Creo que tengo esto: Win32/Caypnamer.A!ml

Chicloi · 6 Marzo, 2023 13:23

Ahora, realice usted los siguientes pasos que le indico a continuación:

Por favor, descarga todo el software de los enlaces que pongo/de sus respectivos manuales.

Ahora ejecutarás una serie de herramientas respetando el orden los pasos con todos los programas cerrados incluidos los navegadores.

IMPORTANTE:

SIGA USTED TODAS LAS INDICACIONES DADAS Y SU MANUAL QUE LE DEJO EN ESTE TEMA SIN INVERTIR EL ORDEN Y EN EL ORDEN QUE SE LE INDICA

QUE SU ORDENADOR NO SE PONGA EN ESTADO DE SUSPENSIÓN DURANTE TODO EL PROCESO DE ANALISIS QUE SE LE VAN A REALIZAR CON LOS DIFERENTES PROGRAMAS QUE SE LE INDIQUEN EN ESTE FORO, ES DECIR, QUE SU ORDENADOR NO SE APAGUE LA PANTALLA YA QUE PODRÍA INTERFERIR EN EL PROCESO DE ANALISIS Y NO ELIMINARSE CORRECTAMENTE LAS INFECCIONES Y VIRUS QUE ENCUENTRE.

SI ALGÚN PROGRAMA DE LOS QUE SE LE INDIQUEN EN ESTE FORO LE PIDE REINICIAR PROCEDES! PERO SÓLO SI SE LO SOLICITA EL DICHO PROGRAMA O SE LO SOLICITE YO Y ES MUY IMPORTANTE ´´QUE ME INFORMES DE ELLO´´.

Una vez aclarado todo esto, realice usted lo siguiente:

EN BUSCA / ELIMINACIÓN DE MALWARE

Ahora ejecutarás una serie de herramientas respetando el orden los pasos con todos los programas cerrados incluidos los navegadores.

Realice usted los pasos que te pongo a continuación, sin cambiar el orden y síguelos al pie de la letra:

Descarga, Instala, y ejecuta: Kaspersky Virus Removal Tool. Aquí le dejo la Url de Descarga del: Kaspersky Virus Removal Tool, para que sepa cómo descargar e instalar el programa correctamente: Click aquí: Kaspersky Virus Removal Tool. Es MUY IMPORTANTE que siga usted el siguiente Manual que se le indica a continuación: Aquí le dejo su Manual del: Kaspersky Virus Removal Tool, para que sepa cómo utilizar el programa y configurarlo correctamente: Click aquí: Manual del Kaspersky Virus Removal Tool. (IMPORTANTE: Elimine TODO lo que encuentre! y NO restaure NADA).

MUY IMPORTANTE:

Una vez terminado el proceso, se abrirá una ventana donde se mostrarán las infecciones halladas y usted tiene que elegir y seleccionar en ´´todos los parámetros y opciones´´ que le salgan a usted la siguiente opción:

Una vez elegida la acción, la herramienta pedirá reiniciar el sistema, lo cual hay que aceptar clikeando en la siguiente opción que se le refleja en el dicho programa: tal y como se muestra en la siguiente pantalla:

Luego de reiniciar, la herramienta se ejecutara nuevamente. Presione usted el botón capturada6 para abrir el cuadro del ´´REPORTE´´ que genera para que me lo pueda enviar usted, tal y como se refleja en la siguiente pantalla:

Para poder enviarme el Informe y/o Reporte correctamente que le solicito realice usted los siguientes pasos que le indico a continuación:

capturada7

Como se muestra en el siguiente EJEMPLO:

Preformateado

Quedo a la espera de su respuesta!

Cantante · 6 Marzo, 2023 19:22

Hola de nuevo.Como llueve en mi tierra tengo tiempo y lancè el Kaspersky (varias horas) y me detectò lo que voy adjuntar.No se si hice bien pero “disparè” a todo para eliminar.Tengo que decir que no me abriò reporter,pero lo adjunto en captura de pantalla.A ver si vale.Al terminar analisis y en “details” sale esto

Aquì di a opcion “delete” y eliminè: En cuarentena habia este que tambien eliminè: Por ultimo en cuarentena di a “reporter” y saliò esto:

No me pidiò reiniciar,pero reiniciè manual. Para teminar hay un archivo en C-usuarios-minombre-ntuser.dat que coincide con el fin del analisis.Sospecho que debe ser el reporter,pero aparte de ocupar mas de 15 megas dice que esta siendo usado,no se.Gracias de nuevo y saludos

Chicloi · 6 Marzo, 2023 20:59

Ahora, realice usted los siguientes pasos:

IMPORTANTE:

SIGA USTED LAS INDICACIONES DADAS Y SU MANUAL QUE SE LE DEJA JUNTO AL PROGRAMA.

DURANTE TODO EL PROCESO DE DESINFECCIÓN DE SU ORDENADOR, QUE NO SE APAGUE LA PANTALLA, ES DECIR, QUE SU PANTALLA NO SE PONGA EN: ESTADO DE SUSPENSION YA QUE PUEDE INTERRUMPIRSE EL PROCESO DE DESINFECCIÓN DE SU ORDENADOR Y NO ELIMINAR LAS AMENAZAS E INFECCIONES QUE ENCUENTRE.

SI LOS PROGRAMAS QUE SE LE INDIQUEN EN ESTE FORO QUE SE LE PASEN A SU ORDENADOR YA LOS TUVIERA INSTALADOS, NO HACE FALTA QUE LOS INSTALE DE NUEVO, SIMPLEMENTE EJECUTE EL PROGRAMA QUE SE LE INDIQUE EN ESTE FORO Y SIGA LAS INDICACINES Y EL MANUAL QUE SE LE DEJA JUNTO AL PROGRAMA.

SI ALGUNO DE LOS PROGRAMA DE LOS QUE SE LE INDIQUE EN ESTE FORO, UNA VEZ FINALIZADO EL PROCESO DE ANALISIS, LE INDICA QUE DEBE REINICIAR PROCEDES! PERO SÓLO SI SE LO INDICA DICHO PROGRAMA.

Ahora ejecutarás una serie de herramientas respetando el orden los pasos con todos los programas cerrados incluidos los navegadores.

Descargue, Instale y ejecute el siguiente programa: MalwareBytes Anti-Rootkit Beta. A continuación, le dejo la Url de Descarga del programa: MalwareBytes Anti-Rootkit Beta, para que sepas cómo descargarlo e instalarlo correctamente y su Manual del: MalwareBytes Anti-Rootkit Beta, para que sepas cómo utilizarlo y configurarlo correctamente:

. . Url de Descarga del: MalwareBytes Anti-Rootkit Beta:, para que sepas cómo descargarlo e instalarlo correctamente: MalwareBytes Anti-Rootkit Beta.

