\WINDOWS\System32\drivers\AcpiDev.sys
20:33:49.0335 0x0e4c AcpiDev - ok
20:33:49.0351 0x0e4c [ 70D9FC69CED08E86B888717CC5C37367, 34856C805B67F3EE4ABFD81B61879112344C343BC7E76A7A466FAD276E0E5165 ] acpiex C:\WINDOWS\system32\Drivers\acpiex.sys
20:33:49.0351 0x0e4c acpiex - ok
20:33:49.0366 0x0e4c [ EF7CB34FB2D56305EF942012499AB8F7, 3A9A504797FD22BB5447BB36597D5001320ABC0D4A1853D478C038EAC6847913 ] acpipagr C:\WINDOWS\System32\drivers\acpipagr.sys
20:33:49.0366 0x0e4c acpipagr - ok
20:33:49.0382 0x0e4c [ 33B5ED555018128792AFFCDC9AF7AFD2, 1E7C5FADA2486EE31289A4BEFB70AEA173190671C64995441651903CF31E5033 ] AcpiPmi C:\WINDOWS\System32\drivers\acpipmi.sys
20:33:49.0382 0x0e4c AcpiPmi - ok
20:33:49.0398 0x0e4c [ 85A86944A6163F0B7A8B10203B70CB9A, 72D35F5DB8714D38E4050A7F7A457C4AD99E3EA212040704F1C1ECBB70E865E9 ] acpitime C:\WINDOWS\System32\drivers\acpitime.sys
20:33:49.0398 0x0e4c acpitime - ok
20:33:49.0429 0x0e4c [ 494072BF9EC1FDFFD54C47A80821FE6E, 8F302F43314C2F5C80E1D22B17C0246EF8A275C63FDB3C1CDC0DD999C4715A77 ] Acx01000 C:\WINDOWS\system32\drivers\Acx01000.sys
20:33:49.0444 0x0e4c Acx01000 - ok
20:33:49.0507 0x0e4c [ 437A1C97D7A8A11006C4458408DE4A9E, 8771A5C865FBD2B1FF9315665BB17A87B3D22C237A35A1A22B72C64326A48700 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
20:33:49.0507 0x0e4c AdobeARMservice - ok
20:33:49.0554 0x0e4c [ B4B75D49BFBCFB2762593F77E5BD7789, B83072D77685F973701EC6629D8AC2626FDEFD657A4DB9AA7D532960A29FC67C ] ADP80XX C:\WINDOWS\system32\drivers\ADP80XX.SYS
20:33:49.0569 0x0e4c ADP80XX - ok
20:33:49.0616 0x0e4c [ 6679AED357B1F936C6A93B2C60891B4A, D7EB57714D3C7803D11B5869BD6B778F48FE986335135CCCD84ACB19437D3817 ] AFD C:\WINDOWS\system32\drivers\afd.sys
20:33:49.0632 0x0e4c AFD - ok
20:33:49.0648 0x0e4c [ 3ABB28B13D5AE96BAB7E26FFDDCF3466, 8E0369455B1428195AC4D8A694B9E23705068CCB3F641EF3238816B6AD7E34E6 ] afunix C:\WINDOWS\system32\drivers\afunix.sys
20:33:49.0648 0x0e4c afunix - ok
20:33:49.0679 0x0e4c [ E6C21EB564C1A177B484C3A53AEA49BF, F2BBD6F46E55B64F0F5798A029DD51433E961712C1FED12999199FA49058776D ] ahcache C:\WINDOWS\system32\DRIVERS\ahcache.sys
20:33:49.0679 0x0e4c ahcache - ok
20:33:49.0710 0x0e4c [ 526FE18DB976D9A1AE19FBC53FA690B1, 4E2623243A9BB61F7211E591C24EDB70B07974A7FA21E3F14C683F27E975777F ] AJRouter C:\WINDOWS\System32\AJRouter.dll
20:33:49.0710 0x0e4c AJRouter - ok
20:33:49.0726 0x0e4c [ 551C155F4FCE82BBA4CC92E56F1ECB84, 6ABE94DF833EC0E6D145429BBA99FDCA9AD3FCBB685A432B20C04F74DE9A42A5 ] ALG C:\WINDOWS\System32\alg.exe
10
20:38:13.0065 0x2288 sfloppy - ok
20:38:13.0080 0x2288 [ C05648C2BE6176BE557D9C7F02916388, C65D8FEDDCD9A52B04F42C64DAD2A499BF51246D36042E8DC09DD04C4C0B7BEE ] SgrmAgent C:\WINDOWS\system32\drivers\SgrmAgent.sys
20:38:13.0080 0x2288 SgrmAgent - ok
20:38:13.0111 0x2288 [ 3BA1A18A0DC30A0545E7765CB97D8E63, F9CBF1FF87D6F11920C4B7367EA2178BF13AA276C65D918950683983F268BC1F ] SgrmBroker C:\WINDOWS\system32\SgrmBroker.exe
20:38:13.0127 0x2288 SgrmBroker - ok
20:38:13.0158 0x2288 [ 12C9DC58F761E72F9C889B213698AB67, 8BC382EC4102A118006E8CC67763198852BEB1DEE40184FDB384744D782C62A4 ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
20:38:13.0174 0x2288 SharedAccess - ok
20:38:13.0190 0x2288 [ 5A908C65D3CFF0236DF9B9D49514283B, 8E8EB9441DCB707810D64B6D30D1CADE1268A209C14D7F1353176F974CCF3235 ] SharedRealitySvc C:\WINDOWS\System32\SharedRealitySvc.dll
20:38:13.0205 0x2288 SharedRealitySvc - ok
20:38:13.0221 0x2288 [ BE44F2B19C4F61FED874C7FE26DF92AA, 07888C7575A1D7D46AE375B1CE6C13665CCEE0F0672EA8FDE71B955B5BC0EA70 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
20:38:13.0236 0x2288 ShellHWDetection - ok
20:38:13.0268 0x2288 [ D2A2FDF78F17AD1008EDC20F1D2105FB, CB736807C5442177DA7FAFE1BD9CB7BB7216C2613B592B1D5A1018EBDAFF3DE8 ] shpamsvc C:\WINDOWS\system32\Windows.SharedPC.AccountManager.dll
20:38:13.0268 0x2288 shpamsvc - ok
20:38:13.0283 0x2288 [ 9AB1BADC5A324DA39186B81BC6CE6E2E, 567710C90BD71600A31A3408DB065B43C844DCFD12045FDE04CD59D932DC8353 ] SiSRaid2 C:\WINDOWS\system32\drivers\SiSRaid2.sys
20:38:13.0283 0x2288 SiSRaid2 - ok
20:38:13.0299 0x2288 [ 60213AF297023C005453E1CBF7CB6FE7, 718C833E5EDFE642F3B254515E29641BF2D8E56E22F6B795024BF64721AB874E ] SiSRaid4 C:\WINDOWS\system32\drivers\sisraid4.sys
20:38:13.0299 0x2288 SiSRaid4 - ok
20:38:13.0315 0x2288 [ 196A46BA842A219EC6DE7B7B7D9AAB7E, 4EF7BE37F92557C8B0D30999541F284CC4A3E8FD98E0D78146F9F00D54E11BB9 ] SmartSAMD C:\WINDOWS\system32\drivers\SmartSAMD.sys
20:38:13.0315 0x2288 SmartSAMD - ok
20:38:13.0346 0x2288 [ 311AB5DB5A55CC211063C66BB989879F, 59A750A6B5CF77CBB6F73A7D5AB86BC65A945E6ED9FD05BD98EB76F0280D8B7D ] SmbDrv C:\WINDOWS\System32\drivers\Smb_driver_AMDASF.sys
20:38:13.0346 0x2288 SmbDrv - ok
20:38:13.0361 0x2288 [ FAA2DC014569369567651B813FD48EB7, BA2CAC2A220AFBB7AA2C8D6BE7B045DCC468CE72876C3FABAE17BFCA260DFE5E ] SmbDrvI C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys
20:38:13.0361 0x2288 SmbDrvI - ok
20:38:13.0393 0x2288 [ 67C32A981B42CD5243D4B5EA54A29734, 0144030B5513E7B8A71A8D600EAE8301F29F18D8675F757A774E7FC690B838AD ] smphost C:\WINDOWS\System32\smphost.dll
20:38:13.0393 0x2288 smphost - ok
20:38:13.0440 0x2288 [ AA35F8D0001485C5F56439A806F57F52, 798A317F7FC355673FA12FA0915CA96FEB7F92BC0BA3BEE593F793D98C82CF58 ] SmsRouter C:\WINDOWS\system32\SmsRouterSvc.dll
20:38:13.0440 0x2288 SmsRouter - ok
20:38:13.0471 0x2288 [ 1971BBC71602B928CF9257759E3C05E8, 9D665698FF26ED333AD385B4B7A6C0F2B6806371D278E281FA4188002A5317E8 ] SNMPTRAP C:\WINDOWS\System32\snmptrap.exe
20:38:13.0486 0x2288 SNMPTRAP - ok
20:38:13.0502 0x2288 [ 27B7D9E872939EBB34C30343F991893D, 879AFDC8C50487ED0D3CB58C70A206E185F94BE75C25C31C387F3F08740771F9 ] spaceparser C:\WINDOWS\system32\drivers\spaceparser.sys
20:38:13.0502 0x2288 spaceparser - ok
20:38:13.0549 0x2288 [ 8A10B25A3345BFC70BC9EE56055B7249, 05F427ECBCB8BB0601196EA6B5399187421097A1D50C7199DBB05A23901043BE ] spaceport C:\WINDOWS\system32\drivers\spaceport.sys
20:38:13.0549 0x2288 spaceport - ok
20:38:13.0580 0x2288 [ AB3BDEC793187CEDF1229AC98BB7DEDF, D2EA0C5FC534C89310207AA26A8816B30FEEF3F2708A067D8BB93D3CFF9C3936 ] SpatialGraphFilter C:\WINDOWS\system32\drivers\SpatialGraphFilter.sys
20:38:13.0580 0x2288 SpatialGraphFilter - ok
