Altruistics - malware? creo que sí

Hola, me preguntaste al principio si noté algo que raro, pues bien, cada vez que intento acceder a una pagina de la generalitat que son seguras, pero ahora salen como no seguras, sale lo de la captura que te mando, sin embargo, desde el movil accedo sin ningún problema con la clave permanente a los trámites. Puede tener algo que ver?. Desde hoy también me está ocurriendo que yo normalmente recibo avisos de oposiciones en correos que me remite la gva como suscripción, pues de hoy mismo cuando pincho el enlace no me deja acceder a la web, sale el mismo aviso en rojo, eso ayer no me pasaba. Ahora si que me estoy agobiando de verdad

En la de la agencia tributaria, no hay problema y el certificado y la clave es la misma. El certifcado es válido hasta 2023

pues mira, no habia casi ni terminado de enviarte este mensaje y ha ocurrido algo con el certificado,( que ya te digo que iba sin problemas…), ya no deja acceder

1 me gusta

Te comento, acabo de ver las Capturas de Pantalla que usted me acaba de enviar y eso tiene que ver con el Certificado Digital de la Propia página Web que lo identifica como que ha sido revocado, eso es porque dicha Página Web no ha actualizado el Certificado Digital de la propia página Web.

Es por ello que le da la siguiente notificación:

revocado

Eso no es problema de su ordenador es problema de la propia página Web que al no haber actualizado los certificados digitales da ese fallo. Eso es a causa de falta de mantenimiento de la propia página Web. No se preocupe por eso. Por ello sale esta nueva notificación:

desde el movil, entro a esa misma página con la clave permanente sin problemas, no afectaría también al acceso desde el otros dispositivo si fueses la web?. El asunto es antes de la infección, accedía sin ningún problema (hablamos de hace una semana) disculpa mi ignoracia, se me escapa un poco todo esto. pd- ESET aún no ha terminado.

1 me gusta

El móvil tiene otro Sistema ya que el móvil tiene un Sistema Android que dichos Certificados son más felxibles en cambio en los Sistemas Operativos de los ordenadores son más estrictos con dichas revocaciones de seguridad digitales, ya que los ordenadores tienen un Sistema Operativo diferente y no son tan flexibles con los Certificados de Revocación de las propias páginas Web ya que los Sistemas Operativos de los ordenadores son más extrictos con la Revocación de los certificados Digitales que los de los propios Sistemas de los teléfonos móviles.

Para que lo entienda de una forma sencilla, los Revocados digitales de los móviles son más flexibles que con los Revocados Digitales de los Sistemas Operativos de los propios ordenadores de las páginas Web.

Con respecto a lo del Eset Online Scaner cuando acabe de todo el Proceso de Análisis me mandas la Captura de Pantalla con las indicaciones que le he dado.

Quedo a la espera de su respuesta!

pues ahora mismo ha terminado

1 me gusta

Acabo de revisar la Captura de Pantalla del Eset Online Scaner que me acaba de enviar y se puede reflejar que dicho programa no ha detectado ninguna infección. No se preocupe, esto todavía no ha terminado, le estamos realizando un chequeo exhaustivo para comprobar que su ordenador esté libre de Infecciones y Virus.

Le pongo los siguientes pasos a seguir!

Realice estos pasos que le indico a continuación:

IMPORTANTE:

:one: SIGA LAS INDICACIONES QUE SE LE INDIQUEN EN ESTE FORO JUNTO CON EL MANUAL DE USO QUE LE HE DEJADO JUNTO AL PROGRAMA .

:two: QUE SU ORDENADOR NO SE PONGA EN ESTADO DE SUSPENSIÓN DURANTE TODO EL PROCESO DE ANALISIS QUE SE LE VAN A REALIZAR CON LOS DIFERENTES PROGRAMAS QUE SE LE INDIQUEN EN ESTE FORO, ES DECIR, QUE SU ORDENADOR NO SE APAGUE LA PANTALLA YA QUE PODRÍA INTERFERIR EN EL PROCESO DE ANALISIS Y NO ELIMINARSE CORRECTAMENTE LAS INFECCIONES Y VIRUS QUE ENCUENTRE.

:three: SI ALGÚN PROGRAMA DE LOS QUE SE LE DIGA EN ESTE FORO YA LOS TUVIERA INSTALADO EN SU ORDENADOR, NO HACE FALTA QUE LO INSTALE DE NUEVO, SIMPLEMENTE SIGA SU MANUAL DE USO QUE SE LE DEJA JUNTO AL PROGRAMA.

:four: SI DICHO PROGRAMA LE PIDE REINIICAR! PUES REINICIE PERO SÓLO SI SE LO SOLICITA DICHO PROGRAMA.

Una vez aclarado esto Realice los siguientes pasos:

:three: Descarga, Instala, y ejecuta: Dr.Web Cureit!. Aquí te dejo la Url de Descarga del Dr.Web Cureit!, para que sepa cómo instalarlo y descargarlo correctamente: Dr.Web Cureit!. Aquí te dejo su Manual de Uso del Dr.Web Cureit!, para que sepa cómo utilizar el programa y configurarlo correctamente: Manual de Uso del Dr.Web Cureit!. (Elimine “TODO” lo que encuentre! y “NO” restaure “NADA”).

P.D: Para poder enviarme el Informe que que genera el Dr.Web Cureit!, realice el siguiente procedimiento que se le indica a continuación:

Para poder enviarme el Informe que le solicito a este foro correctamente siga estos pasos:

Url: ¿Como Pegar Reportes en el Foro?

Quedo a la espera de su respuesta!

Hola , informe de drweb

Start curing
-----------------------------------------------------------------------------

C:\Users\Gines\Downloads\DriverEasy_Setup.exe - quarantined
C:\Users\Gines\Downloads\DSOne.exe - quarantined
C:\Users\Gines\Downloads\Five-Nights-At-Freddy-s-v1-132-2022setup_69175.exe - quarantined

Total 1397537504976 bytes in 1034757 files scanned (1979883 objects)
Total 1017602 files (1962537 objects) are clean
Total 3 files (6 objects) are infected
Total 3 files are neutralized
Total 17309 files (17337 objects) are raised error condition
Scan time is 07:52:34.833
1 me gusta

Perfecto! Acabo de revisar el Informe que usted me acaba de enviar y el programa del Dr.Web Cureit! ha detectado infecciones en su ordenador y dichas infecciones han sido eliminadas correctamente de su ordenador.

Le pongo los siguientes pasos a seguir!

IMPORTANTE:

IMPORTANTE:

:one: PASALE EL PRIMER PROGRAMA Y UNA VEZ QUE HAYA REALIZADO POR COMPLETO EL PROCESO DE ANALISIS SIGA SU MANUAL DE USO, QUE LE DEJO JUNTO AL PROGRAMA EN ESTE FORO.

:two: RESPETE EL ORDEN DE LOS PROCESOS DE ANALISIS.

:three: **SI ALGÚN PROGRAMA LE PIDE REINICIAR, PUES REINICIE! PERO SOLO SI SE LO SOLICITA DICHO PROGRAMA.

Aclarado esto, realice lo siguiente:

:one: Descargue, instale y ejecute el siguiente programa: Kaspersky Virus Removal Tool. A continuación, le dejo la Url de Descarga del programa Kaspersky Virus Removal Tool, para que pueda ejecutar e instalar el programa correctamente y su Manual del Kaspersky Virus Removal Tool, para que sepas cómo utilizarlo y configurarlo correctamente:

:one: . :one:. Url de Descarga del Kaspersky Virus Removal Tool, para que pueda ejecutar e instalar el programa correctamente: Kaspersky Virus Removal Tool.

:one: . :two:. Manual del Kaspersky Virus Removal Tool, para que sepas cómo utilizarlo y configurarlo correctamente: Manual del Kaspersky Virus Removal Tool. (IMPORTANTE: Elimine TODAS las amenazas e infecciones que encuentre y NO restaure NADA).

:one: . :three:. Siga su Manual de Uso al pie de la letra y una vez finalizado dicho Proceso de Análisis por completo me manda una Captura de Pantalla reflejando las Infecciones y Virus que haya detectado y me manda el Informe siguiendo el Manual de Uso que le he dejado junto al programa para que sepa cómo debe de enviarme dicho Informe que le solicito en este foro con todas las amenazas e infecciones que refleje que haya encontrado dicho programa.

Para poder enviarme el Informe que le solicito en este foro correctamente acceda a la Url que le dejo a continuación siga los pasos que se le indiquen para poder enviarme dicho Informe que le solicito que me envíe a este foro:

Url: ¿Como Pegar Reportes en el Foro?

Quedo a la espera de su respuesta!

1 me gusta

Hola captura de kaperky

No consigo copiar el informe, luego lo intento de nuevo.

1 me gusta

No se preocupe, la Captura de Pantalla está correcta y refleja que dicha infección que ha encontrado el programa ha sido eliminado de su ordenador, por lo tanto está correctamente realizado dicho procedimiento! Vamos a seguir dándole caña a su ordenador hasta que su ordenador esté completamente libre de Virus e Infecciones para poder eliminarlos de raíz y sin ninguna excepción que valga! :fist_right: :fist_left:

Sigamos con el procedimiento! :slightly_smiling_face:

Realice lo siguiente:

IMPORTANTE:

IMPORTANTE:

:one: PASALE EL PRIMER PROGRAMA Y UNA VEZ QUE HAYA REALIZADO POR COMPLETO EL PROCESO DE ANALISIS, SIGA SU MANUAL DE USO, QUE LE HE DEJADO JUNTO AL PROGRAMA Y SIGA LAS INDICACIONES QUE LE INDICO EN ESTE FORO.

:two: RESPETE EL ORDEN DE LOS PROGRAMAS EN DICHO PROCESO DE ANALISIS.

:three: SI ALGÚN PROGRAMA LE PIDE REINICIAR, PUES REINICIE! PERO SOLO SI SE LO SOLICITA EL PROGRAMA.

Aclarado esto, realice lo siguiente:

Seguidamente, realice los siguientes procedimientos que se le indican a continuación:

:two: Descargue, Instale y ejecute el siguiente programa: TDSSKiller. A continuación, le dejo la Url de Descarga del programa TDSSKiller, para que pueda ejecutar e instalar el programa correctamente y su Manual del TDSSKiller, para que sepas cómo utilizarlo y configurarlo correctamente:

:two: . :one:. Url del Descarga de TDSSKiller, para que pueda ejecutar e instalar el programa correctamente: TDSSKiller.

:two: . :two:. Manual del TDSSKiller, para que sepas cómo utilizarlo y configurarlo correctamente: Manual del TDSSKiller. (IMPORTANTE: Elimine TODAS las amenazas e infecciones que refleje que encuentre dicho programa y NO restaure NADA).

ACLARACIÓN:

Una vez acceda al Manual del TDSSKiller deje marcadas (habilitte) en dicho programa todas estas casillas que se reflejan a continuación:

capturadaKVRT

Si te pide que debe de reiniciar dicho programa pues reinicie!

Seguidamente, siga el resto de pasos que se le indican en dicho Manual del TDSSKiller.

:two: . :three:. Siga su manual de Uso al pie de la letra y las indicaciones que le he indicado previamente y me manda una Captura de Pantalla y el Informe con todas las amenazas e infecciones que se refleje que haya eliminado dicho programa. (IMPORTANTE: Elimine TODAS las amenazas e infecciones que refleje que encuentre dicho programa y NO restaure NADA).

Para poder enviarme el Informe que le solicito en este foro correctamente acceda a la Url que le dejo a continuación siga los pasos que se le indiquen para poder enviarme dicho Informe que le solicito que me envíe a este foro:

Url: ¿Como Pegar Reportes en el Foro?

Quedo a la espera de su respuesta!

2 Me gusta

informe TDSSKILLER . Como no deja entero lo corto en varios mensajes . 1

20:02:35.0790 0x20b4  TDSS rootkit removing tool 3.1.0.28 Apr  9 2019 21:11:46
20:02:38.0087 0x20b4  ============================================================
20:02:38.0087 0x20b4  Current date / time: 2022/05/27 20:02:38.0087
20:02:38.0087 0x20b4  SystemInfo:
20:02:38.0087 0x20b4  
20:02:38.0087 0x20b4  OS Version: 10.0.19044 ServicePack: 0.0
20:02:38.0087 0x20b4  Product type: Workstation
20:02:38.0087 0x20b4  ComputerName: GINES-PC
20:02:38.0087 0x20b4  UserName: Gines
20:02:38.0087 0x20b4  Windows directory: C:\WINDOWS
20:02:38.0087 0x20b4  System windows directory: C:\WINDOWS
20:02:38.0087 0x20b4  Running under WOW64
20:02:38.0087 0x20b4  Processor architecture: Intel x64
20:02:38.0087 0x20b4  Number of processors: 2
20:02:38.0087 0x20b4  Page size: 0x1000
20:02:38.0087 0x20b4  Boot type: Normal boot
20:02:38.0087 0x20b4  CodeIntegrityOptions = 0x00000001
20:02:38.0087 0x20b4  ============================================================
20:02:38.0087 0x20b4  KLMD ARK init status: drvProperties = 0xEF0F02, osBuild = 19041.0, osProperties = 0x1D
20:02:38.0087 0x20b4  KLMD BG init status: drvProperties = 0xEF0F02, osBuild = 19041.0, osProperties = 0x1D
20:02:38.0087 0x20b4  BG loaded
20:02:45.0242 0x20b4  System UUID: {2A4E367D-B0B5-120D-270E-38CC4A6984E0}
20:02:51.0273 0x20b4  !crdlk
20:02:51.0601 0x20b4  Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'A'
20:02:51.0664 0x20b4  ============================================================
20:02:51.0664 0x20b4  \Device\Harddisk0\DR0:
20:02:51.0695 0x20b4  MBR partitions:
20:02:51.0695 0x20b4  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
20:02:51.0695 0x20b4  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0xC2041E1
20:02:51.0695 0x20b4  \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0xC350800, BlocksNum 0x683B5800
20:02:51.0695 0x20b4  ============================================================
20:02:51.0898 0x20b4  C: <-> \Device\Harddisk0\DR0\Partition2
20:02:52.0289 0x20b4  D: <-> \Device\Harddisk0\DR0\Partition3
20:02:52.0289 0x20b4  ============================================================
20:02:52.0289 0x20b4  Initialize success
20:02:52.0289 0x20b4  ============================================================
20:33:21.0619 0x0e4c  ============================================================
20:33:21.0619 0x0e4c  Scan started
20:33:21.0619 0x0e4c  Mode: Manual; 
20:33:21.0619 0x0e4c  ============================================================
20:33:21.0619 0x0e4c  KSN ping started
20:33:41.0742 0x0e4c  KSN ping finished: true
20:33:47.0507 0x0e4c  ================ Scan BIOS =================================
20:33:47.0507 0x0e4c  BIOS info: vendor = American Megatrends Inc., version = F6, releaseDate = 07/09/2014
20:33:47.0507 0x0e4c  Base board info: manufacturer = Gigabyte Technology Co., Ltd., product = H81M-HD3, version = x.x
20:33:48.0944 0x0e4c  [ D675D3AC9585008E336418C27B6DAF86, F08F6E538A90458C83806C0A93A4F415DDD9DCC05FA17AE5408AD9D6C04701F8 ] BIOS
20:33:48.0944 0x0e4c  BIOS - ok
20:33:48.0944 0x0e4c  ================ Scan system memory ========================
20:33:48.0944 0x0e4c  System memory - ok
20:33:48.0944 0x0e4c  ================ Scan services =============================
20:33:49.0116 0x0e4c  [ AF50A9D10FF7B1D999BA99D00CC128B3, 3D6E0579821BFA91B7F0A6E6DDC6E03BD3389202AD1A079B825D18D2A76250A0 ] 1394ohci        C:\WINDOWS\System32\drivers\1394ohci.sys
20:33:49.0132 0x0e4c  1394ohci - ok
20:33:49.0210 0x0e4c  [ 1C29610EDF5FE3C9D313207BD65BCDD0, 5A29D80AF47D08998125CB81BC1D4E84093291A74DE422B63F7BBDA7BDE95311 ] 3ware           C:\WINDOWS\system32\drivers\3ware.sys
20:33:49.0210 0x0e4c  3ware - ok
20:33:49.0257 0x0e4c  [ D8EB495D2FE95C49E82DEE759EC952F1, C456AEE4D9867AB4725778CBDEE73A645B2357BB70A3A545B8B8769121D03345 ] AarSvc          C:\WINDOWS\System32\AarSvc.dll
20:33:49.0257 0x0e4c  AarSvc - ok
20:33:49.0304 0x0e4c  [ 43FB8BB52B9333E8C6A76DDEC0BF8CFC, 37328E9BDF7242B8A44CE71A2750FFB7BB7B3C761BD3214C16A36D4E2944840B ] ACPI            C:\WINDOWS\system32\drivers\ACPI.sys
20:33:49.0319 0x0e4c  ACPI - ok
20:33:49.0335 0x0e4c  [ 6A424E6ABD1970E23ECF3DA85725B6BF, 1D576471A8035AD3FF5B0616F47B79E43AA367ECDF009D7CADDA0F11F13A1345 ] AcpiDev         C:\WINDOWS\System32\drivers\AcpiDev.sys
20:33:49.0335 0x0e4c  AcpiDev - ok
20:33:49.0351 0x0e4c  [ 70D9FC69CED08E86B888717CC5C37367, 34856C805B67F3EE4ABFD81B61879112344C343BC7E76A7A466FAD276E0E5165 ] acpiex          C:\WINDOWS\system32\Drivers\acpiex.sys
20:33:49.0351 0x0e4c  acpiex - ok
20:33:49.0366 0x0e4c  [ EF7CB34FB2D56305EF942012499AB8F7, 3A9A504797FD22BB5447BB36597D5001320ABC0D4A1853D478C038EAC6847913 ] acpipagr        C:\WINDOWS\System32\drivers\acpipagr.sys
20:33:49.0366 0x0e4c  acpipagr - ok
20:33:49.0382 0x0e4c  [ 33B5ED555018128792AFFCDC9AF7AFD2, 1E7C5FADA2486EE31289A4BEFB70AEA173190671C64995441651903CF31E5033 ] AcpiPmi         C:\WINDOWS\System32\drivers\acpipmi.sys
20:33:49.0382 0x0e4c  AcpiPmi - ok
20:33:49.0398 0x0e4c  [ 85A86944A6163F0B7A8B10203B70CB9A, 72D35F5DB8714D38E4050A7F7A457C4AD99E3EA212040704F1C1ECBB70E865E9 ] acpitime        C:\WINDOWS\System32\drivers\acpitime.sys
20:33:49.0398 0x0e4c  acpitime - ok
20:33:49.0429 0x0e4c  [ 494072BF9EC1FDFFD54C47A80821FE6E, 8F302F43314C2F5C80E1D22B17C0246EF8A275C63FDB3C1CDC0DD999C4715A77 ] Acx01000        C:\WINDOWS\system32\drivers\Acx01000.sys
20:33:49.0444 0x0e4c  Acx01000 - ok
20:33:49.0507 0x0e4c  [ 437A1C97D7A8A11006C4458408DE4A9E, 8771A5C865FBD2B1FF9315665BB17A87B3D22C237A35A1A22B72C64326A48700 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
20:33:49.0507 0x0e4c  AdobeARMservice - ok
20:33:49.0554 0x0e4c  [ B4B75D49BFBCFB2762593F77E5BD7789, B83072D77685F973701EC6629D8AC2626FDEFD657A4DB9AA7D532960A29FC67C ] ADP80XX         C:\WINDOWS\system32\drivers\ADP80XX.SYS
20:33:49.0569 0x0e4c  ADP80XX - ok
20:33:49.0616 0x0e4c  [ 6679AED357B1F936C6A93B2C60891B4A, D7EB57714D3C7803D11B5869BD6B778F48FE986335135CCCD84ACB19437D3817 ] AFD             C:\WINDOWS\system32\drivers\afd.sys
20:33:49.0632 0x0e4c  AFD - ok
20:33:49.0648 0x0e4c  [ 3ABB28B13D5AE96BAB7E26FFDDCF3466, 8E0369455B1428195AC4D8A694B9E23705068CCB3F641EF3238816B6AD7E34E6 ] afunix          C:\WINDOWS\system32\drivers\afunix.sys
20:33:49.0648 0x0e4c  afunix - ok
20:33:49.0679 0x0e4c  [ E6C21EB564C1A177B484C3A53AEA49BF, F2BBD6F46E55B64F0F5798A029DD51433E961712C1FED12999199FA49058776D ] ahcache         C:\WINDOWS\system32\DRIVERS\ahcache.sys
20:33:49.0679 0x0e4c  ahcache - ok
20:33:49.0710 0x0e4c  [ 526FE18DB976D9A1AE19FBC53FA690B1, 4E2623243A9BB61F7211E591C24EDB70B07974A7FA21E3F14C683F27E975777F ] AJRouter        C:\WINDOWS\System32\AJRouter.dll
20:33:49.0710 0x0e4c  AJRouter - ok
20:33:49.0726 0x0e4c  [ 551C155F4FCE82BBA4CC92E56F1ECB84, 6ABE94DF833EC0E6D145429BBA99FDCA9AD3FCBB685A432B20C04F74DE9A42A5 ] ALG             C:\WINDOWS\System32\alg.exe