. . Manual del: MalwareBytes Anti-Rootkit Beta, para que sepas cómo utilizarlo y configurarlo correctamente: Click aquí: Manual del MalwareBytes Anti-Rootkit Beta (IMPORTANTE: Elimine TODAS las amenazas e infecciones que encuentre y NO restaure NADA).

MUY IMPORTANTE:

Una vez finalizado el dicho programa, si encuentra amenazas, veremos una pantalla similar a esta:

Nos aseguraremos que todas las casillas están marcadas de los elementos detectados y que la casilla esta tildada como en la imagen.

A continuación, para eliminar las amenazas, pulsamos el botón:

Una vez finalizada la desinfección, pulsamos el botón: y reiniciamos el PC.

. . Siga su Manual del: MalwareBytes Anti-Rootkit Beta al pie de la letra y me manda una Captura de Pantalla con todas las amenazas e infecciones que se refleje que ´´haya eliminado´´ el dicho programa.

Quedo a la espera de su respuesta!

Cantante · 7 Marzo, 2023 11:24

Hola pues parece que no detecto nada.El reporte se lo mando en dos partes al pasar los caracteres,

Malwarebytes Anti-Rootkit BETA 1.10.3.1001

(c) Malwarebytes Corporation 2011-2012

OS version: 10.0.9200 Windows 10 x64

Account is Administrative

Internet Explorer version: 11.789.19041.0

File system is: NTFS Disk drives: C:\ DRIVE_FIXED, D:\ DRIVE_FIXED CPU speed: 2.400000 GHz Memory total: 8447614976, free: 4360380416

Downloaded database version: v2023.03.07.03 Downloaded database version: v2023.03.07.03 Downloaded database version: v2018.01.20.01