20:38:13.0596 0x2288 [ B6029A86D8DE5AE85E01506E0222A491, E8A7BB7D299B457EF9E3E32893E5DCF3DEE1704B9E02A0583439941CA6E1C9AD ] SpbCx C:\WINDOWS\system32\drivers\SpbCx.sys
20:38:13.0596 0x2288 SpbCx - ok
20:38:13.0643 0x2288 [ 49417A7FD84876FCE07948389D330569, 12E96BB53A1E11750C7AFCA449EBD0FF340A6088E1FA4B4CC0A448E50E557E98 ] spectrum C:\WINDOWS\system32\spectrum.exe
20:38:13.0658 0x2288 spectrum - ok
20:38:13.0705 0x2288 [ DBB26CE4B3EB0E8BA41E2A3842147F5D, 17D07B110A0F6CD14426A7AE92F3AF24F161107D11F04A5123303688D74955F6 ] Spooler C:\WINDOWS\System32\spoolsv.exe
20:38:13.0721 0x2288 Spooler - ok
20:38:13.0815 0x2288 [ D3D3FD1F9B444E5FBEB0C66843E0A730, 3CA037424EBB09C7D99F1E6B540942493CE6707E0EA94371D74AA099B949ECB3 ] sppsvc C:\WINDOWS\system32\sppsvc.exe
20:38:13.0877 0x2288 sppsvc - ok
20:38:13.0924 0x2288 [ BD332DF5B03E85F432F29398D2C7D122, 3A4FEFD25A8D5D3F94DEA70D9FE88119124125BE67B2A43E49D9EDFD0A5C8A39 ] srv2 C:\WINDOWS\system32\DRIVERS\srv2.sys
20:38:13.0940 0x2288 srv2 - ok
20:38:13.0955 0x2288 [ 1201656BEDF263E7DC12E56F509F56F7, 10B22C17E9F9093C224E5D8FC08F55089568CF472839204549948A3CB2F8AB63 ] srvnet C:\WINDOWS\system32\DRIVERS\srvnet.sys
20:38:13.0955 0x2288 srvnet - ok
20:38:13.0986 0x2288 [ 3B111F9787071EC66F4CC226574C2D8B, DA2AAEAECA9FF7EB8D955805E5268D390F2A86CEB2C608EFA7636FFFEEAE7BA4 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
20:38:13.0986 0x2288 SSDPSRV - ok
20:38:14.0049 0x2288 [ 66969AA56E77953E596470C73A9004E0, 71F4CC7595C6D5E93AAA14259DF817C6C1D4BBCF285545FD980F6DBC86A30379 ] ssh-agent C:\WINDOWS\System32\OpenSSH\ssh-agent.exe
20:38:14.0049 0x2288 ssh-agent - ok
20:38:14.0080 0x2288 [ 2775EF3E0E76D9A44AB60D6143FA92A5, EDAE87919A509204967AFD9500021DCAE4EE9DC2D89DEF7960D5DDB1A594C9D3 ] SstpSvc C:\WINDOWS\system32\sstpsvc.dll
20:38:14.0096 0x2288 SstpSvc - ok
20:38:14.0236 0x2288 [ 5F753A28D314C0081AE23BACBBB02501, D966B22E347B5B7EA5F9D110A9D139827597521973A1BC94EEF35AC658C4C816 ] StateRepository C:\WINDOWS\system32\windows.staterepository.dll
20:38:14.0314 0x2288 StateRepository - ok
20:38:14.0346 0x2288 [ 09DC471B4573F3D01D7E448B526AE70A, 766FD1E1D2F73DE202FB337F6A6A5BA0317772AAAA644E9103BB5DF438162F51 ] stexstor C:\WINDOWS\system32\drivers\stexstor.sys
20:38:14.0346 0x2288 stexstor - ok
20:38:14.0377 0x2288 [ 27CCDFB300302826F5CCFF0678F20D80, 84816CB7033FDEDA560E03995C254577E5BB23E15C7C03FB68074C2E60F31B66 ] stisvc C:\WINDOWS\System32\wiaservc.dll
20:38:14.0393 0x2288 stisvc - ok
20:38:14.0424 0x2288 [ DACE45A20E7652955BC153EE3E755D18, 688665B39022B82314F50D4D39C254F66E4AA7943F89A09AFEBB18ED049DC509 ] storahci C:\WINDOWS\system32\drivers\storahci.sys
20:38:14.0424 0x2288 storahci - ok
20:38:14.0455 0x2288 [ 5A129E186A7A4E3CCBF090682D48F8EB, EEF4D748F421A65B0CEECC3F499574FD1B4B2E654428C0693D76074A2BC257B7 ] storflt C:\WINDOWS\system32\drivers\vmstorfl.sys
20:38:14.0455 0x2288 storflt - ok
20:38:14.0471 0x2288 [ 1FC81435649AE146D10A14ECE4BACF65, 732DE80C8187DCA09CDD911A1070D9555B0A195AAC7CED38CED3958DFE9527F1 ] stornvme C:\WINDOWS\system32\drivers\stornvme.sys
20:38:14.0486 0x2288 stornvme - ok
20:38:14.0486 0x2288 [ 995F082126674C6D1423E29FBCEA9F39, E86386156F982B59C00991D40A6E1862CA322F151BF965B14572D13AA207D614 ] storqosflt C:\WINDOWS\system32\drivers\storqosflt.sys
20:38:14.0486 0x2288 storqosflt - ok
20:38:14.0533 0x2288 [ 5D05B0938DF0DAAABCB51300C299E5E7, 3AB634148D397BB6FD2216B87D31D469C8AFD261F03E1B301D41C9EC08F07E95 ] StorSvc C:\WINDOWS\system32\storsvc.dll
20:38:14.0549 0x2288 StorSvc - ok
20:38:14.0580 0x2288 [ 58B787208AE774AE53F367CAFD653155, 23710E84326FDC6398B7F43EA46E78A77A7FB4C38DD660D32F14F50A1B29CBCA ] storufs C:\WINDOWS\system32\drivers\storufs.sys
20:38:14.0580 0x2288 storufs - ok
20:38:14.0596 0x2288 [ 0A13C67C267BFA1A0D1FE72A9D65BD5F, B44327F3134FA0166ED9E31BC724120B642AE5E96CEFF599867F03463ABB1406 ] storvsc C:\WINDOWS\system32\drivers\storvsc.sys
20:38:14.0596 0x2288 storvsc - ok
20:38:14.0611 0x2288 [ D73F83E795F3BC100C21EDA2BD6DE307, 0DC828C46E057ADA9934424BF00067B17EEB8E0108CE1E309C8DEA4CC42448BA ] svsvc C:\WINDOWS\system32\svsvc.dll
20:38:14.0611 0x2288 svsvc - ok
20:38:14.0674 0x2288 [ 0547BB19EFA07BEF0F679A054EB5CFEC, D618F57B78B3FFEC29E8C4472E0AA72EF1CA0C83DE968373B818ABA4D9747E2D ] swenum C:\WINDOWS\System32\DriverStore\FileRepository\swenum.inf_amd64_16a14542b63c02af\swenum.sys
20:38:14.0674 0x2288 swenum - ok
20:38:14.0705 0x2288 [ 10C3D1AA5C1D330CE5CC39263BC95183, 415304EDDB673B538CEB5D23586B0C237D0DB5987E0B5078D532E833F4A7AE52 ] swprv C:\WINDOWS\System32\swprv.dll
20:38:14.0705 0x2288 swprv - ok
20:38:14.0736 0x2288 [ B39DC667DF14C7F1B9A58DE17BD45BE3, 52A4DBA20C16B2E34FBDDDE966700A3E8E183011A44ABECADCD4D3F93D29637B ] Synth3dVsc C:\WINDOWS\System32\drivers\Synth3dVsc.sys
20:38:14.0736 0x2288 Synth3dVsc - ok
20:38:14.0783 0x2288 [ 6C608C28F3469A3FBB1FC762945AED44, 07F5694D440B9807DB933E7091BC002C395B99F01A4423316118F1A860B60C1E ] SysMain C:\WINDOWS\system32\sysmain.dll
20:38:14.0799 0x2288 SysMain - ok
20:38:14.0830 0x2288 [ 423D06D055EF34814B8670C69452A6BD, 8FA9EFF2DDACF339499977D3602998150FC8CE0C62BE30CD390F98F95998ED76 ] SystemEventsBroker C:\WINDOWS\System32\SystemEventsBrokerServer.dll
20:38:14.0846 0x2288 SystemEventsBroker - ok
20:38:14.0861 0x2288 [ 055070E3AC1F342125E3296641BDC4D3, 6385EE02D392FCFFB41CE5C5D4CD03C245828D98DCB01F0B4358B431257F9F5B ] TabletInputService C:\WINDOWS\System32\TabSvc.dll
20:38:14.0861 0x2288 TabletInputService - ok
20:38:14.0893 0x2288 [ 20CEAECE4ECDEBC89C82F1998696D596, 439559DE34BE096824CB70A97524E843CE2802092A9C882167F4CB08FE9664A7 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
20:38:14.0893 0x2288 TapiSrv - ok
20:38:14.0971 0x2288 [ F7691009A30EC79518550E2FA4813A42, A3467058F6B5E08137E7C0816F5B1AFB79B2C506EE2B7B358D15A4CB227515A2 ] Tcpip C:\WINDOWS\system32\drivers\tcpip.sys
20:38:15.0018 0x2288 Tcpip - ok
20:38:15.0080 0x2288 [ F7691009A30EC79518550E2FA4813A42, A3467058F6B5E08137E7C0816F5B1AFB79B2C506EE2B7B358D15A4CB227515A2 ] Tcpip6 C:\WINDOWS\system32\drivers\tcpip.sys
20:38:15.0111 0x2288 Tcpip6 - ok
20:38:15.0143 0x2288 [ 57BE670CF1D93717B628271B404D658A, EDD4C58EDAB985C87D6101D9CA5620146EE2BB8A1B899C635DD4CD36541DD46E ] tcpipreg C:\WINDOWS\system32\drivers\tcpipreg.sys
20:38:15.0143 0x2288 tcpipreg - ok
20:38:15.0174 0x2288 [ 2A8B28579A4964AA7EA8CEB1AC121243, BB34DC5199DE15F7D57AE52DF427C39D2FD34FAFA8136F783F2F089CDEBA0130 ] tdx C:\WINDOWS\system32\DRIVERS\tdx.sys