10

20:38:13.0065 0x2288  sfloppy - ok
20:38:13.0080 0x2288  [ C05648C2BE6176BE557D9C7F02916388, C65D8FEDDCD9A52B04F42C64DAD2A499BF51246D36042E8DC09DD04C4C0B7BEE ] SgrmAgent       C:\WINDOWS\system32\drivers\SgrmAgent.sys
20:38:13.0080 0x2288  SgrmAgent - ok
20:38:13.0111 0x2288  [ 3BA1A18A0DC30A0545E7765CB97D8E63, F9CBF1FF87D6F11920C4B7367EA2178BF13AA276C65D918950683983F268BC1F ] SgrmBroker      C:\WINDOWS\system32\SgrmBroker.exe
20:38:13.0127 0x2288  SgrmBroker - ok
20:38:13.0158 0x2288  [ 12C9DC58F761E72F9C889B213698AB67, 8BC382EC4102A118006E8CC67763198852BEB1DEE40184FDB384744D782C62A4 ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
20:38:13.0174 0x2288  SharedAccess - ok
20:38:13.0190 0x2288  [ 5A908C65D3CFF0236DF9B9D49514283B, 8E8EB9441DCB707810D64B6D30D1CADE1268A209C14D7F1353176F974CCF3235 ] SharedRealitySvc C:\WINDOWS\System32\SharedRealitySvc.dll
20:38:13.0205 0x2288  SharedRealitySvc - ok
20:38:13.0221 0x2288  [ BE44F2B19C4F61FED874C7FE26DF92AA, 07888C7575A1D7D46AE375B1CE6C13665CCEE0F0672EA8FDE71B955B5BC0EA70 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
20:38:13.0236 0x2288  ShellHWDetection - ok
20:38:13.0268 0x2288  [ D2A2FDF78F17AD1008EDC20F1D2105FB, CB736807C5442177DA7FAFE1BD9CB7BB7216C2613B592B1D5A1018EBDAFF3DE8 ] shpamsvc        C:\WINDOWS\system32\Windows.SharedPC.AccountManager.dll
20:38:13.0268 0x2288  shpamsvc - ok
20:38:13.0283 0x2288  [ 9AB1BADC5A324DA39186B81BC6CE6E2E, 567710C90BD71600A31A3408DB065B43C844DCFD12045FDE04CD59D932DC8353 ] SiSRaid2        C:\WINDOWS\system32\drivers\SiSRaid2.sys
20:38:13.0283 0x2288  SiSRaid2 - ok
20:38:13.0299 0x2288  [ 60213AF297023C005453E1CBF7CB6FE7, 718C833E5EDFE642F3B254515E29641BF2D8E56E22F6B795024BF64721AB874E ] SiSRaid4        C:\WINDOWS\system32\drivers\sisraid4.sys
20:38:13.0299 0x2288  SiSRaid4 - ok
20:38:13.0315 0x2288  [ 196A46BA842A219EC6DE7B7B7D9AAB7E, 4EF7BE37F92557C8B0D30999541F284CC4A3E8FD98E0D78146F9F00D54E11BB9 ] SmartSAMD       C:\WINDOWS\system32\drivers\SmartSAMD.sys
20:38:13.0315 0x2288  SmartSAMD - ok
20:38:13.0346 0x2288  [ 311AB5DB5A55CC211063C66BB989879F, 59A750A6B5CF77CBB6F73A7D5AB86BC65A945E6ED9FD05BD98EB76F0280D8B7D ] SmbDrv          C:\WINDOWS\System32\drivers\Smb_driver_AMDASF.sys
20:38:13.0346 0x2288  SmbDrv - ok
20:38:13.0361 0x2288  [ FAA2DC014569369567651B813FD48EB7, BA2CAC2A220AFBB7AA2C8D6BE7B045DCC468CE72876C3FABAE17BFCA260DFE5E ] SmbDrvI         C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys
20:38:13.0361 0x2288  SmbDrvI - ok
20:38:13.0393 0x2288  [ 67C32A981B42CD5243D4B5EA54A29734, 0144030B5513E7B8A71A8D600EAE8301F29F18D8675F757A774E7FC690B838AD ] smphost         C:\WINDOWS\System32\smphost.dll
20:38:13.0393 0x2288  smphost - ok
20:38:13.0440 0x2288  [ AA35F8D0001485C5F56439A806F57F52, 798A317F7FC355673FA12FA0915CA96FEB7F92BC0BA3BEE593F793D98C82CF58 ] SmsRouter       C:\WINDOWS\system32\SmsRouterSvc.dll
20:38:13.0440 0x2288  SmsRouter - ok
20:38:13.0471 0x2288  [ 1971BBC71602B928CF9257759E3C05E8, 9D665698FF26ED333AD385B4B7A6C0F2B6806371D278E281FA4188002A5317E8 ] SNMPTRAP        C:\WINDOWS\System32\snmptrap.exe
20:38:13.0486 0x2288  SNMPTRAP - ok
20:38:13.0502 0x2288  [ 27B7D9E872939EBB34C30343F991893D, 879AFDC8C50487ED0D3CB58C70A206E185F94BE75C25C31C387F3F08740771F9 ] spaceparser     C:\WINDOWS\system32\drivers\spaceparser.sys
20:38:13.0502 0x2288  spaceparser - ok
20:38:13.0549 0x2288  [ 8A10B25A3345BFC70BC9EE56055B7249, 05F427ECBCB8BB0601196EA6B5399187421097A1D50C7199DBB05A23901043BE ] spaceport       C:\WINDOWS\system32\drivers\spaceport.sys
20:38:13.0549 0x2288  spaceport - ok
20:38:13.0580 0x2288  [ AB3BDEC793187CEDF1229AC98BB7DEDF, D2EA0C5FC534C89310207AA26A8816B30FEEF3F2708A067D8BB93D3CFF9C3936 ] SpatialGraphFilter C:\WINDOWS\system32\drivers\SpatialGraphFilter.sys
20:38:13.0580 0x2288  SpatialGraphFilter - ok
20:38:13.0596 0x2288  [ B6029A86D8DE5AE85E01506E0222A491, E8A7BB7D299B457EF9E3E32893E5DCF3DEE1704B9E02A0583439941CA6E1C9AD ] SpbCx           C:\WINDOWS\system32\drivers\SpbCx.sys
20:38:13.0596 0x2288  SpbCx - ok
20:38:13.0643 0x2288  [ 49417A7FD84876FCE07948389D330569, 12E96BB53A1E11750C7AFCA449EBD0FF340A6088E1FA4B4CC0A448E50E557E98 ] spectrum        C:\WINDOWS\system32\spectrum.exe
20:38:13.0658 0x2288  spectrum - ok
20:38:13.0705 0x2288  [ DBB26CE4B3EB0E8BA41E2A3842147F5D, 17D07B110A0F6CD14426A7AE92F3AF24F161107D11F04A5123303688D74955F6 ] Spooler         C:\WINDOWS\System32\spoolsv.exe
20:38:13.0721 0x2288  Spooler - ok
20:38:13.0815 0x2288  [ D3D3FD1F9B444E5FBEB0C66843E0A730, 3CA037424EBB09C7D99F1E6B540942493CE6707E0EA94371D74AA099B949ECB3 ] sppsvc          C:\WINDOWS\system32\sppsvc.exe
20:38:13.0877 0x2288  sppsvc - ok
20:38:13.0924 0x2288  [ BD332DF5B03E85F432F29398D2C7D122, 3A4FEFD25A8D5D3F94DEA70D9FE88119124125BE67B2A43E49D9EDFD0A5C8A39 ] srv2            C:\WINDOWS\system32\DRIVERS\srv2.sys
20:38:13.0940 0x2288  srv2 - ok
20:38:13.0955 0x2288  [ 1201656BEDF263E7DC12E56F509F56F7, 10B22C17E9F9093C224E5D8FC08F55089568CF472839204549948A3CB2F8AB63 ] srvnet          C:\WINDOWS\system32\DRIVERS\srvnet.sys
20:38:13.0955 0x2288  srvnet - ok
20:38:13.0986 0x2288  [ 3B111F9787071EC66F4CC226574C2D8B, DA2AAEAECA9FF7EB8D955805E5268D390F2A86CEB2C608EFA7636FFFEEAE7BA4 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
20:38:13.0986 0x2288  SSDPSRV - ok
20:38:14.0049 0x2288  [ 66969AA56E77953E596470C73A9004E0, 71F4CC7595C6D5E93AAA14259DF817C6C1D4BBCF285545FD980F6DBC86A30379 ] ssh-agent       C:\WINDOWS\System32\OpenSSH\ssh-agent.exe
20:38:14.0049 0x2288  ssh-agent - ok
20:38:14.0080 0x2288  [ 2775EF3E0E76D9A44AB60D6143FA92A5, EDAE87919A509204967AFD9500021DCAE4EE9DC2D89DEF7960D5DDB1A594C9D3 ] SstpSvc         C:\WINDOWS\system32\sstpsvc.dll
20:38:14.0096 0x2288  SstpSvc - ok
20:38:14.0236 0x2288  [ 5F753A28D314C0081AE23BACBBB02501, D966B22E347B5B7EA5F9D110A9D139827597521973A1BC94EEF35AC658C4C816 ] StateRepository C:\WINDOWS\system32\windows.staterepository.dll
20:38:14.0314 0x2288  StateRepository - ok
20:38:14.0346 0x2288  [ 09DC471B4573F3D01D7E448B526AE70A, 766FD1E1D2F73DE202FB337F6A6A5BA0317772AAAA644E9103BB5DF438162F51 ] stexstor        C:\WINDOWS\system32\drivers\stexstor.sys
20:38:14.0346 0x2288  stexstor - ok
20:38:14.0377 0x2288  [ 27CCDFB300302826F5CCFF0678F20D80, 84816CB7033FDEDA560E03995C254577E5BB23E15C7C03FB68074C2E60F31B66 ] stisvc          C:\WINDOWS\System32\wiaservc.dll
20:38:14.0393 0x2288  stisvc - ok
20:38:14.0424 0x2288  [ DACE45A20E7652955BC153EE3E755D18, 688665B39022B82314F50D4D39C254F66E4AA7943F89A09AFEBB18ED049DC509 ] storahci        C:\WINDOWS\system32\drivers\storahci.sys
20:38:14.0424 0x2288  storahci - ok
20:38:14.0455 0x2288  [ 5A129E186A7A4E3CCBF090682D48F8EB, EEF4D748F421A65B0CEECC3F499574FD1B4B2E654428C0693D76074A2BC257B7 ] storflt         C:\WINDOWS\system32\drivers\vmstorfl.sys
20:38:14.0455 0x2288  storflt - ok
20:38:14.0471 0x2288  [ 1FC81435649AE146D10A14ECE4BACF65, 732DE80C8187DCA09CDD911A1070D9555B0A195AAC7CED38CED3958DFE9527F1 ] stornvme        C:\WINDOWS\system32\drivers\stornvme.sys
20:38:14.0486 0x2288  stornvme - ok
20:38:14.0486 0x2288  [ 995F082126674C6D1423E29FBCEA9F39, E86386156F982B59C00991D40A6E1862CA322F151BF965B14572D13AA207D614 ] storqosflt      C:\WINDOWS\system32\drivers\storqosflt.sys
20:38:14.0486 0x2288  storqosflt - ok
20:38:14.0533 0x2288  [ 5D05B0938DF0DAAABCB51300C299E5E7, 3AB634148D397BB6FD2216B87D31D469C8AFD261F03E1B301D41C9EC08F07E95 ] StorSvc         C:\WINDOWS\system32\storsvc.dll
20:38:14.0549 0x2288  StorSvc - ok
20:38:14.0580 0x2288  [ 58B787208AE774AE53F367CAFD653155, 23710E84326FDC6398B7F43EA46E78A77A7FB4C38DD660D32F14F50A1B29CBCA ] storufs         C:\WINDOWS\system32\drivers\storufs.sys
20:38:14.0580 0x2288  storufs - ok
20:38:14.0596 0x2288  [ 0A13C67C267BFA1A0D1FE72A9D65BD5F, B44327F3134FA0166ED9E31BC724120B642AE5E96CEFF599867F03463ABB1406 ] storvsc         C:\WINDOWS\system32\drivers\storvsc.sys
20:38:14.0596 0x2288  storvsc - ok
20:38:14.0611 0x2288  [ D73F83E795F3BC100C21EDA2BD6DE307, 0DC828C46E057ADA9934424BF00067B17EEB8E0108CE1E309C8DEA4CC42448BA ] svsvc           C:\WINDOWS\system32\svsvc.dll
20:38:14.0611 0x2288  svsvc - ok
20:38:14.0674 0x2288  [ 0547BB19EFA07BEF0F679A054EB5CFEC, D618F57B78B3FFEC29E8C4472E0AA72EF1CA0C83DE968373B818ABA4D9747E2D ] swenum          C:\WINDOWS\System32\DriverStore\FileRepository\swenum.inf_amd64_16a14542b63c02af\swenum.sys
20:38:14.0674 0x2288  swenum - ok
20:38:14.0705 0x2288  [ 10C3D1AA5C1D330CE5CC39263BC95183, 415304EDDB673B538CEB5D23586B0C237D0DB5987E0B5078D532E833F4A7AE52 ] swprv           C:\WINDOWS\System32\swprv.dll
20:38:14.0705 0x2288  swprv - ok
20:38:14.0736 0x2288  [ B39DC667DF14C7F1B9A58DE17BD45BE3, 52A4DBA20C16B2E34FBDDDE966700A3E8E183011A44ABECADCD4D3F93D29637B ] Synth3dVsc      C:\WINDOWS\System32\drivers\Synth3dVsc.sys
20:38:14.0736 0x2288  Synth3dVsc - ok
20:38:14.0783 0x2288  [ 6C608C28F3469A3FBB1FC762945AED44, 07F5694D440B9807DB933E7091BC002C395B99F01A4423316118F1A860B60C1E ] SysMain         C:\WINDOWS\system32\sysmain.dll
20:38:14.0799 0x2288  SysMain - ok
20:38:14.0830 0x2288  [ 423D06D055EF34814B8670C69452A6BD, 8FA9EFF2DDACF339499977D3602998150FC8CE0C62BE30CD390F98F95998ED76 ] SystemEventsBroker C:\WINDOWS\System32\SystemEventsBrokerServer.dll
20:38:14.0846 0x2288  SystemEventsBroker - ok
20:38:14.0861 0x2288  [ 055070E3AC1F342125E3296641BDC4D3, 6385EE02D392FCFFB41CE5C5D4CD03C245828D98DCB01F0B4358B431257F9F5B ] TabletInputService C:\WINDOWS\System32\TabSvc.dll
20:38:14.0861 0x2288  TabletInputService - ok
20:38:14.0893 0x2288  [ 20CEAECE4ECDEBC89C82F1998696D596, 439559DE34BE096824CB70A97524E843CE2802092A9C882167F4CB08FE9664A7 ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
20:38:14.0893 0x2288  TapiSrv - ok
20:38:14.0971 0x2288  [ F7691009A30EC79518550E2FA4813A42, A3467058F6B5E08137E7C0816F5B1AFB79B2C506EE2B7B358D15A4CB227515A2 ] Tcpip           C:\WINDOWS\system32\drivers\tcpip.sys
20:38:15.0018 0x2288  Tcpip - ok
20:38:15.0080 0x2288  [ F7691009A30EC79518550E2FA4813A42, A3467058F6B5E08137E7C0816F5B1AFB79B2C506EE2B7B358D15A4CB227515A2 ] Tcpip6          C:\WINDOWS\system32\drivers\tcpip.sys
20:38:15.0111 0x2288  Tcpip6 - ok
20:38:15.0143 0x2288  [ 57BE670CF1D93717B628271B404D658A, EDD4C58EDAB985C87D6101D9CA5620146EE2BB8A1B899C635DD4CD36541DD46E ] tcpipreg        C:\WINDOWS\system32\drivers\tcpipreg.sys
20:38:15.0143 0x2288  tcpipreg - ok
20:38:15.0174 0x2288  [ 2A8B28579A4964AA7EA8CEB1AC121243, BB34DC5199DE15F7D57AE52DF427C39D2FD34FAFA8136F783F2F089CDEBA0130 ] tdx             C:\WINDOWS\system32\DRIVERS\tdx.sys
20:38:15.0174 0x2288  tdx - ok
20:38:15.0205 0x2288  [ 2213610676B404B157ADFFE312567458, B2E02C5049357A2DFF1CF4F6F64AC6E1DCCEDC245E96D5BC0585E88E7622D1B9 ] Telemetry       C:\WINDOWS\system32\drivers\IntelTA.sys
20:38:15.0205 0x2288  Telemetry - ok
20:38:15.0221 0x2288  [ C225B94F2B27AC97C3E66C0550AEA249, 6F88375DD12A648B77BB6EB4BE527FF6678EE76A2059DB5B4CC971CDB31D0DB8 ] terminpt        C:\WINDOWS\System32\drivers\terminpt.sys
20:38:15.0236 0x2288  terminpt - ok
20:38:15.0268 0x2288  [ 70172E2FA9D349474D22C0AF919F6716, 3D4D164B6927220FF6C323724AC61C4CF467ED7843A3877B3856344423B665C1 ] TermService     C:\WINDOWS\System32\termsrv.dll
20:38:15.0283 0x2288  TermService - ok
20:38:15.0314 0x2288  [ 8EC4197962A0349DFFBDC11586099DB8, 8DD5348A4983C376F63E6B209227D4D02300555F8C80A0E0DB2EA16074ABC334 ] Themes          C:\WINDOWS\system32\themeservice.dll
20:38:15.0330 0x2288  Themes - ok
20:38:15.0361 0x2288  [ 761EBB96C8217CF5795ACF429BDF9E88, 4CCDB591EE16507879D8F12C0BDD40FACBEEF03BFC553A84270284D4930B433F ] TieringEngineService C:\WINDOWS\system32\TieringEngineService.exe
20:38:15.0361 0x2288  TieringEngineService - ok
20:38:15.0393 0x2288  [ 6B761253F07F46BE2B16C768B1F22551, C4E63135EB9BAAB1B7DE928C914CACEAB1E4862D6C5913B23EFC5B8986B1D91E ] TimeBrokerSvc   C:\WINDOWS\System32\TimeBrokerServer.dll
20:38:15.0393 0x2288  TimeBrokerSvc - ok
20:38:15.0439 0x2288  [ ADB9B60D34B39194965D2820D3AD04E2, AA940F5A2F850F577EAB258C203C59112114DF8FF7054E9E3CBE139D9121359B ] TokenBroker     C:\WINDOWS\System32\TokenBroker.dll
20:38:15.0455 0x2288  TokenBroker - ok
20:38:15.0486 0x2288  [ 8D0C4B0F6D48CF4750403971D7BF494D, 62ECE387CEAAD6296A35632AFC96E8A4E7018BD0A1037CD4AF8951F833AC38DA ] TPM             C:\WINDOWS\System32\drivers\tpm.sys
20:38:15.0486 0x2288  TPM - ok
20:38:15.0518 0x2288  [ 6B7A6ABB160045852805449227F4F93D, 135192B2D889D498A1F2F27BDE332FDA75C36CF9267E69A4953718EFFDEAA374 ] TrkWks          C:\WINDOWS\System32\trkwks.dll
20:38:15.0518 0x2288  TrkWks - ok
20:38:15.0549 0x2288  [ 732BA88A47C0713AE45986C65AF49E67, FD8EE86BB5319D97FB517658C5F41501ED6DE5D19C49437EDE906B68B21263BC ] TroubleshootingSvc C:\WINDOWS\system32\MitigationClient.dll
20:38:15.0564 0x2288  TroubleshootingSvc - ok
20:38:15.0611 0x2288  [ 8139E510C272F2A86EE3815C618B80DC, 983BF0D8B16D4729779812F88AA854AA4B27E2097304E9022A2F031EAB088D11 ] TrustedInstaller C:\WINDOWS\servicing\TrustedInstaller.exe
20:38:15.0627 0x2288  TrustedInstaller - ok
20:38:15.0658 0x2288  [ F613A8618CC19DD96D1E0C81C5DCB7D1, AD6DE675AC033BE6BF75FF6303EAED4B5C672689D3AEC6DB94816D60E19B7030 ] TsUsbFlt        C:\WINDOWS\system32\drivers\tsusbflt.sys
20:38:15.0658 0x2288  TsUsbFlt - ok
20:38:15.0674 0x2288  [ 7845DD22FA7B91FDF0522344B1BDA012, 161A01BAC7E84B72BC6C2E83A63CC9E1DC7E2E9104C1645CD098D14094D2AC79 ] TsUsbGD         C:\WINDOWS\System32\drivers\TsUsbGD.sys
20:38:15.0689 0x2288  TsUsbGD - ok
20:38:15.0721 0x2288  [ 6244FD1056BF170E38245B4B9042BFDF, C32908B3C5800CD52EF9BDD26C77B8162831CFD19DBF1D399941B17FB909AD94 ] tunnel          C:\WINDOWS\system32\drivers\tunnel.sys
20:38:15.0721 0x2288  tunnel - ok
20:38:15.0736 0x2288  [ A7C58987094E1EEBD63FB94BBE5FBC2C, 1E2E68E68380CFE42C2D975E826F6301AA7F35566E9A733B881BDC6271EC1981 ] tzautoupdate    C:\WINDOWS\system32\tzautoupdate.dll
20:38:15.0752 0x2288  tzautoupdate - ok
20:38:15.0783 0x2288  [ E51FEC42B4820C74BB75DAAE3A49C3F2, AC2CC1E3D5A8AF54EDE4C86F2080AFE018FBAF3568D063AC68D00FE07FB2E39E ] UASPStor        C:\WINDOWS\System32\drivers\uaspstor.sys
20:38:15.0783 0x2288  UASPStor - ok
20:38:15.0814 0x2288  [ 1020E0CEB0EC9FB54F0A2C8E8D4CDA62, 6D952B704BF08DDF4740796230751027143F9434D651962E8CDDB8F6FE5F5A8A ] UcmCx0101       C:\WINDOWS\system32\Drivers\UcmCx.sys
20:38:15.0814 0x2288  UcmCx0101 - ok
20:38:15.0846 0x2288  [ 229B33B8499F4F2AAB1F3B590423611F, E70A2D9EEEF0C6894A0DB7990CFF6ECE3B8F389FD30B7B1949FCBDD3300B6148 ] UcmTcpciCx0101  C:\WINDOWS\system32\Drivers\UcmTcpciCx.sys
20:38:15.0846 0x2288  UcmTcpciCx0101 - ok
20:38:15.0877 0x2288  [ 7FDC3A6FD8547468CE554C8821640103, 3626760AEE42EE36E047DA6899A81E0646DFBA344A234270EAE5D635F049BE37 ] UcmUcsiAcpiClient C:\WINDOWS\System32\drivers\UcmUcsiAcpiClient.sys
20:38:15.0877 0x2288  UcmUcsiAcpiClient - ok
20:38:15.0908 0x2288  [ 1ADE4D1F65B4A1E52F701C69FB455769, 3E5CDCC098149853A7EFA05EA1B714182C82E4153F2DA3C50BA30DF2B3E05EB6 ] UcmUcsiCx0101   C:\WINDOWS\system32\Drivers\UcmUcsiCx.sys
20:38:15.0908 0x2288  UcmUcsiCx0101 - ok
20:38:15.0939 0x2288  [ D6BEDCCB2E48589944EDC675D335677E, 2F5A5BA7AEC40C1A440C8DFF81DCE5AB0BDF9CC70ADDE48F8B652665B61F9915 ] Ucx01000        C:\WINDOWS\system32\drivers\ucx01000.sys
20:38:15.0939 0x2288  Ucx01000 - ok
20:38:15.0955 0x2288  [ 6861422B7FFADDEAAA64A0539C910178, 4F8193C0A3525B78CA3CAF4731AE997A214F3DF180F0A3ADCEB2D31D3217850C ] UdeCx           C:\WINDOWS\system32\drivers\udecx.sys
20:38:15.0955 0x2288  UdeCx - ok
20:38:15.0971 0x2288  [ 26D2727935221EFB0063B43A74B375BE, AB809F7EDC5C8A6EEE9610477A79131EA6C3D1BDD3D837B56B6AFF3572923DB7 ] udfs            C:\WINDOWS\system32\DRIVERS\udfs.sys
20:38:15.0971 0x2288  udfs - ok
20:38:16.0049 0x2288  [ 78AB56D9436D5F5BF967E939308041DE, 1571BDF4F97C16E2A119CD99E4CFF18EC744E37FB5C06AB2C053C6AAF288A111 ] UdkUserSvc      C:\WINDOWS\System32\windowsudk.shellcommon.dll
20:38:16.0080 0x2288  UdkUserSvc - ok
20:38:16.0111 0x2288  [ 264C183C222EF95D4C64DFA8BA5F0479, 3EF244E91851E03BE77DE49FA7E36769DE287B0CB732CD0140C39FE5118D80B9 ] UEFI            C:\WINDOWS\System32\DriverStore\FileRepository\uefi.inf_amd64_c1628ffa62c8e54c\UEFI.sys
20:38:16.0111 0x2288  UEFI - ok
20:38:16.0158 0x2288  [ 01951AA29AC2A4E4EB957BA167044C27, 5F97E9D1343FE739E35B65CFA659037421A2E0A4081CF10AD4CE94B915C02BC2 ] Ufx01000        C:\WINDOWS\system32\drivers\ufx01000.sys
20:38:16.0158 0x2288  Ufx01000 - ok
20:38:16.0158 0x2288  [ EEEECAFD642DB20A8470090C2ACAA6AC, 70FEAD3371792160701D47A808FC78786766E4C7CA7C5ED8DA356BFC991A275A ] UfxChipidea     C:\WINDOWS\System32\DriverStore\FileRepository\ufxchipidea.inf_amd64_1c78775fffab6a0a\UfxChipidea.sys
20:38:16.0158 0x2288  UfxChipidea - ok
20:38:16.0189 0x2288  [ E884B3B8DDA9442F58E41C2ADE3C4234, 51F112449305C5F03FEA6F046CA007A8056A65EF84986393A1B4203F53A08833 ] ufxsynopsys     C:\WINDOWS\System32\drivers\ufxsynopsys.sys
20:38:16.0205 0x2288  ufxsynopsys - ok
20:38:16.0236 0x2288  [ 13B9189CA51D925FF78151A0E14C40CE, 78AEDD6D13C45B2E080BC26527CCF3BDABF764A2108249BA8B3AC4387C6A6376 ] uhssvc          C:\Program Files\Microsoft Update Health Tools\uhssvc.exe
20:38:16.0252 0x2288  uhssvc - ok
20:38:16.0252 0x2288  [ E0E764F688DCACBA011BAEB2017B903F, 7802DCDA6F49494245EC9304AECED7BB2E90908BED25A4D47F1FF4615B03DED0 ] umbus           C:\WINDOWS\System32\DriverStore\FileRepository\umbus.inf_amd64_b78a9c5b6fd62c27\umbus.sys
20:38:16.0252 0x2288  umbus - ok
20:38:16.0267 0x2288  [ 493AF687E60E144F59E3F5B7E27AA39B, 3062B25A7747BC417E1D498DB1B11C9631D80F57E4A048101EF5AA26206AE838 ] UmPass          C:\WINDOWS\System32\drivers\umpass.sys
20:38:16.0267 0x2288  UmPass - ok
20:38:16.0299 0x2288  [ A4AA744447EEB2B46EC60C7AA487B072, C55B91BBA36FBD18C43FC367C54267EF28CEB5CCCF04EA7E44FB4778748DF005 ] UmRdpService    C:\WINDOWS\System32\umrdp.dll
20:38:16.0299 0x2288  UmRdpService - ok
20:38:16.0361 0x2288  [ DA04AA3DA8CD89AC26095DFCABA7740E, 971440911B04DAD4F9F7C5621EBFE5C1E69B7A8455F2F3D33A1D96FFA1171A81 ] UnistoreSvc     C:\WINDOWS\System32\unistore.dll
20:38:16.0377 0x2288  UnistoreSvc - ok
20:38:16.0408 0x2288  [ 8BFFE0333C9EA9C54797C7F0E6F7769A, 0C0C7524F1A6D375D5D60DC8C602A75CB79B7311C0735956A2F42152A15C5F40 ] upnphost        C:\WINDOWS\System32\upnphost.dll
20:38:16.0424 0x2288  upnphost - ok
20:38:16.0455 0x2288  [ 5C33B91675BE0C9693358C1AAA723D20, A5BB54ABBB0F7B13ACCA0997F567A81395688C6D68EB87F67F688737DC16918F ] UrsChipidea     C:\WINDOWS\System32\DriverStore\FileRepository\urschipidea.inf_amd64_78ad1c14e33df968\urschipidea.sys
20:38:16.0455 0x2288  UrsChipidea - ok
20:38:16.0471 0x2288  [ ADFAB87405AE22290E24D0E8E6141AF1, BC0982BEFE4CABEA1E260C8A3266EA18A4CA158A07D1C5176890A04CC3B6A84A ] UrsCx01000      C:\WINDOWS\system32\drivers\urscx01000.sys
20:38:16.0471 0x2288  UrsCx01000 - ok
20:38:16.0502 0x2288  [ BBDE7BF496327115DD744E7D4105C7BC, 5A8CC47603A1C9D58A30A5E897F1BCDC56199B08317B9FF319D469D6DD6CAAF0 ] UrsSynopsys     C:\WINDOWS\System32\DriverStore\FileRepository\urssynopsys.inf_amd64_057fa37902020500\urssynopsys.sys
20:38:16.0502 0x2288  UrsSynopsys - ok
20:38:16.0517 0x2288  [ D515F6E614AE8672243EE8CA9DCED1DF, 2A32F39CC8DBFF2F7F105C8DCB4612C3C103D16CC7CCC724B729623CB7EFBD94 ] usbaudio        C:\WINDOWS\system32\drivers\usbaudio.sys
20:38:16.0533 0x2288  usbaudio - ok
20:38:16.0549 0x2288  [ FB9F25ACEBCBAEABFE30CACCB17D4EE6, 7D38FA294DA179E5535E3E481746F07E2AE47CE57192C2D1C5B780B583FD9C6D ] usbaudio2       C:\WINDOWS\System32\drivers\usbaudio2.sys
20:38:16.0564 0x2288  usbaudio2 - ok
20:38:16.0564 0x2288  [ C6D1E24E96FCE7662F7C09394241CC8F, D49772661BABE6FF688F6C1D21BA04BC0E0492432664C413F851264695A3D3A2 ] usbccgp         C:\WINDOWS\System32\drivers\usbccgp.sys
20:38:16.0580 0x2288  usbccgp - ok
20:38:16.0596 0x2288  [ 11561FC5BAA2DEB5AC8B179B591A882E, 2AD595BF4ABC146D8F533981848FF8271E983038566937BEB48A6A8F09BC60FB ] usbcir          C:\WINDOWS\System32\drivers\usbcir.sys
20:38:16.0596 0x2288  usbcir - ok
20:38:16.0627 0x2288  [ D1E576C8A94A27D896B56F923ED4E4D6, 3AE5ED5EAFBC52028D082D3EC04B526EF60F5D74BBC79DD210A22D9238C61262 ] usbehci         C:\WINDOWS\System32\drivers\usbehci.sys
20:38:16.0627 0x2288  usbehci - ok
20:38:16.0642 0x2288  [ 804C51B11057869624D9292040B45E56, 42404EC0F658121F6553B7DAA3511ED512B7F4B336C2032BA85CD91E8879EEAE ] usbhub          C:\WINDOWS\System32\drivers\usbhub.sys
20:38:16.0658 0x2288  usbhub - ok
20:38:16.0689 0x2288  [ 2FCA9E51CFD11C0734D76013B6493C22, 54C736C9A40A769CEB7BC094D5458F2EC4FA2A5128ECB86DBCE2F2A83EAEB203 ] USBHUB3         C:\WINDOWS\System32\drivers\UsbHub3.sys
20:38:16.0689 0x2288  USBHUB3 - ok
20:38:16.0705 0x2288  [ 4E8C3BD185042836203F3AA26B1DE6BC, 8E2B1A8E3F8E1F88E73AE2A34B1726B5C5F6753BAE3FAB1E7CC82C53FF7EE891 ] usbohci         C:\WINDOWS\System32\drivers\usbohci.sys
20:38:16.0705 0x2288  usbohci - ok
20:38:16.0736 0x2288  [ 1FE857B82E34F31C2BED1B997549C467, 7D84EF54EC74220157DA3E3E0C65B91542A4311137EFBB753002BA73A5C9A23C ] usbprint        C:\WINDOWS\System32\drivers\usbprint.sys
20:38:16.0736 0x2288  usbprint - ok
20:38:16.0752 0x2288  [ C21F9951C7B603A27FB2C76917024337, 99EC8725AC46A0AE377E8D02573B71E922C638DE56005437C629EAEB6BD2E1E4 ] usbser          C:\WINDOWS\System32\drivers\usbser.sys
20:38:16.0752 0x2288  usbser - ok
20:38:16.0767 0x2288  [ FE9BA629CA927C9A4DE2DA8D6BC11B3E, EE4CF319E14E63FCFAE8D0506449A9874966662E04A87BB896070F08BA770A74 ] USBSTOR         C:\WINDOWS\System32\drivers\USBSTOR.SYS
20:38:16.0767 0x2288  USBSTOR - ok
20:38:16.0783 0x2288  [ 3D45E616CC66D475E7261875344622F1, 3D602EA3F0A83F8FA7B9FED579B21881BB92272307634B24E0423A9A482D2CD6 ] usbuhci         C:\WINDOWS\System32\drivers\usbuhci.sys
20:38:16.0783 0x2288  usbuhci - ok
20:38:16.0814 0x2288  [ DCF2BB4A9ED398136A7CC5A0C3502C37, DBB55B9EB0B7EA9AF017F3F5E481CF5151AC40FF8583E09CF2577EE916383CB3 ] USBXHCI         C:\WINDOWS\System32\drivers\USBXHCI.SYS
20:38:16.0830 0x2288  USBXHCI - ok
20:38:16.0877 0x2288  [ B1F3989A13B65D3CAD4778F9D92418AC, 45B8C4BE560AB5C7BDF250DB4CB68FA4712570B841A11BB43722A14812376DCC ] UserDataSvc     C:\WINDOWS\System32\userdataservice.dll
20:38:16.0908 0x2288  UserDataSvc - ok
20:38:16.0955 0x2288  [ CCC28113ACB614347C056087CC37EE5E, C41554CC81455BBA9F5FF5397517B012DA00CB39E3200B4A2E7BF266F4ACFE10 ] UserManager     C:\WINDOWS\System32\usermgr.dll
20:38:16.0971 0x2288  UserManager - ok
20:38:17.0017 0x2288  [ F81E1AB10FAC8548DE233A9171965C01, A6B04855393E4BDB5E35067AA176168307F62B5D68AA265E338049051A3328B6 ] UsoSvc          C:\WINDOWS\system32\usosvc.dll
20:38:17.0033 0x2288  UsoSvc - ok
20:38:17.0064 0x2288  [ 5C5DC8E40CFC3979E793348A009434B7, 97AA8A487DAF0699E569B3E657EAC605302C74B75DAF2058856D799D32EA8026 ] VacSvc          C:\WINDOWS\System32\vac.dll
20:38:17.0064 0x2288  VacSvc - ok
20:38:17.0080 0x2288  [ A1CC00332BBF370654EE3DC8CDC8C95A, E69356111240657E6435EDF2E3A4BBAC9C89957EF2D34FC620B8B7DBF564A862 ] VaultSvc        C:\WINDOWS\system32\lsass.exe
20:38:17.0080 0x2288  VaultSvc - ok
20:38:17.0096 0x2288  [ 661233B58190B487682839F1559A7962, 2BE132106C26A9073B6E9CB646E6A2C003558B8924ED0BDC3A0533FC98E03BF4 ] vdrvroot        C:\WINDOWS\system32\drivers\vdrvroot.sys
20:38:17.0096 0x2288  vdrvroot - ok
20:38:17.0127 0x2288  [ 0781CE7ECCD9F6318BA72CD96B5B8992, 2ACEAC6D51E610F85F35175C3A511F59D5B080D95453662E58C9D578DED42A89 ] vds             C:\WINDOWS\System32\vds.exe
20:38:17.0127 0x2288  vds - ok
20:38:17.0158 0x2288  [ 46684A95E908F0A6A2355AA46A3B2A77, A25DFDA0572EF014905619DF21427518EA5C01CFB13B9927ADA305B29DBBFEFE ] VerifierExt     C:\WINDOWS\system32\drivers\VerifierExt.sys
20:38:17.0158 0x2288  VerifierExt - ok
20:38:17.0205 0x2288  [ BAC7C0D8F07AB36B4E096426C2BFBA32, 13749D1DBA7517DB26BF13EAEC56DED3B1323D5023C1AFEAE0824C105369BD7C ] vhdmp           C:\WINDOWS\System32\drivers\vhdmp.sys
20:38:17.0205 0x2288  vhdmp - ok
20:38:17.0236 0x2288  [ 7F2F04A354582D3D34F5B2B4EFF07189, 98188182D328414832D06E957601A997AD2B2B0F088B089181EDE8FAB0AF733C ] vhf             C:\WINDOWS\System32\drivers\vhf.sys
20:38:17.0236 0x2288  vhf - ok
20:38:17.0267 0x2288  [ B061B0986AE9946E4E19D9200F446C66, BB313E7DB32AC8CA3F3849E9CC71F6BC7A654ADB46FBFB2414036A85EE31AAD6 ] Vid             C:\WINDOWS\System32\drivers\Vid.sys
20:38:17.0283 0x2288  Vid - ok
20:38:17.0314 0x2288  [ B37F0BF662BB504F0A9C247F24C281AD, 6281D573D9AD9AA204778C3823737726E882B17657B23CF5458C012FF7990E52 ] VirtualRender   C:\WINDOWS\System32\DriverStore\FileRepository\vrd.inf_amd64_81fbd405ff2470fc\vrd.sys
20:38:17.0314 0x2288  VirtualRender - ok
20:38:17.0330 0x2288  [ 8E58CC58C95EF60E07BB6CB64F5C0D26, 28C4290C9AB4EDBB5432A540F0BD2295AAF6F5B0E593CA1F754D8A68E971BFBC ] vmbus           C:\WINDOWS\system32\drivers\vmbus.sys
20:38:17.0330 0x2288  vmbus - ok
20:38:17.0346 0x2288  [ C29F63BB3B99B3F2030113160A741684, 43DF7A6DD305D1696D28A54E12B75AE041B075E789DB5D0C8DDF250E75585AA1 ] VMBusHID        C:\WINDOWS\System32\drivers\VMBusHID.sys