Initializing… Driver version: 4.3.0.15 ------------ Kernel report ------------ 03/07/2023 11:06:17 ------------ Loaded modules ----------- \SystemRoot\system32\ntoskrnl.exe \SystemRoot\system32\hal.dll \SystemRoot\system32\kd.dll \SystemRoot\system32\mcupdate_GenuineIntel.dll \SystemRoot\System32\drivers\CLFS.SYS \SystemRoot\System32\drivers\tm.sys \SystemRoot\system32\PSHED.dll \SystemRoot\system32\BOOTVID.dll \SystemRoot\System32\drivers\FLTMGR.SYS \SystemRoot\System32\drivers\msrpc.sys \SystemRoot\System32\drivers\ksecdd.sys \SystemRoot\System32\drivers\clipsp.sys \SystemRoot\System32\drivers\cmimcext.sys \SystemRoot\System32\drivers\werkernel.sys \SystemRoot\System32\drivers\ntosext.sys \SystemRoot\system32\CI.dll \SystemRoot\System32\drivers\cng.sys \SystemRoot\system32\drivers\Wdf01000.sys \SystemRoot\system32\drivers\WDFLDR.SYS \SystemRoot\system32\drivers\WppRecorder.sys \SystemRoot\system32\drivers\SleepStudyHelper.sys \SystemRoot\System32\Drivers\acpiex.sys \SystemRoot\system32\drivers\SgrmAgent.sys \SystemRoot\System32\drivers\ACPI.sys \SystemRoot\System32\drivers\WMILIB.SYS \SystemRoot\System32\drivers\msisadrv.sys \SystemRoot\System32\drivers\pci.sys \SystemRoot\System32\drivers\tpm.sys \SystemRoot\System32\drivers\intelpep.sys \SystemRoot\system32\drivers\WindowsTrustedRT.sys \SystemRoot\System32\drivers\IntelTA.sys \SystemRoot\System32\drivers\WindowsTrustedRTProxy.sys \SystemRoot\System32\drivers\pcw.sys \SystemRoot\System32\drivers\vdrvroot.sys \SystemRoot\system32\drivers\pdc.sys \SystemRoot\system32\drivers\CEA.sys \SystemRoot\System32\drivers\partmgr.sys \SystemRoot\System32\drivers\spaceport.sys \SystemRoot\System32\drivers\volmgr.sys \SystemRoot\System32\drivers\volmgrx.sys \SystemRoot\System32\drivers\mountmgr.sys \SystemRoot\System32\drivers\iaStorA.sys \SystemRoot\System32\drivers\storport.sys \SystemRoot\System32\drivers\EhStorClass.sys \SystemRoot\System32\drivers\fileinfo.sys \SystemRoot\System32\Drivers\Wof.sys \SystemRoot\system32\drivers\wd\WdFilter.sys \SystemRoot\System32\Drivers\Ntfs.sys \SystemRoot\System32\Drivers\Fs_Rec.sys \SystemRoot\system32\drivers\ndis.sys \SystemRoot\system32\drivers\NETIO.SYS \SystemRoot\System32\Drivers\ksecpkg.sys \SystemRoot\System32\drivers\tcpip.sys \SystemRoot\System32\drivers\fwpkclnt.sys \SystemRoot\System32\drivers\wfplwfs.sys \SystemRoot\System32\DRIVERS\fvevol.sys \SystemRoot\System32\drivers\volume.sys \SystemRoot\System32\drivers\volsnap.sys \SystemRoot\System32\drivers\rdyboost.sys \SystemRoot\System32\Drivers\mup.sys \SystemRoot\system32\drivers\iorate.sys \SystemRoot\System32\drivers\disk.sys \SystemRoot\System32\drivers\CLASSPNP.SYS \SystemRoot\System32\Drivers\crashdmp.sys \SystemRoot\System32\drivers\cdrom.sys \SystemRoot\system32\drivers\filecrypt.sys \SystemRoot\system32\drivers\tbs.sys \SystemRoot\System32\Drivers\Null.SYS \SystemRoot\System32\Drivers\Beep.SYS \SystemRoot\System32\drivers\dxgkrnl.sys \SystemRoot\System32\drivers\watchdog.sys \SystemRoot\System32\DriverStore\FileRepository\basicdisplay.inf_amd64_fc93ae411c02f280\BasicDisplay.sys \SystemRoot\System32\DriverStore\FileRepository\basicrender.inf_amd64_ed345fdc37d65139\BasicRender.sys \SystemRoot\System32\Drivers\Npfs.SYS \SystemRoot\System32\Drivers\Msfs.SYS \SystemRoot\System32\Drivers\CimFS.SYS \SystemRoot\system32\DRIVERS\tdx.sys \SystemRoot\system32\DRIVERS\TDI.SYS \SystemRoot\System32\DRIVERS\netbt.sys \SystemRoot\system32\drivers\afunix.sys \SystemRoot\system32\drivers\afd.sys \SystemRoot\system32\DRIVERS\NNSNAHSL.sys \SystemRoot\System32\drivers\vwififlt.sys \SystemRoot\System32\drivers\pacer.sys \SystemRoot\System32\drivers\ndiscap.sys \SystemRoot\system32\drivers\netbios.sys \SystemRoot\System32\drivers\Vid.sys \SystemRoot\System32\drivers\winhvr.sys \SystemRoot\system32\DRIVERS\rdbss.sys \SystemRoot\system32\DRIVERS\PSINKNC.sys \SystemRoot\system32\drivers\nsiproxy.sys \SystemRoot\System32\drivers\npsvctrig.sys \SystemRoot\system32\DRIVERS\NNSSTRM.sys \SystemRoot\system32\DRIVERS\NNSSMTP.sys \SystemRoot\system32\DRIVERS\NNSPRV.sys \SystemRoot\system32\DRIVERS\NNSPROT.sys \SystemRoot\system32\DRIVERS\NNSPOP3.sys \SystemRoot\system32\DRIVERS\NNSPIHSW.sys \SystemRoot\system32\DRIVERS\NNSPICC.sys \SystemRoot\system32\DRIVERS\NNSIDS.sys \SystemRoot\system32\DRIVERS\NNSHTTPS.sys \SystemRoot\system32\DRIVERS\NNSHTTP.sys \SystemRoot\system32\DRIVERS\NNSDNS.sys \SystemRoot\System32\drivers\mssmbios.sys \SystemRoot\System32\drivers\gpuenergydrv.sys \SystemRoot\System32\Drivers\dfsc.sys \SystemRoot\System32\Drivers\fastfat.SYS \SystemRoot\system32\drivers\bam.sys ??