20:38:15.0174 0x2288 tdx - ok
20:38:15.0205 0x2288 [ 2213610676B404B157ADFFE312567458, B2E02C5049357A2DFF1CF4F6F64AC6E1DCCEDC245E96D5BC0585E88E7622D1B9 ] Telemetry C:\WINDOWS\system32\drivers\IntelTA.sys
20:38:15.0205 0x2288 Telemetry - ok
20:38:15.0221 0x2288 [ C225B94F2B27AC97C3E66C0550AEA249, 6F88375DD12A648B77BB6EB4BE527FF6678EE76A2059DB5B4CC971CDB31D0DB8 ] terminpt C:\WINDOWS\System32\drivers\terminpt.sys
20:38:15.0236 0x2288 terminpt - ok
20:38:15.0268 0x2288 [ 70172E2FA9D349474D22C0AF919F6716, 3D4D164B6927220FF6C323724AC61C4CF467ED7843A3877B3856344423B665C1 ] TermService C:\WINDOWS\System32\termsrv.dll
20:38:15.0283 0x2288 TermService - ok
20:38:15.0314 0x2288 [ 8EC4197962A0349DFFBDC11586099DB8, 8DD5348A4983C376F63E6B209227D4D02300555F8C80A0E0DB2EA16074ABC334 ] Themes C:\WINDOWS\system32\themeservice.dll
20:38:15.0330 0x2288 Themes - ok
20:38:15.0361 0x2288 [ 761EBB96C8217CF5795ACF429BDF9E88, 4CCDB591EE16507879D8F12C0BDD40FACBEEF03BFC553A84270284D4930B433F ] TieringEngineService C:\WINDOWS\system32\TieringEngineService.exe
20:38:15.0361 0x2288 TieringEngineService - ok
20:38:15.0393 0x2288 [ 6B761253F07F46BE2B16C768B1F22551, C4E63135EB9BAAB1B7DE928C914CACEAB1E4862D6C5913B23EFC5B8986B1D91E ] TimeBrokerSvc C:\WINDOWS\System32\TimeBrokerServer.dll
20:38:15.0393 0x2288 TimeBrokerSvc - ok
20:38:15.0439 0x2288 [ ADB9B60D34B39194965D2820D3AD04E2, AA940F5A2F850F577EAB258C203C59112114DF8FF7054E9E3CBE139D9121359B ] TokenBroker C:\WINDOWS\System32\TokenBroker.dll
20:38:15.0455 0x2288 TokenBroker - ok
20:38:15.0486 0x2288 [ 8D0C4B0F6D48CF4750403971D7BF494D, 62ECE387CEAAD6296A35632AFC96E8A4E7018BD0A1037CD4AF8951F833AC38DA ] TPM C:\WINDOWS\System32\drivers\tpm.sys
20:38:15.0486 0x2288 TPM - ok
20:38:15.0518 0x2288 [ 6B7A6ABB160045852805449227F4F93D, 135192B2D889D498A1F2F27BDE332FDA75C36CF9267E69A4953718EFFDEAA374 ] TrkWks C:\WINDOWS\System32\trkwks.dll
20:38:15.0518 0x2288 TrkWks - ok
20:38:15.0549 0x2288 [ 732BA88A47C0713AE45986C65AF49E67, FD8EE86BB5319D97FB517658C5F41501ED6DE5D19C49437EDE906B68B21263BC ] TroubleshootingSvc C:\WINDOWS\system32\MitigationClient.dll
20:38:15.0564 0x2288 TroubleshootingSvc - ok
20:38:15.0611 0x2288 [ 8139E510C272F2A86EE3815C618B80DC, 983BF0D8B16D4729779812F88AA854AA4B27E2097304E9022A2F031EAB088D11 ] TrustedInstaller C:\WINDOWS\servicing\TrustedInstaller.exe
20:38:15.0627 0x2288 TrustedInstaller - ok
20:38:15.0658 0x2288 [ F613A8618CC19DD96D1E0C81C5DCB7D1, AD6DE675AC033BE6BF75FF6303EAED4B5C672689D3AEC6DB94816D60E19B7030 ] TsUsbFlt C:\WINDOWS\system32\drivers\tsusbflt.sys
20:38:15.0658 0x2288 TsUsbFlt - ok
20:38:15.0674 0x2288 [ 7845DD22FA7B91FDF0522344B1BDA012, 161A01BAC7E84B72BC6C2E83A63CC9E1DC7E2E9104C1645CD098D14094D2AC79 ] TsUsbGD C:\WINDOWS\System32\drivers\TsUsbGD.sys
20:38:15.0689 0x2288 TsUsbGD - ok
20:38:15.0721 0x2288 [ 6244FD1056BF170E38245B4B9042BFDF, C32908B3C5800CD52EF9BDD26C77B8162831CFD19DBF1D399941B17FB909AD94 ] tunnel C:\WINDOWS\system32\drivers\tunnel.sys
20:38:15.0721 0x2288 tunnel - ok
20:38:15.0736 0x2288 [ A7C58987094E1EEBD63FB94BBE5FBC2C, 1E2E68E68380CFE42C2D975E826F6301AA7F35566E9A733B881BDC6271EC1981 ] tzautoupdate C:\WINDOWS\system32\tzautoupdate.dll
20:38:15.0752 0x2288 tzautoupdate - ok
20:38:15.0783 0x2288 [ E51FEC42B4820C74BB75DAAE3A49C3F2, AC2CC1E3D5A8AF54EDE4C86F2080AFE018FBAF3568D063AC68D00FE07FB2E39E ] UASPStor C:\WINDOWS\System32\drivers\uaspstor.sys
20:38:15.0783 0x2288 UASPStor - ok
20:38:15.0814 0x2288 [ 1020E0CEB0EC9FB54F0A2C8E8D4CDA62, 6D952B704BF08DDF4740796230751027143F9434D651962E8CDDB8F6FE5F5A8A ] UcmCx0101 C:\WINDOWS\system32\Drivers\UcmCx.sys
20:38:15.0814 0x2288 UcmCx0101 - ok
20:38:15.0846 0x2288 [ 229B33B8499F4F2AAB1F3B590423611F, E70A2D9EEEF0C6894A0DB7990CFF6ECE3B8F389FD30B7B1949FCBDD3300B6148 ] UcmTcpciCx0101 C:\WINDOWS\system32\Drivers\UcmTcpciCx.sys
20:38:15.0846 0x2288 UcmTcpciCx0101 - ok
20:38:15.0877 0x2288 [ 7FDC3A6FD8547468CE554C8821640103, 3626760AEE42EE36E047DA6899A81E0646DFBA344A234270EAE5D635F049BE37 ] UcmUcsiAcpiClient C:\WINDOWS\System32\drivers\UcmUcsiAcpiClient.sys
20:38:15.0877 0x2288 UcmUcsiAcpiClient - ok
20:38:15.0908 0x2288 [ 1ADE4D1F65B4A1E52F701C69FB455769, 3E5CDCC098149853A7EFA05EA1B714182C82E4153F2DA3C50BA30DF2B3E05EB6 ] UcmUcsiCx0101 C:\WINDOWS\system32\Drivers\UcmUcsiCx.sys
20:38:15.0908 0x2288 UcmUcsiCx0101 - ok
20:38:15.0939 0x2288 [ D6BEDCCB2E48589944EDC675D335677E, 2F5A5BA7AEC40C1A440C8DFF81DCE5AB0BDF9CC70ADDE48F8B652665B61F9915 ] Ucx01000 C:\WINDOWS\system32\drivers\ucx01000.sys
20:38:15.0939 0x2288 Ucx01000 - ok
20:38:15.0955 0x2288 [ 6861422B7FFADDEAAA64A0539C910178, 4F8193C0A3525B78CA3CAF4731AE997A214F3DF180F0A3ADCEB2D31D3217850C ] UdeCx C:\WINDOWS\system32\drivers\udecx.sys
20:38:15.0955 0x2288 UdeCx - ok
20:38:15.0971 0x2288 [ 26D2727935221EFB0063B43A74B375BE, AB809F7EDC5C8A6EEE9610477A79131EA6C3D1BDD3D837B56B6AFF3572923DB7 ] udfs C:\WINDOWS\system32\DRIVERS\udfs.sys
20:38:15.0971 0x2288 udfs - ok
20:38:16.0049 0x2288 [ 78AB56D9436D5F5BF967E939308041DE, 1571BDF4F97C16E2A119CD99E4CFF18EC744E37FB5C06AB2C053C6AAF288A111 ] UdkUserSvc C:\WINDOWS\System32\windowsudk.shellcommon.dll
20:38:16.0080 0x2288 UdkUserSvc - ok
20:38:16.0111 0x2288 [ 264C183C222EF95D4C64DFA8BA5F0479, 3EF244E91851E03BE77DE49FA7E36769DE287B0CB732CD0140C39FE5118D80B9 ] UEFI C:\WINDOWS\System32\DriverStore\FileRepository\uefi.inf_amd64_c1628ffa62c8e54c\UEFI.sys
20:38:16.0111 0x2288 UEFI - ok
20:38:16.0158 0x2288 [ 01951AA29AC2A4E4EB957BA167044C27, 5F97E9D1343FE739E35B65CFA659037421A2E0A4081CF10AD4CE94B915C02BC2 ] Ufx01000 C:\WINDOWS\system32\drivers\ufx01000.sys
20:38:16.0158 0x2288 Ufx01000 - ok
20:38:16.0158 0x2288 [ EEEECAFD642DB20A8470090C2ACAA6AC, 70FEAD3371792160701D47A808FC78786766E4C7CA7C5ED8DA356BFC991A275A ] UfxChipidea C:\WINDOWS\System32\DriverStore\FileRepository\ufxchipidea.inf_amd64_1c78775fffab6a0a\UfxChipidea.sys
20:38:16.0158 0x2288 UfxChipidea - ok
20:38:16.0189 0x2288 [ E884B3B8DDA9442F58E41C2ADE3C4234, 51F112449305C5F03FEA6F046CA007A8056A65EF84986393A1B4203F53A08833 ] ufxsynopsys C:\WINDOWS\System32\drivers\ufxsynopsys.sys
20:38:16.0205 0x2288 ufxsynopsys - ok
20:38:16.0236 0x2288 [ 13B9189CA51D925FF78151A0E14C40CE, 78AEDD6D13C45B2E080BC26527CCF3BDABF764A2108249BA8B3AC4387C6A6376 ] uhssvc C:\Program Files\Microsoft Update Health Tools\uhssvc.exe