20:38:17.0346 0x2288  VMBusHID - ok
20:38:17.0377 0x2288  [ E5BB075B6B5A1DA3C3F48CA5DFF54E77, E13E8F9523F51F976084561C9D0A843CAF550FA233521FF13FFE1C5634CA6472 ] vmgid           C:\WINDOWS\System32\drivers\vmgid.sys
20:38:17.0377 0x2288  vmgid - ok
20:38:17.0408 0x2288  [ 8486D6F63D5CF87CA08E3B3604DCB631, BD96CD0EF7B84C55DB525D655F19DE7B63756B7F3554AEBDF8F4A7A0BF2507FC ] vmicguestinterface C:\WINDOWS\System32\icsvc.dll
20:38:17.0408 0x2288  vmicguestinterface - ok
20:38:17.0408 0x2288  [ 8486D6F63D5CF87CA08E3B3604DCB631, BD96CD0EF7B84C55DB525D655F19DE7B63756B7F3554AEBDF8F4A7A0BF2507FC ] vmicheartbeat   C:\WINDOWS\System32\icsvc.dll
20:38:17.0424 0x2288  vmicheartbeat - ok
20:38:17.0424 0x2288  [ 8486D6F63D5CF87CA08E3B3604DCB631, BD96CD0EF7B84C55DB525D655F19DE7B63756B7F3554AEBDF8F4A7A0BF2507FC ] vmickvpexchange C:\WINDOWS\System32\icsvc.dll
20:38:17.0439 0x2288  vmickvpexchange - ok
20:38:17.0471 0x2288  [ D222598C027A7D87382C0CB8D0CD3994, FB6CA91F6F3FC650A9D12D54CFD25331A31404181755E7CADBC80A0A57327AEA ] vmicrdv         C:\WINDOWS\System32\icsvcext.dll
20:38:17.0471 0x2288  vmicrdv - ok
20:38:17.0486 0x2288  [ 8486D6F63D5CF87CA08E3B3604DCB631, BD96CD0EF7B84C55DB525D655F19DE7B63756B7F3554AEBDF8F4A7A0BF2507FC ] vmicshutdown    C:\WINDOWS\System32\icsvc.dll
20:38:17.0486 0x2288  vmicshutdown - ok
20:38:17.0486 0x2288  [ 8486D6F63D5CF87CA08E3B3604DCB631, BD96CD0EF7B84C55DB525D655F19DE7B63756B7F3554AEBDF8F4A7A0BF2507FC ] vmictimesync    C:\WINDOWS\System32\icsvc.dll
20:38:17.0502 0x2288  vmictimesync - ok
20:38:17.0502 0x2288  [ 8486D6F63D5CF87CA08E3B3604DCB631, BD96CD0EF7B84C55DB525D655F19DE7B63756B7F3554AEBDF8F4A7A0BF2507FC ] vmicvmsession   C:\WINDOWS\System32\icsvc.dll
20:38:17.0517 0x2288  vmicvmsession - ok
20:38:17.0517 0x2288  [ D222598C027A7D87382C0CB8D0CD3994, FB6CA91F6F3FC650A9D12D54CFD25331A31404181755E7CADBC80A0A57327AEA ] vmicvss         C:\WINDOWS\System32\icsvcext.dll
20:38:17.0533 0x2288  vmicvss - ok
20:38:17.0564 0x2288  [ 0733F8C791B54D422EA7D44CDF009EC3, A03B110C6711EFBD8BCF4391941A2E77AEDAC5462C10479050F9318E94C62CED ] volmgr          C:\WINDOWS\system32\drivers\volmgr.sys
20:38:17.0564 0x2288  volmgr - ok
20:38:17.0580 0x2288  [ 796F1C83861C02A97571D0EDAB490B70, 71CE8D930AE82C2B2628CBF3BB3AE1A8CF039BD702BDE912D499FCF45332F5A6 ] volmgrx         C:\WINDOWS\system32\drivers\volmgrx.sys
20:38:17.0580 0x2288  volmgrx - ok
20:38:17.0627 0x2288  [ 988A7A685BB51BAC62F4E176BE5432AC, CFEE4616C10EB0CDA65D4FCC2488B879D577E0F95B5E9AB9B61258F249ED6AC6 ] volsnap         C:\WINDOWS\system32\drivers\volsnap.sys
20:38:17.0627 0x2288  volsnap - ok
20:38:17.0642 0x2288  [ 770E710BEA3CCC595EE3703297B40D76, C03E3367B92307993BC169583CB298265FC1C35CF5973EC352C1E08FFCFD1928 ] volume          C:\WINDOWS\system32\drivers\volume.sys
20:38:17.0642 0x2288  volume - ok
20:38:17.0674 0x2288  [ A37A7788DABE4FF6E33FE50D7A33D8E8, 9E99D9D27BA3DFA6F89C77B9AD91BE495F15E4F612BB63B209157DFA13BCD7E0 ] vpci            C:\WINDOWS\system32\drivers\vpci.sys
20:38:17.0674 0x2288  vpci - ok
20:38:17.0689 0x2288  [ 1A4D9FAED669BC42E5A1CD8442729AB2, E70778AF6B0C9709CB8CEF655C6DD8B5A61CC70BFD35A43304C1308EA478C550 ] vsmraid         C:\WINDOWS\system32\drivers\vsmraid.sys
20:38:17.0689 0x2288  vsmraid - ok
20:38:17.0736 0x2288  [ D045837342C3AC9EE4A915FA385EC892, E986D52B7F58EB89F211479CB672E28437A93C9A342528610C95973F8381702F ] VSS             C:\WINDOWS\system32\vssvc.exe
20:38:17.0767 0x2288  VSS - ok
20:38:17.0799 0x2288  [ 6E0092973E35BE6A1F5ED5CBDD202036, 33DAF53C81D5BAF9337192A84DF50C108BAE9B8A858081E2208939CCFF2622F8 ] VSTXRAID        C:\WINDOWS\system32\drivers\vstxraid.sys
20:38:17.0830 0x2288  VSTXRAID - ok
20:38:17.0846 0x2288  [ 7BC30ADCCC9BCF2B0A29A320A395EC3B, 373C85F659F07366649697823B4A8B14313F0042A7A04E932429D049D18C7646 ] vwifibus        C:\WINDOWS\System32\drivers\vwifibus.sys
20:38:17.0846 0x2288  vwifibus - ok
20:38:17.0877 0x2288  [ C111EE25F5130811A398B1F1496AD1C1, 13C3B69A5D0179ED3CC2C999FF97EDBAEDD63DA55DDB74427251C360706A3820 ] vwififlt        C:\WINDOWS\system32\drivers\vwififlt.sys
20:38:17.0877 0x2288  vwififlt - ok
20:38:17.0908 0x2288  [ 969522409580365D47FCB1680BA1DA30, BF0A655EAE81B0C417D03DA79A3CBD8CE4F1F2973FF2889A952BED7B588172A4 ] W32Time         C:\WINDOWS\system32\w32time.dll
20:38:17.0924 0x2288  W32Time - ok
20:38:17.0955 0x2288  [ 59185BDAC90502E8C5CF69AA8D53D502, 50B0592B57669778FE369C740B53A713DE58B647B5537F857626DE860D3C9721 ] WaaSMedicSvc    C:\WINDOWS\System32\WaaSMedicSvc.dll
20:38:17.0971 0x2288  WaaSMedicSvc - ok
20:38:17.0986 0x2288  [ 1F16C8283230EF1F1C4E135D1C2C859B, E4F672C7E58490F82F859CAEEDD57D8ABCC31DE62A42A956BEE47113D365BE35 ] WacomPen        C:\WINDOWS\System32\drivers\wacompen.sys
20:38:17.0986 0x2288  WacomPen - ok
20:38:18.0017 0x2288  [ D765B98325D89C076FEEAB1282CD08EA, AC2F0A68A2BCAAF2DECB0AAF1B50D652ED8B631B08D06B910B407FEF9069412E ] WalletService   C:\WINDOWS\system32\WalletService.dll
20:38:18.0017 0x2288  WalletService - ok
20:38:18.0049 0x2288  [ 438B3E55D9D700C1C0424642872C2E28, 161F9F1F666717D95AF7EC984DDDC4D7E13844617108346FFC49A4EE99AE812F ] wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
20:38:18.0049 0x2288  wanarp - ok
20:38:18.0049 0x2288  [ 438B3E55D9D700C1C0424642872C2E28, 161F9F1F666717D95AF7EC984DDDC4D7E13844617108346FFC49A4EE99AE812F ] wanarpv6        C:\WINDOWS\system32\DRIVERS\wanarp.sys
20:38:18.0049 0x2288  wanarpv6 - ok
20:38:18.0080 0x2288  [ 8449398F11D49864117105679B539816, 8FD3B9C72066D6A983D062DE72EEF9769339EACBF4E0D303B9E12343C9D5DE6C ] WarpJITSvc      C:\WINDOWS\System32\Windows.WARP.JITService.dll
20:38:18.0080 0x2288  WarpJITSvc - ok
20:38:18.0127 0x2288  [ 17270A354A66590953C4AAC1CF54E507, 9954394B43783061F9290706320CC65597C29176D5B8E7A26FA1D6B3536832B4 ] wbengine        C:\WINDOWS\system32\wbengine.exe
20:38:18.0158 0x2288  wbengine - ok
20:38:18.0189 0x2288  [ 9E2D304905CA820DFB0F00A52AD0ED89, 169116BE59C369E925F6094466E17FC940039EFE1E373FD2510B5D9CE15C1D7E ] WbioSrvc        C:\WINDOWS\System32\wbiosrvc.dll
20:38:18.0205 0x2288  WbioSrvc - ok
20:38:18.0236 0x2288  [ 418302F3916FEB31C6F9312D91DDE11C, AEAE4B987730AD269D73141AE10B23985FD2001FBBE9920C2EB5538C1793DC9C ] wcifs           C:\WINDOWS\system32\drivers\wcifs.sys
20:38:18.0236 0x2288  wcifs - ok
20:38:18.0283 0x2288  [ 96641E8D750FC643596E0AC485047674, 684475E68CA2804D91D78B4A1DA568CFF8A7D3AD088505BF737E87AFDA9DA4EA ] Wcmsvc          C:\WINDOWS\System32\wcmsvc.dll
20:38:18.0299 0x2288  Wcmsvc - ok
20:38:18.0330 0x2288  [ 6CDE91D497A3EC19796DE53DEBD74FB0, ACBBCBFE7A953F3CFF10A035A52984D7DB0C0B4C6B735F53006036F4CCC15059 ] wcncsvc         C:\WINDOWS\System32\wcncsvc.dll
20:38:18.0345 0x2288  wcncsvc - ok
20:38:18.0392 0x2288  [ 2F814379FE1FF9DC891953674406BCA1, ACC9B126A8A5D58AF76F0A492C0EBC75925C3B59EAE89062AEF0FFADF60E3A2B ] wcnfs           C:\WINDOWS\system32\drivers\wcnfs.sys
20:38:18.0392 0x2288  wcnfs - ok
20:38:18.0455 0x2288  [ FD35100B4266D01C5F986048BD78D544, 1B9970251A57508159CB6A8EBAC5AFD532A6FCB8B1ACE05890650B5CC1535409 ] WdBoot          C:\WINDOWS\system32\drivers\wd\WdBoot.sys
20:38:18.0455 0x2288  WdBoot - ok
20:38:18.0502 0x2288  [ 256DEFB7A885F44D076D7E0984BA0EF3, BDABDD3DCA3D1F21DA70FF90A16550CE990B6B6A6567C37C3AE1ECCE2086FF6D ] Wdf01000        C:\WINDOWS\system32\drivers\Wdf01000.sys
20:38:18.0502 0x2288  Wdf01000 - ok
20:38:18.0533 0x2288  [ E11B693483CC8E313A4462CDF10CDF02, B1E3B300AEC3079D3A4CD99AA5B4FC51B96D49856DC1688A5F55F1C8B90904FC ] WdFilter        C:\WINDOWS\system32\drivers\wd\WdFilter.sys
20:38:18.0533 0x2288  WdFilter - ok
20:38:18.0564 0x2288  [ BB37AF6E45E0F69222E057A74B4AFE1E, 4662064205BEC0DB7B10F1412E0A09A6E5E3B16DE443AEF7F79ACA3ACE24A51D ] WdiServiceHost  C:\WINDOWS\system32\wdi.dll
20:38:18.0564 0x2288  WdiServiceHost - ok
20:38:18.0564 0x2288  [ BB37AF6E45E0F69222E057A74B4AFE1E, 4662064205BEC0DB7B10F1412E0A09A6E5E3B16DE443AEF7F79ACA3ACE24A51D ] WdiSystemHost   C:\WINDOWS\system32\wdi.dll
20:38:18.0580 0x2288  WdiSystemHost - ok
20:38:18.0627 0x2288  [ CE772158E0F6F92F648E70DD976411F0, 9A6E232923CB70F891330FC0685BE05F70C996176683D6D490DB8A529932FE95 ] wdiwifi         C:\WINDOWS\system32\DRIVERS\wdiwifi.sys
20:38:18.0642 0x2288  wdiwifi - ok
20:38:18.0674 0x2288  [ A6C92A5F2982EBB8788E0690C19048C4, 85C54A99DD43DC1FAC7FD2A31288CEC7501F795DE8FA86857790F4CCD5AF7C18 ] WdmCompanionFilter C:\WINDOWS\system32\drivers\WdmCompanionFilter.sys
20:38:18.0674 0x2288  WdmCompanionFilter - ok
20:38:18.0689 0x2288  [ 2E123D61E45D51B0B9A10DFD13457B48, 31052ECC30B4671292B60C4AA16D3FF53875DCAA6FABD0E68735A28940AABDA2 ] WdNisDrv        C:\WINDOWS\system32\drivers\wd\WdNisDrv.sys
20:38:18.0689 0x2288  WdNisDrv - ok
20:38:18.0877 0x2288  [ 21814BCBEAB160F1D98C05C4D472337B, 80B5D7927E0983C81AE45B41883E4A3CE4AF78AB676F4443007C5818B19B2E64 ] WdNisSvc        C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2003.8-0\NisSrv.exe
20:38:18.0924 0x2288  WdNisSvc - ok
20:38:18.0955 0x2288  [ 125E37627FA664B417DCD1EC8CA381FA, A4862F245A5D5C3E3B70F3ADB522B0017908352CE04E57802FE64DABD0BDF7E0 ] WebClient       C:\WINDOWS\System32\webclnt.dll
20:38:18.0955 0x2288  WebClient - ok
20:38:18.0986 0x2288  [ BDD1061D880EC049CC42E5AED90AF4C6, B78334BEB2E83564A0775133F517D545B580ED14408D91F6C03A01C8AA8283EF ] Wecsvc          C:\WINDOWS\system32\wecsvc.dll
20:38:19.0002 0x2288  Wecsvc - ok
20:38:19.0017 0x2288  [ CBA85827716DE89106F8E4AD7430620C, EF2FEAD68FE003DAC52BC2098962F397DF80B7DCD79A8F45012A050C7C0E2DB1 ] WEPHOSTSVC      C:\WINDOWS\system32\wephostsvc.dll
20:38:19.0017 0x2288  WEPHOSTSVC - ok
20:38:19.0064 0x2288  [ 709E33220A2BA7CCD36993B7CEE6D1AA, B1F503DA3BCCAD661E628413B282345444AFB73D35A6B5E9068DC76CA60E6C02 ] wercplsupport   C:\WINDOWS\System32\wercplsupport.dll
20:38:19.0064 0x2288  wercplsupport - ok
20:38:19.0095 0x2288  [ E241D0B289AB8CFAD7A6E10BA07B8642, AD10645E20C27B92693D7900BB67A57CE02C82246576D884090FE3EAD743C505 ] WerSvc          C:\WINDOWS\System32\WerSvc.dll
20:38:19.0095 0x2288  WerSvc - ok
20:38:19.0127 0x2288  [ 0B82A5E82CB96CDCFAE97C0F5DCB1B13, 1A6EB6464662F8EA5BA9AA9FA6B9E5A085F3931B1813F2E7C784F9AD4AB036B2 ] WFDSConMgrSvc   C:\WINDOWS\System32\wfdsconmgrsvc.dll
20:38:19.0127 0x2288  WFDSConMgrSvc - ok
20:38:19.0220 0x2288  [ 24BB3C5E411D9702A245B3FE2ADF73F5, A57E2D999FEA06FADD2461F1948E33A5B2E2D2BDFF7BACF4C37FDD9E262E3B1B ] WFPLWFS         C:\WINDOWS\system32\drivers\wfplwfs.sys
20:38:19.0220 0x2288  WFPLWFS - ok
20:38:19.0236 0x2288  [ 7AE4D5A054C5EEF9EF9F42926B52FA47, A58CB62992AB846A31E197DF5161F50323D120DF73B7D33FE7D5F5B1AF209291 ] WiaRpc          C:\WINDOWS\System32\wiarpc.dll
20:38:19.0236 0x2288  WiaRpc - ok
20:38:19.0267 0x2288  [ 416B0938189ED0D4A8B5BBBE3F045269, 74B32619BE246D7DD6D520309692C32EE922852405DAB432CAF6012E72B495FF ] WIMMount        C:\WINDOWS\system32\drivers\wimmount.sys
20:38:19.0267 0x2288  WIMMount - ok
20:38:19.0299 0x2288  [ 331A9DAB79909E3012F0FBD1BA870757, B595B1832B0A24D781EA501A881513381182138766B2385C96C0E356300B1B66 ] WinDefend       C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2003.8-0\MsMpEng.exe
20:38:19.0299 0x2288  WinDefend - ok
20:38:19.0330 0x2288  [ B434A84F46C70F4E67B70ED70F024B7F, 64EEB8093BA2590E83D83C5AF7C2A025B88AF5681143BCA83671104266FEEA99 ] WindowsTrustedRT C:\WINDOWS\system32\drivers\WindowsTrustedRT.sys
20:38:19.0330 0x2288  WindowsTrustedRT - ok
20:38:19.0361 0x2288  [ 982774B74EE1419D641CEB66E394A4BA, 090C4CE6B76B3904B5AE73E4F1EEBCE619194C358874D7584537012F954C54BE ] WindowsTrustedRTProxy C:\WINDOWS\system32\drivers\WindowsTrustedRTProxy.sys
20:38:19.0361 0x2288  WindowsTrustedRTProxy - ok
20:38:19.0392 0x2288  [ 9CB035E4505B5B69EF0D91F8F8F9773C, B88B89F8786DF4FE0E495674974F9CC7ABB71CE59151D01BEF893F0B625B03FA ] WinHttpAutoProxySvc C:\WINDOWS\system32\winhttp.dll
20:38:19.0408 0x2288  WinHttpAutoProxySvc - ok
20:38:19.0455 0x2288  [ 0816C30E3395E667EFFFB92B4EA66A05, F6A9E7026AA60A6627680F232AE785EA9CF55FE970708E6E49151F601CC42FEE ] WinMad          C:\WINDOWS\System32\drivers\winmad.sys
20:38:19.0455 0x2288  WinMad - ok
20:38:19.0502 0x2288  [ E2376F73AAA2A4BBEF5F94DE095C788A, 65E8FAF81245C08B6668EFB5B7264B2EEBCC90F30F714E1B60C2F7B60AE070C5 ] Winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
20:38:19.0502 0x2288  Winmgmt - ok
20:38:19.0533 0x2288  [ E959DDD0BD1DE2D67591DA89B4D5C65F, 9C426AD484490BDE5D471DB638C197E36BC793D4A5F29976FDC4FDC15283575C ] WinNat          C:\WINDOWS\system32\drivers\winnat.sys
20:38:19.0533 0x2288  WinNat - ok
20:38:19.0611 0x2288  [ F7858EFE5B29CACDCFDC19C359B49A10, 8AAED75BFCF3B85BC9F0F4B1814810B759AF90D3956DCFDB406C3DBA7CD0D6B2 ] WinRM           C:\WINDOWS\system32\WsmSvc.dll
20:38:19.0658 0x2288  WinRM - ok
20:38:19.0674 0x2288  [ 91D3DC62C6EDDB6554CE14C0E0B4290F, 6F8F89B350FC6BC0D23A50C593F02514854AB7D6CD234D8C8AD4B5DDDD586BA0 ] WINUSB          C:\WINDOWS\System32\drivers\WinUSB.SYS
20:38:19.0689 0x2288  WINUSB - ok
20:38:19.0705 0x2288  [ F4C4FD42F8DD657157823DB617CC3A3D, D2A5ED039ED83010E0BB4BB1A69F9D142D42BE2C75E56CFCF3F157A735CB688E ] WinVerbs        C:\WINDOWS\System32\drivers\winverbs.sys
20:38:19.0705 0x2288  WinVerbs - ok
20:38:19.0736 0x2288  [ DB26C959850C6321223B2747F888C174, 64DD5C6E0FCE2D55BE8671E8A61A15EED80CC5412370A37D7EDEDDE7B2B5E6B4 ] wisvc           C:\WINDOWS\system32\flightsettings.dll
20:38:19.0752 0x2288  wisvc - ok
20:38:19.0830 0x2288  [ D5FABB94A02EC3263653E0DD90F58840, 449F9F78AC261418271B8CF30D1B35AFD001B87F20A316DB766923DDFAB84B1C ] WlanSvc         C:\WINDOWS\System32\wlansvc.dll
20:38:19.0877 0x2288  WlanSvc - ok
20:38:19.0923 0x2288  [ 8897E679CEF7422BF185A9AFEBB3DF5D, 1C93588A0A80ACE06B619FE85257378701018E58FE8B3C451F98CF22005F4014 ] wlidsvc         C:\WINDOWS\system32\wlidsvc.dll
20:38:19.0955 0x2288  wlidsvc - ok
20:38:20.0002 0x2288  [ 1B279ADD6A4150FD49A6276147098803, 6CC12957A0E7FF3DCCA28D8B715EDE9C94F329FD5BAB3366D4C70362325B31CE ] wlpasvc         C:\WINDOWS\System32\lpasvc.dll
20:38:20.0017 0x2288  wlpasvc - ok
20:38:20.0080 0x2288  [ C63B3526A9F53869F7826327C77E7E3B, 8FD44B84121ADED677D17ED07537EA676FCFCBA95D7BBDE154007E7B1CF2B649 ] WManSvc         C:\WINDOWS\system32\Windows.Management.Service.dll
20:38:20.0095 0x2288  WManSvc - ok
20:38:20.0095 0x2288  [ E4F25E6E790747073A09F9F8C997889C, 98455DD24AE076A2413EA599F83E0894F608C335F3FF2F3624A17E8EAF3B3C42 ] WmiAcpi         C:\WINDOWS\System32\drivers\wmiacpi.sys
20:38:20.0111 0x2288  WmiAcpi - ok
20:38:20.0142 0x2288  [ 9A48D32D7DBA794A40BF030DA500603B, CBF60ED17A5B9CF79523F1493BCCD52B3C39632C4C83DE1FD49CFD2B70F01530 ] wmiApSrv        C:\WINDOWS\system32\wbem\WmiApSrv.exe
20:38:20.0142 0x2288  wmiApSrv - ok
20:38:20.0189 0x2288  WMPNetworkSvc - ok
20:38:20.0220 0x2288  [ 9405C703D91F07F1F181DE916594EED3, 7626111256C3BECD0EE9E299A41149A367A28BACEE89CC2CDD46D7499B1B7D34 ] Wof             C:\WINDOWS\system32\drivers\Wof.sys
20:38:20.0236 0x2288  Wof - ok
20:38:20.0298 0x2288  [ C996632C873B749EF0ECA1A3F5318BD8, 4F411C75F7AB705BCF495B0E0BDAD1DF4B2AD7447E21CB14D2DFA1E82D1D881F ] workfolderssvc  C:\WINDOWS\system32\workfolderssvc.dll
20:38:20.0330 0x2288  workfolderssvc - ok
20:38:20.0392 0x2288  [ 18D607A0D31C459E34488ED99AD10A18, 25B438B7FA054F6A61E5A16890C0C5E368C3780655872F7357B41BE7A0142EB1 ] WpcMonSvc       C:\WINDOWS\System32\WpcDesktopMonSvc.dll
20:38:20.0408 0x2288  WpcMonSvc - ok
20:38:20.0462 0x2288  [ BF4CA66C2EF62BD7DE8D4A66CC9C79FF, 74DD4FBF70452D5B8029979AFCA1CE800EE72750F3E90B2F74355A2290AD6BE8 ] WPDBusEnum      C:\WINDOWS\system32\wpdbusenum.dll
20:38:20.0493 0x2288  WPDBusEnum - ok
20:38:20.0525 0x2288  [ 024924C9E79F51560B9133EEAB866BBF, F4D464BC02C7B96EF72AA9229A99A1AD32F56390F97972C33525EF0D85304261 ] WpdUpFltr       C:\WINDOWS\system32\drivers\WpdUpFltr.sys
20:38:20.0525 0x2288  WpdUpFltr - ok
20:38:20.0556 0x2288  [ B12FDDFD619C354D798E9E1C9FCF4642, 66F024A993834812277FB08AAD36FD69F79A92B403131FEB76E212ACFB58AB02 ] WpnService      C:\WINDOWS\system32\WpnService.dll
20:38:20.0556 0x2288  WpnService - ok
20:38:20.0571 0x2288  [ 3D1B4E335BB9CA8A998CD5E1B2EDE855, ECD704FE62C8920D7AC2B3DC040E9D41D8A6BEBCB457888B411D133635291F36 ] WpnUserService  C:\WINDOWS\System32\WpnUserService.dll
20:38:20.0587 0x2288  WpnUserService - ok
20:38:20.0603 0x2288  [ 2B98DFC181823C8D8AA39C4CC577DE3E, DAFF7CE8868299AF5EFA844C2E1F84B7EE7E498B1AFF16965CE41C2E75B2F4E4 ] ws2ifsl         C:\WINDOWS\system32\drivers\ws2ifsl.sys
20:38:20.0603 0x2288  ws2ifsl - ok
20:38:20.0634 0x2288  [ 1C2144B4B20C26446E7DCCCEC73FDE68, 6E773307A8CD621CDC1520225D5D1DF63FECFB240DED2326C4DDBD739A12DCE3 ] wscsvc          C:\WINDOWS\System32\wscsvc.dll
20:38:20.0650 0x2288  wscsvc - ok
20:38:20.0650 0x2288  WSearch - ok
20:38:20.0728 0x2288  [ 561B3A58A74ED878AFF41A294E443C8E, 557E9AD8B80C49CD13C26EC4334EB9997B512D19E25C1FB3B79E44177797104A ] wuauserv        C:\WINDOWS\system32\wuaueng.dll
20:38:20.0790 0x2288  wuauserv - ok
20:38:20.0821 0x2288  [ E253BF0FF1EA509A208CBAAD210839A9, ADED1BAC25FEDC2099FC07E928AB0595C7AA3E78FF7F7EBB1D95DFC18CA4FF7E ] WudfPf          C:\WINDOWS\system32\drivers\WudfPf.sys
20:38:20.0837 0x2288  WudfPf - ok
20:38:20.0853 0x2288  [ 67F6B1D6076955F8F6D51D3A76808427, 8DDC68736132B70107F19A1AB0A2575A57A23E42C5BB9BEFC72ACB7736F63B19 ] WUDFRd          C:\WINDOWS\System32\drivers\WUDFRd.sys
20:38:20.0853 0x2288  WUDFRd - ok
20:38:20.0868 0x2288  [ 67F6B1D6076955F8F6D51D3A76808427, 8DDC68736132B70107F19A1AB0A2575A57A23E42C5BB9BEFC72ACB7736F63B19 ] WUDFWpdFs       C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
20:38:20.0868 0x2288  WUDFWpdFs - ok
20:38:20.0884 0x2288  [ 67F6B1D6076955F8F6D51D3A76808427, 8DDC68736132B70107F19A1AB0A2575A57A23E42C5BB9BEFC72ACB7736F63B19 ] WUDFWpdMtp      C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
20:38:20.0884 0x2288  WUDFWpdMtp - ok
20:38:20.0978 0x2288  [ 0D8B1067D589EC26E90C9B39A90207DB, 877BC639A0C21EA23B433FEE798920CA70667DAB15308A47537F3B8C74DBF9D6 ] WwanSvc         C:\WINDOWS\System32\wwansvc.dll
20:38:21.0009 0x2288  WwanSvc - ok
20:38:21.0056 0x2288  [ B62C41E672194A919028786E4A480541, 1A5DCE5775CD0A511F0EDCB23669525590F0F94455C567DDB76DD15C8F25D347 ] XblAuthManager  C:\WINDOWS\System32\XblAuthManager.dll
20:38:21.0071 0x2288  XblAuthManager - ok
20:38:21.0118 0x2288  [ E079354E7F1DEA98C8F1A6AF3F0618C3, 78BBC0FDCBD91394E2C74205568703FD5AEE39C54BA43AA78E95ADE9DC75A8E6 ] XblGameSave     C:\WINDOWS\System32\XblGameSave.dll
20:38:21.0134 0x2288  XblGameSave - ok
20:38:21.0165 0x2288  [ 6E6E28D046627693CF1D2E905DC69BD1, 31D39CF82E1E98D367F631CFE5B6C6A42E13C1C01BBAABFE2CA35721627D4E43 ] xboxgip         C:\WINDOWS\System32\drivers\xboxgip.sys
20:38:21.0181 0x2288  xboxgip - ok
20:38:21.0196 0x2288  [ 04BE9428D1E276DF3F6A7A5552AAB546, ACC3A8180601054BFD8FBE743A7F9CB5F2398FD463FD7EA5EF2EF78953BADBBD ] XboxGipSvc      C:\WINDOWS\System32\XboxGipSvc.dll
20:38:21.0212 0x2288  XboxGipSvc - ok
20:38:21.0259 0x2288  [ 5A4F5B800B1AE1B196D3D09D1E973C9F, 8BB5D0ABF6DF5E48F17480AE72D568EBBF59E2D69E359AD951970A5BF35BFDD8 ] XboxNetApiSvc   C:\WINDOWS\system32\XboxNetApiSvc.dll
20:38:21.0275 0x2288  XboxNetApiSvc - ok
20:38:21.0306 0x2288  [ C73809EA08CF05A9A78E7F65F63D3294, 4754266D964B7C2B7C4BF16B96FBBF790D90C2A96394544272444ECE9FF97DE6 ] xinputhid       C:\WINDOWS\System32\drivers\xinputhid.sys
20:38:21.0306 0x2288  xinputhid - ok
20:38:21.0306 0x2288  ================ Scan global ===============================
20:38:21.0337 0x2288  [ 522F9EFF8C957F906154B91A8DA698AE, FCB686BB58782506BA6A8C4F924B0872608249091C8FF9DD7129D0146ACC2BFE ] C:\WINDOWS\system32\basesrv.dll
20:38:21.0368 0x2288  [ 19979E1729CFA0E56EB4CCCB198DFD05, 7F2A683F28877562409D810946DDCA2F069715CDFB249602251DFA50065FFF7A ] C:\WINDOWS\system32\winsrv.dll
20:38:21.0384 0x2288  [ 1985068B049D1FFBB8D3F837393DF81F, B99151A18AAA83C0D6931245E6DA250346F1A61B0F8F058123E47D9BC5C12BE8 ] C:\WINDOWS\system32\sxssrv.dll
20:38:21.0415 0x2288  [ D8E577BF078C45954F4531885478D5A9, DFBEA9E8C316D9BC118B454B0C722CD674C30D0A256340200E2C3A7480CBA674 ] C:\WINDOWS\system32\services.exe
20:38:21.0431 0x2288  [ Global ] - ok
20:38:21.0431 0x2288  ================ Scan MBR ==================================
20:38:21.0446 0x2288  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
20:38:21.0603 0x2288  \Device\Harddisk0\DR0 - ok
20:38:21.0603 0x2288  ================ Scan VBR ==================================
20:38:21.0603 0x2288  [ 5C7A9A434D21B225273826D0A4F46245 ] \Device\Harddisk0\DR0\Partition1
20:38:21.0603 0x2288  \Device\Harddisk0\DR0\Partition1 - ok
20:38:21.0618 0x2288  [ 79494811A18D33A3A66FF0DED89AF86F ] \Device\Harddisk0\DR0\Partition2
20:38:21.0618 0x2288  \Device\Harddisk0\DR0\Partition2 - ok
20:38:21.0618 0x2288  [ CD4AB2AEBE2D6E3FD57FA38802BEF294 ] \Device\Harddisk0\DR0\Partition3
20:38:21.0618 0x2288  \Device\Harddisk0\DR0\Partition3 - ok
20:38:21.0618 0x2288  ================ Scan active images ========================
20:38:21.0618 0x2288  ================ Scan generic autorun ======================
20:38:21.0650 0x2288  [ 2E1112EF004D0F4EE4A2C3FD813E4038, C6449D7A40A1E55BEEE19D33AC0F2FF9F927FCFD47484703D56F37F39CBE0D32 ] C:\Program Files\Avast Software\Avast\AvLaunch.exe
20:38:21.0650 0x2288  AvastUI.exe - ok
20:38:21.0696 0x2288  OneDriveSetup - ok
20:38:21.0743 0x2288  GoogleDriveFS - ok
20:38:21.0775 0x2288  [ 251E51E2FEDCE8BB82763D39D631EF89, 2682086ACE1970D5573F971669591B731F87D749406927BD7A7A4B58C3C662E9 ] C:\Program Files (x86)\Windows Mail\wab.exe
20:38:21.0790 0x2288  WAB Migrate - ok
20:38:21.0790 0x2288  OneDriveSetup - ok
20:38:21.0790 0x2288  GoogleDriveFS - ok
20:38:21.0821 0x2288  [ 251E51E2FEDCE8BB82763D39D631EF89, 2682086ACE1970D5573F971669591B731F87D749406927BD7A7A4B58C3C662E9 ] C:\Program Files (x86)\Windows Mail\wab.exe
20:38:21.0853 0x2288  WAB Migrate - ok
20:38:21.0884 0x2288  CCleaner Smart Cleaning - ok
20:38:21.0946 0x2288  [ 0480664376AC4AB5ABB2F0E2EBD7C730, F72C8333C60622BDE65E887C89A1C616C252A303D1A772306DF8D5E19A0504BE ] C:\Program Files\Microsoft OneDrive\OneDrive.exe
20:38:21.0978 0x2288  OneDrive - ok
20:38:22.0056 0x2288  [ 8A2122E8162DBEF04694B9C3E0B6CDEE, B99D61D874728EDC0918CA0EB10EAB93D381E7367E377406E65963366C874450 ] C:\WINDOWS\system32\cmd.exe
20:38:22.0056 0x2288  Delete Cached Update Binary - ok
20:38:22.0087 0x2288  [ 8A2122E8162DBEF04694B9C3E0B6CDEE, B99D61D874728EDC0918CA0EB10EAB93D381E7367E377406E65963366C874450 ] C:\WINDOWS\system32\cmd.exe
20:38:22.0087 0x2288  Delete Cached Standalone Update Binary - ok
20:38:22.0149 0x2288  [ 0480664376AC4AB5ABB2F0E2EBD7C730, F72C8333C60622BDE65E887C89A1C616C252A303D1A772306DF8D5E19A0504BE ] C:\Program Files\Microsoft OneDrive\OneDrive.exe
20:38:22.0181 0x2288  OneDrive - ok
20:38:22.0228 0x2288  [ 0480664376AC4AB5ABB2F0E2EBD7C730, F72C8333C60622BDE65E887C89A1C616C252A303D1A772306DF8D5E19A0504BE ] C:\Program Files\Microsoft OneDrive\OneDrive.exe
20:38:22.0274 0x2288  OneDrive - ok
20:38:22.0384 0x2288  [ CA53014CA3B6D8A30B9902F45D137758, 1ADCF82242A462BF8489ADDCD2597784CDD9281821BB58E827C9BA9C1ED89135 ] C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
20:38:22.0431 0x2288  MicrosoftEdgeAutoLaunch_1849DA42FCDE0467F8491EE500D8A121 - ok
20:38:22.0446 0x2288  GoogleDriveFS - ok
20:38:22.0446 0x2288  OneDriveSetup - ok
20:38:22.0446 0x2288  GoogleDriveFS - ok
20:38:22.0462 0x2288  [ 251E51E2FEDCE8BB82763D39D631EF89, 2682086ACE1970D5573F971669591B731F87D749406927BD7A7A4B58C3C662E9 ] C:\Program Files (x86)\Windows Mail\wab.exe
20:38:22.0462 0x2288  WAB Migrate - ok
20:38:22.0509 0x2288  [ 0480664376AC4AB5ABB2F0E2EBD7C730, F72C8333C60622BDE65E887C89A1C616C252A303D1A772306DF8D5E19A0504BE ] C:\Program Files\Microsoft OneDrive\OneDrive.exe
20:38:22.0540 0x2288  OneDrive - ok
20:38:22.0556 0x2288  AV detected via SS2: Windows Defender, windowsdefender:// (  ), 0x60100 ( disabled : updated )
20:38:22.0556 0x2288  AV detected via SS2: Avast Antivirus, C:\Program Files\Avast Software\Avast\wsc_proxy.exe ( 21.4.6162.0 ), 0x41000 ( enabled : updated )
20:38:22.0556 0x2288  AV detected via SS2: Malwarebytes, C:\Program Files\Malwarebytes\Anti-Malware\MBAMWsc.exe ( 3.0.0.207 ), 0x61000 ( enabled : updated )
20:38:22.0571 0x2288  FW detected via SS2: Avast Antivirus, C:\Program Files\Avast Software\Avast\wsc_proxy.exe ( 21.4.6162.0 ), 0x41000 ( enabled )
20:38:22.0665 0x2288  ============================================================
20:38:22.0665 0x2288  Scan finished
20:38:22.0665 0x2288  ============================================================
20:38:22.0690 0x1a64  Detected object count: 1
20:38:22.0690 0x1a64  Actual detected object count: 1
21:08:46.0542 0x1a64  AmonDestroyaDOF ( LockedService.Multi.Generic ) - skipped by user
21:08:46.0542 0x1a64  AmonDestroyaDOF ( LockedService.Multi.Generic ) - User select action: Skip 