\C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys \SystemRoot\system32\DRIVERS\ahcache.sys \SystemRoot\System32\drivers\aftap0901.sys \SystemRoot\System32\DriverStore\FileRepository\compositebus.inf_amd64_7500cffa210c6946\CompositeBus.sys \SystemRoot\System32\drivers\kdnic.sys \SystemRoot\System32\DriverStore\FileRepository\umbus.inf_amd64_b78a9c5b6fd62c27\umbus.sys \SystemRoot\System32\drivers\CAD.sys \SystemRoot\System32\DriverStore\FileRepository\igdlh64.inf_amd64_9f310939ec1eebf9\igdkmd64.sys \SystemRoot\System32\drivers\dptf_cpu.sys \SystemRoot\System32\drivers\USBXHCI.SYS \SystemRoot\system32\drivers\ucx01000.sys \SystemRoot\System32\drivers\iaLPSS2i_I2C.sys \SystemRoot\system32\drivers\SpbCx.sys \SystemRoot\System32\drivers\TeeDriverW8x64.sys \SystemRoot\System32\drivers\RtsBaStor.sys \SystemRoot\System32\drivers\rt640x64.sys \SystemRoot\System32\drivers\rtwlane02.sys \SystemRoot\system32\DRIVERS\wdiwifi.sys \SystemRoot\System32\drivers\vwifibus.sys \SystemRoot\System32\drivers\dptf_acpi.sys \SystemRoot\System32\drivers\i8042prt.sys \SystemRoot\System32\drivers\kbdclass.sys \SystemRoot\System32\drivers\HDAudBus.sys \SystemRoot\System32\drivers\portcls.sys \SystemRoot\System32\drivers\drmk.sys \SystemRoot\System32\drivers\ks.sys \SystemRoot\System32\drivers\CmBatt.sys \SystemRoot\System32\drivers\BATTC.SYS \SystemRoot\System32\drivers\intelppm.sys \SystemRoot\System32\drivers\acpipagr.sys \SystemRoot\System32\drivers\wmiacpi.sys \SystemRoot\System32\drivers\AsRadioControl.sys \SystemRoot\System32\drivers\HIDCLASS.SYS \SystemRoot\System32\drivers\HIDPARSE.SYS \SystemRoot\System32\DriverStore\FileRepository\uefi.inf_amd64_c1628ffa62c8e54c\UEFI.sys \SystemRoot\System32\drivers\NdisVirtualBus.sys \SystemRoot\System32\DriverStore\FileRepository\swenum.inf_amd64_16a14542b63c02af\swenum.sys \SystemRoot\System32\drivers\rdpbus.sys \SystemRoot\system32\DRIVERS\AiCharger.sys \SystemRoot\System32\drivers\UsbHub3.sys \SystemRoot\System32\drivers\USBD.SYS \SystemRoot\system32\drivers\RTKVHD64.sys \SystemRoot\system32\drivers\ksthunk.sys \SystemRoot\System32\DriverStore\FileRepository\intcdaud.inf_amd64_0d54ec4feb82b9c1\IntcDAud.sys \SystemRoot\System32\drivers\hidi2c.sys \SystemRoot\System32\drivers\mshidkmdf.sys \SystemRoot\System32\drivers\mouhid.sys \SystemRoot\System32\drivers\mouclass.sys \SystemRoot\System32\drivers\AsusPTPFilter.sys \SystemRoot\System32\drivers\MTConfig.sys \SystemRoot\System32\drivers\usbccgp.sys \SystemRoot\System32\drivers\RtkBtfilter.sys \SystemRoot\System32\drivers\BTHport.sys \SystemRoot\System32\drivers\BTHUSB.sys \SystemRoot\System32\Drivers\usbvideo.sys \SystemRoot\System32\drivers\rfcomm.sys \SystemRoot\System32\drivers\BthEnum.sys \SystemRoot\System32\drivers\bthpan.sys \SystemRoot\System32\drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys \SystemRoot\System32\win32k.sys \SystemRoot\System32\Drivers\dump_diskdump.sys \SystemRoot\System32\drivers\dump_iaStorA.sys \SystemRoot\System32\Drivers\dump_dumpfve.sys \SystemRoot\System32\win32kbase.sys \SystemRoot\System32\win32kfull.sys \SystemRoot\System32\drivers\dxgmms2.sys \SystemRoot\System32\drivers\monitor.sys \SystemRoot\system32\DRIVERS\esif_lf.sys \SystemRoot\System32\drivers\WUDFRd.sys \SystemRoot\system32\drivers\luafv.sys \SystemRoot\system32\drivers\wcifs.sys \SystemRoot\system32\drivers\cldflt.sys \SystemRoot\system32\drivers\storqosflt.sys \SystemRoot\system32\DRIVERS\PSINAflt.sys \SystemRoot\system32\DRIVERS\PSINProt.sys \SystemRoot\system32\DRIVERS\PSINFile.sys \SystemRoot\system32\DRIVERS\PSINProc.sys \SystemRoot\system32\DRIVERS\PSINReg.sys \SystemRoot\system32\drivers\mmcss.sys \SystemRoot\System32\Drivers\MbamChameleon.sys \SystemRoot\system32\drivers\bindflt.sys \SystemRoot\System32\drivers\condrv.sys \SystemRoot\system32\drivers\lltdio.sys \SystemRoot\system32\drivers\mslldp.sys \SystemRoot\system32\drivers\rspndr.sys \SystemRoot\System32\DRIVERS\wanarp.sys \SystemRoot\system32\DRIVERS\nwifi.sys \SystemRoot\system32\drivers\ndisuio.sys ??\C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys \SystemRoot\system32\drivers\msquic.sys \SystemRoot\system32\drivers\HTTP.sys \SystemRoot\system32\DRIVERS\bowser.sys \SystemRoot\System32\drivers\mpsdrv.sys \SystemRoot\system32\DRIVERS\mrxsmb.sys \SystemRoot\system32\DRIVERS\mrxsmb20.sys \SystemRoot\System32\DRIVERS\srvnet.sys \SystemRoot\system32\drivers\Ndu.sys \SystemRoot\system32\drivers\peauth.sys \SystemRoot\System32\drivers\tcpipreg.sys \SystemRoot\System32\DRIVERS\srv2.sys \SystemRoot\System32\drivers\rassstp.sys \SystemRoot\System32\DRIVERS\NDProxy.sys \SystemRoot\System32\drivers\AgileVpn.sys \SystemRoot\System32\drivers\rasl2tp.sys \SystemRoot\System32\drivers\raspptp.sys \SystemRoot\System32\drivers\raspppoe.sys \SystemRoot\System32\DRIVERS\ndistapi.sys \SystemRoot\System32\drivers\ndiswan.sys \SystemRoot\System32\drivers\vwifimp.sys \SystemRoot\System32\Drivers\mbamswissarmy.sys \SystemRoot\system32\DRIVERS\mwac.sys ??\C:\WINDOWS\system32\drivers\mbae64.sys \SystemRoot\system32\DRIVERS\farflt.sys ??\C:\WINDOWS\system32\DRIVERS\mbam.sys \SystemRoot\System32\DRIVERS\PSKMAD.sys \SystemRoot\System32\drivers\rdpvideominiport.sys \SystemRoot\System32\cdd.dll ??\C:\WINDOWS\system32\drivers\67630120.sys ----------- End ----------- Done!