20:38:16.0252 0x2288 uhssvc - ok
20:38:16.0252 0x2288 [ E0E764F688DCACBA011BAEB2017B903F, 7802DCDA6F49494245EC9304AECED7BB2E90908BED25A4D47F1FF4615B03DED0 ] umbus C:\WINDOWS\System32\DriverStore\FileRepository\umbus.inf_amd64_b78a9c5b6fd62c27\umbus.sys
20:38:16.0252 0x2288 umbus - ok
20:38:16.0267 0x2288 [ 493AF687E60E144F59E3F5B7E27AA39B, 3062B25A7747BC417E1D498DB1B11C9631D80F57E4A048101EF5AA26206AE838 ] UmPass C:\WINDOWS\System32\drivers\umpass.sys
20:38:16.0267 0x2288 UmPass - ok
20:38:16.0299 0x2288 [ A4AA744447EEB2B46EC60C7AA487B072, C55B91BBA36FBD18C43FC367C54267EF28CEB5CCCF04EA7E44FB4778748DF005 ] UmRdpService C:\WINDOWS\System32\umrdp.dll
20:38:16.0299 0x2288 UmRdpService - ok
20:38:16.0361 0x2288 [ DA04AA3DA8CD89AC26095DFCABA7740E, 971440911B04DAD4F9F7C5621EBFE5C1E69B7A8455F2F3D33A1D96FFA1171A81 ] UnistoreSvc C:\WINDOWS\System32\unistore.dll
20:38:16.0377 0x2288 UnistoreSvc - ok
20:38:16.0408 0x2288 [ 8BFFE0333C9EA9C54797C7F0E6F7769A, 0C0C7524F1A6D375D5D60DC8C602A75CB79B7311C0735956A2F42152A15C5F40 ] upnphost C:\WINDOWS\System32\upnphost.dll
20:38:16.0424 0x2288 upnphost - ok
20:38:16.0455 0x2288 [ 5C33B91675BE0C9693358C1AAA723D20, A5BB54ABBB0F7B13ACCA0997F567A81395688C6D68EB87F67F688737DC16918F ] UrsChipidea C:\WINDOWS\System32\DriverStore\FileRepository\urschipidea.inf_amd64_78ad1c14e33df968\urschipidea.sys
20:38:16.0455 0x2288 UrsChipidea - ok
20:38:16.0471 0x2288 [ ADFAB87405AE22290E24D0E8E6141AF1, BC0982BEFE4CABEA1E260C8A3266EA18A4CA158A07D1C5176890A04CC3B6A84A ] UrsCx01000 C:\WINDOWS\system32\drivers\urscx01000.sys
20:38:16.0471 0x2288 UrsCx01000 - ok
20:38:16.0502 0x2288 [ BBDE7BF496327115DD744E7D4105C7BC, 5A8CC47603A1C9D58A30A5E897F1BCDC56199B08317B9FF319D469D6DD6CAAF0 ] UrsSynopsys C:\WINDOWS\System32\DriverStore\FileRepository\urssynopsys.inf_amd64_057fa37902020500\urssynopsys.sys
20:38:16.0502 0x2288 UrsSynopsys - ok
20:38:16.0517 0x2288 [ D515F6E614AE8672243EE8CA9DCED1DF, 2A32F39CC8DBFF2F7F105C8DCB4612C3C103D16CC7CCC724B729623CB7EFBD94 ] usbaudio C:\WINDOWS\system32\drivers\usbaudio.sys
20:38:16.0533 0x2288 usbaudio - ok
20:38:16.0549 0x2288 [ FB9F25ACEBCBAEABFE30CACCB17D4EE6, 7D38FA294DA179E5535E3E481746F07E2AE47CE57192C2D1C5B780B583FD9C6D ] usbaudio2 C:\WINDOWS\System32\drivers\usbaudio2.sys
20:38:16.0564 0x2288 usbaudio2 - ok
20:38:16.0564 0x2288 [ C6D1E24E96FCE7662F7C09394241CC8F, D49772661BABE6FF688F6C1D21BA04BC0E0492432664C413F851264695A3D3A2 ] usbccgp C:\WINDOWS\System32\drivers\usbccgp.sys
20:38:16.0580 0x2288 usbccgp - ok
20:38:16.0596 0x2288 [ 11561FC5BAA2DEB5AC8B179B591A882E, 2AD595BF4ABC146D8F533981848FF8271E983038566937BEB48A6A8F09BC60FB ] usbcir C:\WINDOWS\System32\drivers\usbcir.sys
20:38:16.0596 0x2288 usbcir - ok
20:38:16.0627 0x2288 [ D1E576C8A94A27D896B56F923ED4E4D6, 3AE5ED5EAFBC52028D082D3EC04B526EF60F5D74BBC79DD210A22D9238C61262 ] usbehci C:\WINDOWS\System32\drivers\usbehci.sys
20:38:16.0627 0x2288 usbehci - ok
20:38:16.0642 0x2288 [ 804C51B11057869624D9292040B45E56, 42404EC0F658121F6553B7DAA3511ED512B7F4B336C2032BA85CD91E8879EEAE ] usbhub C:\WINDOWS\System32\drivers\usbhub.sys
20:38:16.0658 0x2288 usbhub - ok
20:38:16.0689 0x2288 [ 2FCA9E51CFD11C0734D76013B6493C22, 54C736C9A40A769CEB7BC094D5458F2EC4FA2A5128ECB86DBCE2F2A83EAEB203 ] USBHUB3 C:\WINDOWS\System32\drivers\UsbHub3.sys
20:38:16.0689 0x2288 USBHUB3 - ok
20:38:16.0705 0x2288 [ 4E8C3BD185042836203F3AA26B1DE6BC, 8E2B1A8E3F8E1F88E73AE2A34B1726B5C5F6753BAE3FAB1E7CC82C53FF7EE891 ] usbohci C:\WINDOWS\System32\drivers\usbohci.sys
20:38:16.0705 0x2288 usbohci - ok
20:38:16.0736 0x2288 [ 1FE857B82E34F31C2BED1B997549C467, 7D84EF54EC74220157DA3E3E0C65B91542A4311137EFBB753002BA73A5C9A23C ] usbprint C:\WINDOWS\System32\drivers\usbprint.sys
20:38:16.0736 0x2288 usbprint - ok
20:38:16.0752 0x2288 [ C21F9951C7B603A27FB2C76917024337, 99EC8725AC46A0AE377E8D02573B71E922C638DE56005437C629EAEB6BD2E1E4 ] usbser C:\WINDOWS\System32\drivers\usbser.sys
20:38:16.0752 0x2288 usbser - ok
20:38:16.0767 0x2288 [ FE9BA629CA927C9A4DE2DA8D6BC11B3E, EE4CF319E14E63FCFAE8D0506449A9874966662E04A87BB896070F08BA770A74 ] USBSTOR C:\WINDOWS\System32\drivers\USBSTOR.SYS
20:38:16.0767 0x2288 USBSTOR - ok
20:38:16.0783 0x2288 [ 3D45E616CC66D475E7261875344622F1, 3D602EA3F0A83F8FA7B9FED579B21881BB92272307634B24E0423A9A482D2CD6 ] usbuhci C:\WINDOWS\System32\drivers\usbuhci.sys
20:38:16.0783 0x2288 usbuhci - ok
20:38:16.0814 0x2288 [ DCF2BB4A9ED398136A7CC5A0C3502C37, DBB55B9EB0B7EA9AF017F3F5E481CF5151AC40FF8583E09CF2577EE916383CB3 ] USBXHCI C:\WINDOWS\System32\drivers\USBXHCI.SYS
20:38:16.0830 0x2288 USBXHCI - ok
20:38:16.0877 0x2288 [ B1F3989A13B65D3CAD4778F9D92418AC, 45B8C4BE560AB5C7BDF250DB4CB68FA4712570B841A11BB43722A14812376DCC ] UserDataSvc C:\WINDOWS\System32\userdataservice.dll
20:38:16.0908 0x2288 UserDataSvc - ok
20:38:16.0955 0x2288 [ CCC28113ACB614347C056087CC37EE5E, C41554CC81455BBA9F5FF5397517B012DA00CB39E3200B4A2E7BF266F4ACFE10 ] UserManager C:\WINDOWS\System32\usermgr.dll
20:38:16.0971 0x2288 UserManager - ok
20:38:17.0017 0x2288 [ F81E1AB10FAC8548DE233A9171965C01, A6B04855393E4BDB5E35067AA176168307F62B5D68AA265E338049051A3328B6 ] UsoSvc C:\WINDOWS\system32\usosvc.dll
20:38:17.0033 0x2288 UsoSvc - ok
20:38:17.0064 0x2288 [ 5C5DC8E40CFC3979E793348A009434B7, 97AA8A487DAF0699E569B3E657EAC605302C74B75DAF2058856D799D32EA8026 ] VacSvc C:\WINDOWS\System32\vac.dll
20:38:17.0064 0x2288 VacSvc - ok
20:38:17.0080 0x2288 [ A1CC00332BBF370654EE3DC8CDC8C95A, E69356111240657E6435EDF2E3A4BBAC9C89957EF2D34FC620B8B7DBF564A862 ] VaultSvc C:\WINDOWS\system32\lsass.exe
20:38:17.0080 0x2288 VaultSvc - ok
20:38:17.0096 0x2288 [ 661233B58190B487682839F1559A7962, 2BE132106C26A9073B6E9CB646E6A2C003558B8924ED0BDC3A0533FC98E03BF4 ] vdrvroot C:\WINDOWS\system32\drivers\vdrvroot.sys
20:38:17.0096 0x2288 vdrvroot - ok
20:38:17.0127 0x2288 [ 0781CE7ECCD9F6318BA72CD96B5B8992, 2ACEAC6D51E610F85F35175C3A511F59D5B080D95453662E58C9D578DED42A89 ] vds C:\WINDOWS\System32\vds.exe
20:38:17.0127 0x2288 vds - ok
20:38:17.0158 0x2288 [ 46684A95E908F0A6A2355AA46A3B2A77, A25DFDA0572EF014905619DF21427518EA5C01CFB13B9927ADA305B29DBBFEFE ] VerifierExt C:\WINDOWS\system32\drivers\VerifierExt.sys
20:38:17.0158 0x2288 VerifierExt - ok