Buenas @Mayte_Esteban, dicho programa ha encontrado una infección y usted le ha dado a la opción: Skip que significa: (Omitir) con lo cual usted no ha eliminado la infección de su ordenador que ha encontrado dicho programa!

Una pregunta @Mayte_Esteban, ¿¿Porque le ha dado usted a la opción de: Skip (Omitir)??

Usted debe de seleccionar la acción que pone: Delete que significa: Eliminar ya que si no usted no va a eliminar dicha infección de su ordenador

Quedo a la espera de su respuesta!

Repita de nuevo el Proceso de Análisis y al finalizar todo el Proceso de Análisis le saldrá una pantalla similar a esta:

capturada5

Pues bien, me manda la Captura de Pantalla cuando haya finalizado todo el Proceso de Análisis y NO toque ninguna opción y yo le digo los procedimientos que debe de seguir.

Quedo a la espera de su respuesta!

1 me gusta

Porque el programa así lo indicó, me pareció raro que indicase skip en una infección y ví el desplegable, por ese motivo cambió de automático a manual. Realicé la acción que el programa en automático indicó-> skip y continuar, para poder seguir con el análisis. Repito el proceso, gracias.

Catpura del proceso

Hola, hice el proceso y en la captura aparece el elemento que solicitabas indicara, no hice ninguna acción tal como señalabas a espera de tus indicaciones, muchas gracias.

1 me gusta

Disculpe la demora a veces la vida se me complica exponencialmente!

En la opción que pone: Skip en donde se refleja la infección ve al desplegable, y de entre las opciones que se refleja en dicho desplegable clikea en la opción que pone: Delete y seguidamente en la pestaña que pone: Continue.

P.D: Si dicho programa le pide Reiniciar! pues Reinicie, pero SÓLO si se lo solicita dicho programa.

Quedo a la espera de su respuesta!

Nota:

Siga su Manual de Uso y las indicaciones que le he indicado previamente y me manda una Captura de Pantalla y el Informe con todas las amenazas e infecciones que se refleje que haya eliminado dicho programa.

Para poder enviarme el Informe que le solicito en este foro correctamente acceda a la Url que le dejo a continuación siga los pasos que se le indiquen para poder enviarme dicho Informe:

Url: ¿Como Pegar Reportes en el Foro?

Quedo a la espera de su respuesta!

Ha solicitado reinicio tras marcar delete y realizar la acción. Captura tras eliminación.