Scan started Database versions: main: v2023.03.07.03 rootkit: v2023.03.07.03

<<<2>>> Physical Sector Size: 512 Drive: 0, DevicePointer: 0xffffa48cc3473060, DeviceName: \Device\Harddisk0\DR0, DriverName: \Driver\disk
--------- Disk Stack ------ DevicePointer: 0xffffa48cc344a940, DeviceName: Unknown, DriverName: \Driver\partmgr
DevicePointer: 0xffffa48cc3473060, DeviceName: \Device\Harddisk0\DR0, DriverName: \Driver\disk
DevicePointer: 0xffffa48cc3219d50, DeviceName: Unknown, DriverName: \Driver\ACPI
DevicePointer: 0xffffa48cc3216d50, DeviceName: Unknown, DriverName: \Driver\ACPI
DevicePointer: 0xffffa48cc3221050, DeviceName: \Device\00000037, DriverName: \Driver\iaStorA
------------ End ---------- Alternate DeviceName: \Device\Harddisk0\DR0, DriverName: \Driver\disk
Upper DeviceData: 0x0, 0x0, 0x0 Lower DeviceData: 0x0, 0x0, 0x0 <<<3>>> Volume: C: File system type: NTFS SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes <<<2>>> <<<3>>> Volume: C: File system type: NTFS SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes Scanning drivers directory: C:\WINDOWS\SYSTEM32\drivers… Done! Drive 0 This is a System drive Scanning MBR on drive 0… Inspecting partition table: This drive is a GPT Drive. MBR Signature: 55AA Disk Signature: 6E496549

GPT Protective MBR Partition information:

Partition 0 type is EFI-GPT (0xee)
Partition is NOT ACTIVE.
Partition starts at LBA: 1  Numsec = 4294967295

Partition 1 type is Empty (0x0)
Partition is NOT ACTIVE.
Partition starts at LBA: 0  Numsec = 0

Partition 2 type is Empty (0x0)
Partition is NOT ACTIVE.
Partition starts at LBA: 0  Numsec = 0

Partition 3 type is Empty (0x0)
Partition is NOT ACTIVE.
Partition starts at LBA: 0  Numsec = 0

GPT Partition information:

GPT Header Signature 4546492050415254
GPT Header Revision 65536 Size 92 CRC 1083205114
GPT Header CurrentLba = 1 BackupLba 1953525167
GPT Header FirstUsableLba 34  LastUsableLba 1953525134
GPT Header Guid 4944a9c0-3f04-4c1f-b1bd-8d666c16af63
GPT Header Contains 128 partition entries starting at LBA 2
GPT Header Partition entry size = 128

Backup GPT header Signature 4546492050415254
Backup GPT header Revision 65536 Size 92 CRC 1083205114
Backup GPT header CurrentLba = 1953525167 BackupLba 1
Backup GPT header FirstUsableLba 34  LastUsableLba 1953525134
Backup GPT header Guid 4944a9c0-3f04-4c1f-b1bd-8d666c16af63
Backup GPT header Contains 128 partition entries starting at LBA 1953525135
Backup GPT header Partition entry size = 128

Partition 0 Type c12a7328-f81f-11d2-ba4b-0a0c93ec93b
Partition ID c206eb63-1fee-4d9b-aa56-68fead58eac3
FirstLBA 2048  Last LBA 534527
Attributes 0
Partition Name                 EFI system partition

GPT Partition 0 is bootable
Partition 1 Type e3c9e316-b5c-4db8-817d-f92df0215ae
Partition ID b3f5a6d6-a010-4a76-8044-fb97b3c68ed9
FirstLBA 534528  Last LBA 567295
Attributes 0
Partition Name         Microsoft reserved partition

Partition 2 Type ebd0a0a2-b9e5-4433-87c0-68b6b72699c7
Partition ID 7bc322cc-c902-4e16-aac5-31c1f6f31ca
FirstLBA 567296  Last LBA 780278990
Attributes 0
Partition Name                 Basic data partition