20:38:17.0205 0x2288 [ BAC7C0D8F07AB36B4E096426C2BFBA32, 13749D1DBA7517DB26BF13EAEC56DED3B1323D5023C1AFEAE0824C105369BD7C ] vhdmp C:\WINDOWS\System32\drivers\vhdmp.sys
20:38:17.0205 0x2288 vhdmp - ok
20:38:17.0236 0x2288 [ 7F2F04A354582D3D34F5B2B4EFF07189, 98188182D328414832D06E957601A997AD2B2B0F088B089181EDE8FAB0AF733C ] vhf C:\WINDOWS\System32\drivers\vhf.sys
20:38:17.0236 0x2288 vhf - ok
20:38:17.0267 0x2288 [ B061B0986AE9946E4E19D9200F446C66, BB313E7DB32AC8CA3F3849E9CC71F6BC7A654ADB46FBFB2414036A85EE31AAD6 ] Vid C:\WINDOWS\System32\drivers\Vid.sys
20:38:17.0283 0x2288 Vid - ok
20:38:17.0314 0x2288 [ B37F0BF662BB504F0A9C247F24C281AD, 6281D573D9AD9AA204778C3823737726E882B17657B23CF5458C012FF7990E52 ] VirtualRender C:\WINDOWS\System32\DriverStore\FileRepository\vrd.inf_amd64_81fbd405ff2470fc\vrd.sys
20:38:17.0314 0x2288 VirtualRender - ok
20:38:17.0330 0x2288 [ 8E58CC58C95EF60E07BB6CB64F5C0D26, 28C4290C9AB4EDBB5432A540F0BD2295AAF6F5B0E593CA1F754D8A68E971BFBC ] vmbus C:\WINDOWS\system32\drivers\vmbus.sys
20:38:17.0330 0x2288 vmbus - ok
20:38:17.0346 0x2288 [ C29F63BB3B99B3F2030113160A741684, 43DF7A6DD305D1696D28A54E12B75AE041B075E789DB5D0C8DDF250E75585AA1 ] VMBusHID C:\WINDOWS\System32\drivers\VMBusHID.sys
20:38:17.0346 0x2288 VMBusHID - ok
20:38:17.0377 0x2288 [ E5BB075B6B5A1DA3C3F48CA5DFF54E77, E13E8F9523F51F976084561C9D0A843CAF550FA233521FF13FFE1C5634CA6472 ] vmgid C:\WINDOWS\System32\drivers\vmgid.sys
20:38:17.0377 0x2288 vmgid - ok
20:38:17.0408 0x2288 [ 8486D6F63D5CF87CA08E3B3604DCB631, BD96CD0EF7B84C55DB525D655F19DE7B63756B7F3554AEBDF8F4A7A0BF2507FC ] vmicguestinterface C:\WINDOWS\System32\icsvc.dll
20:38:17.0408 0x2288 vmicguestinterface - ok
20:38:17.0408 0x2288 [ 8486D6F63D5CF87CA08E3B3604DCB631, BD96CD0EF7B84C55DB525D655F19DE7B63756B7F3554AEBDF8F4A7A0BF2507FC ] vmicheartbeat C:\WINDOWS\System32\icsvc.dll
20:38:17.0424 0x2288 vmicheartbeat - ok
20:38:17.0424 0x2288 [ 8486D6F63D5CF87CA08E3B3604DCB631, BD96CD0EF7B84C55DB525D655F19DE7B63756B7F3554AEBDF8F4A7A0BF2507FC ] vmickvpexchange C:\WINDOWS\System32\icsvc.dll
20:38:17.0439 0x2288 vmickvpexchange - ok
20:38:17.0471 0x2288 [ D222598C027A7D87382C0CB8D0CD3994, FB6CA91F6F3FC650A9D12D54CFD25331A31404181755E7CADBC80A0A57327AEA ] vmicrdv C:\WINDOWS\System32\icsvcext.dll
20:38:17.0471 0x2288 vmicrdv - ok
20:38:17.0486 0x2288 [ 8486D6F63D5CF87CA08E3B3604DCB631, BD96CD0EF7B84C55DB525D655F19DE7B63756B7F3554AEBDF8F4A7A0BF2507FC ] vmicshutdown C:\WINDOWS\System32\icsvc.dll
20:38:17.0486 0x2288 vmicshutdown - ok
20:38:17.0486 0x2288 [ 8486D6F63D5CF87CA08E3B3604DCB631, BD96CD0EF7B84C55DB525D655F19DE7B63756B7F3554AEBDF8F4A7A0BF2507FC ] vmictimesync C:\WINDOWS\System32\icsvc.dll
20:38:17.0502 0x2288 vmictimesync - ok
20:38:17.0502 0x2288 [ 8486D6F63D5CF87CA08E3B3604DCB631, BD96CD0EF7B84C55DB525D655F19DE7B63756B7F3554AEBDF8F4A7A0BF2507FC ] vmicvmsession C:\WINDOWS\System32\icsvc.dll
20:38:17.0517 0x2288 vmicvmsession - ok
20:38:17.0517 0x2288 [ D222598C027A7D87382C0CB8D0CD3994, FB6CA91F6F3FC650A9D12D54CFD25331A31404181755E7CADBC80A0A57327AEA ] vmicvss C:\WINDOWS\System32\icsvcext.dll
20:38:17.0533 0x2288 vmicvss - ok
20:38:17.0564 0x2288 [ 0733F8C791B54D422EA7D44CDF009EC3, A03B110C6711EFBD8BCF4391941A2E77AEDAC5462C10479050F9318E94C62CED ] volmgr C:\WINDOWS\system32\drivers\volmgr.sys
20:38:17.0564 0x2288 volmgr - ok
20:38:17.0580 0x2288 [ 796F1C83861C02A97571D0EDAB490B70, 71CE8D930AE82C2B2628CBF3BB3AE1A8CF039BD702BDE912D499FCF45332F5A6 ] volmgrx C:\WINDOWS\system32\drivers\volmgrx.sys
20:38:17.0580 0x2288 volmgrx - ok
20:38:17.0627 0x2288 [ 988A7A685BB51BAC62F4E176BE5432AC, CFEE4616C10EB0CDA65D4FCC2488B879D577E0F95B5E9AB9B61258F249ED6AC6 ] volsnap C:\WINDOWS\system32\drivers\volsnap.sys
20:38:17.0627 0x2288 volsnap - ok
20:38:17.0642 0x2288 [ 770E710BEA3CCC595EE3703297B40D76, C03E3367B92307993BC169583CB298265FC1C35CF5973EC352C1E08FFCFD1928 ] volume C:\WINDOWS\system32\drivers\volume.sys
20:38:17.0642 0x2288 volume - ok
20:38:17.0674 0x2288 [ A37A7788DABE4FF6E33FE50D7A33D8E8, 9E99D9D27BA3DFA6F89C77B9AD91BE495F15E4F612BB63B209157DFA13BCD7E0 ] vpci C:\WINDOWS\system32\drivers\vpci.sys
20:38:17.0674 0x2288 vpci - ok
20:38:17.0689 0x2288 [ 1A4D9FAED669BC42E5A1CD8442729AB2, E70778AF6B0C9709CB8CEF655C6DD8B5A61CC70BFD35A43304C1308EA478C550 ] vsmraid C:\WINDOWS\system32\drivers\vsmraid.sys
20:38:17.0689 0x2288 vsmraid - ok
20:38:17.0736 0x2288 [ D045837342C3AC9EE4A915FA385EC892, E986D52B7F58EB89F211479CB672E28437A93C9A342528610C95973F8381702F ] VSS C:\WINDOWS\system32\vssvc.exe
20:38:17.0767 0x2288 VSS - ok
20:38:17.0799 0x2288 [ 6E0092973E35BE6A1F5ED5CBDD202036, 33DAF53C81D5BAF9337192A84DF50C108BAE9B8A858081E2208939CCFF2622F8 ] VSTXRAID C:\WINDOWS\system32\drivers\vstxraid.sys
20:38:17.0830 0x2288 VSTXRAID - ok
20:38:17.0846 0x2288 [ 7BC30ADCCC9BCF2B0A29A320A395EC3B, 373C85F659F07366649697823B4A8B14313F0042A7A04E932429D049D18C7646 ] vwifibus C:\WINDOWS\System32\drivers\vwifibus.sys
20:38:17.0846 0x2288 vwifibus - ok
20:38:17.0877 0x2288 [ C111EE25F5130811A398B1F1496AD1C1, 13C3B69A5D0179ED3CC2C999FF97EDBAEDD63DA55DDB74427251C360706A3820 ] vwififlt C:\WINDOWS\system32\drivers\vwififlt.sys
20:38:17.0877 0x2288 vwififlt - ok
20:38:17.0908 0x2288 [ 969522409580365D47FCB1680BA1DA30, BF0A655EAE81B0C417D03DA79A3CBD8CE4F1F2973FF2889A952BED7B588172A4 ] W32Time C:\WINDOWS\system32\w32time.dll
20:38:17.0924 0x2288 W32Time - ok
20:38:17.0955 0x2288 [ 59185BDAC90502E8C5CF69AA8D53D502, 50B0592B57669778FE369C740B53A713DE58B647B5537F857626DE860D3C9721 ] WaaSMedicSvc C:\WINDOWS\System32\WaaSMedicSvc.dll
20:38:17.0971 0x2288 WaaSMedicSvc - ok
20:38:17.0986 0x2288 [ 1F16C8283230EF1F1C4E135D1C2C859B, E4F672C7E58490F82F859CAEEDD57D8ABCC31DE62A42A956BEE47113D365BE35 ] WacomPen C:\WINDOWS\System32\drivers\wacompen.sys
20:38:17.0986 0x2288 WacomPen - ok
20:38:18.0017 0x2288 [ D765B98325D89C076FEEAB1282CD08EA, AC2F0A68A2BCAAF2DECB0AAF1B50D652ED8B631B08D06B910B407FEF9069412E ] WalletService C:\WINDOWS\system32\WalletService.dll
20:38:18.0017 0x2288 WalletService - ok
20:38:18.0049 0x2288 [ 438B3E55D9D700C1C0424642872C2E28, 161F9F1F666717D95AF7EC984DDDC4D7E13844617108346FFC49A4EE99AE812F ] wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
20:38:18.0049 0x2288 wanarp - ok