Este es el informe parte 1

16:05:05.0172 0x22c0  TDSS rootkit removing tool 3.1.0.28 Apr  9 2019 21:11:46
16:05:07.0672 0x22c0  ============================================================
16:05:07.0672 0x22c0  Current date / time: 2022/06/01 16:05:07.0672
16:05:07.0672 0x22c0  SystemInfo:
16:05:07.0672 0x22c0  
16:05:07.0672 0x22c0  OS Version: 10.0.19044 ServicePack: 0.0
16:05:07.0672 0x22c0  Product type: Workstation
16:05:07.0672 0x22c0  ComputerName: GINES-PC
16:05:08.0266 0x22c0  UserName: Gines
16:05:08.0266 0x22c0  Windows directory: C:\WINDOWS
16:05:08.0266 0x22c0  System windows directory: C:\WINDOWS
16:05:08.0266 0x22c0  Running under WOW64
16:05:08.0266 0x22c0  Processor architecture: Intel x64
16:05:08.0266 0x22c0  Number of processors: 2
16:05:08.0266 0x22c0  Page size: 0x1000
16:05:08.0266 0x22c0  Boot type: Normal boot
16:05:08.0266 0x22c0  CodeIntegrityOptions = 0x00000001
16:05:08.0266 0x22c0  ============================================================
16:05:08.0266 0x22c0  KLMD ARK init status: drvProperties = 0xEF0F02, osBuild = 19041.0, osProperties = 0x1D
16:05:08.0266 0x22c0  KLMD BG init status: drvProperties = 0xEF0F02, osBuild = 19041.0, osProperties = 0x1D
16:05:08.0266 0x22c0  BG loaded
16:05:16.0281 0x22c0  System UUID: {2A4E367D-B0B5-120D-270E-38CC4A6984E0}
16:05:21.0687 0x22c0  !crdlk
16:05:22.0030 0x22c0  Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'A'
16:05:22.0124 0x22c0  ============================================================
16:05:22.0124 0x22c0  \Device\Harddisk0\DR0:
16:05:22.0155 0x22c0  MBR partitions:
16:05:22.0155 0x22c0  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
16:05:22.0155 0x22c0  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0xC2041E1
16:05:22.0155 0x22c0  \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0xC350800, BlocksNum 0x683B5800
16:05:22.0155 0x22c0  ============================================================
16:05:22.0233 0x22c0  C: <-> \Device\Harddisk0\DR0\Partition2
16:05:22.0421 0x22c0  D: <-> \Device\Harddisk0\DR0\Partition3
16:05:22.0421 0x22c0  ============================================================
16:05:22.0421 0x22c0  Initialize success
16:05:22.0421 0x22c0  ============================================================
16:06:00.0916 0x1e24  ============================================================
16:06:00.0916 0x1e24  Scan started
16:06:00.0916 0x1e24  Mode: Manual; SigCheck; TDLFS; 
16:06:00.0916 0x1e24  ============================================================
16:06:00.0916 0x1e24  KSN ping started
16:06:21.0087 0x1e24  KSN ping finished: true
16:06:34.0430 0x1e24  ================ Scan BIOS =================================
16:06:34.0445 0x1e24  BIOS info: vendor = American Megatrends Inc., version = F6, releaseDate = 07/09/2014
16:06:34.0445 0x1e24  Base board info: manufacturer = Gigabyte Technology Co., Ltd., product = H81M-HD3, version = x.x
16:06:35.0914 0x1e24  [ 502F593094817920C6CA95CA561071A5, E806B51586BEF9082214DEB1E452026315891786077B039AE7800ABE8CF11FFF ] BIOS
16:06:35.0914 0x1e24  BIOS - ok
16:06:35.0914 0x1e24  ================ Scan system memory ========================
16:06:35.0914 0x1e24  System memory - ok
16:06:35.0914 0x1e24  ================ Scan services =============================
16:06:37.0414 0x1e24  [ AF50A9D10FF7B1D999BA99D00CC128B3, 3D6E0579821BFA91B7F0A6E6DDC6E03BD3389202AD1A079B825D18D2A76250A0 ] 1394ohci        C:\WINDOWS\System32\drivers\1394ohci.sys
16:06:37.0679 0x1e24  1394ohci - ok
16:06:37.0695 0x1e24  [ 1C29610EDF5FE3C9D313207BD65BCDD0, 5A29D80AF47D08998125CB81BC1D4E84093291A74DE422B63F7BBDA7BDE95311 ] 3ware           C:\WINDOWS\system32\drivers\3ware.sys
16:06:37.0726 0x1e24  3ware - ok
16:06:37.0773 0x1e24  [ D8EB495D2FE95C49E82DEE759EC952F1, C456AEE4D9867AB4725778CBDEE73A645B2357BB70A3A545B8B8769121D03345 ] AarSvc          C:\WINDOWS\System32\AarSvc.dll
16:06:37.0820 0x1e24  AarSvc - ok
16:06:37.0898 0x1e24  [ 43FB8BB52B9333E8C6A76DDEC0BF8CFC, 37328E9BDF7242B8A44CE71A2750FFB7BB7B3C761BD3214C16A36D4E2944840B ] ACPI            C:\WINDOWS\system32\drivers\ACPI.sys
16:06:37.0945 0x1e24  ACPI - ok
16:06:37.0961 0x1e24  [ 6A424E6ABD1970E23ECF3DA85725B6BF, 1D576471A8035AD3FF5B0616F47B79E43AA367ECDF009D7CADDA0F11F13A1345 ] AcpiDev         C:\WINDOWS\System32\drivers\AcpiDev.sys
16:06:38.0007 0x1e24  AcpiDev - ok
16:06:38.0023 0x1e24  [ 70D9FC69CED08E86B888717CC5C37367, 34856C805B67F3EE4ABFD81B61879112344C343BC7E76A7A466FAD276E0E5165 ] acpiex          C:\WINDOWS\system32\Drivers\acpiex.sys
16:06:38.0039 0x1e24  acpiex - ok
16:06:38.0054 0x1e24  [ EF7CB34FB2D56305EF942012499AB8F7, 3A9A504797FD22BB5447BB36597D5001320ABC0D4A1853D478C038EAC6847913 ] acpipagr        C:\WINDOWS\System32\drivers\acpipagr.sys
16:06:38.0086 0x1e24  acpipagr - ok
16:06:38.0117 0x1e24  [ 33B5ED555018128792AFFCDC9AF7AFD2, 1E7C5FADA2486EE31289A4BEFB70AEA173190671C64995441651903CF31E5033 ] AcpiPmi         C:\WINDOWS\System32\drivers\acpipmi.sys
16:06:38.0148 0x1e24  AcpiPmi - ok
16:06:38.0164 0x1e24  [ 85A86944A6163F0B7A8B10203B70CB9A, 72D35F5DB8714D38E4050A7F7A457C4AD99E3EA212040704F1C1ECBB70E865E9 ] acpitime        C:\WINDOWS\System32\drivers\acpitime.sys
16:06:38.0195 0x1e24  acpitime - ok
16:06:38.0242 0x1e24  [ 494072BF9EC1FDFFD54C47A80821FE6E, 8F302F43314C2F5C80E1D22B17C0246EF8A275C63FDB3C1CDC0DD999C4715A77 ] Acx01000        C:\WINDOWS\system32\drivers\Acx01000.sys
16:06:38.0367 0x1e24  Acx01000 - ok
16:06:38.0585 0x1e24  [ 437A1C97D7A8A11006C4458408DE4A9E, 8771A5C865FBD2B1FF9315665BB17A87B3D22C237A35A1A22B72C64326A48700 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
16:06:38.0601 0x1e24  AdobeARMservice - ok
16:06:38.0632 0x1e24  [ B4B75D49BFBCFB2762593F77E5BD7789, B83072D77685F973701EC6629D8AC2626FDEFD657A4DB9AA7D532960A29FC67C ] ADP80XX         C:\WINDOWS\system32\drivers\ADP80XX.SYS
16:06:38.0679 0x1e24  ADP80XX - ok
16:06:38.0710 0x1e24  [ 6679AED357B1F936C6A93B2C60891B4A, D7EB57714D3C7803D11B5869BD6B778F48FE986335135CCCD84ACB19437D3817 ] AFD             C:\WINDOWS\system32\drivers\afd.sys
16:06:38.0757 0x1e24  AFD - ok
16:06:38.0789 0x1e24  [ 3ABB28B13D5AE96BAB7E26FFDDCF3466, 8E0369455B1428195AC4D8A694B9E23705068CCB3F641EF3238816B6AD7E34E6 ] afunix          C:\WINDOWS\system32\drivers\afunix.sys
16:06:38.0835 0x1e24  afunix - ok
16:06:38.0867 0x1e24  [ E6C21EB564C1A177B484C3A53AEA49BF, F2BBD6F46E55B64F0F5798A029DD51433E961712C1FED12999199FA49058776D ] ahcache         C:\WINDOWS\system32\DRIVERS\ahcache.sys
16:06:38.0914 0x1e24  ahcache - ok
16:06:38.0945 0x1e24  [ 526FE18DB976D9A1AE19FBC53FA690B1, 4E2623243A9BB61F7211E591C24EDB70B07974A7FA21E3F14C683F27E975777F ] AJRouter        C:\WINDOWS\System32\AJRouter.dll
16:06:39.0023 0x1e24  AJRouter - ok
16:06:39.0054 0x1e24  [ 551C155F4FCE82BBA4CC92E56F1ECB84, 6ABE94DF833EC0E6D145429BBA99FDCA9AD3FCBB685A432B20C04F74DE9A42A5 ] ALG             C:\WINDOWS\System32\alg.exe
16:06:39.0085 0x1e24  ALG - ok
16:06:39.0101 0x1e24  [ 55578CF027B0AE9F0D653B209C9F1B6D, 46A53925BAA34FA9D87E7C3157504A4557D81CD8B8608E7AB6CAF02F482F7792 ] amdgpio2        C:\WINDOWS\System32\drivers\amdgpio2.sys
16:06:39.0132 0x1e24  amdgpio2 - ok
16:06:39.0148 0x1e24  [ D0E26E590DE1424CCC4F77D1687049EF, 387811D57DEF06C9736D9F0BAB0DFB0F83DBAB19E5489BF9A6DCDCBD682DD8FE ] amdi2c          C:\WINDOWS\System32\drivers\amdi2c.sys
16:06:39.0226 0x1e24  amdi2c - ok
16:06:39.0257 0x1e24  [ 93BD3F285DC569B55A0C4E8552707904, 70236719B2E17D90BF6A315DCD2813B26DF986089ACD7DE9428306725A1957AB ] AmdK8           C:\WINDOWS\System32\drivers\amdk8.sys
16:06:39.0273 0x1e24  AmdK8 - ok
16:06:39.0304 0x1e24  [ E9683F9A87B6393C192B1944603F9A30, F83033C42E3899A4A1CDE084BB9DC9EFEC2E88673490E69DF8D690F24E6A17AF ] AmdPPM          C:\WINDOWS\System32\drivers\amdppm.sys
16:06:39.0320 0x1e24  AmdPPM - ok
16:06:39.0335 0x1e24  [ 70D7BE6BB8D22A38AD0040A1EC41C1FE, D5231F97E5432234A8A19904E59C324E825AF04881AA195C19CCC9E6A7684B14 ] amdsata         C:\WINDOWS\system32\drivers\amdsata.sys
16:06:39.0382 0x1e24  amdsata - ok
16:06:39.0429 0x1e24  [ C47EDC5D81546677A772CFC86281ED29, 71C7E7E5AA74596A6725D8F70F1DE9A0C63D3C3E120D9CCF8A508854AC340A23 ] amdsbs          C:\WINDOWS\system32\drivers\amdsbs.sys
16:06:39.0445 0x1e24  amdsbs - ok
16:06:39.0460 0x1e24  [ F1A1CA86A1E3782A0CABB07EF3663C70, 1FC1D4287DB56A387BDF917C0CB3BFC30CA5D792A350E2EDBBDDEBF8127E1AF9 ] amdxata         C:\WINDOWS\system32\drivers\amdxata.sys
16:06:39.0476 0x1e24  amdxata - ok
16:06:39.0492 0x1e24  [ CB6E7844F25F5129DBB70C409B67EC1C, E0618AE7FC964B92091AFE3F33AAD3EE617E36BE6F20E4543964E8313761E6F4 ] AmUStor         C:\WINDOWS\system32\drivers\AmUStorU.sys
16:06:39.0664 0x1e24  AmUStor - ok
16:06:39.0742 0x1e24  [ F035D10C4383A4A2D701EF8B487323EF, 21B7E80FE16CA3BE8517231FFC2DDFB9F96A22802BA4752F516BDF31AEF6145F ] AppID           C:\WINDOWS\system32\drivers\appid.sys
16:06:39.0757 0x1e24  AppID - ok
16:06:39.0789 0x1e24  [ E77EEABBECF7F3E761A3665E2D55A9B8, 22B178A762B301C87214E067C5D9FFEE464D48047170B58B97D1EDE3F2097C7E ] AppIDSvc        C:\WINDOWS\System32\appidsvc.dll
16:06:39.0820 0x1e24  AppIDSvc - ok
16:06:39.0851 0x1e24  [ 83C2F860796AAE848D509AC4F2031EC2, 3E7686672AB4F9A66B9D565006E79584A0C3ED5D8141EAEDF17D057465851EAC ] Appinfo         C:\WINDOWS\System32\appinfo.dll
16:06:39.0914 0x1e24  Appinfo - ok
16:06:39.0945 0x1e24  [ 0580A0182F5A3C8562CBA8B266690BDC, 7F140499E031405CC49A64DBFA704B9405966F1FE77637D6569050049529BB74 ] applockerfltr   C:\WINDOWS\system32\drivers\applockerfltr.sys
16:06:40.0007 0x1e24  applockerfltr - ok
16:06:40.0054 0x1e24  [ 188973F42C88B759B60AB3C39231C9DC, C406658C076AB5295F5B3830125D39E3A8049EF4E01C453FE4CB411C31D50C78 ] AppReadiness    C:\WINDOWS\system32\AppReadiness.dll
16:06:40.0101 0x1e24  AppReadiness - ok
16:06:40.0210 0x1e24  [ C3EA23628E287F907ED93188D5C8A305, E1D05A5EC7508878D979591DBB9F55E051EEC35C351A7942841A2758AA78DFC6 ] AppXSvc         C:\WINDOWS\system32\appxdeploymentserver.dll
16:06:40.0382 0x1e24  AppXSvc - ok
16:06:40.0398 0x1e24  [ 46FD8469080917EE12425AF692C4BC20, 96DCA25AE619F38640B22702A10BC3191626F3A36DE0E1B0EDA3B079EA9DEB24 ] arcsas          C:\WINDOWS\system32\drivers\arcsas.sys
16:06:40.0429 0x1e24  arcsas - ok
16:06:40.0460 0x1e24  [ D7C009307C8DA955CB34E785D6179FB1, 9E91F1FBC49292AC44BBF9ABEB0E2232D4858E0E47FBBD9F3BE93F75C7CA2491 ] aswArDisk       C:\WINDOWS\system32\drivers\aswArDisk.sys
16:06:40.0476 0x1e24  aswArDisk - ok
16:06:40.0523 0x1e24  [ 10692B04C166DFF25948434BB04CB366, F92557FF779BBA2A1BE0F66303C7BC3C7D83B44A2920ECCB1C2D26C27F72172B ] aswArPot        C:\WINDOWS\system32\drivers\aswArPot.sys
16:06:40.0538 0x1e24  aswArPot - ok
16:06:40.0867 0x1e24  [ 36A2BD6531262E255FD0F95BF99D4B9C, FB362B33C55CB31000D465AB3DE280132EC68F97A43C8347D5D35EBC6AF10BAB ] aswbIDSAgent    C:\Program Files\Avast Software\Avast\aswidsagent.exe
16:06:41.0038 0x1e24  aswbIDSAgent - ok
16:06:41.0101 0x1e24  [ CF1708EEDC46C0E43EE1C06C975192D0, 588576378FE825F3640C38887333D659EFAB8BCF5516FD3047D8E45064C153A4 ] aswbidsdriver   C:\WINDOWS\system32\drivers\aswbidsdriver.sys
16:06:41.0117 0x1e24  aswbidsdriver - ok
16:06:41.0163 0x1e24  [ 40EEF4420B37E73DC32B7F4A9AA1AC25, 90D9D41F16ED91B4F769BFFCF2B1EB9534E29B6560BC9F51A3B9862684F2BC2A ] aswbidsh        C:\WINDOWS\system32\drivers\aswbidsh.sys
16:06:41.0210 0x1e24  aswbidsh - ok
16:06:41.0242 0x1e24  [ 1A65971FA5F2D415360221DCDDE9365F, 31E955407C9B583A566F1F106456B5E0A6C3A4E1F0994C5D8BEFCA235EB597A2 ] aswbuniv        C:\WINDOWS\system32\drivers\aswbuniv.sys
16:06:41.0257 0x1e24  aswbuniv - ok
16:06:41.0273 0x1e24  [ 7A615B3D38203D6161FE44944AA151F3, 813F6D4EA41CD8045E1331B36A64ECCDCB2603152DE02150F19FD51359124A94 ] aswElam         C:\WINDOWS\system32\drivers\aswElam.sys
16:06:41.0288 0x1e24  aswElam - ok
16:06:41.0320 0x1e24  [ AF80FE559A0AB4B0A2AA23C46DE99DD7, 919D12609981D78A9B0983C4DE7F0DFD0A770A3200ADD7B5BD1B76DC76F9A937 ] aswKbd          C:\WINDOWS\system32\drivers\aswKbd.sys
16:06:41.0335 0x1e24  aswKbd - ok
16:06:41.0367 0x1e24  [ 8447A11DCED89B05FFEECA68FFD7EADF, 43329874078B6B364ED172EEE84FC6D10F4CABA2EA290226A6DF0AB2C9C9E154 ] aswMonFlt       C:\WINDOWS\system32\drivers\aswMonFlt.sys
16:06:41.0382 0x1e24  aswMonFlt - ok
16:06:41.0445 0x1e24  [ 1DCDCA2ADE7C35B1057A99A6A4054218, 6F18F887303025B996C80EA2F5E0F62C4ADC435D8A30D56E087F3E8AF45538DD ] aswNetHub       C:\WINDOWS\system32\drivers\aswNetHub.sys
16:06:41.0476 0x1e24  aswNetHub - ok
16:06:41.0507 0x1e24  [ C19C40EDBDBCAEB6BEA77ADB5C9E0B82, 2489D045AE98D825225D29E0146222A6F04CF302E771B316007969E1E1EA8B21 ] aswRdr          C:\WINDOWS\system32\drivers\aswRdr2.sys
16:06:41.0538 0x1e24  aswRdr - ok
16:06:41.0570 0x1e24  [ B21139B9C40F5F3A83034AC3F7B16C44, E8CEC7871AA6BC02EBE88C55DC212EA646B055EED39BF2F555C638D17880CDEA ] aswRvrt         C:\WINDOWS\system32\drivers\aswRvrt.sys
16:06:41.0585 0x1e24  aswRvrt - ok
16:06:41.0648 0x1e24  [ A368016DDC882B8B3BEE7C9585F8BC63, BB3CCB0DA5DFA28ADD1DF8AF8B811618225FC9AD0FBBCD9B458D2F00C77AB510 ] aswSnx          C:\WINDOWS\system32\drivers\aswSnx.sys
16:06:41.0679 0x1e24  aswSnx - ok
16:06:41.0710 0x1e24  [ 7935F6DCC40D0A3590B6A843FB8D67C0, FDE46CFA05EA4E8287AE9233AEA26D98F0E03BFAE84870E268CAF5743249394C ] aswSP           C:\WINDOWS\system32\drivers\aswSP.sys
16:06:41.0742 0x1e24  aswSP - ok
16:06:41.0788 0x1e24  [ 630C85EDD5AD021FD0FB6C4DE860EE2C, 74970810C540196442358A6A9A47C9E03CA281B5E062C1857C38D8EF0FB3A297 ] aswStm          C:\WINDOWS\system32\drivers\aswStm.sys
16:06:41.0804 0x1e24  aswStm - ok
16:06:41.0882 0x1e24  [ BDEFF1980CD1A5C05A04AB1EAF68B6AC, 036506C659F96360A572DB617822618C9C5BCD3A5686EA62434F65B6AA35DFEB ] aswVmm          C:\WINDOWS\system32\drivers\aswVmm.sys
16:06:41.0898 0x1e24  aswVmm - ok
16:06:41.0929 0x1e24  [ D930AAE80A55116D07C41E95DE5671DB, 14985D6D2D52689C1B012F64ED0D7C9C5F6BADB51C4528BF6456D3EAE2FE69A7 ] AsyncMac        C:\WINDOWS\System32\drivers\asyncmac.sys
16:06:41.0960 0x1e24  AsyncMac - ok
16:06:42.0007 0x1e24  [ AF0AA60DD36E4FA227F3C441B008336E, 60B57B228841F81D26E6025094211596BB725F79033A439E3F19394A3A5BDC30 ] atapi           C:\WINDOWS\system32\drivers\atapi.sys
16:06:42.0023 0x1e24  atapi - ok
16:06:42.0101 0x1e24  [ E1B50482D6D705573FF4EB77A8D83566, 69B0F97D95E16BA7693F41DCC57EA30D3347359733C7FC4F2D4F2E5C075F90C6 ] AudioEndpointBuilder C:\WINDOWS\System32\AudioEndpointBuilder.dll
16:06:42.0163 0x1e24  AudioEndpointBuilder - ok
16:06:42.0226 0x1e24  [ 2B99A06AB0EB85E38AEADB1E083D098F, 34E5CAB5C7A065632EF9118423D103AD38C335ACE0F7072FB86AED6333542C70 ] Audiosrv        C:\WINDOWS\System32\Audiosrv.dll
16:06:42.0304 0x1e24  Audiosrv - ok
16:06:42.0335 0x1e24  [ A0F7C552FA2B0D848758F5010A7B3AE3, 7DBF94761B806AB47DBC948E723D718852416DC0E311CB40F31A55DA0DCB267F ] autotimesvc     C:\WINDOWS\System32\autotimesvc.dll
16:06:42.0382 0x1e24  autotimesvc - ok
16:06:42.0429 0x1e24  [ 1DC72030B9A52052FE33409E1F670466, E026DD96D5CF208F75ADD176ADA54CABE4F7AF0D85256830D1F57E4E7101D81A ] avast! Antivirus C:\Program Files\Avast Software\Avast\AvastSvc.exe
16:06:42.0445 0x1e24  avast! Antivirus - ok
16:06:42.0507 0x1e24  [ 706EFF2B07913E61A92C9373B50DB214, 0BF9595182C93E70807E40E4F000C3704A55F91B3C0A0A1D7057127E0A3AAC09 ] avast! Firewall C:\Program Files\Avast Software\Avast\afwServ.exe
16:06:42.0554 0x1e24  avast! Firewall - ok
16:06:42.0585 0x1e24  [ 71E276A87C8757FE07A15F91B70AE00A, 0CEAFE0E5CF986F4446B491CDC93436E8AF8A71597545B2EAC00C83296B872DD ] avast! Tools    C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
16:06:42.0616 0x1e24  avast! Tools - ok
16:06:42.0679 0x1e24  [ 1B231B5C4D36DE4750A587F08338DEDE, 79E53D36A40951AB328E153BAC9C1E3ADF3330B45899345E645889B9046F06E0 ] AvastWscReporter C:\Program Files\Avast Software\Avast\wsc_proxy.exe
16:06:42.0679 0x1e24  AvastWscReporter - ok
16:06:42.0726 0x1e24  [ FCE104053ECADACF4AFAFEC2FE805DBB, EB39D46FA07E7DC9028C671F45C5B51D8DC9B41977AC26D318AB39CD4382A0FB ] AxInstSV        C:\WINDOWS\System32\AxInstSV.dll
16:06:42.0773 0x1e24  AxInstSV - ok
16:06:43.0023 0x1e24  [ 638C59D330A7AF943074678A70F22E7C, FEB2771428706126FEA1CC9A50EBE3CF4F8E8FB6FCB3CA19996497CA44FDAC45 ] b06bdrv         C:\WINDOWS\system32\drivers\bxvbda.sys
16:06:43.0070 0x1e24  b06bdrv - ok
16:06:43.0101 0x1e24  [ 26E2320D24C66EB72B36EB71EBEF2558, 7D06B6499FE915480DF4DAD658281C8B85F7AD71F49B089A270AE0B45713F2E9 ] bam             C:\WINDOWS\system32\drivers\bam.sys
16:06:43.0116 0x1e24  bam - ok
16:06:43.0570 0x1e24  [ 22AB02CEB277A793603A1AF748D2486D, 9AAC2211BE296E8F5DD105CA6F06BA590B005BEFF1DB32E5D163151143BCCB90 ] BasicDisplay    C:\WINDOWS\System32\DriverStore\FileRepository\basicdisplay.inf_amd64_65ab9a260dbf7467\BasicDisplay.sys
16:06:43.0601 0x1e24  BasicDisplay - ok
16:06:43.0616 0x1e24  [ 045E627AE5033B924B79CB451A792EE5, 215FF8E0F393DF8992BF2A278F581F62A8D2ED0A10B30A45FBD96242B468BD27 ] BasicRender     C:\WINDOWS\System32\DriverStore\FileRepository\basicrender.inf_amd64_df49c4daa6251397\BasicRender.sys
16:06:43.0663 0x1e24  BasicRender - ok
16:06:43.0804 0x1e24  [ 88CB6866110814C0BD73DA63374AAC51, 9A6453D90E2478C7152A2C56F615D6E13D6F3472A56DFFFCAD1C30AA61ABB598 ] BcastDVRUserService C:\WINDOWS\System32\BcastDVRUserService.dll
16:06:44.0319 0x1e24  BcastDVRUserService - ok
16:06:44.0429 0x1e24  [ 739D089777D2B66DBE7201E5EA4BA2D7, 9AD12E18A042C5B8EFB19297BC2E7BD1FEF75A138FEFB64C6BF0261FD3E53AB1 ] bcmfn2          C:\WINDOWS\System32\drivers\bcmfn2.sys
16:06:44.0476 0x1e24  bcmfn2 - ok
16:06:44.0757 0x1e24  [ 7BA5FDDC2FE4C0DF8DF0C8D5B1AC2110, F4324A90D9DE490BD31F63148B2CFC14A5F2060EF157AD0522B6699B4E2549A7 ] BDESVC          C:\WINDOWS\System32\bdesvc.dll
16:06:44.0929 0x1e24  BDESVC - ok
16:06:44.0944 0x1e24  [ 4280B427B81EB8C265F3206E2298761E, 121AF03BBE6ECC1622C2540805A30AE9555EB5D5FE25B55939C045ECE7FC37EB ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
16:06:44.0976 0x1e24  Beep - ok
16:06:45.0038 0x1e24  [ 610106916DA4654BA4C0F92143BED862, A3628F8F785B8F91133C6CF26F64FB5841BFBCA3CA4F2DB306E8D92932353BAD ] BFE             C:\WINDOWS\System32\bfe.dll
16:06:45.0085 0x1e24  BFE - ok
16:06:45.0179 0x1e24  [ B70AED04728350E0C9843D99DF9E9D3D, E25E312C5548C7D95F59512EBB57E1382D7BCC51061FDF32977C869A386242C0 ] bindflt         C:\WINDOWS\system32\drivers\bindflt.sys
16:06:45.0194 0x1e24  bindflt - ok
16:06:45.0319 0x1e24  [ 3BDAEF58FB1CE7B0A4580E59BD7D6911, 23564C36F4DC2FFDC5FB165BEE0B6F73684C86A1F871FA9A3020C5A1F19CCAEC ] BITS            C:\WINDOWS\System32\qmgr.dll
16:06:45.0413 0x1e24  BITS - ok
16:06:45.0491 0x1e24  [ 399F428646DE8D9B82B9C833FD9DBC32, E8034B600E9E1A56A8DE14988476B8C5556128E35967F95EBAF8DF153FA9ECB6 ] BluetoothUserService C:\WINDOWS\System32\Microsoft.Bluetooth.UserService.dll
16:06:45.0554 0x1e24  BluetoothUserService - ok
16:06:45.0647 0x1e24  [ 55A234D0C8BBDDD400214AEF7A2EC69C, 9B1366BBA4631F6D5A4923905332E0D0B83FD041764461CC96F873723E3C75B4 ] bowser          C:\WINDOWS\system32\DRIVERS\bowser.sys
16:06:45.0694 0x1e24  bowser - ok
16:06:45.0772 0x1e24  [ 661B49061D52CB911455FADC004B0833, F0FC73D27818414B06372568385EE000A5DF964247638F7EE5830E1558FD23AE ] brave           C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe
16:06:45.0788 0x1e24  brave - ok
16:06:45.0819 0x1e24  [ 661B49061D52CB911455FADC004B0833, F0FC73D27818414B06372568385EE000A5DF964247638F7EE5830E1558FD23AE ] bravem          C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe
16:06:45.0819 0x1e24  bravem - ok
16:06:45.0866 0x1e24  [ 666794D3C28A67355B71406ACAC34C54, 172A1392937C7B8BEB91427918B5A47B1AD7FC329AD410527C3683289C739AA5 ] BrokerInfrastructure C:\WINDOWS\System32\psmsrv.dll
16:06:45.0929 0x1e24  BrokerInfrastructure - ok
16:06:45.0976 0x1e24  [ B3EEA459B367A168F8769625A76BF792, 0002AEED8641E41CB078E421177E359B801776206582FA0BE0EF7AF01D6ACC8A ] BTAGService     C:\WINDOWS\System32\BTAGService.dll
16:06:46.0054 0x1e24  BTAGService - ok
16:06:46.0101 0x1e24  [ 7F09708B8C651A0C0E2A2725136BA254, 0442A18BBED4E323265C66561C8F8C171D8E934E9089C12B94D1DFDBB057B737 ] BthA2dp         C:\WINDOWS\System32\drivers\BthA2dp.sys
16:06:46.0194 0x1e24  BthA2dp - detected UnsignedFile.Multi.Generic ( 1 )
16:06:46.0382 0x1e24  Detect skipped due to KSN trusted
16:06:46.0382 0x1e24  BthA2dp - ok
16:06:46.0444 0x1e24  [ CE43EF455E238036B73128A8B38D021E, 1A2470D2468A150965DE68FE279B998CEB7C5914FDE1948EB8A632DC34706F6C ] BthAvctpSvc     C:\WINDOWS\System32\BthAvctpSvc.dll
16:06:46.0491 0x1e24  BthAvctpSvc - ok
16:06:46.0538 0x1e24  [ B3AFD99A9BF8341D4A12C2ACABEA2BFA, 4E5E2610F6178D2C98783CD8AF4A2D461F321BE0EC5871CC19DD7B1EC0FF3EF8 ] BthEnum         C:\WINDOWS\System32\drivers\BthEnum.sys
16:06:46.0585 0x1e24  BthEnum - ok
16:06:46.0616 0x1e24  [ 7AE44E94C6B1DF488AA309824DEAD643, 91C72C54142A0D4E5A5F33268850CEB8315AA30C2F0B74A9FFA962887ABAC797 ] BthHFEnum       C:\WINDOWS\System32\drivers\bthhfenum.sys
16:06:46.0694 0x1e24  BthHFEnum - detected UnsignedFile.Multi.Generic ( 1 )
16:06:46.0866 0x1e24  Detect skipped due to KSN trusted
16:06:46.0866 0x1e24  BthHFEnum - ok
16:06:46.0960 0x1e24  [ 0825C3B0D4A788E95DE80739E52C9174, 7B2C116DB586ADF3175AE4DC630C2BB9043CF3EE57A22A8DBFE55127F6065A51 ] BthLEEnum       C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys
16:06:47.0022 0x1e24  BthLEEnum - ok
16:06:47.0038 0x1e24  [ E02208DF3A6159033A9759190FCF5131, 8877FDDA19ADC54755EC35A88C9B3B27C2FD850B25214D80B38C2DDCDB4B611E ] BthMini         C:\WINDOWS\System32\drivers\BTHMINI.sys
16:06:47.0132 0x1e24  BthMini - ok
16:06:47.0163 0x1e24  [ 11D609CC74F0EB1DF6C0171331CDE9A1, 9412DC92F16C0B8A937D6FB1AD83D7169F4EC0F08FAE0E2B244346428CE99EE1 ] BTHMODEM        C:\WINDOWS\System32\drivers\bthmodem.sys
16:06:47.0210 0x1e24  BTHMODEM - ok
16:06:47.0257 0x1e24  [ 9366740FAD8339878E61D5ACC86EF256, F09D4546F55DDCB11C71B74844DBB5490A6E587BF22EF2CE2F3BA5FA45BDA340 ] BTHPORT         C:\WINDOWS\System32\drivers\BTHport.sys
16:06:47.0350 0x1e24  BTHPORT - ok
16:06:47.0382 0x1e24  [ D293AC628357F2F75B8579087F732970, 1E536D8863D695944214D55E9B0B4BFE04F705DB7ECA18A0CF8B37AAF4893B1E ] bthserv         C:\WINDOWS\system32\bthserv.dll
16:06:47.0460 0x1e24  bthserv - ok
16:06:47.0475 0x1e24  [ B39EFF5E5EC5F67137D909D221C8D3FD, 2A1B740E06F6EF1FCFFD740858B5DB11F4FF54050B29A05AFDD7E6D07216746B ] BTHUSB          C:\WINDOWS\System32\drivers\BTHUSB.sys