Partition 3 Type de94bba4-6d1-4d40-a16a-bfd5179d6ac
Partition ID c316b33a-c365-47fd-8ff8-b44378eede0
FirstLBA 780279808  Last LBA 781410303
Attributes 1
Partition Name                                     

Partition 4 Type ebd0a0a2-b9e5-4433-87c0-68b6b72699c7
Partition ID 5d437a0-d79-4462-9edd-d4627b9a510
FirstLBA 781410304  Last LBA 1953523711
Attributes 0
Partition Name                 Basic data partition

Disk Size: 1000204886016 bytes Sector size: 512 bytes

escribe o pega el código aquí

Cantante · 7 Marzo, 2023 11:28

seguna parte reporter,no se si lo hago bien

Done!
File "C:\Windows\System32\KERNELBASE.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\apphelp.dll" is sparse (flags = 32768)
File "C:\Windows\System32\psapi.dll" is sparse (flags = 32768)
File "C:\Windows\System32\user32.dll" is sparse (flags = 32768)
File "C:\Windows\System32\win32u.dll" is sparse (flags = 32768)
File "C:\Windows\System32\gdi32.dll" is sparse (flags = 32768)
File "C:\Windows\System32\GDI32FULL.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\MSVCP_WIN.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\ucrtbase.dll" is sparse (flags = 32768)
File "C:\Windows\System32\advapi32.dll" is sparse (flags = 32768)
File "C:\Windows\System32\msvcrt.dll" is sparse (flags = 32768)
File "C:\Windows\System32\sechost.dll" is sparse (flags = 32768)
File "C:\Windows\System32\rpcrt4.dll" is sparse (flags = 32768)
File "C:\Windows\System32\imm32.dll" is sparse (flags = 32768)
File "C:\Windows\System32\shell32.dll" is sparse (flags = 32768)
File "C:\Windows\System32\ole32.dll" is sparse (flags = 32768)
File "C:\Windows\System32\combase.dll" is sparse (flags = 32768)
File "C:\Windows\System32\shlwapi.dll" is sparse (flags = 32768)
File "C:\Windows\System32\wintrust.dll" is sparse (flags = 32768)
File "C:\Windows\System32\version.dll" is sparse (flags = 32768)
File "C:\Windows\System32\wininet.dll" is sparse (flags = 32768)
File "C:\Windows\System32\netapi32.dll" is sparse (flags = 32768)
File "C:\Windows\System32\netutils.dll" is sparse (flags = 32768)
File "C:\Windows\System32\imagehlp.dll" is sparse (flags = 32768)
File "C:\Windows\System32\userenv.dll" is sparse (flags = 32768)
File "C:\Windows\System32\mpr.dll" is sparse (flags = 32768)
File "C:\Windows\System32\IPHLPAPI.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\comdlg32.dll" is sparse (flags = 32768)
File "C:\Windows\System32\SHCore.dll" is sparse (flags = 32768)
File "C:\Windows\System32\oleaut32.dll" is sparse (flags = 32768)
File "C:\Windows\System32\ws2_32.dll" is sparse (flags = 32768)
File "C:\Windows\System32\winmm.dll" is sparse (flags = 32768)
File "C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.19041.1110_none_c0da534e38c01f4d\comctl32.dll" is sparse (flags = 32768)
File "C:\Windows\System32\winspool.drv" is sparse (flags = 32768)
File "C:\Windows\System32\sfc.dll" is sparse (flags = 32768)
File "C:\Windows\System32\sfc_os.dll" is sparse (flags = 32768)
File "C:\Windows\System32\cryptsp.dll" is sparse (flags = 32768)
File "C:\Windows\System32\rsaenh.dll" is sparse (flags = 32768)
File "C:\Windows\System32\bcrypt.dll" is sparse (flags = 32768)
File "C:\Windows\System32\CRYPTBASE.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\BCRYPTPRIMITIVES.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\crypt32.dll" is sparse (flags = 32768)
File "C:\Windows\System32\msasn1.dll" is sparse (flags = 32768)
File "C:\Windows\System32\wkscli.dll" is sparse (flags = 32768)
File "C:\Windows\System32\cscapi.dll" is sparse (flags = 32768)
File "C:\Windows\System32\uxtheme.dll" is sparse (flags = 32768)
File "C:\Windows\System32\iertutil.dll" is sparse (flags = 32768)
File "C:\Windows\System32\sspicli.dll" is sparse (flags = 32768)
File "C:\Windows\System32\WINDOWS.STORAGE.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\wldp.dll" is sparse (flags = 32768)
File "C:\Windows\System32\profapi.dll" is sparse (flags = 32768)
File "C:\Windows\System32\ONDEMANDCONNROUTEHELPER.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\winhttp.dll" is sparse (flags = 32768)
File "C:\Windows\System32\KERNEL.APPCORE.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\mswsock.dll" is sparse (flags = 32768)
File "C:\Windows\System32\nsi.dll" is sparse (flags = 32768)
File "C:\Windows\System32\winnsi.dll" is sparse (flags = 32768)
File "C:\Windows\System32\urlmon.dll" is sparse (flags = 32768)
File "C:\Windows\System32\srvcli.dll" is sparse (flags = 32768)
File "C:\Windows\System32\dnsapi.dll" is sparse (flags = 32768)
File "C:\Windows\System32\rasadhlp.dll" is sparse (flags = 32768)
File "C:\Windows\System32\FWPUCLNT.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\schannel.dll" is sparse (flags = 32768)
File "C:\Windows\System32\MSKEYPROTECT.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\ntasn1.dll" is sparse (flags = 32768)
File "C:\Windows\System32\dpapi.dll" is sparse (flags = 32768)
File "C:\Windows\System32\cryptnet.dll" is sparse (flags = 32768)
File "C:\Windows\System32\ncrypt.dll" is sparse (flags = 32768)
File "C:\Windows\System32\NCRYPTSSLP.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\msctf.dll" is sparse (flags = 32768)
File "C:\Windows\System32\dhcpcsvc.dll" is sparse (flags = 32768)
File "C:\Windows\System32\ntmarta.dll" is sparse (flags = 32768)
File "C:\Windows\System32\clbcatq.dll" is sparse (flags = 32768)
File "C:\Windows\System32\cfgmgr32.dll" is sparse (flags = 32768)
File "C:\Windows\System32\TEXTINPUTFRAMEWORK.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\COREUICOMPONENTS.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\COREMESSAGING.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\WinTypes.dll" is sparse (flags = 32768)
File "C:\Windows\System32\ninput.dll" is sparse (flags = 32768)
File "C:\Windows\System32\wtsapi32.dll" is sparse (flags = 32768)
File "C:\Windows\System32\winsta.dll" is sparse (flags = 32768)
File "C:\Windows\System32\propsys.dll" is sparse (flags = 32768)
File "C:\Windows\System32\WINDOWS.STATEREPOSITORYPS.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\WINDOWS.FILEEXPLORER.COMMON.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\mssprxy.dll" is sparse (flags = 32768)
File "C:\Windows\System32\coml2.dll" is sparse (flags = 32768)
File "C:\Windows\System32\smss.exe" is sparse (flags = 32768)
File "C:\Windows\System32\csrss.exe" is sparse (flags = 32768)
File "C:\Windows\System32\wininit.exe" is sparse (flags = 32768)
File "C:\Windows\System32\services.exe" is sparse (flags = 32768)
File "C:\Windows\System32\lsass.exe" is sparse (flags = 32768)
File "C:\Windows\System32\svchost.exe" is sparse (flags = 32768)
File "C:\Windows\System32\FONTDRVHOST.EXE" is sparse (flags = 32768)
File "C:\Windows\System32\WUDFHost.exe" is sparse (flags = 32768)
File "C:\Windows\System32\samcli.dll" is sparse (flags = 32768)
File "C:\Windows\System32\setupapi.dll" is sparse (flags = 32768)
File "C:\Windows\System32\cabinet.dll" is sparse (flags = 32768)
File "C:\Windows\System32\msimg32.dll" is sparse (flags = 32768)
File "C:\Windows\System32\dwmapi.dll" is sparse (flags = 32768)
File "C:\Windows\System32\amsi.dll" is sparse (flags = 32768)
File "C:\Windows\System32\NapiNSP.dll" is sparse (flags = 32768)
File "C:\Windows\System32\pnrpnsp.dll" is sparse (flags = 32768)
File "C:\Windows\System32\wshbth.dll" is sparse (flags = 32768)
File "C:\Windows\System32\nlaapi.dll" is sparse (flags = 32768)
File "C:\Windows\System32\winrnr.dll" is sparse (flags = 32768)
File "C:\Windows\System32\devobj.dll" is sparse (flags = 32768)
File "C:\Windows\System32\spoolsv.exe" is sparse (flags = 32768)
File "C:\Windows\System32\powrprof.dll" is sparse (flags = 32768)
File "C:\Windows\System32\umpdc.dll" is sparse (flags = 32768)
File "C:\Windows\System32\pdh.dll" is sparse (flags = 32768)
File "C:\Windows\System32\gpapi.dll" is sparse (flags = 32768)
File "C:\Windows\System32\webio.dll" is sparse (flags = 32768)
File "C:\Windows\System32\DHCPCSVC6.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\msxml3.dll" is sparse (flags = 32768)
File "C:\Windows\System32\sxs.dll" is sparse (flags = 32768)
File "C:\Windows\System32\jscript.dll" is sparse (flags = 32768)
File "C:\Windows\System32\secur32.dll" is sparse (flags = 32768)
File "C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.19041.2251_none_d9513b1fe1046fc7\GdiPlus.dll" is sparse (flags = 32768)
File "C:\Windows\System32\mscoree.dll" is sparse (flags = 32768)
File "C:\Windows\MICROSOFT.NET\FRAMEWORK\V4.0.30319\clr.dll" is sparse (flags = 32768)
File "C:\Windows\System32\VCRUNTIME140_CLR0400.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\UCRTBASE_CLR0400.DLL" is sparse (flags = 32768)
File "C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\b8b4f2e4a119ba27f271d768ced7e470\MSCORLIB.NI.DLL" is sparse (flags = 32768)
File "C:\Windows\MICROSOFT.NET\FRAMEWORK\V4.0.30319\clrjit.dll" is sparse (flags = 32768)
File "C:\Windows\assembly\NativeImages_v4.0.30319_32\System\36798a13542b98319621b3f4a2db175a\System.ni.dll" is sparse (flags = 32768)
File "C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Core\85900d22ffacf55c0ab469d5650166ad\System.Core.ni.dll" is sparse (flags = 32768)
File "C:\Windows\assembly\NativeImages_v4.0.30319_32\WindowsBase\1168cf22e3889feaccbf7e87eba3c595\WindowsBase.ni.dll" is sparse (flags = 32768)
File "C:\Windows\MICROSOFT.NET\FRAMEWORK\V4.0.30319\WPF\PRESENTATIONNATIVE_V0400.DLL" is sparse (flags = 32768)
File "C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\c6c418a741ffca97232fe30551c4396b\System.Configuration.ni.dll" is sparse (flags = 32768)
File "C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\c075a1598172d8e908ad9b8b1524fda5\System.Xml.ni.dll" is sparse (flags = 32768)
File "C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationCore\718d2dc7afa96fe952517187ae3aea63\PresentationCore.ni.dll" is sparse (flags = 32768)
File "C:\Windows\assembly\NativeImages_v4.0.30319_32\Presentatio5ae0f00f#\9fb2c3f179eeccdbad6d06049cf728b4\PresentationFramework.ni.dll" is sparse (flags = 32768)
File "C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xaml\271b709cc8e2113bb3e46945ddc2bc1d\System.Xaml.ni.dll" is sparse (flags = 32768)