20:38:18.0049 0x2288 [ 438B3E55D9D700C1C0424642872C2E28, 161F9F1F666717D95AF7EC984DDDC4D7E13844617108346FFC49A4EE99AE812F ] wanarpv6 C:\WINDOWS\system32\DRIVERS\wanarp.sys
20:38:18.0049 0x2288 wanarpv6 - ok
20:38:18.0080 0x2288 [ 8449398F11D49864117105679B539816, 8FD3B9C72066D6A983D062DE72EEF9769339EACBF4E0D303B9E12343C9D5DE6C ] WarpJITSvc C:\WINDOWS\System32\Windows.WARP.JITService.dll
20:38:18.0080 0x2288 WarpJITSvc - ok
20:38:18.0127 0x2288 [ 17270A354A66590953C4AAC1CF54E507, 9954394B43783061F9290706320CC65597C29176D5B8E7A26FA1D6B3536832B4 ] wbengine C:\WINDOWS\system32\wbengine.exe
20:38:18.0158 0x2288 wbengine - ok
20:38:18.0189 0x2288 [ 9E2D304905CA820DFB0F00A52AD0ED89, 169116BE59C369E925F6094466E17FC940039EFE1E373FD2510B5D9CE15C1D7E ] WbioSrvc C:\WINDOWS\System32\wbiosrvc.dll
20:38:18.0205 0x2288 WbioSrvc - ok
20:38:18.0236 0x2288 [ 418302F3916FEB31C6F9312D91DDE11C, AEAE4B987730AD269D73141AE10B23985FD2001FBBE9920C2EB5538C1793DC9C ] wcifs C:\WINDOWS\system32\drivers\wcifs.sys
20:38:18.0236 0x2288 wcifs - ok
20:38:18.0283 0x2288 [ 96641E8D750FC643596E0AC485047674, 684475E68CA2804D91D78B4A1DA568CFF8A7D3AD088505BF737E87AFDA9DA4EA ] Wcmsvc C:\WINDOWS\System32\wcmsvc.dll
20:38:18.0299 0x2288 Wcmsvc - ok
20:38:18.0330 0x2288 [ 6CDE91D497A3EC19796DE53DEBD74FB0, ACBBCBFE7A953F3CFF10A035A52984D7DB0C0B4C6B735F53006036F4CCC15059 ] wcncsvc C:\WINDOWS\System32\wcncsvc.dll
20:38:18.0345 0x2288 wcncsvc - ok
20:38:18.0392 0x2288 [ 2F814379FE1FF9DC891953674406BCA1, ACC9B126A8A5D58AF76F0A492C0EBC75925C3B59EAE89062AEF0FFADF60E3A2B ] wcnfs C:\WINDOWS\system32\drivers\wcnfs.sys
20:38:18.0392 0x2288 wcnfs - ok
20:38:18.0455 0x2288 [ FD35100B4266D01C5F986048BD78D544, 1B9970251A57508159CB6A8EBAC5AFD532A6FCB8B1ACE05890650B5CC1535409 ] WdBoot C:\WINDOWS\system32\drivers\wd\WdBoot.sys
20:38:18.0455 0x2288 WdBoot - ok
20:38:18.0502 0x2288 [ 256DEFB7A885F44D076D7E0984BA0EF3, BDABDD3DCA3D1F21DA70FF90A16550CE990B6B6A6567C37C3AE1ECCE2086FF6D ] Wdf01000 C:\WINDOWS\system32\drivers\Wdf01000.sys
20:38:18.0502 0x2288 Wdf01000 - ok
20:38:18.0533 0x2288 [ E11B693483CC8E313A4462CDF10CDF02, B1E3B300AEC3079D3A4CD99AA5B4FC51B96D49856DC1688A5F55F1C8B90904FC ] WdFilter C:\WINDOWS\system32\drivers\wd\WdFilter.sys
20:38:18.0533 0x2288 WdFilter - ok
20:38:18.0564 0x2288 [ BB37AF6E45E0F69222E057A74B4AFE1E, 4662064205BEC0DB7B10F1412E0A09A6E5E3B16DE443AEF7F79ACA3ACE24A51D ] WdiServiceHost C:\WINDOWS\system32\wdi.dll
20:38:18.0564 0x2288 WdiServiceHost - ok
20:38:18.0564 0x2288 [ BB37AF6E45E0F69222E057A74B4AFE1E, 4662064205BEC0DB7B10F1412E0A09A6E5E3B16DE443AEF7F79ACA3ACE24A51D ] WdiSystemHost C:\WINDOWS\system32\wdi.dll
20:38:18.0580 0x2288 WdiSystemHost - ok
20:38:18.0627 0x2288 [ CE772158E0F6F92F648E70DD976411F0, 9A6E232923CB70F891330FC0685BE05F70C996176683D6D490DB8A529932FE95 ] wdiwifi C:\WINDOWS\system32\DRIVERS\wdiwifi.sys
20:38:18.0642 0x2288 wdiwifi - ok
20:38:18.0674 0x2288 [ A6C92A5F2982EBB8788E0690C19048C4, 85C54A99DD43DC1FAC7FD2A31288CEC7501F795DE8FA86857790F4CCD5AF7C18 ] WdmCompanionFilter C:\WINDOWS\system32\drivers\WdmCompanionFilter.sys
20:38:18.0674 0x2288 WdmCompanionFilter - ok
20:38:18.0689 0x2288 [ 2E123D61E45D51B0B9A10DFD13457B48, 31052ECC30B4671292B60C4AA16D3FF53875DCAA6FABD0E68735A28940AABDA2 ] WdNisDrv C:\WINDOWS\system32\drivers\wd\WdNisDrv.sys
20:38:18.0689 0x2288 WdNisDrv - ok
20:38:18.0877 0x2288 [ 21814BCBEAB160F1D98C05C4D472337B, 80B5D7927E0983C81AE45B41883E4A3CE4AF78AB676F4443007C5818B19B2E64 ] WdNisSvc C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2003.8-0\NisSrv.exe
20:38:18.0924 0x2288 WdNisSvc - ok
20:38:18.0955 0x2288 [ 125E37627FA664B417DCD1EC8CA381FA, A4862F245A5D5C3E3B70F3ADB522B0017908352CE04E57802FE64DABD0BDF7E0 ] WebClient C:\WINDOWS\System32\webclnt.dll
20:38:18.0955 0x2288 WebClient - ok
20:38:18.0986 0x2288 [ BDD1061D880EC049CC42E5AED90AF4C6, B78334BEB2E83564A0775133F517D545B580ED14408D91F6C03A01C8AA8283EF ] Wecsvc C:\WINDOWS\system32\wecsvc.dll
20:38:19.0002 0x2288 Wecsvc - ok
20:38:19.0017 0x2288 [ CBA85827716DE89106F8E4AD7430620C, EF2FEAD68FE003DAC52BC2098962F397DF80B7DCD79A8F45012A050C7C0E2DB1 ] WEPHOSTSVC C:\WINDOWS\system32\wephostsvc.dll
20:38:19.0017 0x2288 WEPHOSTSVC - ok
20:38:19.0064 0x2288 [ 709E33220A2BA7CCD36993B7CEE6D1AA, B1F503DA3BCCAD661E628413B282345444AFB73D35A6B5E9068DC76CA60E6C02 ] wercplsupport C:\WINDOWS\System32\wercplsupport.dll
20:38:19.0064 0x2288 wercplsupport - ok
20:38:19.0095 0x2288 [ E241D0B289AB8CFAD7A6E10BA07B8642, AD10645E20C27B92693D7900BB67A57CE02C82246576D884090FE3EAD743C505 ] WerSvc C:\WINDOWS\System32\WerSvc.dll
20:38:19.0095 0x2288 WerSvc - ok
20:38:19.0127 0x2288 [ 0B82A5E82CB96CDCFAE97C0F5DCB1B13, 1A6EB6464662F8EA5BA9AA9FA6B9E5A085F3931B1813F2E7C784F9AD4AB036B2 ] WFDSConMgrSvc C:\WINDOWS\System32\wfdsconmgrsvc.dll
20:38:19.0127 0x2288 WFDSConMgrSvc - ok
20:38:19.0220 0x2288 [ 24BB3C5E411D9702A245B3FE2ADF73F5, A57E2D999FEA06FADD2461F1948E33A5B2E2D2BDFF7BACF4C37FDD9E262E3B1B ] WFPLWFS C:\WINDOWS\system32\drivers\wfplwfs.sys
20:38:19.0220 0x2288 WFPLWFS - ok
20:38:19.0236 0x2288 [ 7AE4D5A054C5EEF9EF9F42926B52FA47, A58CB62992AB846A31E197DF5161F50323D120DF73B7D33FE7D5F5B1AF209291 ] WiaRpc C:\WINDOWS\System32\wiarpc.dll
20:38:19.0236 0x2288 WiaRpc - ok
20:38:19.0267 0x2288 [ 416B0938189ED0D4A8B5BBBE3F045269, 74B32619BE246D7DD6D520309692C32EE922852405DAB432CAF6012E72B495FF ] WIMMount C:\WINDOWS\system32\drivers\wimmount.sys
20:38:19.0267 0x2288 WIMMount - ok
20:38:19.0299 0x2288 [ 331A9DAB79909E3012F0FBD1BA870757, B595B1832B0A24D781EA501A881513381182138766B2385C96C0E356300B1B66 ] WinDefend C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2003.8-0\MsMpEng.exe
20:38:19.0299 0x2288 WinDefend - ok
20:38:19.0330 0x2288 [ B434A84F46C70F4E67B70ED70F024B7F, 64EEB8093BA2590E83D83C5AF7C2A025B88AF5681143BCA83671104266FEEA99 ] WindowsTrustedRT C:\WINDOWS\system32\drivers\WindowsTrustedRT.sys
20:38:19.0330 0x2288 WindowsTrustedRT - ok
20:38:19.0361 0x2288 [ 982774B74EE1419D641CEB66E394A4BA, 090C4CE6B76B3904B5AE73E4F1EEBCE619194C358874D7584537012F954C54BE ] WindowsTrustedRTProxy C:\WINDOWS\system32\drivers\WindowsTrustedRTProxy.sys
20:38:19.0361 0x2288 WindowsTrustedRTProxy - ok
20:38:19.0392 0x2288 [ 9CB035E4505B5B69EF0D91F8F8F9773C, B88B89F8786DF4FE0E495674974F9CC7ABB71CE59151D01BEF893F0B625B03FA ] WinHttpAutoProxySvc C:\WINDOWS\system32\winhttp.dll
20:38:19.0408 0x2288 WinHttpAutoProxySvc - ok