16:06:47.0522 0x1e24  BTHUSB - ok
16:06:47.0538 0x1e24  [ 4FF20E869FE2B5A0B8CE2E8BE61C7F7F, 8DE3B7C87D88CF375417355A7C5052B2DE38805B563D61D0E483DB4AD96BD741 ] bttflt          C:\WINDOWS\system32\drivers\bttflt.sys
16:06:47.0554 0x1e24  bttflt - ok
16:06:47.0585 0x1e24  [ EF2A1F3C5EC4EFFFBE9A69B892FBA29C, 16A900FBAB30D008F01F4CAE96347BF313D9D13C7FE430249A0BF4322534CB18 ] buttonconverter C:\WINDOWS\System32\drivers\buttonconverter.sys
16:06:47.0632 0x1e24  buttonconverter - ok
16:06:47.0647 0x1e24  [ E7690568D2A5FA3D4E6D28B42358A122, CDBD820B6D383EC0A8151EA4300435C2BAD085EC55DB185C5E16CAF961443888 ] CAD             C:\WINDOWS\System32\drivers\CAD.sys
16:06:47.0663 0x1e24  CAD - ok
16:06:47.0710 0x1e24  [ 54C6958CF06D6BB1776844811C34868C, D3681399A0458B9183C12B7F26980959EBD4BB0AEA1084497F2436339AD9E758 ] camsvc          C:\WINDOWS\system32\CapabilityAccessManager.dll
16:06:47.0757 0x1e24  camsvc - ok
16:06:47.0788 0x1e24  [ D73124119E80A2E13A1D5A7B7CD00889, 196215BFE0F198C8201B407C7E39A15E3180E8D03A051B3CEBE88FFFAB4072CE ] CaptureService  C:\WINDOWS\System32\CaptureService.dll
16:06:47.0819 0x1e24  CaptureService - ok
16:06:47.0866 0x1e24  [ 37A8837CC731399AE7B3D141CF4ABF87, 9B1172915398724B30516A5A268FF25C19D35EF7A4C1BD39CF2366F565001FCF ] cbdhsvc         C:\WINDOWS\System32\cbdhsvc.dll
16:06:47.0944 0x1e24  cbdhsvc - ok
16:06:47.0975 0x1e24  [ 764FE2149251A246F6B047A0F09F5F0B, 9E0B3102BE75FB571A884D8CDD79F3A104DD63A53C8A6815C0992232A888321E ] cdfs            C:\WINDOWS\system32\DRIVERS\cdfs.sys
16:06:48.0022 0x1e24  cdfs - ok
16:06:48.0069 0x1e24  [ 6B63D9B10FA9DB29E21CF24704A1D31A, 083E401584A137B4B9F181BC2D8E0DE0FB9826ADD3642B40F5933DA5EFE3F2FB ] CDPSvc          C:\WINDOWS\System32\CDPSvc.dll
16:06:48.0116 0x1e24  CDPSvc - ok
16:06:48.0163 0x1e24  [ 6BC246E784720DD3221114372CB56E0A, 23ADB76423F436600E05038623E35707C66BEBB8A92C0E5AFA15CA3C670FF237 ] CDPUserSvc      C:\WINDOWS\System32\CDPUserSvc.dll
16:06:48.0241 0x1e24  CDPUserSvc - ok
16:06:48.0288 0x1e24  [ 054ABC6C64AE969D033B7876C04D52B4, 492E4FD7A7CCE38D5A7E51C7B069FC0497BE3EFD2EEFEB6AFA3EA81D2A11BC0F ] cdrom           C:\WINDOWS\System32\drivers\cdrom.sys
16:06:48.0335 0x1e24  cdrom - ok
16:06:48.0350 0x1e24  [ 90A4F493C691ABF5A0C231A62F309D88, 9319B5AA78248E53DA529567CBA4D57DD7D93A43218FD66C9EFE2A10C7430581 ] CertPropSvc     C:\WINDOWS\System32\certprop.dll
16:06:48.0413 0x1e24  CertPropSvc - ok
16:06:48.0460 0x1e24  [ 198D403332FB8F2DA289BEBFEC8199AD, 5A7FD2D58C433B9B498A1B37A2F2D877061215360D8E6A752601F2ED4F283A8F ] cht4iscsi       C:\WINDOWS\system32\drivers\cht4sx64.sys
16:06:48.0491 0x1e24  cht4iscsi - ok
16:06:48.0522 0x1e24  [ 77065056FBE4E29054CB1D20303B9F59, 83E2C81274DDBE695EF845E541F7A2DB60EF5E195AE14FACDEEEBD30C0EF4E67 ] cht4vbd         C:\WINDOWS\System32\drivers\cht4vx64.sys
16:06:48.0600 0x1e24  cht4vbd - ok
16:06:48.0632 0x1e24  [ 78FDC6DA54888C279262BE8C80977577, 2E409E42B2CC816F116DDAB8E78242633CA1BC3CF5E4A28D24EEF4DA0E979DFB ] CimFS           C:\WINDOWS\system32\drivers\CimFS.sys
16:06:48.0679 0x1e24  CimFS - ok
16:06:48.0694 0x1e24  [ 115CC1E142CE29C9006D59943108DF47, 564FA08C5BEC6DAF1A83C80C9139A6E1AA7E05D251DB3BA379B57C9FDAE83E1B ] circlass        C:\WINDOWS\System32\drivers\circlass.sys
16:06:48.0741 0x1e24  circlass - ok
16:06:48.0757 0x1e24  [ 7A3F9DCA9880E6BC9C9B9847DBBCB75E, 1B5311FB37492A0B55C870DA290009905859063115C4DA36E3462299989C74A7 ] CldFlt          C:\WINDOWS\system32\drivers\cldflt.sys
16:06:48.0897 0x1e24  CldFlt - ok
16:06:48.0944 0x1e24  [ 9E30D217CA8EFDB55B9BBCD356A2DBAB, D81D2185D12D42EFEC883DB8EDB133D2D72839AC5C068BA161AD253F74B83339 ] CLFS            C:\WINDOWS\system32\drivers\CLFS.sys
16:06:48.0975 0x1e24  CLFS - ok
16:06:49.0475 0x1e24  [ E3E5E7A79C161B201946D8D6870FD44A, 3E21376911DD6350107020F029B534674D14DA27F6E890E6A1B7B1D298582581 ] ClickToRunSvc   C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
16:06:49.0663 0x1e24  ClickToRunSvc - ok
16:06:49.0757 0x1e24  [ EE1984482C9D5E3A0D2E800C62DA719B, BC1E2B3970841AC69E4E69FFC191C4382BA9CB8F2D367BF03A27589748CD8301 ] ClipSVC         C:\WINDOWS\System32\ClipSVC.dll
16:06:49.0819 0x1e24  ClipSVC - ok
16:06:49.0866 0x1e24  [ E127E772A705CD32BE34166F679C61C8, 209723632369404308EF6DF734077A99A295C2E380DB85AD1F8498CC8DFBC88A ] CmBatt          C:\WINDOWS\System32\drivers\CmBatt.sys
16:06:49.0913 0x1e24  CmBatt - ok
16:06:49.0975 0x1e24  [ 770EA637733278A115E730F335C34DBD, 8898D567060F4DEB19E263E953532A6F6CCECB13FA73691403331C5C1D318993 ] CNG             C:\WINDOWS\system32\Drivers\cng.sys
16:06:50.0007 0x1e24  CNG - ok
16:06:50.0053 0x1e24  [ A46B4D1484227900F7615FE2A569D828, A06B8002E7A708890222C777DDF8B67FED7015C0943C1FC4F9036E9F9DC14494 ] cnghwassist     C:\WINDOWS\system32\DRIVERS\cnghwassist.sys
16:06:50.0069 0x1e24  cnghwassist - ok
16:06:50.0163 0x1e24  [ 99392FDADF3CE5EB47403E5A52866E6F, 63CEF51971EB85D9823CE9A95F1ED9907D20525ED8E32230068CC36E9082A8C3 ] CompositeBus    C:\WINDOWS\System32\DriverStore\FileRepository\compositebus.inf_amd64_7500cffa210c6946\CompositeBus.sys
16:06:50.0194 0x1e24  CompositeBus - ok
16:06:50.0210 0x1e24  COMSysApp - ok
16:06:50.0272 0x1e24  [ 37BAC4413D147BAC2C0DDA67890F0F10, E4AE23EB73BB9F525822DFAB09D3DED0E921255467FA1341267B6AE9BCAA01F7 ] condrv          C:\WINDOWS\system32\drivers\condrv.sys
16:06:50.0288 0x1e24  condrv - ok
16:06:50.0350 0x1e24  [ 30567F197E1E1415FD5813FCE895E332, CAAC41134F6E01815888707D2FB76703B7A869912832D2173726B17511C3B17F ] ConsentUxUserSvc C:\WINDOWS\System32\ConsentUxClient.dll
16:06:50.0397 0x1e24  ConsentUxUserSvc - ok
16:06:50.0522 0x1e24  [ 724677D5055D40798DB093C26CEFD179, C01C15C82A8568BA99BF193FBC4893D990102B0CBAAFE04F4F02B9FE44AE6C76 ] CoreMessagingRegistrar C:\WINDOWS\system32\coremessaging.dll
16:06:50.0694 0x1e24  CoreMessagingRegistrar - ok
16:06:51.0413 0x1e24  [ C5A47381115BD5191F664AABD7526EF4, 90B422C733F0FA0398C089C0E483D050C38BE80201FCFBE00773B64886147D51 ] cphs            C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
16:06:51.0506 0x1e24  cphs - ok
16:06:51.0553 0x1e24  [ 33915D0533AE7883BD50657C99EA45A4, 2063A8145D63798B948ECF755D2592B4751D8386B2B47B3D13D42B5D95557DCF ] CredentialEnrollmentManagerUserSvc C:\WINDOWS\system32\CredentialEnrollmentManager.exe
16:06:51.0569 0x1e24  CredentialEnrollmentManagerUserSvc - ok
16:06:51.0616 0x1e24  [ 33915D0533AE7883BD50657C99EA45A4, 2063A8145D63798B948ECF755D2592B4751D8386B2B47B3D13D42B5D95557DCF ] CredentialEnrollmentManagerUserSvc_5a480 C:\WINDOWS\system32\CredentialEnrollmentManager.exe
16:06:51.0631 0x1e24  CredentialEnrollmentManagerUserSvc_5a480 - ok
16:06:51.0663 0x1e24  [ 8AB3568419872D1A8A7B45153AF7B3D4, 5171ED876E0EC5CAE2BE9161ACC90F4865FF6416EFA376C82D8A5B65724A8910 ] CryptSvc        C:\WINDOWS\system32\cryptsvc.dll
16:06:51.0741 0x1e24  CryptSvc - ok
16:06:51.0819 0x1e24  [ 4233BF1BA4FDD55A14DA16BE864B7504, 7B34CD50996D7F1B9636C8CD6612991039C4806B7094CC66CEECBB28E5F8D3F3 ] dam             C:\WINDOWS\system32\drivers\dam.sys
16:06:51.0835 0x1e24  dam - ok
16:06:51.0975 0x1e24  [ A1F58FFF448E4099297D6EE0641D4D0E, 47839789332AAF8861F7731BF2D3FBB5E0991EA0D0B457BB4C8C1784F76C73DC ] dbupdate        C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
16:06:51.0991 0x1e24  dbupdate - ok
16:06:51.0991 0x1e24  [ A1F58FFF448E4099297D6EE0641D4D0E, 47839789332AAF8861F7731BF2D3FBB5E0991EA0D0B457BB4C8C1784F76C73DC ] dbupdatem       C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
16:06:52.0006 0x1e24  dbupdatem - ok
16:06:52.0053 0x1e24  [ 13DEED6A11F54FDB082FAC9906B9866D, 4269061949DA67E35B2DF4C13AFDCC7BF7406366D199AC25D7A70393B2AF9B5C ] dbx             C:\WINDOWS\system32\DRIVERS\dbx.sys
16:06:52.0085 0x1e24  dbx - ok
16:06:52.0116 0x1e24  [ 92A65117782D1165753735C7755BE072, 5D0CCBEEF2EA2CA14BF98D9C20AE0BA6A88AE03E0B03CD07E1588E6ED7D55A43 ] DbxSvc          C:\WINDOWS\system32\DbxSvc.exe
16:06:52.0131 0x1e24  DbxSvc - ok
16:06:52.0178 0x1e24  [ 552C06C94F4996C04B004D5B6481E543, D60B21B258F7AE31F3D621DA9DCF993B08B373EC9FD98EF5EBF59031C137318D ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
16:06:52.0256 0x1e24  DcomLaunch - ok
16:06:52.0319 0x1e24  [ F58B99912057ED256C3331D964CEF2BC, 99E3207E724D73C21CFE67E01AE28797948F40070376A26E9DEBB239075193AF ] defragsvc       C:\WINDOWS\System32\defragsvc.dll
16:06:52.0366 0x1e24  defragsvc - ok
16:06:52.0444 0x1e24  [ 972BAD4EF3561D3E8E5B34C1E563D9A9, 8ECC1BFC020320F45AB8CC8CDDFF36E0A656C013C6777A1F5CF3644B48C7143C ] DeviceAssociationBrokerSvc C:\WINDOWS\System32\deviceaccess.dll
16:06:52.0460 0x1e24  DeviceAssociationBrokerSvc - ok
16:06:52.0506 0x1e24  [ 0CE0E536400C33F01675B1B553388338, 50663E38F9E5207F3F4B57AEDD6710DC7326514F8CE8A220C8046108A5B46128 ] DeviceAssociationService C:\WINDOWS\system32\das.dll
16:06:52.0538 0x1e24  DeviceAssociationService - ok
16:06:52.0569 0x1e24  [ 47997A891009AD881DFA69E018D3DF41, 954BBFB9E4C7FF79A811123D31954840590837ECDC9108161717EE29C8EFB676 ] DeviceInstall   C:\WINDOWS\system32\umpnpmgr.dll
16:06:52.0616 0x1e24  DeviceInstall - ok
16:06:52.0647 0x1e24  [ E028B669FEC9762B5D7D93E5933BBBBA, 284C05EEF03BC72B5C2E847B83476328DDDE1063C77E711925F1D1992EC689F9 ] DevicePickerUserSvc C:\WINDOWS\System32\Windows.Devices.Picker.dll
16:06:52.0678 0x1e24  DevicePickerUserSvc - ok
16:06:52.0788 0x1e24  [ 1FB4EE20C9D333C3F8D90C3726C60E3E, 1B5B06E47CBEFA8495BEF86F00AF926D3039039CCE8DB740537F757907BDE475 ] DevicesFlowUserSvc C:\WINDOWS\System32\DevicesFlowBroker.dll
16:06:52.0959 0x1e24  DevicesFlowUserSvc - ok
16:06:53.0022 0x1e24  [ F8BE99B9EA9B110F7CB3F46BA844C1FF, EABF953864C0AE4FB6426C0B7E92DD81EE4A8852081F9D2EA02B61D4C8DB6188 ] DevQueryBroker  C:\WINDOWS\system32\DevQueryBroker.dll
16:06:53.0053 0x1e24  DevQueryBroker - ok
16:06:53.0100 0x1e24  [ 3D3CCAFC76E02403E2963A2CB45D61F7, 32B76819586DEE9C50215CC74E2BCD41F29BD29A5225F67A363FA40EC93F7E21 ] Dfsc            C:\WINDOWS\system32\Drivers\dfsc.sys
16:06:53.0194 0x1e24  Dfsc - ok
16:06:53.0303 0x1e24  [ 8AC7ACB73C07E9AEAE67CF340B2E465B, 27249AD224AE3017638E3F39411B7F2DD200F65F18484CD234D819E913AA25EF ] Dhcp            C:\WINDOWS\system32\dhcpcore.dll
16:06:53.0350 0x1e24  Dhcp - ok
16:06:53.0475 0x1e24  [ 834FFB6194446D80212613701D50A07D, BF3B5723E80356CAF6777462705398DA52981FC7D80C467AA3BE6A5F06B36887 ] diagnosticshub.standardcollector.service C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe
16:06:53.0538 0x1e24  diagnosticshub.standardcollector.service - ok
16:06:53.0569 0x1e24  [ 35E000747F640BB0B7D6927412DC2DE5, B2D45086057136680551D9A0FC18A15764F020483D69C4C23FDD9D59DCE3BF70 ] diagsvc         C:\WINDOWS\system32\DiagSvc.dll
16:06:53.0881 0x1e24  diagsvc - ok
16:06:54.0069 0x1e24  [ 033E27AE7E5CD2521A933CA02E678686, 331BA73304AA69A995E7973F71871AF652121C50A836E5078A01DFC0D1765CB4 ] DiagTrack       C:\WINDOWS\system32\diagtrack.dll
16:06:54.0225 0x1e24  DiagTrack - ok
16:06:54.0256 0x1e24  [ E16969E7B0C2759CBFA48DDFF758FD9B, 30451B36BB163EF5C03EA596B3DE1C658326094FDAF3BEF712D1660CF64F2D4A ] disk            C:\WINDOWS\system32\drivers\disk.sys
16:06:54.0272 0x1e24  disk - ok
16:06:54.0319 0x1e24  [ 88A37D67ACA845EE72E9A07E15273EB1, 21779D6C7B4480873992C13908CFE58568D15073460A88AE452EA1BEE54037EF ] DispBrokerDesktopSvc C:\WINDOWS\System32\DispBroker.Desktop.dll
16:06:54.0350 0x1e24  DispBrokerDesktopSvc - ok
16:06:54.0444 0x1e24  [ 38D8C032C7AFBA2725A98719C2E03FCE, 43E01AEC265954E5E47EED1F9CA4872A1AEE9DCCE8536993AEA2CD5440BAF2CA ] DisplayEnhancementService C:\WINDOWS\system32\Microsoft.Graphics.Display.DisplayEnhancementService.dll
16:06:54.0584 0x1e24  DisplayEnhancementService - ok
16:06:54.0959 0x1e24  [ 830A4098F006E5D9E0C250AFD9A9A9AE, 69EF155CB20A73E73B9AE559E82546E21333BF645A080B6506F9AECFE7D4CBC0 ] DmEnrollmentSvc C:\WINDOWS\system32\Windows.Internal.Management.dll
16:06:55.0131 0x1e24  DmEnrollmentSvc - ok
16:06:55.0241 0x1e24  [ 48AA813AAA7E347CD7D6D56FE32144C6, 6604DC0E7607E46B83F1239934646AC4ADF5CA4CC463FB9DF521B243F434579B ] dmvsc           C:\WINDOWS\System32\drivers\dmvsc.sys
16:06:55.0256 0x1e24  dmvsc - ok
16:06:55.0303 0x1e24  [ 2E8A026D6680C301ADF6D4B301A4CE8B, 2FDB34E2A61457308B0FEC938A2D6351F63D02BB67DC87FE4F2534E0048C8E89 ] dmwappushservice C:\WINDOWS\system32\dmwappushsvc.dll
16:06:55.0350 0x1e24  dmwappushservice - ok
16:06:55.0459 0x1e24  [ 5AAD4AB82BA533547AF43CF433BB177E, E3E8AE5DF92D95F27D377FDBAB4DC6651B218DD7A9B7BD97254A5124F865DEBE ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
16:06:55.0631 0x1e24  Dnscache - ok
16:06:55.0756 0x1e24  [ AF66F57D975333E819A8BD166E0F4A75, 59E8190B7A7CA564E97F96B2FF83955E86DC58ED2B74104A25D925D63747ECF1 ] dot3svc         C:\WINDOWS\System32\dot3svc.dll
16:06:55.0834 0x1e24  dot3svc - ok
16:06:55.0928 0x1e24  [ 9E65C33CB7FB50453F7F4407070EAF53, A8707BD19D584DAECA39990A2E791194140AFCA4FCE31F23CC7E931DF8C17361 ] DPS             C:\WINDOWS\system32\dps.dll
16:06:56.0178 0x1e24  DPS - ok
16:06:56.0287 0x1e24  [ 6ADB3F56899519673D735C3C09476234, 8A97F4C5FC8BB83C819409B1E3F70F87D13034B9E6F8F0A041E38ADAADED1D8D ] drmkaud         C:\WINDOWS\System32\drivers\drmkaud.sys
16:06:56.0350 0x1e24  drmkaud - ok
16:06:56.0522 0x1e24  [ 25260949377D51A7DF55CC4116D1E328, 3C0FE5F039318C57C06FE733FAC00C2753B25905833DC4D76304757EBA5155A5 ] DsmSvc          C:\WINDOWS\System32\DeviceSetupManager.dll
16:06:56.0569 0x1e24  DsmSvc - ok
16:06:56.0647 0x1e24  [ 4B903583999E571ED2B3B1CB6D694605, 30B4DD37228E0FE50C200F511505C09D3FD5B3395E5AE49931E752463424C302 ] DsSvc           C:\WINDOWS\System32\DsSvc.dll
16:06:56.0662 0x1e24  DsSvc - ok
16:06:56.0694 0x1e24  [ 81DF23EC4009D307479D5C169539CD67, 65AEE1E876CBE801A763F14930D15CF2E6A10697620B5903AA04BA30585A5676 ] DusmSvc         C:\WINDOWS\System32\dusmsvc.dll
16:06:56.0740 0x1e24  DusmSvc - ok
16:06:56.0850 0x1e24  [ E7DCC078E693A6DB0E8B9A1F76F23DF0, 082329EB87C76A8D0925D580C060B2A04A182B1BC8D987764435EB6A6AB36AF3 ] DXGKrnl         C:\WINDOWS\System32\drivers\dxgkrnl.sys
16:06:56.0975 0x1e24  DXGKrnl - ok
16:06:56.0990 0x1e24  [ AF7B5676A104F8A7D87DDA84DDFD5240, C89BE2506C647924E94FA2F44AA4AF9EAA2F794FA444C8854FEA5B3F563AC185 ] Eaphost         C:\WINDOWS\System32\eapsvc.dll
16:06:57.0334 0x1e24  Eaphost - ok
16:06:57.0490 0x1e24  [ E7B7E38AD720352CFE9A5FF3A82AB124, 48D9F61E943A7855562950FF26B866BD51A27D980757B065504FCD3F1A1D6F07 ] ebdrv           C:\WINDOWS\system32\drivers\evbda.sys
16:06:57.0615 0x1e24  ebdrv - ok
16:06:57.0756 0x1e24  [ D21437C262283650E8349AFA573AC03A, 9C256D462F0640855E1AB3D2C658CB4EDD7E061EB2782FD03481196D5ED93DB5 ] edgeupdate      C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
16:06:57.0772 0x1e24  edgeupdate - ok
16:06:57.0787 0x1e24  [ D21437C262283650E8349AFA573AC03A, 9C256D462F0640855E1AB3D2C658CB4EDD7E061EB2782FD03481196D5ED93DB5 ] edgeupdatem     C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
16:06:57.0803 0x1e24  edgeupdatem - ok
16:06:57.0865 0x1e24  [ A1CC00332BBF370654EE3DC8CDC8C95A, E69356111240657E6435EDF2E3A4BBAC9C89957EF2D34FC620B8B7DBF564A862 ] EFS             C:\WINDOWS\System32\lsass.exe
16:06:57.0881 0x1e24  EFS - ok
16:06:57.0944 0x1e24  [ 75335F1918D78A10B8DBD220F394FA75, 7F5E80B866BAF62CD4A5667F91F05B6AF094BE2EBD4067BBBABA7A9C1C1E6ECB ] EhStorClass     C:\WINDOWS\system32\drivers\EhStorClass.sys
16:06:58.0006 0x1e24  EhStorClass - ok
16:06:58.0100 0x1e24  [ 9F04CF369B93A78B2E56A3DF9B41F25F, 514A0687D2ABE6C52D6BFF8F0F5E47DD77EBEEDC4E6C6539B05BD0EC27B6704D ] EhStorTcgDrv    C:\WINDOWS\system32\drivers\EhStorTcgDrv.sys
16:06:58.0115 0x1e24  EhStorTcgDrv - ok
16:06:58.0209 0x1e24  [ 48066A0A516271CF80868075216A7A41, DEC15E25420771EC4CB2D724D5F5B8627E9DFA3F56C4ACFFB01D8DF688D3617F ] embeddedmode    C:\WINDOWS\System32\embeddedmodesvc.dll
16:06:58.0272 0x1e24  embeddedmode - ok
16:06:58.0350 0x1e24  [ 3516194A9D8FD789E0CCFD41618242B3, 34FE8619C698B597D574DC758FAD86EA9EAB0BC9E44C208E0F1D636323A72D82 ] EntAppSvc       C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
16:06:58.0397 0x1e24  EntAppSvc - ok
16:06:58.0412 0x1e24  [ E87F3FA1F9133DEEC1B3692976487777, BF14DB2762B48ACE54977E98DC2A4060B8B1122B58FDEFBB4C84546ABEB410A5 ] ErrDev          C:\WINDOWS\System32\drivers\errdev.sys
16:06:58.0443 0x1e24  ErrDev - ok
16:06:58.0568 0x1e24  [ 309C95070A7999A1C4AF764907DF5D7D, 8B631E0EC78DA8274764FE009D08BF7AD0FF986A68F4B44EF175BB923A810A9F ] ESProtectionDriver C:\WINDOWS\system32\drivers\mbae64.sys
16:06:58.0600 0x1e24  ESProtectionDriver - ok
16:06:58.0709 0x1e24  [ E44635D92C93E360303DEDD4AFC928B5, 8D41A0FE026949AE3895D62A38F4D89DFBE0834E86ECF90EC648C5D6906174ED ] EventLog        C:\WINDOWS\System32\wevtsvc.dll
16:06:58.0818 0x1e24  EventLog - ok
16:06:58.0975 0x1e24  [ 05A5DD3CE32301182B329D837D245A67, 9C739F0D994793D05F3D74AB5027BB79ADE64444172C885E9A42224328622F7D ] EventSystem     C:\WINDOWS\system32\es.dll
16:06:59.0068 0x1e24  EventSystem - ok
16:06:59.0131 0x1e24  [ FED99A20C3FCDA25A9877802D141092B, 3ECDB2094BFFD6D20FDC2690527714CD847BC09B7C30EFB3ED26F48F3EECF1C6 ] exfat           C:\WINDOWS\system32\drivers\exfat.sys
16:06:59.0193 0x1e24  exfat - ok
16:06:59.0318 0x1e24  [ 453C1D856BBC97326B0CB8A132A33659, 23762BCD54AD4827CBC38FCFDB58EE805F27B50EFC3C7BCFF2D9293A63067D38 ] fastfat         C:\WINDOWS\system32\drivers\fastfat.sys
16:06:59.0412 0x1e24  fastfat - ok
16:06:59.0522 0x1e24  [ ECB5C30A811A1D1D227321CC063BC4B3, 705DB38B531A516D44030B564BCCF8EF2F79989A46CF29C4B2B471798155E63B ] Fax             C:\WINDOWS\system32\fxssvc.exe
16:06:59.0740 0x1e24  Fax - ok
16:06:59.0834 0x1e24  [ F567A0C101AECF4548E0BF61EE25D332, 26BC9C2F1D42CE5BEF55E98DC0DA557F09B747186580C796003CF84229F6D151 ] fdc             C:\WINDOWS\System32\drivers\fdc.sys
16:06:59.0897 0x1e24  fdc - ok
16:06:59.0928 0x1e24  [ 0439B82F6034ADA3E71C0C9F169082BD, 0918728669077235B2F2DB7EE22CE819FA570D8A7A497BA5F11E76774EA75099 ] fdPHost         C:\WINDOWS\system32\fdPHost.dll
16:07:00.0022 0x1e24  fdPHost - ok
16:07:00.0100 0x1e24  [ AD64C91B3CC71226785DCE688842E5AB, 056E1091468D268E7970045AB329EB3DFF48BB6B22448046A14C309678847B6E ] FDResPub        C:\WINDOWS\system32\fdrespub.dll
16:07:00.0162 0x1e24  FDResPub - ok
16:07:00.0256 0x1e24  [ 3AA883D460D1A6169A2A654C9596172F, 737195664878BBB629F731DC9805754FD42CABA36F9D72EAF562DDCC3E7AD567 ] fhsvc           C:\WINDOWS\system32\fhsvc.dll
16:07:00.0490 0x1e24  fhsvc - ok
16:07:00.0584 0x1e24  [ 8E59D944EE4EFAED65A341A71297C4CD, CFFFD7007AB7FB04ECB44D0079BFE8EEB53AECC988135199C388AF425EBCF2AD ] FileCrypt       C:\WINDOWS\system32\drivers\filecrypt.sys
16:07:00.0615 0x1e24  FileCrypt - ok
16:07:00.0709 0x1e24  [ EE7605E60374CBD2DDAAA120FA2E458A, 832BF32B9EFA04FBDD9638D00B209DFC88C4C69E0AEC7FF1B5AD4DDEC0F20878 ] FileInfo        C:\WINDOWS\system32\drivers\fileinfo.sys
16:07:00.0756 0x1e24  FileInfo - ok
16:07:01.0256 0x1e24  [ 170142EE0C64186823B7C0318BAE2067, 6378A5E6C8F8284380C30565020865A37E6A9DA7115681A6F065CA321C398747 ] FileSyncHelper  C:\Program Files\Microsoft OneDrive\22.089.0426.0003\FileSyncHelper.exe
16:07:02.0084 0x1e24  FileSyncHelper - ok
16:07:02.0115 0x1e24  [ C7F6F4B73E410087C6DE5658AAD70232, 42C56B93FF52CAC5B74CE0A16D9D4425E8B3E690B3BD76A5A3C657655B62A34A ] Filetrace       C:\WINDOWS\system32\drivers\filetrace.sys
16:07:02.0146 0x1e24  Filetrace - ok
16:07:02.0162 0x1e24  [ 52E4C6D038DC3CF09C98704A809D67A9, D4E48291D2D58E813436682B140548FD737F74FF885704A96BC8DB270D7A58A3 ] FlashBoot       C:\WINDOWS\system32\drivers\FlashBoot.sys
16:07:02.0178 0x1e24  FlashBoot - ok
16:07:02.0224 0x1e24  [ C867FE1865F45469DD96957900073361, 1534A840C56912D34DEC8F487683C0A782070A89726BF87DFAAF7F953A18A1DA ] flpydisk        C:\WINDOWS\System32\drivers\flpydisk.sys
16:07:02.0271 0x1e24  flpydisk - ok
16:07:02.0303 0x1e24  [ E20E4E292AAAB2ED471AE479104E08C0, 0250DD52E3B4C23BDC9D0BFDA5152D2B75F62BC9D65F7B2C1A9D397D330CCFAF ] FltMgr          C:\WINDOWS\system32\drivers\fltmgr.sys
16:07:02.0428 0x1e24  FltMgr - ok
16:07:02.0474 0x1e24  [ EB908BD96A3BC469481B0E69EC16503A, FFD02B2762B8EDD9D8E0DFEF122EE10E294B300F9B8CC44CD76310915BA5A9F5 ] FontCache       C:\WINDOWS\system32\FntCache.dll
16:07:02.0537 0x1e24  FontCache - ok
16:07:02.0740 0x1e24  [ 91857D4F6633493CF03C22BD86ED7F81, 80982C4DA12FDD501C234782A14243DFFA8AA4D6EB94BA5E37E3575ADE53000D ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
16:07:02.0834 0x1e24  FontCache3.0.0.0 - ok
16:07:03.0021 0x1e24  [ B6B65FA83D2C481CEF7CD483ED55ACA5, DD0A62D6B63328F3A5EC8EBAB5C76C5EC3E78815A9855C4198ADE8991994073B ] FoxitReaderUpdateService C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitReaderUpdateService.exe
16:07:03.0084 0x1e24  FoxitReaderUpdateService - ok
16:07:03.0146 0x1e24  [ A3CCAE333F3637080D5E3DD984EA4985, 067EE83B82B524802EB8954B631A055101E980A19DD359224EDC501E7E493A0B ] FrameServer     C:\WINDOWS\system32\FrameServer.dll
16:07:03.0256 0x1e24  FrameServer - ok
16:07:03.0303 0x1e24  [ D444357297A81C6A23BFF8090F03DBC7, A5BBD7AC9F33D59DA8DB084E24EB7DA9EC76BB25A27A511FF0271EFC9B590A7D ] FsDepends       C:\WINDOWS\system32\drivers\FsDepends.sys
16:07:03.0318 0x1e24  FsDepends - ok
16:07:03.0365 0x1e24  [ A3631ADDD926826110A436D6A04B31CA, 2073327E5C1E542EA2740CA0D43204940EB72652619B5209A2E4A4A0FB18D20A ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
16:07:03.0381 0x1e24  Fs_Rec - ok
16:07:03.0412 0x1e24  [ E770B50B1E938934DAEEF2069D0A5E29, DD3B2965C1A592B776ABF84FCF4A11FDCF7105B3F9A1DDD360237F68EB4C6655 ] fvevol          C:\WINDOWS\system32\DRIVERS\fvevol.sys
16:07:03.0459 0x1e24  fvevol - ok
16:07:03.0490 0x1e24  [ A1E06E4E8CB863C74DE428D4D6681185, DA46502C009FD4C847A547610DEE2684A5A583467BF76009BD46104AAE2F6B1B ] gencounter      C:\WINDOWS\System32\drivers\vmgencounter.sys
16:07:03.0506 0x1e24  gencounter - ok
16:07:03.0834 0x1e24  [ DF2344160D1E58AB5E1DDB174D46853D, B263D352479812A4DEB6BB8AF573150491EA9F5D55DCD00185AF6759FF2601F6 ] genericusbfn    C:\WINDOWS\System32\DriverStore\FileRepository\genericusbfn.inf_amd64_53931f0ae21d6d2c\genericusbfn.sys
16:07:03.0896 0x1e24  genericusbfn - ok
16:07:04.0084 0x1e24  [ A12DB6157E969BE60CE8E485448CD9F0, E55DFF34CE3C7289CB5BADBBADE684AED733B9D3ABD3D8C3D5582DA500D8A99F ] GoogleChromeElevationService C:\Program Files\Google\Chrome\Application\102.0.5005.63\elevation_service.exe