File "C:\Windows\System32\DWrite.dll" is sparse (flags = 32768)
File "C:\Windows\MICROSOFT.NET\FRAMEWORK\V4.0.30319\WPF\WPFGFX_V0400.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\MSVCP140_CLR0400.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\rasapi32.dll" is sparse (flags = 32768)
File "C:\Windows\System32\rasman.dll" is sparse (flags = 32768)
File "C:\Windows\System32\rtutils.dll" is sparse (flags = 32768)
File "C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Numerics\4aa1ce16f8335bddc141d8b4f11e56be\System.Numerics.ni.dll" is sparse (flags = 32768)
File "C:\Windows\System32\msi.dll" is sparse (flags = 32768)
File "C:\Windows\System32\wbem\wbemprox.dll" is sparse (flags = 32768)
File "C:\Windows\System32\wbemcomn.dll" is sparse (flags = 32768)
File "C:\Windows\System32\wbem\wbemsvc.dll" is sparse (flags = 32768)
File "C:\Windows\System32\wbem\fastprox.dll" is sparse (flags = 32768)
File "C:\Windows\System32\wlanapi.dll" is sparse (flags = 32768)
File "C:\Windows\System32\logoncli.dll" is sparse (flags = 32768)
File "C:\Windows\System32\netprofm.dll" is sparse (flags = 32768)
File "C:\Windows\System32\npmproxy.dll" is sparse (flags = 32768)
File "C:\Windows\System32\NETSETUPSHIM.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\devrtl.dll" is sparse (flags = 32768)
File "C:\Windows\System32\NETSETUPAPI.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\dbghelp.dll" is sparse (flags = 32768)
File "C:\Windows\System32\dbgcore.dll" is sparse (flags = 32768)
File "C:\Windows\System32\mstask.dll" is sparse (flags = 32768)
File "C:\Windows\System32\FIREWALLAPI.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\fwbase.dll" is sparse (flags = 32768)
File "C:\Windows\System32\linkinfo.dll" is sparse (flags = 32768)
File "C:\Windows\System32\virtdisk.dll" is sparse (flags = 32768)
File "C:\Windows\System32\fltLib.dll" is sparse (flags = 32768)
File "C:\Windows\System32\dllhost.exe" is sparse (flags = 32768)
File "C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Serv759bfb78#\dff8e26a1421700a5239acd163fa204c\System.ServiceProcess.ni.dll" is sparse (flags = 32768)
File "C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Confe64a9051#\ac07ec6dbbd299e52720cf18c9fb0f32\System.Configuration.Install.ni.dll" is sparse (flags = 32768)
File "C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Data\b05bf4dbefda84ab28e3b7aacdcc9916\System.Data.ni.dll" is sparse (flags = 32768)
File "C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runteb92aa12#\ddbdb0183c1a65189fd11c47a2456e4f\System.Runtime.Serialization.ni.dll" is sparse (flags = 32768)
File "C:\Windows\assembly\NativeImages_v4.0.30319_32\SMDiagnostics\ed4d0cc484b94a1fb6f83cee24169ff0\SMDiagnostics.ni.dll" is sparse (flags = 32768)
File "C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Servd1dec626#\fc25e5ce04f5b7ff7848cbdf1b01ecd1\System.ServiceModel.Internals.ni.dll" is sparse (flags = 32768)
File "C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Transactions\eb92c7349e380c71cc5e4893ac894935\System.Transactions.ni.dll" is sparse (flags = 32768)
File "C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Web.Services\71e0cc3e78760456927e88e56a83fdb1\System.Web.Services.ni.dll" is sparse (flags = 32768)
File "C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Net.Http\7f4462bbf2a4b27db12fd861df7c3458\System.Net.Http.ni.dll" is sparse (flags = 32768)
File "C:\Windows\System32\security.dll" is sparse (flags = 32768)
File "C:\Windows\System32\httpapi.dll" is sparse (flags = 32768)
File "C:\Windows\System32\SEARCHINDEXER.EXE" is sparse (flags = 32768)
File "C:\Windows\System32\wsock32.dll" is sparse (flags = 32768)
File "C:\Windows\System32\SGRMBROKER.EXE" is sparse (flags = 32768)
File "C:\Windows\System32\SECURITYHEALTHSERVICE.EXE" is sparse (flags = 32768)
File "C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Drawing\d6668c47c41eba88f24087131e6c1f8f\System.Drawing.ni.dll" is sparse (flags = 32768)
File "C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\1681d5f82e1ec0943cb23c552ac6b912\System.Windows.Forms.ni.dll" is sparse (flags = 32768)
File "C:\Windows\MICROSOFT.NET\FRAMEWORK64\v3.0\WPF\PRESENTATIONFONTCACHE.EXE" is sparse (flags = 32768)
File "C:\Windows\System32\winlogon.exe" is sparse (flags = 32768)
File "C:\Windows\System32\dwm.exe" is sparse (flags = 32768)
File "C:\Windows\System32\hid.dll" is sparse (flags = 32768)
File "C:\Windows\System32\MMDevAPI.dll" is sparse (flags = 32768)
File "C:\Windows\System32\AudioSes.dll" is sparse (flags = 32768)
File "C:\Windows\System32\sihost.exe" is sparse (flags = 32768)
File "C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.1110_none_a8625c1886757984\comctl32.dll" is sparse (flags = 32768)
File "C:\Windows\System32\TASKHOSTW.EXE" is sparse (flags = 32768)
File "C:\Windows\System32\ctfmon.exe" is sparse (flags = 32768)
File "C:\Windows\System32\TEXTSHAPING.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\WINDOWSCODECS.DLL" is sparse (flags = 32768)
File "C:\Windows\explorer.exe" is sparse (flags = 32768)
File "C:\Windows\SYSTEMAPPS\MICROSOFT.WINDOWS.STARTMENUEXPERIENCEHOST_CW5N1H2TXYEWY\STARTMENUEXPERIENCEHOST.EXE" is sparse (flags = 32768)
File "C:\Windows\System32\RUNTIMEBROKER.EXE" is sparse (flags = 32768)
File "C:\Windows\System32\SECURITYHEALTHSYSTRAY.EXE" is sparse (flags = 32768)
File "C:\Users\Camilo\AppData\Local\Microsoft\OneDrive\OneDrive.exe" is sparse (flags = 32768)
File "C:\Windows\System32\riched20.dll" is sparse (flags = 32768)
File "C:\Windows\System32\usp10.dll" is sparse (flags = 32768)
File "C:\Windows\System32\msls31.dll" is sparse (flags = 32768)
File "C:\Windows\System32\mfc42.dll" is sparse (flags = 32768)
File "C:\Windows\System32\wbem\WmiPrvSE.exe" is sparse (flags = 32768)
File "C:\Windows\SYSTEMAPPS\MICROSOFTWINDOWS.CLIENT.CBS_CW5N1H2TXYEWY\TEXTINPUTHOST.EXE" is sparse (flags = 32768)
File "C:\Windows\SYSTEMAPPS\MICROSOFT.WINDOWS.SEARCH_CW5N1H2TXYEWY\SEARCHAPP.EXE" is sparse (flags = 32768)
File "C:\Windows\System32\SEARCHPROTOCOLHOST.EXE" is sparse (flags = 32768)
File "C:\Windows\System32\SMARTSCREEN.EXE" is sparse (flags = 32768)
File "C:\Windows\System32\audiodg.exe" is sparse (flags = 32768)
File "C:\Windows\System32\THUMBCACHE.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\EXPLORERFRAME.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\edputil.dll" is sparse (flags = 32768)
File "C:\Windows\System32\APPRESOLVER.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\BCP47LANGS.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\slc.dll" is sparse (flags = 32768)
File "C:\Windows\System32\sppc.dll" is sparse (flags = 32768)
File "C:\Windows\System32\ONECORECOMMONPROXYSTUB.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\ONECOREUAPCOMMONPROXYSTUB.DLL" is sparse (flags = 32768)
File "C:\Windows\SysWOW64\cmd.exe" is sparse (flags = 32768)
File "C:\Windows\System32\cmdext.dll" is sparse (flags = 32768)
File "C:\Windows\System32\conhost.exe" is sparse (flags = 32768)
File "C:\Windows\System32\oobe\USEROOBEBROKER.EXE" is sparse (flags = 32768)
File "C:\Windows\System32\SEARCHFILTERHOST.EXE" is sparse (flags = 32768)
File "C:\Windows\System32\MOUSOCOREWORKER.EXE" is sparse (flags = 32768)
File "C:\Windows\SysWOW64\ONEDRIVESETUP.EXE" is sparse (flags = 32768)
File "C:\Windows\System32\credssp.dll" is sparse (flags = 32768)
File "C:\Windows\System32\userinit.exe" is sparse (flags = 32768)
File "C:\Windows\System32\scecli.dll" is sparse (flags = 32768)
File "C:\Windows\System32\msv1_0.dll" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\appid.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\AcpiDev.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\1394ohci.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\flpydisk.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\mspclock.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\bam.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\asyncmac.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\rfcomm.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\acpiex.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\acpi.sys" is sparse (flags = 32768)
File "C:\Windows\System32\Locator.exe" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\amdk8.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\acpipagr.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\isapnp.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\acpipmi.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\acpitime.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\ufx01000.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\Ucx01000.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\Acx01000.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\mrxsmb20.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\mpsdrv.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\afd.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\hidi2c.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\afunix.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\sdstor.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\ahcache.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\amdppm.sys" is sparse (flags = 32768)
File "C:\Windows\System32\alg.exe" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\IPMIDrv.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\cldflt.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\APPLOCKERFLTR.SYS" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\rspndr.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\bthmodem.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\wcnfs.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\wcifs.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\srv2.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\atapi.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\fdc.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\bindflt.sys" is sparse (flags = 32768)