20:38:19.0455 0x2288 [ 0816C30E3395E667EFFFB92B4EA66A05, F6A9E7026AA60A6627680F232AE785EA9CF55FE970708E6E49151F601CC42FEE ] WinMad C:\WINDOWS\System32\drivers\winmad.sys
20:38:19.0455 0x2288 WinMad - ok
20:38:19.0502 0x2288 [ E2376F73AAA2A4BBEF5F94DE095C788A, 65E8FAF81245C08B6668EFB5B7264B2EEBCC90F30F714E1B60C2F7B60AE070C5 ] Winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
20:38:19.0502 0x2288 Winmgmt - ok
20:38:19.0533 0x2288 [ E959DDD0BD1DE2D67591DA89B4D5C65F, 9C426AD484490BDE5D471DB638C197E36BC793D4A5F29976FDC4FDC15283575C ] WinNat C:\WINDOWS\system32\drivers\winnat.sys
20:38:19.0533 0x2288 WinNat - ok
20:38:19.0611 0x2288 [ F7858EFE5B29CACDCFDC19C359B49A10, 8AAED75BFCF3B85BC9F0F4B1814810B759AF90D3956DCFDB406C3DBA7CD0D6B2 ] WinRM C:\WINDOWS\system32\WsmSvc.dll
20:38:19.0658 0x2288 WinRM - ok
20:38:19.0674 0x2288 [ 91D3DC62C6EDDB6554CE14C0E0B4290F, 6F8F89B350FC6BC0D23A50C593F02514854AB7D6CD234D8C8AD4B5DDDD586BA0 ] WINUSB C:\WINDOWS\System32\drivers\WinUSB.SYS
20:38:19.0689 0x2288 WINUSB - ok
20:38:19.0705 0x2288 [ F4C4FD42F8DD657157823DB617CC3A3D, D2A5ED039ED83010E0BB4BB1A69F9D142D42BE2C75E56CFCF3F157A735CB688E ] WinVerbs C:\WINDOWS\System32\drivers\winverbs.sys
20:38:19.0705 0x2288 WinVerbs - ok
20:38:19.0736 0x2288 [ DB26C959850C6321223B2747F888C174, 64DD5C6E0FCE2D55BE8671E8A61A15EED80CC5412370A37D7EDEDDE7B2B5E6B4 ] wisvc C:\WINDOWS\system32\flightsettings.dll
20:38:19.0752 0x2288 wisvc - ok
20:38:19.0830 0x2288 [ D5FABB94A02EC3263653E0DD90F58840, 449F9F78AC261418271B8CF30D1B35AFD001B87F20A316DB766923DDFAB84B1C ] WlanSvc C:\WINDOWS\System32\wlansvc.dll
20:38:19.0877 0x2288 WlanSvc - ok
20:38:19.0923 0x2288 [ 8897E679CEF7422BF185A9AFEBB3DF5D, 1C93588A0A80ACE06B619FE85257378701018E58FE8B3C451F98CF22005F4014 ] wlidsvc C:\WINDOWS\system32\wlidsvc.dll
20:38:19.0955 0x2288 wlidsvc - ok
20:38:20.0002 0x2288 [ 1B279ADD6A4150FD49A6276147098803, 6CC12957A0E7FF3DCCA28D8B715EDE9C94F329FD5BAB3366D4C70362325B31CE ] wlpasvc C:\WINDOWS\System32\lpasvc.dll
20:38:20.0017 0x2288 wlpasvc - ok
20:38:20.0080 0x2288 [ C63B3526A9F53869F7826327C77E7E3B, 8FD44B84121ADED677D17ED07537EA676FCFCBA95D7BBDE154007E7B1CF2B649 ] WManSvc C:\WINDOWS\system32\Windows.Management.Service.dll
20:38:20.0095 0x2288 WManSvc - ok
20:38:20.0095 0x2288 [ E4F25E6E790747073A09F9F8C997889C, 98455DD24AE076A2413EA599F83E0894F608C335F3FF2F3624A17E8EAF3B3C42 ] WmiAcpi C:\WINDOWS\System32\drivers\wmiacpi.sys
20:38:20.0111 0x2288 WmiAcpi - ok
20:38:20.0142 0x2288 [ 9A48D32D7DBA794A40BF030DA500603B, CBF60ED17A5B9CF79523F1493BCCD52B3C39632C4C83DE1FD49CFD2B70F01530 ] wmiApSrv C:\WINDOWS\system32\wbem\WmiApSrv.exe
20:38:20.0142 0x2288 wmiApSrv - ok
20:38:20.0189 0x2288 WMPNetworkSvc - ok
20:38:20.0220 0x2288 [ 9405C703D91F07F1F181DE916594EED3, 7626111256C3BECD0EE9E299A41149A367A28BACEE89CC2CDD46D7499B1B7D34 ] Wof C:\WINDOWS\system32\drivers\Wof.sys
20:38:20.0236 0x2288 Wof - ok
20:38:20.0298 0x2288 [ C996632C873B749EF0ECA1A3F5318BD8, 4F411C75F7AB705BCF495B0E0BDAD1DF4B2AD7447E21CB14D2DFA1E82D1D881F ] workfolderssvc C:\WINDOWS\system32\workfolderssvc.dll
20:38:20.0330 0x2288 workfolderssvc - ok
20:38:20.0392 0x2288 [ 18D607A0D31C459E34488ED99AD10A18, 25B438B7FA054F6A61E5A16890C0C5E368C3780655872F7357B41BE7A0142EB1 ] WpcMonSvc C:\WINDOWS\System32\WpcDesktopMonSvc.dll
20:38:20.0408 0x2288 WpcMonSvc - ok
20:38:20.0462 0x2288 [ BF4CA66C2EF62BD7DE8D4A66CC9C79FF, 74DD4FBF70452D5B8029979AFCA1CE800EE72750F3E90B2F74355A2290AD6BE8 ] WPDBusEnum C:\WINDOWS\system32\wpdbusenum.dll
20:38:20.0493 0x2288 WPDBusEnum - ok
20:38:20.0525 0x2288 [ 024924C9E79F51560B9133EEAB866BBF, F4D464BC02C7B96EF72AA9229A99A1AD32F56390F97972C33525EF0D85304261 ] WpdUpFltr C:\WINDOWS\system32\drivers\WpdUpFltr.sys
20:38:20.0525 0x2288 WpdUpFltr - ok
20:38:20.0556 0x2288 [ B12FDDFD619C354D798E9E1C9FCF4642, 66F024A993834812277FB08AAD36FD69F79A92B403131FEB76E212ACFB58AB02 ] WpnService C:\WINDOWS\system32\WpnService.dll
20:38:20.0556 0x2288 WpnService - ok
20:38:20.0571 0x2288 [ 3D1B4E335BB9CA8A998CD5E1B2EDE855, ECD704FE62C8920D7AC2B3DC040E9D41D8A6BEBCB457888B411D133635291F36 ] WpnUserService C:\WINDOWS\System32\WpnUserService.dll
20:38:20.0587 0x2288 WpnUserService - ok
20:38:20.0603 0x2288 [ 2B98DFC181823C8D8AA39C4CC577DE3E, DAFF7CE8868299AF5EFA844C2E1F84B7EE7E498B1AFF16965CE41C2E75B2F4E4 ] ws2ifsl C:\WINDOWS\system32\drivers\ws2ifsl.sys
20:38:20.0603 0x2288 ws2ifsl - ok
20:38:20.0634 0x2288 [ 1C2144B4B20C26446E7DCCCEC73FDE68, 6E773307A8CD621CDC1520225D5D1DF63FECFB240DED2326C4DDBD739A12DCE3 ] wscsvc C:\WINDOWS\System32\wscsvc.dll
20:38:20.0650 0x2288 wscsvc - ok
20:38:20.0650 0x2288 WSearch - ok
20:38:20.0728 0x2288 [ 561B3A58A74ED878AFF41A294E443C8E, 557E9AD8B80C49CD13C26EC4334EB9997B512D19E25C1FB3B79E44177797104A ] wuauserv C:\WINDOWS\system32\wuaueng.dll
20:38:20.0790 0x2288 wuauserv - ok
20:38:20.0821 0x2288 [ E253BF0FF1EA509A208CBAAD210839A9, ADED1BAC25FEDC2099FC07E928AB0595C7AA3E78FF7F7EBB1D95DFC18CA4FF7E ] WudfPf C:\WINDOWS\system32\drivers\WudfPf.sys
20:38:20.0837 0x2288 WudfPf - ok
20:38:20.0853 0x2288 [ 67F6B1D6076955F8F6D51D3A76808427, 8DDC68736132B70107F19A1AB0A2575A57A23E42C5BB9BEFC72ACB7736F63B19 ] WUDFRd C:\WINDOWS\System32\drivers\WUDFRd.sys
20:38:20.0853 0x2288 WUDFRd - ok
20:38:20.0868 0x2288 [ 67F6B1D6076955F8F6D51D3A76808427, 8DDC68736132B70107F19A1AB0A2575A57A23E42C5BB9BEFC72ACB7736F63B19 ] WUDFWpdFs C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
20:38:20.0868 0x2288 WUDFWpdFs - ok
20:38:20.0884 0x2288 [ 67F6B1D6076955F8F6D51D3A76808427, 8DDC68736132B70107F19A1AB0A2575A57A23E42C5BB9BEFC72ACB7736F63B19 ] WUDFWpdMtp C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
20:38:20.0884 0x2288 WUDFWpdMtp - ok
20:38:20.0978 0x2288 [ 0D8B1067D589EC26E90C9B39A90207DB, 877BC639A0C21EA23B433FEE798920CA70667DAB15308A47537F3B8C74DBF9D6 ] WwanSvc C:\WINDOWS\System32\wwansvc.dll
20:38:21.0009 0x2288 WwanSvc - ok
20:38:21.0056 0x2288 [ B62C41E672194A919028786E4A480541, 1A5DCE5775CD0A511F0EDCB23669525590F0F94455C567DDB76DD15C8F25D347 ] XblAuthManager C:\WINDOWS\System32\XblAuthManager.dll
20:38:21.0071 0x2288 XblAuthManager - ok
20:38:21.0118 0x2288 [ E079354E7F1DEA98C8F1A6AF3F0618C3, 78BBC0FDCBD91394E2C74205568703FD5AEE39C54BA43AA78E95ADE9DC75A8E6 ] XblGameSave C:\WINDOWS\System32\XblGameSave.dll