1 me gusta

parte 4

16:07:34.0816 0x1e24  Synth3dVsc - ok
16:07:34.0878 0x1e24  [ 6C608C28F3469A3FBB1FC762945AED44, 07F5694D440B9807DB933E7091BC002C395B99F01A4423316118F1A860B60C1E ] SysMain         C:\WINDOWS\system32\sysmain.dll
16:07:34.0941 0x1e24  SysMain - ok
16:07:35.0035 0x1e24  [ 423D06D055EF34814B8670C69452A6BD, 8FA9EFF2DDACF339499977D3602998150FC8CE0C62BE30CD390F98F95998ED76 ] SystemEventsBroker C:\WINDOWS\System32\SystemEventsBrokerServer.dll
16:07:35.0097 0x1e24  SystemEventsBroker - ok
16:07:35.0128 0x1e24  [ 055070E3AC1F342125E3296641BDC4D3, 6385EE02D392FCFFB41CE5C5D4CD03C245828D98DCB01F0B4358B431257F9F5B ] TabletInputService C:\WINDOWS\System32\TabSvc.dll
16:07:35.0175 0x1e24  TabletInputService - ok
16:07:35.0222 0x1e24  [ 20CEAECE4ECDEBC89C82F1998696D596, 439559DE34BE096824CB70A97524E843CE2802092A9C882167F4CB08FE9664A7 ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
16:07:35.0253 0x1e24  TapiSrv - ok
16:07:35.0347 0x1e24  [ F7691009A30EC79518550E2FA4813A42, A3467058F6B5E08137E7C0816F5B1AFB79B2C506EE2B7B358D15A4CB227515A2 ] Tcpip           C:\WINDOWS\system32\drivers\tcpip.sys
16:07:35.0441 0x1e24  Tcpip - ok
16:07:35.0503 0x1e24  [ F7691009A30EC79518550E2FA4813A42, A3467058F6B5E08137E7C0816F5B1AFB79B2C506EE2B7B358D15A4CB227515A2 ] Tcpip6          C:\WINDOWS\system32\drivers\tcpip.sys
16:07:35.0597 0x1e24  Tcpip6 - ok
16:07:35.0644 0x1e24  [ 57BE670CF1D93717B628271B404D658A, EDD4C58EDAB985C87D6101D9CA5620146EE2BB8A1B899C635DD4CD36541DD46E ] tcpipreg        C:\WINDOWS\system32\drivers\tcpipreg.sys
16:07:35.0675 0x1e24  tcpipreg - ok
16:07:35.0707 0x1e24  [ 2A8B28579A4964AA7EA8CEB1AC121243, BB34DC5199DE15F7D57AE52DF427C39D2FD34FAFA8136F783F2F089CDEBA0130 ] tdx             C:\WINDOWS\system32\DRIVERS\tdx.sys
16:07:35.0738 0x1e24  tdx - ok
16:07:35.0785 0x1e24  [ 2213610676B404B157ADFFE312567458, B2E02C5049357A2DFF1CF4F6F64AC6E1DCCEDC245E96D5BC0585E88E7622D1B9 ] Telemetry       C:\WINDOWS\system32\drivers\IntelTA.sys
16:07:35.0800 0x1e24  Telemetry - ok
16:07:35.0863 0x1e24  [ C225B94F2B27AC97C3E66C0550AEA249, 6F88375DD12A648B77BB6EB4BE527FF6678EE76A2059DB5B4CC971CDB31D0DB8 ] terminpt        C:\WINDOWS\System32\drivers\terminpt.sys
16:07:35.0878 0x1e24  terminpt - ok
16:07:35.0941 0x1e24  [ 70172E2FA9D349474D22C0AF919F6716, 3D4D164B6927220FF6C323724AC61C4CF467ED7843A3877B3856344423B665C1 ] TermService     C:\WINDOWS\System32\termsrv.dll
16:07:36.0003 0x1e24  TermService - ok
16:07:36.0019 0x1e24  [ 8EC4197962A0349DFFBDC11586099DB8, 8DD5348A4983C376F63E6B209227D4D02300555F8C80A0E0DB2EA16074ABC334 ] Themes          C:\WINDOWS\system32\themeservice.dll
16:07:36.0050 0x1e24  Themes - ok
16:07:36.0113 0x1e24  [ 761EBB96C8217CF5795ACF429BDF9E88, 4CCDB591EE16507879D8F12C0BDD40FACBEEF03BFC553A84270284D4930B433F ] TieringEngineService C:\WINDOWS\system32\TieringEngineService.exe
16:07:36.0144 0x1e24  TieringEngineService - ok
16:07:36.0175 0x1e24  [ 6B761253F07F46BE2B16C768B1F22551, C4E63135EB9BAAB1B7DE928C914CACEAB1E4862D6C5913B23EFC5B8986B1D91E ] TimeBrokerSvc   C:\WINDOWS\System32\TimeBrokerServer.dll
16:07:36.0207 0x1e24  TimeBrokerSvc - ok
16:07:36.0253 0x1e24  [ ADB9B60D34B39194965D2820D3AD04E2, AA940F5A2F850F577EAB258C203C59112114DF8FF7054E9E3CBE139D9121359B ] TokenBroker     C:\WINDOWS\System32\TokenBroker.dll
16:07:36.0316 0x1e24  TokenBroker - ok
16:07:36.0378 0x1e24  [ 8D0C4B0F6D48CF4750403971D7BF494D, 62ECE387CEAAD6296A35632AFC96E8A4E7018BD0A1037CD4AF8951F833AC38DA ] TPM             C:\WINDOWS\System32\drivers\tpm.sys
16:07:36.0394 0x1e24  TPM - ok
16:07:36.0456 0x1e24  [ 6B7A6ABB160045852805449227F4F93D, 135192B2D889D498A1F2F27BDE332FDA75C36CF9267E69A4953718EFFDEAA374 ] TrkWks          C:\WINDOWS\System32\trkwks.dll
16:07:36.0488 0x1e24  TrkWks - ok
16:07:36.0519 0x1e24  [ 732BA88A47C0713AE45986C65AF49E67, FD8EE86BB5319D97FB517658C5F41501ED6DE5D19C49437EDE906B68B21263BC ] TroubleshootingSvc C:\WINDOWS\system32\MitigationClient.dll
16:07:36.0550 0x1e24  TroubleshootingSvc - ok
16:07:36.0644 0x1e24  [ 8139E510C272F2A86EE3815C618B80DC, 983BF0D8B16D4729779812F88AA854AA4B27E2097304E9022A2F031EAB088D11 ] TrustedInstaller C:\WINDOWS\servicing\TrustedInstaller.exe
16:07:36.0660 0x1e24  TrustedInstaller - ok
16:07:36.0706 0x1e24  [ F613A8618CC19DD96D1E0C81C5DCB7D1, AD6DE675AC033BE6BF75FF6303EAED4B5C672689D3AEC6DB94816D60E19B7030 ] TsUsbFlt        C:\WINDOWS\system32\drivers\tsusbflt.sys
16:07:36.0738 0x1e24  TsUsbFlt - ok
16:07:36.0769 0x1e24  [ 7845DD22FA7B91FDF0522344B1BDA012, 161A01BAC7E84B72BC6C2E83A63CC9E1DC7E2E9104C1645CD098D14094D2AC79 ] TsUsbGD         C:\WINDOWS\System32\drivers\TsUsbGD.sys
16:07:36.0816 0x1e24  TsUsbGD - ok
16:07:36.0847 0x1e24  [ 6244FD1056BF170E38245B4B9042BFDF, C32908B3C5800CD52EF9BDD26C77B8162831CFD19DBF1D399941B17FB909AD94 ] tunnel          C:\WINDOWS\system32\drivers\tunnel.sys
16:07:36.0894 0x1e24  tunnel - ok
16:07:36.0956 0x1e24  [ A7C58987094E1EEBD63FB94BBE5FBC2C, 1E2E68E68380CFE42C2D975E826F6301AA7F35566E9A733B881BDC6271EC1981 ] tzautoupdate    C:\WINDOWS\system32\tzautoupdate.dll
16:07:36.0988 0x1e24  tzautoupdate - ok
16:07:37.0035 0x1e24  [ E51FEC42B4820C74BB75DAAE3A49C3F2, AC2CC1E3D5A8AF54EDE4C86F2080AFE018FBAF3568D063AC68D00FE07FB2E39E ] UASPStor        C:\WINDOWS\System32\drivers\uaspstor.sys
16:07:37.0050 0x1e24  UASPStor - ok
16:07:37.0097 0x1e24  [ 1020E0CEB0EC9FB54F0A2C8E8D4CDA62, 6D952B704BF08DDF4740796230751027143F9434D651962E8CDDB8F6FE5F5A8A ] UcmCx0101       C:\WINDOWS\system32\Drivers\UcmCx.sys
16:07:37.0128 0x1e24  UcmCx0101 - ok
16:07:37.0175 0x1e24  [ 229B33B8499F4F2AAB1F3B590423611F, E70A2D9EEEF0C6894A0DB7990CFF6ECE3B8F389FD30B7B1949FCBDD3300B6148 ] UcmTcpciCx0101  C:\WINDOWS\system32\Drivers\UcmTcpciCx.sys
16:07:37.0206 0x1e24  UcmTcpciCx0101 - ok
16:07:37.0253 0x1e24  [ 7FDC3A6FD8547468CE554C8821640103, 3626760AEE42EE36E047DA6899A81E0646DFBA344A234270EAE5D635F049BE37 ] UcmUcsiAcpiClient C:\WINDOWS\System32\drivers\UcmUcsiAcpiClient.sys
16:07:37.0285 0x1e24  UcmUcsiAcpiClient - ok
16:07:37.0331 0x1e24  [ 1ADE4D1F65B4A1E52F701C69FB455769, 3E5CDCC098149853A7EFA05EA1B714182C82E4153F2DA3C50BA30DF2B3E05EB6 ] UcmUcsiCx0101   C:\WINDOWS\system32\Drivers\UcmUcsiCx.sys
16:07:37.0363 0x1e24  UcmUcsiCx0101 - ok
16:07:37.0410 0x1e24  [ D6BEDCCB2E48589944EDC675D335677E, 2F5A5BA7AEC40C1A440C8DFF81DCE5AB0BDF9CC70ADDE48F8B652665B61F9915 ] Ucx01000        C:\WINDOWS\system32\drivers\ucx01000.sys
16:07:37.0425 0x1e24  Ucx01000 - ok
16:07:37.0441 0x1e24  [ 6861422B7FFADDEAAA64A0539C910178, 4F8193C0A3525B78CA3CAF4731AE997A214F3DF180F0A3ADCEB2D31D3217850C ] UdeCx           C:\WINDOWS\system32\drivers\udecx.sys
16:07:37.0472 0x1e24  UdeCx - ok
16:07:37.0488 0x1e24  [ 26D2727935221EFB0063B43A74B375BE, AB809F7EDC5C8A6EEE9610477A79131EA6C3D1BDD3D837B56B6AFF3572923DB7 ] udfs            C:\WINDOWS\system32\DRIVERS\udfs.sys
16:07:37.0535 0x1e24  udfs - ok
16:07:37.0613 0x1e24  [ 78AB56D9436D5F5BF967E939308041DE, 1571BDF4F97C16E2A119CD99E4CFF18EC744E37FB5C06AB2C053C6AAF288A111 ] UdkUserSvc      C:\WINDOWS\System32\windowsudk.shellcommon.dll
16:07:37.0722 0x1e24  UdkUserSvc - ok
16:07:37.0800 0x1e24  [ 264C183C222EF95D4C64DFA8BA5F0479, 3EF244E91851E03BE77DE49FA7E36769DE287B0CB732CD0140C39FE5118D80B9 ] UEFI            C:\WINDOWS\System32\DriverStore\FileRepository\uefi.inf_amd64_c1628ffa62c8e54c\UEFI.sys
16:07:37.0816 0x1e24  UEFI - ok
16:07:37.0831 0x1e24  [ 01951AA29AC2A4E4EB957BA167044C27, 5F97E9D1343FE739E35B65CFA659037421A2E0A4081CF10AD4CE94B915C02BC2 ] Ufx01000        C:\WINDOWS\system32\drivers\ufx01000.sys
16:07:37.0863 0x1e24  Ufx01000 - ok
16:07:37.0878 0x1e24  [ EEEECAFD642DB20A8470090C2ACAA6AC, 70FEAD3371792160701D47A808FC78786766E4C7CA7C5ED8DA356BFC991A275A ] UfxChipidea     C:\WINDOWS\System32\DriverStore\FileRepository\ufxchipidea.inf_amd64_1c78775fffab6a0a\UfxChipidea.sys
16:07:37.0894 0x1e24  UfxChipidea - ok
16:07:37.0925 0x1e24  [ E884B3B8DDA9442F58E41C2ADE3C4234, 51F112449305C5F03FEA6F046CA007A8056A65EF84986393A1B4203F53A08833 ] ufxsynopsys     C:\WINDOWS\System32\drivers\ufxsynopsys.sys
16:07:37.0956 0x1e24  ufxsynopsys - ok
16:07:38.0378 0x1e24  [ 13B9189CA51D925FF78151A0E14C40CE, 78AEDD6D13C45B2E080BC26527CCF3BDABF764A2108249BA8B3AC4387C6A6376 ] uhssvc          C:\Program Files\Microsoft Update Health Tools\uhssvc.exe
16:07:38.0394 0x1e24  uhssvc - ok
16:07:38.0441 0x1e24  [ E0E764F688DCACBA011BAEB2017B903F, 7802DCDA6F49494245EC9304AECED7BB2E90908BED25A4D47F1FF4615B03DED0 ] umbus           C:\WINDOWS\System32\DriverStore\FileRepository\umbus.inf_amd64_b78a9c5b6fd62c27\umbus.sys
16:07:38.0472 0x1e24  umbus - ok
16:07:38.0503 0x1e24  [ 493AF687E60E144F59E3F5B7E27AA39B, 3062B25A7747BC417E1D498DB1B11C9631D80F57E4A048101EF5AA26206AE838 ] UmPass          C:\WINDOWS\System32\drivers\umpass.sys
16:07:38.0534 0x1e24  UmPass - ok
16:07:38.0566 0x1e24  [ A4AA744447EEB2B46EC60C7AA487B072, C55B91BBA36FBD18C43FC367C54267EF28CEB5CCCF04EA7E44FB4778748DF005 ] UmRdpService    C:\WINDOWS\System32\umrdp.dll
16:07:38.0613 0x1e24  UmRdpService - ok
16:07:38.0659 0x1e24  [ DA04AA3DA8CD89AC26095DFCABA7740E, 971440911B04DAD4F9F7C5621EBFE5C1E69B7A8455F2F3D33A1D96FFA1171A81 ] UnistoreSvc     C:\WINDOWS\System32\unistore.dll
16:07:38.0706 0x1e24  UnistoreSvc - ok
16:07:38.0753 0x1e24  [ 8BFFE0333C9EA9C54797C7F0E6F7769A, 0C0C7524F1A6D375D5D60DC8C602A75CB79B7311C0735956A2F42152A15C5F40 ] upnphost        C:\WINDOWS\System32\upnphost.dll
16:07:38.0816 0x1e24  upnphost - ok
16:07:38.0847 0x1e24  [ 5C33B91675BE0C9693358C1AAA723D20, A5BB54ABBB0F7B13ACCA0997F567A81395688C6D68EB87F67F688737DC16918F ] UrsChipidea     C:\WINDOWS\System32\DriverStore\FileRepository\urschipidea.inf_amd64_78ad1c14e33df968\urschipidea.sys
16:07:38.0863 0x1e24  UrsChipidea - ok
16:07:38.0894 0x1e24  [ ADFAB87405AE22290E24D0E8E6141AF1, BC0982BEFE4CABEA1E260C8A3266EA18A4CA158A07D1C5176890A04CC3B6A84A ] UrsCx01000      C:\WINDOWS\system32\drivers\urscx01000.sys
16:07:38.0925 0x1e24  UrsCx01000 - ok
16:07:38.0956 0x1e24  [ BBDE7BF496327115DD744E7D4105C7BC, 5A8CC47603A1C9D58A30A5E897F1BCDC56199B08317B9FF319D469D6DD6CAAF0 ] UrsSynopsys     C:\WINDOWS\System32\DriverStore\FileRepository\urssynopsys.inf_amd64_057fa37902020500\urssynopsys.sys
16:07:38.0972 0x1e24  UrsSynopsys - ok
16:07:39.0003 0x1e24  [ D515F6E614AE8672243EE8CA9DCED1DF, 2A32F39CC8DBFF2F7F105C8DCB4612C3C103D16CC7CCC724B729623CB7EFBD94 ] usbaudio        C:\WINDOWS\system32\drivers\usbaudio.sys
16:07:39.0050 0x1e24  usbaudio - ok
16:07:39.0081 0x1e24  [ FB9F25ACEBCBAEABFE30CACCB17D4EE6, 7D38FA294DA179E5535E3E481746F07E2AE47CE57192C2D1C5B780B583FD9C6D ] usbaudio2       C:\WINDOWS\System32\drivers\usbaudio2.sys
16:07:39.0113 0x1e24  usbaudio2 - ok
16:07:39.0113 0x1e24  [ C6D1E24E96FCE7662F7C09394241CC8F, D49772661BABE6FF688F6C1D21BA04BC0E0492432664C413F851264695A3D3A2 ] usbccgp         C:\WINDOWS\System32\drivers\usbccgp.sys
16:07:39.0144 0x1e24  usbccgp - ok
16:07:39.0175 0x1e24  [ 11561FC5BAA2DEB5AC8B179B591A882E, 2AD595BF4ABC146D8F533981848FF8271E983038566937BEB48A6A8F09BC60FB ] usbcir          C:\WINDOWS\System32\drivers\usbcir.sys
16:07:39.0206 0x1e24  usbcir - ok
16:07:39.0238 0x1e24  [ D1E576C8A94A27D896B56F923ED4E4D6, 3AE5ED5EAFBC52028D082D3EC04B526EF60F5D74BBC79DD210A22D9238C61262 ] usbehci         C:\WINDOWS\System32\drivers\usbehci.sys
16:07:39.0253 0x1e24  usbehci - ok
16:07:39.0284 0x1e24  [ 804C51B11057869624D9292040B45E56, 42404EC0F658121F6553B7DAA3511ED512B7F4B336C2032BA85CD91E8879EEAE ] usbhub          C:\WINDOWS\System32\drivers\usbhub.sys
16:07:39.0316 0x1e24  usbhub - ok
16:07:39.0363 0x1e24  [ 2FCA9E51CFD11C0734D76013B6493C22, 54C736C9A40A769CEB7BC094D5458F2EC4FA2A5128ECB86DBCE2F2A83EAEB203 ] USBHUB3         C:\WINDOWS\System32\drivers\UsbHub3.sys
16:07:39.0394 0x1e24  USBHUB3 - ok
16:07:39.0409 0x1e24  [ 4E8C3BD185042836203F3AA26B1DE6BC, 8E2B1A8E3F8E1F88E73AE2A34B1726B5C5F6753BAE3FAB1E7CC82C53FF7EE891 ] usbohci         C:\WINDOWS\System32\drivers\usbohci.sys
16:07:39.0456 0x1e24  usbohci - ok
16:07:39.0488 0x1e24  [ 1FE857B82E34F31C2BED1B997549C467, 7D84EF54EC74220157DA3E3E0C65B91542A4311137EFBB753002BA73A5C9A23C ] usbprint        C:\WINDOWS\System32\drivers\usbprint.sys
16:07:39.0519 0x1e24  usbprint - ok
16:07:39.0534 0x1e24  [ C21F9951C7B603A27FB2C76917024337, 99EC8725AC46A0AE377E8D02573B71E922C638DE56005437C629EAEB6BD2E1E4 ] usbser          C:\WINDOWS\System32\drivers\usbser.sys
16:07:39.0566 0x1e24  usbser - ok
16:07:39.0581 0x1e24  [ FE9BA629CA927C9A4DE2DA8D6BC11B3E, EE4CF319E14E63FCFAE8D0506449A9874966662E04A87BB896070F08BA770A74 ] USBSTOR         C:\WINDOWS\System32\drivers\USBSTOR.SYS
16:07:39.0597 0x1e24  USBSTOR - ok
16:07:39.0613 0x1e24  [ 3D45E616CC66D475E7261875344622F1, 3D602EA3F0A83F8FA7B9FED579B21881BB92272307634B24E0423A9A482D2CD6 ] usbuhci         C:\WINDOWS\System32\drivers\usbuhci.sys
16:07:39.0644 0x1e24  usbuhci - ok
16:07:39.0675 0x1e24  [ DCF2BB4A9ED398136A7CC5A0C3502C37, DBB55B9EB0B7EA9AF017F3F5E481CF5151AC40FF8583E09CF2577EE916383CB3 ] USBXHCI         C:\WINDOWS\System32\drivers\USBXHCI.SYS
16:07:39.0706 0x1e24  USBXHCI - ok
16:07:39.0784 0x1e24  [ B1F3989A13B65D3CAD4778F9D92418AC, 45B8C4BE560AB5C7BDF250DB4CB68FA4712570B841A11BB43722A14812376DCC ] UserDataSvc     C:\WINDOWS\System32\userdataservice.dll
16:07:39.0863 0x1e24  UserDataSvc - ok
16:07:39.0988 0x1e24  [ CCC28113ACB614347C056087CC37EE5E, C41554CC81455BBA9F5FF5397517B012DA00CB39E3200B4A2E7BF266F4ACFE10 ] UserManager     C:\WINDOWS\System32\usermgr.dll
16:07:40.0050 0x1e24  UserManager - ok
16:07:40.0097 0x1e24  [ F81E1AB10FAC8548DE233A9171965C01, A6B04855393E4BDB5E35067AA176168307F62B5D68AA265E338049051A3328B6 ] UsoSvc          C:\WINDOWS\system32\usosvc.dll
16:07:40.0128 0x1e24  UsoSvc - ok
16:07:40.0175 0x1e24  [ 5C5DC8E40CFC3979E793348A009434B7, 97AA8A487DAF0699E569B3E657EAC605302C74B75DAF2058856D799D32EA8026 ] VacSvc          C:\WINDOWS\System32\vac.dll
16:07:40.0191 0x1e24  VacSvc - ok
16:07:40.0206 0x1e24  [ A1CC00332BBF370654EE3DC8CDC8C95A, E69356111240657E6435EDF2E3A4BBAC9C89957EF2D34FC620B8B7DBF564A862 ] VaultSvc        C:\WINDOWS\system32\lsass.exe
16:07:40.0222 0x1e24  VaultSvc - ok
16:07:40.0237 0x1e24  [ 661233B58190B487682839F1559A7962, 2BE132106C26A9073B6E9CB646E6A2C003558B8924ED0BDC3A0533FC98E03BF4 ] vdrvroot        C:\WINDOWS\system32\drivers\vdrvroot.sys
16:07:40.0253 0x1e24  vdrvroot - ok
16:07:40.0300 0x1e24  [ 0781CE7ECCD9F6318BA72CD96B5B8992, 2ACEAC6D51E610F85F35175C3A511F59D5B080D95453662E58C9D578DED42A89 ] vds             C:\WINDOWS\System32\vds.exe
16:07:40.0347 0x1e24  vds - ok
16:07:40.0378 0x1e24  [ 46684A95E908F0A6A2355AA46A3B2A77, A25DFDA0572EF014905619DF21427518EA5C01CFB13B9927ADA305B29DBBFEFE ] VerifierExt     C:\WINDOWS\system32\drivers\VerifierExt.sys
16:07:40.0409 0x1e24  VerifierExt - ok
16:07:40.0441 0x1e24  [ BAC7C0D8F07AB36B4E096426C2BFBA32, 13749D1DBA7517DB26BF13EAEC56DED3B1323D5023C1AFEAE0824C105369BD7C ] vhdmp           C:\WINDOWS\System32\drivers\vhdmp.sys
16:07:40.0487 0x1e24  vhdmp - ok
16:07:40.0519 0x1e24  [ 7F2F04A354582D3D34F5B2B4EFF07189, 98188182D328414832D06E957601A997AD2B2B0F088B089181EDE8FAB0AF733C ] vhf             C:\WINDOWS\System32\drivers\vhf.sys
16:07:40.0597 0x1e24  vhf - ok
16:07:40.0628 0x1e24  [ B061B0986AE9946E4E19D9200F446C66, BB313E7DB32AC8CA3F3849E9CC71F6BC7A654ADB46FBFB2414036A85EE31AAD6 ] Vid             C:\WINDOWS\System32\drivers\Vid.sys
16:07:40.0659 0x1e24  Vid - ok
16:07:40.0691 0x1e24  [ B37F0BF662BB504F0A9C247F24C281AD, 6281D573D9AD9AA204778C3823737726E882B17657B23CF5458C012FF7990E52 ] VirtualRender   C:\WINDOWS\System32\DriverStore\FileRepository\vrd.inf_amd64_81fbd405ff2470fc\vrd.sys
16:07:40.0722 0x1e24  VirtualRender - ok
16:07:40.0753 0x1e24  [ 8E58CC58C95EF60E07BB6CB64F5C0D26, 28C4290C9AB4EDBB5432A540F0BD2295AAF6F5B0E593CA1F754D8A68E971BFBC ] vmbus           C:\WINDOWS\system32\drivers\vmbus.sys
16:07:40.0784 0x1e24  vmbus - ok
16:07:40.0800 0x1e24  [ C29F63BB3B99B3F2030113160A741684, 43DF7A6DD305D1696D28A54E12B75AE041B075E789DB5D0C8DDF250E75585AA1 ] VMBusHID        C:\WINDOWS\System32\drivers\VMBusHID.sys
16:07:40.0816 0x1e24  VMBusHID - ok
16:07:40.0831 0x1e24  [ E5BB075B6B5A1DA3C3F48CA5DFF54E77, E13E8F9523F51F976084561C9D0A843CAF550FA233521FF13FFE1C5634CA6472 ] vmgid           C:\WINDOWS\System32\drivers\vmgid.sys
16:07:40.0847 0x1e24  vmgid - ok
16:07:40.0878 0x1e24  [ 8486D6F63D5CF87CA08E3B3604DCB631, BD96CD0EF7B84C55DB525D655F19DE7B63756B7F3554AEBDF8F4A7A0BF2507FC ] vmicguestinterface C:\WINDOWS\System32\icsvc.dll
16:07:40.0894 0x1e24  vmicguestinterface - ok
16:07:40.0909 0x1e24  [ 8486D6F63D5CF87CA08E3B3604DCB631, BD96CD0EF7B84C55DB525D655F19DE7B63756B7F3554AEBDF8F4A7A0BF2507FC ] vmicheartbeat   C:\WINDOWS\System32\icsvc.dll
16:07:40.0925 0x1e24  vmicheartbeat - ok
16:07:40.0941 0x1e24  [ 8486D6F63D5CF87CA08E3B3604DCB631, BD96CD0EF7B84C55DB525D655F19DE7B63756B7F3554AEBDF8F4A7A0BF2507FC ] vmickvpexchange C:\WINDOWS\System32\icsvc.dll
16:07:40.0956 0x1e24  vmickvpexchange - ok
16:07:40.0987 0x1e24  [ D222598C027A7D87382C0CB8D0CD3994, FB6CA91F6F3FC650A9D12D54CFD25331A31404181755E7CADBC80A0A57327AEA ] vmicrdv         C:\WINDOWS\System32\icsvcext.dll
16:07:41.0034 0x1e24  vmicrdv - ok
16:07:41.0050 0x1e24  [ 8486D6F63D5CF87CA08E3B3604DCB631, BD96CD0EF7B84C55DB525D655F19DE7B63756B7F3554AEBDF8F4A7A0BF2507FC ] vmicshutdown    C:\WINDOWS\System32\icsvc.dll
16:07:41.0066 0x1e24  vmicshutdown - ok
16:07:41.0066 0x1e24  [ 8486D6F63D5CF87CA08E3B3604DCB631, BD96CD0EF7B84C55DB525D655F19DE7B63756B7F3554AEBDF8F4A7A0BF2507FC ] vmictimesync    C:\WINDOWS\System32\icsvc.dll
16:07:41.0081 0x1e24  vmictimesync - ok
16:07:41.0097 0x1e24  [ 8486D6F63D5CF87CA08E3B3604DCB631, BD96CD0EF7B84C55DB525D655F19DE7B63756B7F3554AEBDF8F4A7A0BF2507FC ] vmicvmsession   C:\WINDOWS\System32\icsvc.dll
16:07:41.0112 0x1e24  vmicvmsession - ok
16:07:41.0128 0x1e24  [ D222598C027A7D87382C0CB8D0CD3994, FB6CA91F6F3FC650A9D12D54CFD25331A31404181755E7CADBC80A0A57327AEA ] vmicvss         C:\WINDOWS\System32\icsvcext.dll
16:07:41.0144 0x1e24  vmicvss - ok
16:07:41.0175 0x1e24  [ 0733F8C791B54D422EA7D44CDF009EC3, A03B110C6711EFBD8BCF4391941A2E77AEDAC5462C10479050F9318E94C62CED ] volmgr          C:\WINDOWS\system32\drivers\volmgr.sys
16:07:41.0191 0x1e24  volmgr - ok
16:07:41.0222 0x1e24  [ 796F1C83861C02A97571D0EDAB490B70, 71CE8D930AE82C2B2628CBF3BB3AE1A8CF039BD702BDE912D499FCF45332F5A6 ] volmgrx         C:\WINDOWS\system32\drivers\volmgrx.sys
16:07:41.0253 0x1e24  volmgrx - ok
16:07:41.0300 0x1e24  [ 988A7A685BB51BAC62F4E176BE5432AC, CFEE4616C10EB0CDA65D4FCC2488B879D577E0F95B5E9AB9B61258F249ED6AC6 ] volsnap         C:\WINDOWS\system32\drivers\volsnap.sys
16:07:41.0331 0x1e24  volsnap - ok
16:07:41.0347 0x1e24  [ 770E710BEA3CCC595EE3703297B40D76, C03E3367B92307993BC169583CB298265FC1C35CF5973EC352C1E08FFCFD1928 ] volume          C:\WINDOWS\system32\drivers\volume.sys
16:07:41.0362 0x1e24  volume - ok
16:07:41.0378 0x1e24  [ A37A7788DABE4FF6E33FE50D7A33D8E8, 9E99D9D27BA3DFA6F89C77B9AD91BE495F15E4F612BB63B209157DFA13BCD7E0 ] vpci            C:\WINDOWS\system32\drivers\vpci.sys
16:07:41.0409 0x1e24  vpci - ok
16:07:41.0425 0x1e24  [ 1A4D9FAED669BC42E5A1CD8442729AB2, E70778AF6B0C9709CB8CEF655C6DD8B5A61CC70BFD35A43304C1308EA478C550 ] vsmraid         C:\WINDOWS\system32\drivers\vsmraid.sys
16:07:41.0441 0x1e24  vsmraid - ok
16:07:41.0519 0x1e24  [ D045837342C3AC9EE4A915FA385EC892, E986D52B7F58EB89F211479CB672E28437A93C9A342528610C95973F8381702F ] VSS             C:\WINDOWS\system32\vssvc.exe
16:07:41.0581 0x1e24  VSS - ok
16:07:41.0597 0x1e24  [ 6E0092973E35BE6A1F5ED5CBDD202036, 33DAF53C81D5BAF9337192A84DF50C108BAE9B8A858081E2208939CCFF2622F8 ] VSTXRAID        C:\WINDOWS\system32\drivers\vstxraid.sys
16:07:41.0628 0x1e24  VSTXRAID - ok
16:07:41.0659 0x1e24  [ 7BC30ADCCC9BCF2B0A29A320A395EC3B, 373C85F659F07366649697823B4A8B14313F0042A7A04E932429D049D18C7646 ] vwifibus        C:\WINDOWS\System32\drivers\vwifibus.sys
16:07:41.0675 0x1e24  vwifibus - ok
16:07:41.0722 0x1e24  [ C111EE25F5130811A398B1F1496AD1C1, 13C3B69A5D0179ED3CC2C999FF97EDBAEDD63DA55DDB74427251C360706A3820 ] vwififlt        C:\WINDOWS\system32\drivers\vwififlt.sys
16:07:41.0769 0x1e24  vwififlt - ok
16:07:41.0800 0x1e24  [ 969522409580365D47FCB1680BA1DA30, BF0A655EAE81B0C417D03DA79A3CBD8CE4F1F2973FF2889A952BED7B588172A4 ] W32Time         C:\WINDOWS\system32\w32time.dll
16:07:41.0878 0x1e24  W32Time - ok
16:07:41.0972 0x1e24  [ 59185BDAC90502E8C5CF69AA8D53D502, 50B0592B57669778FE369C740B53A713DE58B647B5537F857626DE860D3C9721 ] WaaSMedicSvc    C:\WINDOWS\System32\WaaSMedicSvc.dll
16:07:42.0019 0x1e24  WaaSMedicSvc - ok
16:07:42.0065 0x1e24  [ 1F16C8283230EF1F1C4E135D1C2C859B, E4F672C7E58490F82F859CAEEDD57D8ABCC31DE62A42A956BEE47113D365BE35 ] WacomPen        C:\WINDOWS\System32\drivers\wacompen.sys
16:07:42.0112 0x1e24  WacomPen - ok
16:07:42.0144 0x1e24  [ D765B98325D89C076FEEAB1282CD08EA, AC2F0A68A2BCAAF2DECB0AAF1B50D652ED8B631B08D06B910B407FEF9069412E ] WalletService   C:\WINDOWS\system32\WalletService.dll
16:07:42.0175 0x1e24  WalletService - ok
16:07:42.0206 0x1e24  [ 438B3E55D9D700C1C0424642872C2E28, 161F9F1F666717D95AF7EC984DDDC4D7E13844617108346FFC49A4EE99AE812F ] wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
16:07:42.0222 0x1e24  wanarp - ok
16:07:42.0237 0x1e24  [ 438B3E55D9D700C1C0424642872C2E28, 161F9F1F666717D95AF7EC984DDDC4D7E13844617108346FFC49A4EE99AE812F ] wanarpv6        C:\WINDOWS\system32\DRIVERS\wanarp.sys
16:07:42.0269 0x1e24  wanarpv6 - ok
16:07:42.0534 0x1e24  [ 8449398F11D49864117105679B539816, 8FD3B9C72066D6A983D062DE72EEF9769339EACBF4E0D303B9E12343C9D5DE6C ] WarpJITSvc      C:\WINDOWS\System32\Windows.WARP.JITService.dll
16:07:42.0565 0x1e24  WarpJITSvc - ok
16:07:42.0612 0x1e24  [ 17270A354A66590953C4AAC1CF54E507, 9954394B43783061F9290706320CC65597C29176D5B8E7A26FA1D6B3536832B4 ] wbengine        C:\WINDOWS\system32\wbengine.exe
16:07:42.0690 0x1e24  wbengine - ok
16:07:42.0737 0x1e24  [ 9E2D304905CA820DFB0F00A52AD0ED89, 169116BE59C369E925F6094466E17FC940039EFE1E373FD2510B5D9CE15C1D7E ] WbioSrvc        C:\WINDOWS\System32\wbiosrvc.dll
16:07:42.0784 0x1e24  WbioSrvc - ok
16:07:42.0815 0x1e24  [ 418302F3916FEB31C6F9312D91DDE11C, AEAE4B987730AD269D73141AE10B23985FD2001FBBE9920C2EB5538C1793DC9C ] wcifs           C:\WINDOWS\system32\drivers\wcifs.sys
16:07:42.0831 0x1e24  wcifs - ok
16:07:42.0894 0x1e24  [ 96641E8D750FC643596E0AC485047674, 684475E68CA2804D91D78B4A1DA568CFF8A7D3AD088505BF737E87AFDA9DA4EA ] Wcmsvc          C:\WINDOWS\System32\wcmsvc.dll
16:07:42.0940 0x1e24  Wcmsvc - ok
16:07:42.0987 0x1e24  [ 6CDE91D497A3EC19796DE53DEBD74FB0, ACBBCBFE7A953F3CFF10A035A52984D7DB0C0B4C6B735F53006036F4CCC15059 ] wcncsvc         C:\WINDOWS\System32\wcncsvc.dll
16:07:43.0034 0x1e24  wcncsvc - ok
16:07:43.0065 0x1e24  [ 2F814379FE1FF9DC891953674406BCA1, ACC9B126A8A5D58AF76F0A492C0EBC75925C3B59EAE89062AEF0FFADF60E3A2B ] wcnfs           C:\WINDOWS\system32\drivers\wcnfs.sys
16:07:43.0128 0x1e24  wcnfs - ok
16:07:43.0175 0x1e24  [ FD35100B4266D01C5F986048BD78D544, 1B9970251A57508159CB6A8EBAC5AFD532A6FCB8B1ACE05890650B5CC1535409 ] WdBoot          C:\WINDOWS\system32\drivers\wd\WdBoot.sys
16:07:43.0190 0x1e24  WdBoot - ok
16:07:43.0222 0x1e24  [ 256DEFB7A885F44D076D7E0984BA0EF3, BDABDD3DCA3D1F21DA70FF90A16550CE990B6B6A6567C37C3AE1ECCE2086FF6D ] Wdf01000        C:\WINDOWS\system32\drivers\Wdf01000.sys
16:07:43.0269 0x1e24  Wdf01000 - ok
16:07:43.0300 0x1e24  [ E11B693483CC8E313A4462CDF10CDF02, B1E3B300AEC3079D3A4CD99AA5B4FC51B96D49856DC1688A5F55F1C8B90904FC ] WdFilter        C:\WINDOWS\system32\drivers\wd\WdFilter.sys
16:07:43.0347 0x1e24  WdFilter - ok
16:07:43.0394 0x1e24  [ BB37AF6E45E0F69222E057A74B4AFE1E, 4662064205BEC0DB7B10F1412E0A09A6E5E3B16DE443AEF7F79ACA3ACE24A51D ] WdiServiceHost  C:\WINDOWS\system32\wdi.dll
16:07:43.0409 0x1e24  WdiServiceHost - ok
16:07:43.0425 0x1e24  [ BB37AF6E45E0F69222E057A74B4AFE1E, 4662064205BEC0DB7B10F1412E0A09A6E5E3B16DE443AEF7F79ACA3ACE24A51D ] WdiSystemHost   C:\WINDOWS\system32\wdi.dll
16:07:43.0440 0x1e24  WdiSystemHost - ok
16:07:43.0472 0x1e24  [ CE772158E0F6F92F648E70DD976411F0, 9A6E232923CB70F891330FC0685BE05F70C996176683D6D490DB8A529932FE95 ] wdiwifi         C:\WINDOWS\system32\DRIVERS\wdiwifi.sys
16:07:43.0534 0x1e24  wdiwifi - ok
16:07:43.0565 0x1e24  [ A6C92A5F2982EBB8788E0690C19048C4, 85C54A99DD43DC1FAC7FD2A31288CEC7501F795DE8FA86857790F4CCD5AF7C18 ] WdmCompanionFilter C:\WINDOWS\system32\drivers\WdmCompanionFilter.sys
16:07:43.0581 0x1e24  WdmCompanionFilter - ok
16:07:43.0597 0x1e24  [ 2E123D61E45D51B0B9A10DFD13457B48, 31052ECC30B4671292B60C4AA16D3FF53875DCAA6FABD0E68735A28940AABDA2 ] WdNisDrv        C:\WINDOWS\system32\drivers\wd\WdNisDrv.sys
16:07:43.0612 0x1e24  WdNisDrv - ok
16:07:43.0784 0x1e24  [ 21814BCBEAB160F1D98C05C4D472337B, 80B5D7927E0983C81AE45B41883E4A3CE4AF78AB676F4443007C5818B19B2E64 ] WdNisSvc        C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2003.8-0\NisSrv.exe
16:07:43.0878 0x1e24  WdNisSvc - ok
16:07:44.0003 0x1e24  [ 125E37627FA664B417DCD1EC8CA381FA, A4862F245A5D5C3E3B70F3ADB522B0017908352CE04E57802FE64DABD0BDF7E0 ] WebClient       C:\WINDOWS\System32\webclnt.dll
16:07:44.0034 0x1e24  WebClient - ok
16:07:44.0065 0x1e24  [ BDD1061D880EC049CC42E5AED90AF4C6, B78334BEB2E83564A0775133F517D545B580ED14408D91F6C03A01C8AA8283EF ] Wecsvc          C:\WINDOWS\system32\wecsvc.dll
16:07:44.0097 0x1e24  Wecsvc - ok
16:07:44.0128 0x1e24  [ CBA85827716DE89106F8E4AD7430620C, EF2FEAD68FE003DAC52BC2098962F397DF80B7DCD79A8F45012A050C7C0E2DB1 ] WEPHOSTSVC      C:\WINDOWS\system32\wephostsvc.dll
16:07:44.0159 0x1e24  WEPHOSTSVC - ok
16:07:44.0190 0x1e24  [ 709E33220A2BA7CCD36993B7CEE6D1AA, B1F503DA3BCCAD661E628413B282345444AFB73D35A6B5E9068DC76CA60E6C02 ] wercplsupport   C:\WINDOWS\System32\wercplsupport.dll
16:07:44.0222 0x1e24  wercplsupport - ok
16:07:44.0253 0x1e24  [ E241D0B289AB8CFAD7A6E10BA07B8642, AD10645E20C27B92693D7900BB67A57CE02C82246576D884090FE3EAD743C505 ] WerSvc          C:\WINDOWS\System32\WerSvc.dll
16:07:44.0300 0x1e24  WerSvc - ok
16:07:44.0331 0x1e24  [ 0B82A5E82CB96CDCFAE97C0F5DCB1B13, 1A6EB6464662F8EA5BA9AA9FA6B9E5A085F3931B1813F2E7C784F9AD4AB036B2 ] WFDSConMgrSvc   C:\WINDOWS\System32\wfdsconmgrsvc.dll
16:07:44.0378 0x1e24  WFDSConMgrSvc - ok
16:07:44.0409 0x1e24  [ 24BB3C5E411D9702A245B3FE2ADF73F5, A57E2D999FEA06FADD2461F1948E33A5B2E2D2BDFF7BACF4C37FDD9E262E3B1B ] WFPLWFS         C:\WINDOWS\system32\drivers\wfplwfs.sys
16:07:44.0440 0x1e24  WFPLWFS - ok
16:07:44.0456 0x1e24  [ 7AE4D5A054C5EEF9EF9F42926B52FA47, A58CB62992AB846A31E197DF5161F50323D120DF73B7D33FE7D5F5B1AF209291 ] WiaRpc          C:\WINDOWS\System32\wiarpc.dll
16:07:44.0472 0x1e24  WiaRpc - ok
16:07:44.0503 0x1e24  [ 416B0938189ED0D4A8B5BBBE3F045269, 74B32619BE246D7DD6D520309692C32EE922852405DAB432CAF6012E72B495FF ] WIMMount        C:\WINDOWS\system32\drivers\wimmount.sys
16:07:44.0518 0x1e24  WIMMount - ok
16:07:44.0550 0x1e24  [ 331A9DAB79909E3012F0FBD1BA870757, B595B1832B0A24D781EA501A881513381182138766B2385C96C0E356300B1B66 ] WinDefend       C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2003.8-0\MsMpEng.exe
16:07:44.0565 0x1e24  WinDefend - ok
16:07:44.0612 0x1e24  [ B434A84F46C70F4E67B70ED70F024B7F, 64EEB8093BA2590E83D83C5AF7C2A025B88AF5681143BCA83671104266FEEA99 ] WindowsTrustedRT C:\WINDOWS\system32\drivers\WindowsTrustedRT.sys
16:07:44.0628 0x1e24  WindowsTrustedRT - ok
16:07:44.0659 0x1e24  [ 982774B74EE1419D641CEB66E394A4BA, 090C4CE6B76B3904B5AE73E4F1EEBCE619194C358874D7584537012F954C54BE ] WindowsTrustedRTProxy C:\WINDOWS\system32\drivers\WindowsTrustedRTProxy.sys
16:07:44.0675 0x1e24  WindowsTrustedRTProxy - ok
16:07:44.0706 0x1e24  [ 9CB035E4505B5B69EF0D91F8F8F9773C, B88B89F8786DF4FE0E495674974F9CC7ABB71CE59151D01BEF893F0B625B03FA ] WinHttpAutoProxySvc C:\WINDOWS\system32\winhttp.dll
16:07:44.0784 0x1e24  WinHttpAutoProxySvc - ok
16:07:44.0815 0x1e24  [ 0816C30E3395E667EFFFB92B4EA66A05, F6A9E7026AA60A6627680F232AE785EA9CF55FE970708E6E49151F601CC42FEE ] WinMad          C:\WINDOWS\System32\drivers\winmad.sys
16:07:44.0862 0x1e24  WinMad - ok
16:07:45.0050 0x1e24  [ E2376F73AAA2A4BBEF5F94DE095C788A, 65E8FAF81245C08B6668EFB5B7264B2EEBCC90F30F714E1B60C2F7B60AE070C5 ] Winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
16:07:45.0097 0x1e24  Winmgmt - ok
16:07:45.0143 0x1e24  [ E959DDD0BD1DE2D67591DA89B4D5C65F, 9C426AD484490BDE5D471DB638C197E36BC793D4A5F29976FDC4FDC15283575C ] WinNat          C:\WINDOWS\system32\drivers\winnat.sys
16:07:45.0300 0x1e24  WinNat - ok
16:07:45.0393 0x1e24  [ F7858EFE5B29CACDCFDC19C359B49A10, 8AAED75BFCF3B85BC9F0F4B1814810B759AF90D3956DCFDB406C3DBA7CD0D6B2 ] WinRM           C:\WINDOWS\system32\WsmSvc.dll
16:07:45.0503 0x1e24  WinRM - ok
16:07:45.0565 0x1e24  [ 91D3DC62C6EDDB6554CE14C0E0B4290F, 6F8F89B350FC6BC0D23A50C593F02514854AB7D6CD234D8C8AD4B5DDDD586BA0 ] WINUSB          C:\WINDOWS\System32\drivers\WinUSB.SYS
16:07:45.0596 0x1e24  WINUSB - ok
16:07:45.0628 0x1e24  [ F4C4FD42F8DD657157823DB617CC3A3D, D2A5ED039ED83010E0BB4BB1A69F9D142D42BE2C75E56CFCF3F157A735CB688E ] WinVerbs        C:\WINDOWS\System32\drivers\winverbs.sys
16:07:45.0643 0x1e24  WinVerbs - ok
16:07:45.0706 0x1e24  [ DB26C959850C6321223B2747F888C174, 64DD5C6E0FCE2D55BE8671E8A61A15EED80CC5412370A37D7EDEDDE7B2B5E6B4 ] wisvc           C:\WINDOWS\system32\flightsettings.dll
16:07:45.0737 0x1e24  wisvc - ok
16:07:45.0815 0x1e24  [ D5FABB94A02EC3263653E0DD90F58840, 449F9F78AC261418271B8CF30D1B35AFD001B87F20A316DB766923DDFAB84B1C ] WlanSvc         C:\WINDOWS\System32\wlansvc.dll
16:07:45.0940 0x1e24  WlanSvc - ok
16:07:46.0018 0x1e24  [ 8897E679CEF7422BF185A9AFEBB3DF5D, 1C93588A0A80ACE06B619FE85257378701018E58FE8B3C451F98CF22005F4014 ] wlidsvc         C:\WINDOWS\system32\wlidsvc.dll
16:07:46.0112 0x1e24  wlidsvc - ok
16:07:46.0159 0x1e24  [ 1B279ADD6A4150FD49A6276147098803, 6CC12957A0E7FF3DCCA28D8B715EDE9C94F329FD5BAB3366D4C70362325B31CE ] wlpasvc         C:\WINDOWS\System32\lpasvc.dll
16:07:46.0237 0x1e24  wlpasvc - ok
16:07:46.0300 0x1e24  [ C63B3526A9F53869F7826327C77E7E3B, 8FD44B84121ADED677D17ED07537EA676FCFCBA95D7BBDE154007E7B1CF2B649 ] WManSvc         C:\WINDOWS\system32\Windows.Management.Service.dll
16:07:46.0471 0x1e24  WManSvc - ok
16:07:46.0487 0x1e24  [ E4F25E6E790747073A09F9F8C997889C, 98455DD24AE076A2413EA599F83E0894F608C335F3FF2F3624A17E8EAF3B3C42 ] WmiAcpi         C:\WINDOWS\System32\drivers\wmiacpi.sys
16:07:46.0518 0x1e24  WmiAcpi - ok
16:07:46.0550 0x1e24  [ 9A48D32D7DBA794A40BF030DA500603B, CBF60ED17A5B9CF79523F1493BCCD52B3C39632C4C83DE1FD49CFD2B70F01530 ] wmiApSrv        C:\WINDOWS\system32\wbem\WmiApSrv.exe
16:07:46.0581 0x1e24  wmiApSrv - ok
16:07:46.0659 0x1e24  WMPNetworkSvc - ok
16:07:46.0690 0x1e24  [ 9405C703D91F07F1F181DE916594EED3, 7626111256C3BECD0EE9E299A41149A367A28BACEE89CC2CDD46D7499B1B7D34 ] Wof             C:\WINDOWS\system32\drivers\Wof.sys
16:07:46.0706 0x1e24  Wof - ok
16:07:46.0784 0x1e24  [ C996632C873B749EF0ECA1A3F5318BD8, 4F411C75F7AB705BCF495B0E0BDAD1DF4B2AD7447E21CB14D2DFA1E82D1D881F ] workfolderssvc  C:\WINDOWS\system32\workfolderssvc.dll
16:07:46.0862 0x1e24  workfolderssvc - ok
16:07:46.0940 0x1e24  [ 18D607A0D31C459E34488ED99AD10A18, 25B438B7FA054F6A61E5A16890C0C5E368C3780655872F7357B41BE7A0142EB1 ] WpcMonSvc       C:\WINDOWS\System32\WpcDesktopMonSvc.dll
16:07:47.0018 0x1e24  WpcMonSvc - ok
16:07:47.0065 0x1e24  [ BF4CA66C2EF62BD7DE8D4A66CC9C79FF, 74DD4FBF70452D5B8029979AFCA1CE800EE72750F3E90B2F74355A2290AD6BE8 ] WPDBusEnum      C:\WINDOWS\system32\wpdbusenum.dll
16:07:47.0143 0x1e24  WPDBusEnum - ok
16:07:47.0175 0x1e24  [ 024924C9E79F51560B9133EEAB866BBF, F4D464BC02C7B96EF72AA9229A99A1AD32F56390F97972C33525EF0D85304261 ] WpdUpFltr       C:\WINDOWS\system32\drivers\WpdUpFltr.sys
16:07:47.0190 0x1e24  WpdUpFltr - ok
16:07:47.0221 0x1e24  [ B12FDDFD619C354D798E9E1C9FCF4642, 66F024A993834812277FB08AAD36FD69F79A92B403131FEB76E212ACFB58AB02 ] WpnService      C:\WINDOWS\system32\WpnService.dll
16:07:47.0253 0x1e24  WpnService - ok
16:07:47.0284 0x1e24  [ 3D1B4E335BB9CA8A998CD5E1B2EDE855, ECD704FE62C8920D7AC2B3DC040E9D41D8A6BEBCB457888B411D133635291F36 ] WpnUserService  C:\WINDOWS\System32\WpnUserService.dll
16:07:47.0299 0x1e24  WpnUserService - ok
16:07:47.0315 0x1e24  [ 2B98DFC181823C8D8AA39C4CC577DE3E, DAFF7CE8868299AF5EFA844C2E1F84B7EE7E498B1AFF16965CE41C2E75B2F4E4 ] ws2ifsl         C:\WINDOWS\system32\drivers\ws2ifsl.sys
16:07:47.0362 0x1e24  ws2ifsl - ok
16:07:47.0393 0x1e24  [ 1C2144B4B20C26446E7DCCCEC73FDE68, 6E773307A8CD621CDC1520225D5D1DF63FECFB240DED2326C4DDBD739A12DCE3 ] wscsvc          C:\WINDOWS\System32\wscsvc.dll
16:07:47.0424 0x1e24  wscsvc - ok
16:07:47.0424 0x1e24  WSearch - ok
16:07:47.0518 0x1e24  [ 561B3A58A74ED878AFF41A294E443C8E, 557E9AD8B80C49CD13C26EC4334EB9997B512D19E25C1FB3B79E44177797104A ] wuauserv        C:\WINDOWS\system32\wuaueng.dll
16:07:47.0643 0x1e24  wuauserv - ok
16:07:47.0674 0x1e24  [ E253BF0FF1EA509A208CBAAD210839A9, ADED1BAC25FEDC2099FC07E928AB0595C7AA3E78FF7F7EBB1D95DFC18CA4FF7E ] WudfPf          C:\WINDOWS\system32\drivers\WudfPf.sys
16:07:47.0737 0x1e24  WudfPf - ok
16:07:47.0768 0x1e24  [ 67F6B1D6076955F8F6D51D3A76808427, 8DDC68736132B70107F19A1AB0A2575A57A23E42C5BB9BEFC72ACB7736F63B19 ] WUDFRd          C:\WINDOWS\System32\drivers\WUDFRd.sys
16:07:47.0799 0x1e24  WUDFRd - ok
16:07:47.0815 0x1e24  [ 67F6B1D6076955F8F6D51D3A76808427, 8DDC68736132B70107F19A1AB0A2575A57A23E42C5BB9BEFC72ACB7736F63B19 ] WUDFWpdFs       C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
16:07:47.0846 0x1e24  WUDFWpdFs - ok
16:07:47.0846 0x1e24  [ 67F6B1D6076955F8F6D51D3A76808427, 8DDC68736132B70107F19A1AB0A2575A57A23E42C5BB9BEFC72ACB7736F63B19 ] WUDFWpdMtp      C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
16:07:47.0878 0x1e24  WUDFWpdMtp - ok
16:07:47.0940 0x1e24  [ 0D8B1067D589EC26E90C9B39A90207DB, 877BC639A0C21EA23B433FEE798920CA70667DAB15308A47537F3B8C74DBF9D6 ] WwanSvc         C:\WINDOWS\System32\wwansvc.dll
16:07:48.0018 0x1e24  WwanSvc - ok
16:07:48.0065 0x1e24  [ B62C41E672194A919028786E4A480541, 1A5DCE5775CD0A511F0EDCB23669525590F0F94455C567DDB76DD15C8F25D347 ] XblAuthManager  C:\WINDOWS\System32\XblAuthManager.dll
16:07:48.0362 0x1e24  XblAuthManager - ok
16:07:48.0424 0x1e24  [ E079354E7F1DEA98C8F1A6AF3F0618C3, 78BBC0FDCBD91394E2C74205568703FD5AEE39C54BA43AA78E95ADE9DC75A8E6 ] XblGameSave     C:\WINDOWS\System32\XblGameSave.dll
16:07:48.0503 0x1e24  XblGameSave - ok
16:07:48.0549 0x1e24  [ 6E6E28D046627693CF1D2E905DC69BD1, 31D39CF82E1E98D367F631CFE5B6C6A42E13C1C01BBAABFE2CA35721627D4E43 ] xboxgip         C:\WINDOWS\System32\drivers\xboxgip.sys
16:07:48.0612 0x1e24  xboxgip - ok
16:07:48.0643 0x1e24  [ 04BE9428D1E276DF3F6A7A5552AAB546, ACC3A8180601054BFD8FBE743A7F9CB5F2398FD463FD7EA5EF2EF78953BADBBD ] XboxGipSvc      C:\WINDOWS\System32\XboxGipSvc.dll
16:07:48.0690 0x1e24  XboxGipSvc - ok
16:07:48.0737 0x1e24  [ 5A4F5B800B1AE1B196D3D09D1E973C9F, 8BB5D0ABF6DF5E48F17480AE72D568EBBF59E2D69E359AD951970A5BF35BFDD8 ] XboxNetApiSvc   C:\WINDOWS\system32\XboxNetApiSvc.dll
16:07:48.0799 0x1e24  XboxNetApiSvc - ok
16:07:48.0815 0x1e24  [ C73809EA08CF05A9A78E7F65F63D3294, 4754266D964B7C2B7C4BF16B96FBBF790D90C2A96394544272444ECE9FF97DE6 ] xinputhid       C:\WINDOWS\System32\drivers\xinputhid.sys
16:07:48.0846 0x1e24  xinputhid - ok
16:07:48.0846 0x1e24  ================ Scan global ===============================
16:07:48.0909 0x1e24  [ 522F9EFF8C957F906154B91A8DA698AE, FCB686BB58782506BA6A8C4F924B0872608249091C8FF9DD7129D0146ACC2BFE ] C:\WINDOWS\system32\basesrv.dll
16:07:48.0924 0x1e24  [ 19979E1729CFA0E56EB4CCCB198DFD05, 7F2A683F28877562409D810946DDCA2F069715CDFB249602251DFA50065FFF7A ] C:\WINDOWS\system32\winsrv.dll
16:07:48.0956 0x1e24  [ 1985068B049D1FFBB8D3F837393DF81F, B99151A18AAA83C0D6931245E6DA250346F1A61B0F8F058123E47D9BC5C12BE8 ] C:\WINDOWS\system32\sxssrv.dll
16:07:48.0987 0x1e24  [ D8E577BF078C45954F4531885478D5A9, DFBEA9E8C316D9BC118B454B0C722CD674C30D0A256340200E2C3A7480CBA674 ] C:\WINDOWS\system32\services.exe
16:07:49.0003 0x1e24  [ Global ] - ok
16:07:49.0003 0x1e24  ================ Scan MBR ==================================
16:07:49.0018 0x1e24  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
16:07:49.0315 0x1e24  \Device\Harddisk0\DR0 - ok
16:07:49.0315 0x1e24  ================ Scan VBR ==================================
16:07:49.0315 0x1e24  [ 5C7A9A434D21B225273826D0A4F46245 ] \Device\Harddisk0\DR0\Partition1
16:07:49.0315 0x1e24  \Device\Harddisk0\DR0\Partition1 - ok
16:07:49.0315 0x1e24  [ 79494811A18D33A3A66FF0DED89AF86F ] \Device\Harddisk0\DR0\Partition2
16:07:49.0315 0x1e24  \Device\Harddisk0\DR0\Partition2 - ok
16:07:49.0331 0x1e24  [ CD4AB2AEBE2D6E3FD57FA38802BEF294 ] \Device\Harddisk0\DR0\Partition3
16:07:49.0362 0x1e24  \Device\Harddisk0\DR0\Partition3 - ok
16:07:49.0362 0x1e24  ================ Scan active images ========================
16:07:49.0362 0x1e24  ================ Scan generic autorun ======================
16:07:49.0409 0x1e24  [ 2E1112EF004D0F4EE4A2C3FD813E4038, C6449D7A40A1E55BEEE19D33AC0F2FF9F927FCFD47484703D56F37F39CBE0D32 ] C:\Program Files\Avast Software\Avast\AvLaunch.exe
16:07:49.0424 0x1e24  AvastUI.exe - ok
16:07:49.0471 0x1e24  OneDriveSetup - ok
16:07:49.0518 0x1e24  GoogleDriveFS - ok
16:07:49.0549 0x1e24  [ 251E51E2FEDCE8BB82763D39D631EF89, 2682086ACE1970D5573F971669591B731F87D749406927BD7A7A4B58C3C662E9 ] C:\Program Files (x86)\Windows Mail\wab.exe
16:07:49.0627 0x1e24  WAB Migrate - ok
16:07:49.0627 0x1e24  OneDriveSetup - ok
16:07:49.0627 0x1e24  GoogleDriveFS - ok
16:07:49.0643 0x1e24  [ 251E51E2FEDCE8BB82763D39D631EF89, 2682086ACE1970D5573F971669591B731F87D749406927BD7A7A4B58C3C662E9 ] C:\Program Files (x86)\Windows Mail\wab.exe
16:07:49.0674 0x1e24  WAB Migrate - ok
16:07:49.0706 0x1e24  CCleaner Smart Cleaning - ok
16:07:49.0784 0x1e24  [ 0480664376AC4AB5ABB2F0E2EBD7C730, F72C8333C60622BDE65E887C89A1C616C252A303D1A772306DF8D5E19A0504BE ] C:\Program Files\Microsoft OneDrive\OneDrive.exe
16:07:49.0846 0x1e24  OneDrive - ok
16:07:49.0877 0x1e24  [ 8A2122E8162DBEF04694B9C3E0B6CDEE, B99D61D874728EDC0918CA0EB10EAB93D381E7367E377406E65963366C874450 ] C:\WINDOWS\system32\cmd.exe
16:07:49.0909 0x1e24  Delete Cached Update Binary - ok
16:07:49.0924 0x1e24  [ 8A2122E8162DBEF04694B9C3E0B6CDEE, B99D61D874728EDC0918CA0EB10EAB93D381E7367E377406E65963366C874450 ] C:\WINDOWS\system32\cmd.exe
16:07:49.0940 0x1e24  Delete Cached Standalone Update Binary - ok
16:07:50.0002 0x1e24  [ 0480664376AC4AB5ABB2F0E2EBD7C730, F72C8333C60622BDE65E887C89A1C616C252A303D1A772306DF8D5E19A0504BE ] C:\Program Files\Microsoft OneDrive\OneDrive.exe
16:07:50.0065 0x1e24  OneDrive - ok
16:07:50.0112 0x1e24  [ 0480664376AC4AB5ABB2F0E2EBD7C730, F72C8333C60622BDE65E887C89A1C616C252A303D1A772306DF8D5E19A0504BE ] C:\Program Files\Microsoft OneDrive\OneDrive.exe
16:07:50.0174 0x1e24  OneDrive - ok
16:07:50.0299 0x1e24  [ CA53014CA3B6D8A30B9902F45D137758, 1ADCF82242A462BF8489ADDCD2597784CDD9281821BB58E827C9BA9C1ED89135 ] C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
16:07:50.0393 0x1e24  MicrosoftEdgeAutoLaunch_1849DA42FCDE0467F8491EE500D8A121 - ok
16:07:50.0393 0x1e24  GoogleDriveFS - ok
16:07:50.0409 0x1e24  OneDriveSetup - ok
16:07:50.0409 0x1e24  GoogleDriveFS - ok
16:07:50.0440 0x1e24  [ 251E51E2FEDCE8BB82763D39D631EF89, 2682086ACE1970D5573F971669591B731F87D749406927BD7A7A4B58C3C662E9 ] C:\Program Files (x86)\Windows Mail\wab.exe
16:07:50.0471 0x1e24  WAB Migrate - ok
16:07:50.0534 0x1e24  [ 0480664376AC4AB5ABB2F0E2EBD7C730, F72C8333C60622BDE65E887C89A1C616C252A303D1A772306DF8D5E19A0504BE ] C:\Program Files\Microsoft OneDrive\OneDrive.exe
16:07:50.0596 0x1e24  OneDrive - ok
16:07:50.0596 0x1e24  Waiting for KSN requests completion. In queue: 17
16:07:51.0862 0x1e24  AV detected via SS2: Windows Defender, windowsdefender:// (  ), 0x60100 ( disabled : updated )
16:07:51.0862 0x1e24  AV detected via SS2: Avast Antivirus, C:\Program Files\Avast Software\Avast\wsc_proxy.exe ( 21.4.6162.0 ), 0x41000 ( enabled : updated )
16:07:51.0862 0x1e24  AV detected via SS2: Malwarebytes, C:\Program Files\Malwarebytes\Anti-Malware\MBAMWsc.exe ( 3.0.0.207 ), 0x61000 ( enabled : updated )
16:07:51.0862 0x1e24  FW detected via SS2: Avast Antivirus, C:\Program Files\Avast Software\Avast\wsc_proxy.exe ( 21.4.6162.0 ), 0x41000 ( enabled )
16:07:51.0940 0x1e24  ============================================================
16:07:51.0940 0x1e24  Scan finished
16:07:51.0940 0x1e24  ============================================================
16:07:51.0940 0x1e44  Detected object count: 0
16:07:51.0940 0x1e44  Actual detected object count: 0
1 me gusta

Acabo de revisar la Captura de Pantalla y los Informes que me ha enviado y están correctamente realizados!

Le estoy realizando los siguientes pasos a seguir!

IMPORTANTE:

:one: PASALE CADA PROGRAMA POR SEPARADO Y HASTA QUE NO ACABE EL PRIMER PROGRAMA DE ANALIZAR POR COMPLETO, SIGUIENDO LAS INDICACIONES DADAS, NO LE PASE EL SIGUIENTE Y ASÍ CON EL RESTO DE PROGRAMAS.

:two: DURANTE TODO EL PROCESO DE DESINFECCIÓN DE SU ORDENADOR, QUE NO SE APAGUE LA PANTALLA, ES DECIR, QUE SU PANTALLA NO SE PONGA EN ESTADO DE SUSPENSION YA QUE PUEDE INTERRUMPIRSE EL PROCESO DE DESINFECCIÓN DE SU ORDENADOR Y NO ELIMINAR LAS AMENAZAS E INFECCIONES QUE ENCUENTRE.

:three: SI LOS PROGRAMAS QUE SE LE INDIQUEN EN ESTE FORO QUE SE LE PASEN A SU ORDENADOR YA LOS TUVIERA INSTALADOS, NO HACE FALTA QUE LOS INSTALE DE NUEVO, SIMPLEMENTE EJECUTE EL PROGRAMA QUE SE LE INDIQUE EN ESTE FORO Y SIGA LAS INDICACINES Y EL MANUAL QUE SE LE DEJA JUNTO AL PROGRAMA.

:four: SI ALGUNO DE LOS PROGRAMA DE LOS QUE SE LE INDIQUE EN ESTE FORO, UNA VEZ FINALIZADO EL PROCESO DE ANALISIS, LE INDICA QUE DEBE REINICIAR! PUES REINICIE, PERO SÓLO SI SE LO INDICA DICHO PROGRAMA.

Ahora ejecutarás una serie de herramientas respetando el orden los pasos con todos los programas cerrados incluidos los navegadores.

:three: Descargue, Instale y ejecute el siguiente programa: MalwareBytes Anti-Rootkit Beta. A continuación, le dejo la Url de Descarga del programa: MalwareBytes Anti-Rootkit Beta, para que sepas cómo descargarlo e instalarlo correctamente y su Manual de Uso del MalwareBytes Anti-Rootkit Beta, para que sepas cómo utilizarlo y configurarlo correctamente:

:three: . :one:. Url de Descarga de MalwareBytes Anti-Rootkit Beta:, para que sepas cómo descargarlo e instalarlo correctamente: MalwareBytes Anti-Rootkit Beta.

:three: . :two:. Manual de Uso del MalwareBytes Anti-Rootkit Beta, para que sepas cómo utilizarlo y configurarlo correctamente: Manual de Uso del MalwareBytes Anti-Rootkit Beta (IMPORTANTE: Elimine TODAS las amenazas e infecciones que encuentre y NO restaure NADA).

:three: . :three:. Siga su Manual de Uso del MalwareBytes Anti-Rootkit Beta al pie de la letra y me manda una Captura de Pantalla con todas las amenazas e infecciones que se refleje que haya eliminado dicho programa.

Quedo a la espera de su respuesta!

1 me gusta

Hola, informe malwares rootkit ,
archivo system-log

alwarebytes Anti-Rootkit BETA 1.10.3.1001

(c) Malwarebytes Corporation 2011-2012

OS version: 10.0.9200 Windows 10 x64

Account is Administrative

Internet Explorer version: 11.789.19041.0

File system is: NTFS
Disk drives: C:\ DRIVE_FIXED, D:\ DRIVE_FIXED
CPU speed: 2.993000 GHz
Memory total: 8460709888, free: 4660756480

Downloaded database version: v2022.06.01.04
Downloaded database version: v2022.06.01.04
Downloaded database version: v2018.01.20.01
=======================================
Initializing...
Driver version: 4.3.0.15
------------ Kernel report ------------
     06/01/2022 20:33:15
------------ Loaded modules -----------
\SystemRoot\system32\ntoskrnl.exe
\SystemRoot\system32\hal.dll
\SystemRoot\system32\kd.dll
\SystemRoot\system32\mcupdate_GenuineIntel.dll
\SystemRoot\System32\drivers\CLFS.SYS
\SystemRoot\System32\drivers\tm.sys
\SystemRoot\system32\PSHED.dll
\SystemRoot\system32\BOOTVID.dll
\SystemRoot\System32\drivers\FLTMGR.SYS
\SystemRoot\System32\drivers\msrpc.sys
\SystemRoot\System32\drivers\ksecdd.sys
\SystemRoot\System32\drivers\clipsp.sys
\SystemRoot\System32\drivers\cmimcext.sys
\SystemRoot\System32\drivers\werkernel.sys
\SystemRoot\System32\drivers\ntosext.sys
\SystemRoot\system32\CI.dll
\SystemRoot\System32\drivers\cng.sys
\SystemRoot\system32\drivers\Wdf01000.sys
\SystemRoot\system32\drivers\WDFLDR.SYS
\SystemRoot\system32\drivers\WppRecorder.sys
\SystemRoot\system32\drivers\SleepStudyHelper.sys
\SystemRoot\System32\Drivers\acpiex.sys
\SystemRoot\system32\drivers\SgrmAgent.sys
\SystemRoot\System32\drivers\ACPI.sys
\SystemRoot\System32\drivers\WMILIB.SYS
\SystemRoot\system32\drivers\aswElam.sys
\SystemRoot\System32\drivers\intelpep.sys
\SystemRoot\system32\drivers\WindowsTrustedRT.sys
\SystemRoot\System32\drivers\IntelTA.sys
\SystemRoot\System32\drivers\WindowsTrustedRTProxy.sys
\SystemRoot\system32\drivers\97771601.sys
\SystemRoot\System32\drivers\pcw.sys
\SystemRoot\System32\drivers\msisadrv.sys
\SystemRoot\System32\drivers\pci.sys
\SystemRoot\System32\drivers\vdrvroot.sys
\SystemRoot\system32\drivers\pdc.sys
\SystemRoot\system32\drivers\CEA.sys
\SystemRoot\System32\drivers\partmgr.sys
\SystemRoot\System32\drivers\spaceport.sys
\SystemRoot\System32\drivers\volmgr.sys
\SystemRoot\System32\drivers\volmgrx.sys
\SystemRoot\System32\drivers\mountmgr.sys
\SystemRoot\System32\drivers\iaStorE.sys
\SystemRoot\System32\drivers\storport.sys
\SystemRoot\System32\drivers\EhStorClass.sys
\SystemRoot\System32\drivers\fileinfo.sys
\SystemRoot\System32\Drivers\Wof.sys
\SystemRoot\System32\Drivers\Ntfs.sys
\SystemRoot\System32\drivers\FlashBoot.sys
\SystemRoot\System32\Drivers\Fs_Rec.sys
\SystemRoot\system32\drivers\ndis.sys
\SystemRoot\system32\drivers\NETIO.SYS
\SystemRoot\System32\Drivers\ksecpkg.sys
\SystemRoot\System32\drivers\tcpip.sys
\SystemRoot\System32\drivers\fwpkclnt.sys
\SystemRoot\System32\drivers\wfplwfs.sys
\SystemRoot\system32\drivers\aswVmm.sys
\SystemRoot\system32\drivers\aswRvrt.sys
\SystemRoot\System32\DRIVERS\fvevol.sys
\SystemRoot\System32\drivers\volume.sys
\SystemRoot\System32\drivers\volsnap.sys
\SystemRoot\System32\drivers\rdyboost.sys
\SystemRoot\System32\Drivers\mup.sys
\SystemRoot\system32\drivers\iorate.sys
\SystemRoot\System32\drivers\iaStorF.sys
\SystemRoot\System32\drivers\disk.sys
\SystemRoot\System32\drivers\CLASSPNP.SYS
\SystemRoot\system32\drivers\aswbuniv.sys
\SystemRoot\system32\drivers\aswbidsh.sys
\SystemRoot\system32\drivers\aswArDisk.sys
\SystemRoot\System32\Drivers\crashdmp.sys
\SystemRoot\System32\drivers\cdrom.sys
\SystemRoot\system32\drivers\aswSP.sys
\SystemRoot\system32\drivers\aswSnx.sys
\SystemRoot\system32\drivers\ks.sys
\SystemRoot\system32\drivers\filecrypt.sys
\SystemRoot\system32\drivers\tbs.sys
\SystemRoot\system32\drivers\aswMonFlt.sys
\SystemRoot\System32\Drivers\Null.SYS
\SystemRoot\System32\Drivers\Beep.SYS
\SystemRoot\system32\drivers\aswKbd.sys
\SystemRoot\System32\drivers\dxgkrnl.sys
\SystemRoot\System32\drivers\watchdog.sys
\SystemRoot\System32\DriverStore\FileRepository\basicdisplay.inf_amd64_65ab9a260dbf7467\BasicDisplay.sys
\SystemRoot\System32\DriverStore\FileRepository\basicrender.inf_amd64_df49c4daa6251397\BasicRender.sys
\SystemRoot\system32\DRIVERS\googledrivefs3758.sys
\SystemRoot\System32\Drivers\Npfs.SYS
\SystemRoot\System32\Drivers\Msfs.SYS
\SystemRoot\System32\Drivers\CimFS.SYS
\SystemRoot\system32\DRIVERS\tdx.sys
\SystemRoot\system32\DRIVERS\TDI.SYS
\SystemRoot\System32\DRIVERS\netbt.sys
\SystemRoot\system32\drivers\aswRdr2.sys
\SystemRoot\system32\drivers\afunix.sys
\SystemRoot\system32\drivers\afd.sys
\SystemRoot\System32\drivers\vwififlt.sys
\SystemRoot\System32\drivers\pacer.sys
\SystemRoot\System32\drivers\ndiscap.sys
\SystemRoot\system32\drivers\aswNetHub.sys
\SystemRoot\system32\drivers\netbios.sys
\SystemRoot\System32\drivers\Vid.sys
\SystemRoot\System32\drivers\winhvr.sys
\SystemRoot\system32\DRIVERS\rdbss.sys
\SystemRoot\system32\drivers\nsiproxy.sys
\SystemRoot\System32\drivers\npsvctrig.sys
\SystemRoot\System32\drivers\mssmbios.sys
\SystemRoot\System32\drivers\gpuenergydrv.sys
\SystemRoot\System32\Drivers\dfsc.sys
\SystemRoot\system32\drivers\bam.sys
\SystemRoot\system32\drivers\aswbidsdriver.sys
\SystemRoot\system32\drivers\aswArPot.sys
\SystemRoot\system32\DRIVERS\ahcache.sys
\SystemRoot\System32\DriverStore\FileRepository\compositebus.inf_amd64_7500cffa210c6946\CompositeBus.sys
\SystemRoot\System32\drivers\kdnic.sys
\SystemRoot\System32\DriverStore\FileRepository\umbus.inf_amd64_b78a9c5b6fd62c27\umbus.sys
\SystemRoot\system32\DRIVERS\igdkmd64.sys
\SystemRoot\System32\drivers\HDAudBus.sys
\SystemRoot\System32\drivers\portcls.sys
\SystemRoot\System32\drivers\drmk.sys
\SystemRoot\System32\drivers\USBXHCI.SYS
\SystemRoot\system32\drivers\ucx01000.sys
\SystemRoot\System32\drivers\TeeDriverx64.sys
\SystemRoot\System32\drivers\usbehci.sys
\SystemRoot\System32\drivers\USBPORT.SYS
\SystemRoot\System32\drivers\rt640x64.sys
\SystemRoot\System32\drivers\serial.sys
\SystemRoot\System32\drivers\serenum.sys
\SystemRoot\System32\drivers\parport.sys
\SystemRoot\system32\DRIVERS\Smb_driver_Intel.sys
\SystemRoot\System32\drivers\intelppm.sys
\SystemRoot\System32\drivers\NdisVirtualBus.sys
\SystemRoot\System32\DriverStore\FileRepository\swenum.inf_amd64_16a14542b63c02af\swenum.sys
\SystemRoot\System32\drivers\rdpbus.sys
\SystemRoot\System32\drivers\usbhub.sys
\SystemRoot\System32\drivers\USBD.SYS
\SystemRoot\System32\drivers\IntcDAud.sys
\SystemRoot\system32\drivers\ksthunk.sys
\SystemRoot\System32\drivers\UsbHub3.sys
\SystemRoot\system32\drivers\RTKVHD64.sys
\SystemRoot\System32\drivers\usbccgp.sys
\SystemRoot\System32\drivers\KMWDFILTER.sys
\SystemRoot\System32\drivers\hidusb.sys
\SystemRoot\System32\drivers\HIDCLASS.SYS
\SystemRoot\System32\drivers\HIDPARSE.SYS
\SystemRoot\System32\drivers\mouhid.sys
\SystemRoot\System32\drivers\mouclass.sys
\SystemRoot\System32\drivers\kbdhid.sys
\SystemRoot\System32\drivers\kbdclass.sys
\SystemRoot\System32\win32k.sys
\SystemRoot\System32\win32kbase.sys
\SystemRoot\System32\win32kfull.sys
\SystemRoot\System32\Drivers\dump_diskdump.sys
\SystemRoot\System32\drivers\dump_iaStorE.sys
\SystemRoot\System32\Drivers\dump_dumpfve.sys
\SystemRoot\System32\drivers\dxgmms2.sys
\SystemRoot\System32\drivers\monitor.sys
\SystemRoot\system32\drivers\luafv.sys
\SystemRoot\system32\drivers\wcifs.sys
\SystemRoot\system32\drivers\cldflt.sys
\SystemRoot\system32\drivers\storqosflt.sys
\SystemRoot\System32\Drivers\MbamChameleon.sys
\SystemRoot\system32\drivers\bindflt.sys
\SystemRoot\system32\drivers\aswStm.sys
\SystemRoot\system32\drivers\lltdio.sys
\SystemRoot\system32\drivers\rspndr.sys
\SystemRoot\system32\drivers\mslldp.sys
\SystemRoot\System32\DRIVERS\wanarp.sys
\SystemRoot\system32\drivers\msquic.sys
\SystemRoot\system32\drivers\HTTP.sys
\SystemRoot\system32\DRIVERS\bowser.sys
\SystemRoot\System32\drivers\mpsdrv.sys
\SystemRoot\system32\DRIVERS\mrxsmb.sys
\SystemRoot\system32\DRIVERS\mrxsmb20.sys
\SystemRoot\System32\DRIVERS\srvnet.sys
\SystemRoot\System32\DRIVERS\srv2.sys
\SystemRoot\system32\drivers\mmcss.sys
\SystemRoot\system32\drivers\Ndu.sys
\SystemRoot\system32\drivers\peauth.sys
\SystemRoot\System32\drivers\tcpipreg.sys
\SystemRoot\System32\drivers\rassstp.sys
\SystemRoot\System32\DRIVERS\NDProxy.sys
\SystemRoot\System32\drivers\AgileVpn.sys
\SystemRoot\System32\drivers\rasl2tp.sys
\SystemRoot\System32\drivers\raspptp.sys
\SystemRoot\System32\DRIVERS\raspppoe.sys
\SystemRoot\System32\DRIVERS\ndistapi.sys
\SystemRoot\System32\drivers\ndiswan.sys
\SystemRoot\System32\drivers\condrv.sys
\SystemRoot\System32\Drivers\mbamswissarmy.sys
\SystemRoot\system32\DRIVERS\mwac.sys
\??\C:\WINDOWS\system32\drivers\mbae64.sys
\SystemRoot\system32\DRIVERS\farflt.sys
\??\C:\WINDOWS\system32\DRIVERS\mbam.sys
\SystemRoot\System32\drivers\rdpvideominiport.sys
\SystemRoot\System32\cdd.dll
\??\C:\WINDOWS\system32\drivers\117757EB.sys
----------- End -----------
Done!

Scan started
Database versions:
  main:    v2022.06.01.04
  rootkit: v2022.06.01.04

<<<2>>>
Physical Sector Size: 512
Drive: 0, DevicePointer: 0xffff948ed856f060, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\disk\
--------- Disk Stack ------
DevicePointer: 0xffff948ed856f9d0, DeviceName: Unknown, DriverName: \Driver\aswArDisk\
DevicePointer: 0xffff948ed85068d0, DeviceName: Unknown, DriverName: \Driver\partmgr\
DevicePointer: 0xffff948ed856f060, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\disk\
DevicePointer: 0xffff948ed8507c90, DeviceName: Unknown, DriverName: \Driver\iaStorF\
DevicePointer: 0xffff948ed8320050, DeviceName: \Device\0000002c\, DriverName: \Driver\iaStorE\
------------ End ----------
Alternate DeviceName: Unknown, DriverName: \Driver\partmgr\
Upper DeviceData: 0x0, 0x0, 0x0
Lower DeviceData: 0x0, 0x0, 0x0
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
<<<2>>>
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
Scanning drivers directory: C:\WINDOWS\SYSTEM32\drivers...
Done!
Drive 0
This is a System drive
Scanning MBR on drive 0...
Inspecting partition table:
MBR Signature: 55AA
Disk Signature: 51210EF4

Partition information:

    Partition 0 type is Primary (0x7)
    Partition is ACTIVE.
    Partition starts at LBA: 2048  Numsec = 204800
    Partition is bootable
    Partition file system is NTFS

    Partition 1 type is Primary (0x7)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 206848  Numsec = 203440609
    Partition is not bootable
    Partition file system is NTFS

    Partition 2 type is Other (0x27)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 203649024  Numsec = 1150976
    Partition is not bootable
    Partition file system is NTFS

    Partition 3 type is Primary (0x7)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 204802048  Numsec = 1748719616
    Partition is not bootable
    Partition file system is NTFS

Disk Size: 1000204886016 bytes
Sector size: 512 bytes

Done!
File "C:\Users\Gines\AppData\Local\Comms\UnistoreDB\store.vol" is sparse (flags = 32768)
Scan finished

informe mbar-log

Malwarebytes Anti-Rootkit BETA 1.10.3.1001
www.malwarebytes.org

Database version:
  main:    v2022.06.01.04
  rootkit: v2022.06.01.04

Windows 10 x64 NTFS
Internet Explorer 11.789.19041.0
Gines :: GINES-PC [administrator]

01/06/2022 20:33:24
mbar-log-2022-06-01 (20-33-24).txt

Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled: 
Objects scanned: 263770
Time elapsed: 50 minute(s), 26 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

Physical Sectors Detected: 0
(No malicious items detected)

(end)
1 me gusta

Disculpe la demora, el trabajo me quita gran parte de mi tiempo, aquí le dejo los siguientes pasos a seguir!

IMPORTANTE:

:one: PASALE CADA PROGRAMA POR SEPARADO Y HASTA QUE NO ACABE EL PRIMER PROGRAMA DE ANALIZAR POR COMPLETO, SIGUIENDO LAS INDICACIONES DADAS, NO LE PASE EL SIGUIENTE Y ASÍ CON EL RESTO DE PROGRAMAS.

:two: DURANTE TODO EL PROCESO DE DESINFECCIÓN DE SU ORDENADOR, QUE NO SE APAGUE LA PANTALLA, ES DECIR, QUE SU PANTALLA NO SE PONGA EN ESTADO DE SUSPENSION YA QUE PUEDE INTERRUMPIRSE EL PROCESO DE DESINFECCIÓN DE SU ORDENADOR Y NO ELIMINAR LAS AMENAZAS E INFECCIONES QUE ENCUENTRE.

:three: SI LOS PROGRAMAS QUE SE LE INDIQUEN EN ESTE FORO QUE SE LE PASEN A SU ORDENADOR YA LOS TUVIERA INSTALADOS, NO HACE FALTA QUE LOS INSTALE DE NUEVO, SIMPLEMENTE EJECUTE EL PROGRAMA QUE SE LE INDIQUE EN ESTE FORO Y SIGA LAS INDICACINES Y EL MANUAL QUE SE LE DEJA JUNTO AL PROGRAMA.

:four: SI ALGUNO DE LOS PROGRAMA DE LOS QUE SE LE INDIQUE EN ESTE FORO, UNA VEZ FINALIZADO EL PROCESO DE ANALISIS, LE INDICA QUE DEBE REINICIAR! PUES REINICIE, PERO SÓLO SI SE LO INDICA DICHO PROGRAMA.

Ahora ejecutarás una serie de herramientas respetando el orden los pasos con todos los programas cerrados incluidos los navegadores.

seguidamente realice los siguientes pasos a seguir:

Descargue el programa de la siguiente Url: Le dejo “2 Url de Descarga” por si uno no le funciona el proceso de Instalación pueda probar con la segunda Url de Descarga:

Url descarga 1: RogueKiller x64 Bits

Url descarga 2: RogueKiller x82 Bits

Aquí le dejo su manual de RogueKiller para que sepas cómo utilizarlo y configurarlo correctamente:

:one: “Abra” el programa: “RogueKiller” que ha descargado.

:two: Clikea en la pestaña que pone: Analizar., click en donde pone: “Análisis Completo (Full Scan)”. (Nota: Si NO le deja realizar un “Análisis Personalizado” realice un Análisis Completo (Full Scan) (Tal y cómo se muestra en la imagen)):

:four: Automáticamente empezará el Proceso de Análisis en busca de Virus e Infecciones dejar que analice por completo y “NO” interrumpir el programa hasta que finalice en su totalidad. Finalizado el Proceso de Análisis por completo clickea en la pestaña que pone: Resultados: (Proceso tal y como se indica en la siguiente pantalla):

:five: Una vez finalizado el Proceso de Análisis por completo, si encuentra “AMENAZAS” e “INFECCIONES” saldrá una pantalla similar a esta, clicka en la pestaña que pone: Resultados para poder eliminar dichas “INFECCIONES.” (Tal y como se muestra en esta pantalla):

:six: Si le sale una pantalla similar a esta significa que el programa ha “ELIMINADO” con éxito “TODAS” las “AMENAZAS” e “INFECCIONES” de su ordenador. Clickea en la pestaña que pone: Resultados. (Tal y cómo se indica en esta página):

:seven: Para “ELIMINAR” las AMENAZAS e “INFECCIONES” clickea en la pestaña que pone: Eliminación. (Tal y como se muestra en esta pantalla):

:eight: Le aparecerá una pantalla similar a esta, dejar “TODAS” las opciones marcadas que te salgan a ti. Para “ELIMINAR” todas las “INFECCIONES” clikea en la pestaña que pone: Finalizar. (Tal y cómo se muestra en la pantalla):

:nine: Para enviarme el “Informe” que ha generado el programa cuando haya finalizado por completo de Analizar siga estos pasos que se reflejan a continuación:

Para poder enviarme el Informe que se le solicito en este foro siga estos pasos:

Url: ¿Como Pegar Reportes en el Foro?

Quedo a la espera de su respuesta!

1 me gusta

Mucha gracias por dedicarme unos minutos y ayudarme.

Sigo teniendo problemas con el acceso a páginas oficiales, me han revocado el certificado y según he leído en varias páginas tengo que solicitarlo de nuevo, no sé si estará relacionado con el problema que he tenido. He consultado en el aparto de los certificado y aunque caduca en 2023 es cierto que está revocado. Se debe desinstalar el que tengo o cuando me den el nuevo lo sustituirá? , gracias

informe roguekiller

Program            : RogueKiller Anti-Malware
Version            : 15.5.1.0
x64                : Yes
Program Date       : May 13 2022
Location           : C:\Users\Gines\Downloads\RogueKiller_portable64.exe
Premium            : No
Company            : Adlice Software
Website            : https://www.adlice.com/
Contact            : https://adlice.com/contact/
Website            : https://adlice.com/download/roguekiller/
Operating System   : Windows 10 (10.0.19044) 64-bit
64-bit OS          : Yes
Startup            : 0
WindowsPE          : No
User               : Gines
User is Admin      : Yes
Date               : 2022/06/04 20:24:02
Type               : Removal
Aborted            : No
Scan Mode          : Standard
Duration           : 1817
Found items        : 1
Total scanned      : 73230
Signatures Version : 20220530_080817
Truesight Driver   : Yes
Updates Count      : 4

************************* Warnings *************************

************************* Removal *************************
[PUM.Policies (Potencialmente Malicioso)] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System|ConsentPromptBehaviorAdmin --  -> Reemplazado (2)
  [+] scan_what       : 1
  [+] vendors         : PUM.Policies
  [+] Name            : HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System|ConsentPromptBehaviorAdmin
  [+] Type            : Registry
  [+] file_vtscore    : 0
  [+] file_vttotal    : 0
  [+] is_malicious    : Yes
  [+] detection_level : 4
  [+] id              : 0
  [+] status          : 3
  [+] status_str      : Reemplazado (2)
  [+] removed         : Yes
  [+] status_choice   : 2
  [+] malpe_score     : 0
1 me gusta