20:38:21.0134 0x2288 XblGameSave - ok
20:38:21.0165 0x2288 [ 6E6E28D046627693CF1D2E905DC69BD1, 31D39CF82E1E98D367F631CFE5B6C6A42E13C1C01BBAABFE2CA35721627D4E43 ] xboxgip C:\WINDOWS\System32\drivers\xboxgip.sys
20:38:21.0181 0x2288 xboxgip - ok
20:38:21.0196 0x2288 [ 04BE9428D1E276DF3F6A7A5552AAB546, ACC3A8180601054BFD8FBE743A7F9CB5F2398FD463FD7EA5EF2EF78953BADBBD ] XboxGipSvc C:\WINDOWS\System32\XboxGipSvc.dll
20:38:21.0212 0x2288 XboxGipSvc - ok
20:38:21.0259 0x2288 [ 5A4F5B800B1AE1B196D3D09D1E973C9F, 8BB5D0ABF6DF5E48F17480AE72D568EBBF59E2D69E359AD951970A5BF35BFDD8 ] XboxNetApiSvc C:\WINDOWS\system32\XboxNetApiSvc.dll
20:38:21.0275 0x2288 XboxNetApiSvc - ok
20:38:21.0306 0x2288 [ C73809EA08CF05A9A78E7F65F63D3294, 4754266D964B7C2B7C4BF16B96FBBF790D90C2A96394544272444ECE9FF97DE6 ] xinputhid C:\WINDOWS\System32\drivers\xinputhid.sys
20:38:21.0306 0x2288 xinputhid - ok
20:38:21.0306 0x2288 ================ Scan global ===============================
20:38:21.0337 0x2288 [ 522F9EFF8C957F906154B91A8DA698AE, FCB686BB58782506BA6A8C4F924B0872608249091C8FF9DD7129D0146ACC2BFE ] C:\WINDOWS\system32\basesrv.dll
20:38:21.0368 0x2288 [ 19979E1729CFA0E56EB4CCCB198DFD05, 7F2A683F28877562409D810946DDCA2F069715CDFB249602251DFA50065FFF7A ] C:\WINDOWS\system32\winsrv.dll
20:38:21.0384 0x2288 [ 1985068B049D1FFBB8D3F837393DF81F, B99151A18AAA83C0D6931245E6DA250346F1A61B0F8F058123E47D9BC5C12BE8 ] C:\WINDOWS\system32\sxssrv.dll
20:38:21.0415 0x2288 [ D8E577BF078C45954F4531885478D5A9, DFBEA9E8C316D9BC118B454B0C722CD674C30D0A256340200E2C3A7480CBA674 ] C:\WINDOWS\system32\services.exe
20:38:21.0431 0x2288 [ Global ] - ok
20:38:21.0431 0x2288 ================ Scan MBR ==================================
20:38:21.0446 0x2288 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
20:38:21.0603 0x2288 \Device\Harddisk0\DR0 - ok
20:38:21.0603 0x2288 ================ Scan VBR ==================================
20:38:21.0603 0x2288 [ 5C7A9A434D21B225273826D0A4F46245 ] \Device\Harddisk0\DR0\Partition1
20:38:21.0603 0x2288 \Device\Harddisk0\DR0\Partition1 - ok
20:38:21.0618 0x2288 [ 79494811A18D33A3A66FF0DED89AF86F ] \Device\Harddisk0\DR0\Partition2
20:38:21.0618 0x2288 \Device\Harddisk0\DR0\Partition2 - ok
20:38:21.0618 0x2288 [ CD4AB2AEBE2D6E3FD57FA38802BEF294 ] \Device\Harddisk0\DR0\Partition3
20:38:21.0618 0x2288 \Device\Harddisk0\DR0\Partition3 - ok
20:38:21.0618 0x2288 ================ Scan active images ========================
20:38:21.0618 0x2288 ================ Scan generic autorun ======================
20:38:21.0650 0x2288 [ 2E1112EF004D0F4EE4A2C3FD813E4038, C6449D7A40A1E55BEEE19D33AC0F2FF9F927FCFD47484703D56F37F39CBE0D32 ] C:\Program Files\Avast Software\Avast\AvLaunch.exe
20:38:21.0650 0x2288 AvastUI.exe - ok
20:38:21.0696 0x2288 OneDriveSetup - ok
20:38:21.0743 0x2288 GoogleDriveFS - ok
20:38:21.0775 0x2288 [ 251E51E2FEDCE8BB82763D39D631EF89, 2682086ACE1970D5573F971669591B731F87D749406927BD7A7A4B58C3C662E9 ] C:\Program Files (x86)\Windows Mail\wab.exe
20:38:21.0790 0x2288 WAB Migrate - ok
20:38:21.0790 0x2288 OneDriveSetup - ok
20:38:21.0790 0x2288 GoogleDriveFS - ok
20:38:21.0821 0x2288 [ 251E51E2FEDCE8BB82763D39D631EF89, 2682086ACE1970D5573F971669591B731F87D749406927BD7A7A4B58C3C662E9 ] C:\Program Files (x86)\Windows Mail\wab.exe
20:38:21.0853 0x2288 WAB Migrate - ok
20:38:21.0884 0x2288 CCleaner Smart Cleaning - ok
20:38:21.0946 0x2288 [ 0480664376AC4AB5ABB2F0E2EBD7C730, F72C8333C60622BDE65E887C89A1C616C252A303D1A772306DF8D5E19A0504BE ] C:\Program Files\Microsoft OneDrive\OneDrive.exe
20:38:21.0978 0x2288 OneDrive - ok
20:38:22.0056 0x2288 [ 8A2122E8162DBEF04694B9C3E0B6CDEE, B99D61D874728EDC0918CA0EB10EAB93D381E7367E377406E65963366C874450 ] C:\WINDOWS\system32\cmd.exe
20:38:22.0056 0x2288 Delete Cached Update Binary - ok
20:38:22.0087 0x2288 [ 8A2122E8162DBEF04694B9C3E0B6CDEE, B99D61D874728EDC0918CA0EB10EAB93D381E7367E377406E65963366C874450 ] C:\WINDOWS\system32\cmd.exe
20:38:22.0087 0x2288 Delete Cached Standalone Update Binary - ok
20:38:22.0149 0x2288 [ 0480664376AC4AB5ABB2F0E2EBD7C730, F72C8333C60622BDE65E887C89A1C616C252A303D1A772306DF8D5E19A0504BE ] C:\Program Files\Microsoft OneDrive\OneDrive.exe
20:38:22.0181 0x2288 OneDrive - ok
20:38:22.0228 0x2288 [ 0480664376AC4AB5ABB2F0E2EBD7C730, F72C8333C60622BDE65E887C89A1C616C252A303D1A772306DF8D5E19A0504BE ] C:\Program Files\Microsoft OneDrive\OneDrive.exe
20:38:22.0274 0x2288 OneDrive - ok
20:38:22.0384 0x2288 [ CA53014CA3B6D8A30B9902F45D137758, 1ADCF82242A462BF8489ADDCD2597784CDD9281821BB58E827C9BA9C1ED89135 ] C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
20:38:22.0431 0x2288 MicrosoftEdgeAutoLaunch_1849DA42FCDE0467F8491EE500D8A121 - ok
20:38:22.0446 0x2288 GoogleDriveFS - ok
20:38:22.0446 0x2288 OneDriveSetup - ok
20:38:22.0446 0x2288 GoogleDriveFS - ok
20:38:22.0462 0x2288 [ 251E51E2FEDCE8BB82763D39D631EF89, 2682086ACE1970D5573F971669591B731F87D749406927BD7A7A4B58C3C662E9 ] C:\Program Files (x86)\Windows Mail\wab.exe
20:38:22.0462 0x2288 WAB Migrate - ok
20:38:22.0509 0x2288 [ 0480664376AC4AB5ABB2F0E2EBD7C730, F72C8333C60622BDE65E887C89A1C616C252A303D1A772306DF8D5E19A0504BE ] C:\Program Files\Microsoft OneDrive\OneDrive.exe
20:38:22.0540 0x2288 OneDrive - ok
20:38:22.0556 0x2288 AV detected via SS2: Windows Defender, windowsdefender:// ( ), 0x60100 ( disabled : updated )
20:38:22.0556 0x2288 AV detected via SS2: Avast Antivirus, C:\Program Files\Avast Software\Avast\wsc_proxy.exe ( 21.4.6162.0 ), 0x41000 ( enabled : updated )
20:38:22.0556 0x2288 AV detected via SS2: Malwarebytes, C:\Program Files\Malwarebytes\Anti-Malware\MBAMWsc.exe ( 3.0.0.207 ), 0x61000 ( enabled : updated )
20:38:22.0571 0x2288 FW detected via SS2: Avast Antivirus, C:\Program Files\Avast Software\Avast\wsc_proxy.exe ( 21.4.6162.0 ), 0x41000 ( enabled )
20:38:22.0665 0x2288 ============================================================
20:38:22.0665 0x2288 Scan finished
20:38:22.0665 0x2288 ============================================================
20:38:22.0690 0x1a64 Detected object count: 1
20:38:22.0690 0x1a64 Actual detected object count: 1
21:08:46.0542 0x1a64 AmonDestroyaDOF ( LockedService.Multi.Generic ) - skipped by user
21:08:46.0542 0x1a64 AmonDestroyaDOF ( LockedService.Multi.Generic ) - User select action: Skip