File "C:\Windows\System32\msiexec.exe" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\pciide.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\PktMon.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\bowser.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\BthA2dp.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\Ndu.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\bthenum.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\HYPERVIDEO.SYS" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\BTHHFENUM.SYS" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\MICROSOFT.BLUETOOTH.LEGACY.LEENUMERATOR.SYS" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\portcfg.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\ipt.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\BthMini.SYS" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\bthpan.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\mshwnclx.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\bthport.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\BTHUSB.SYS" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\bttflt.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\BUTTONCONVERTER.SYS" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\cng.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\cdfs.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\clfs.sys" is sparse (flags = 32768)
File "C:\Windows\MICROSOFT.NET\FRAMEWORK64\V4.0.30319\SMSVCHOST.EXE" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\cdrom.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\circlass.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\mup.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\CmBatt.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\CNGHWASSIST.SYS" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\condrv.sys" is sparse (flags = 32768)
File "C:\Windows\System32\CREDENTIALENROLLMENTMANAGER.EXE" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\dam.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\partmgr.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\dfsc.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\disk.sys" is sparse (flags = 32768)
File "C:\Windows\System32\DiagSvcs\DIAGNOSTICSHUB.STANDARDCOLLECTOR.SERVICE.EXE" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\dmvsc.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\drmkaud.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\serial.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\dxgkrnl.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\EHSTORCLASS.SYS" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\MICROSOFT.BLUETOOTH.AVRCPTRANSPORT.SYS" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\EHSTORTCGDRV.SYS" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\SPATIALGRAPHFILTER.SYS" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\errdev.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\ksthunk.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\fileinfo.sys" is sparse (flags = 32768)
File "C:\Windows\System32\FXSSVC.exe" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\vmstorfl.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\FILECRYPT.SYS" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\ipfltdrv.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\FILETRACE.SYS" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\fltMgr.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\monitor.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\FSDEPENDS.SYS" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\fvevol.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\VMGENCOUNTER.SYS" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\ndisuio.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\MSGPIOCLX.SYS" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\GPUENERGYDRV.SYS" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\rasl2tp.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\mrxsmb.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\HdAudio.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\hdaudbus.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\hidbatt.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\hvcrash.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\hidbth.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\HIDINTERRUPT.SYS" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\hidir.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\hidspi.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\hidusb.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\http.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\HVSERVICE.SYS" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\hwpolicy.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\hyperkbd.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\ndproxy.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\i8042prt.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\pacer.sys" is sparse (flags = 32768)
File "C:\Windows\SysWOW64\perfhost.exe" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\NDISVIRTUALBUS.SYS" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\usbhub.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\ipnat.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\WPDUPFLTR.SYS" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\INDIRECTKMD.SYS" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\intelide.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\intelpep.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\INTELPMAX.SYS" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\intelppm.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\iorate.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\scfilter.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\netbt.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\msiscsi.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\kbdclass.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\kbdhid.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\ksecdd.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\ksecpkg.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\lltdio.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\luafv.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\vwififlt.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\msisadrv.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\mstee.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\MbbCx.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\mmcss.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\mskssrv.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\wimmount.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\mrxdav.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\modem.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\mspqm.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\mouclass.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\mouhid.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\msquic.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\mountmgr.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\bridge.sys" is sparse (flags = 32768)
File "C:\Windows\System32\VSSVC.exe" is sparse (flags = 32768)
File "C:\Windows\System32\msdtc.exe" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\MSGPIOWIN32.SYS" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\MSHIDKMDF.SYS" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\MSHIDUMDF.SYS" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\mslldp.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\mssmbios.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\MTConfig.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\nwifi.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\NDKPing.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\netbios.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\netvsc.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\ndis.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\ndiscap.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\NDISIMPLATFORM.SYS" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\ndistapi.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\ndiswan.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\NETADAPTERCX.SYS" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\NPSVCTRIG.SYS" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\nsiproxy.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\vms3cap.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\parport.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\pci.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\pcw.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\pdc.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\pcmcia.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\PEAuth.sys" is sparse (flags = 32768)
File "C:\Windows\System32\PERCEPTIONSIMULATION\PERCEPTIONSIMULATIONSERVICE.EXE" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\RDPVIDEOMINIPORT.SYS" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\pnpmem.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\qwavedrv.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\raspptp.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\processr.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\ramdisk.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\rasacd.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\agilevpn.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\raspppoe.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\rassstp.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\rdbss.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\rdpbus.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\rdpdr.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\rdyboost.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\rhproxy.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\sbp2port.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\sdbus.sys" is sparse (flags = 32768)
File "C:\Windows\System32\SENSORDATASERVICE.EXE" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\SerCx.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\SpbCx.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\serenum.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\SerCx2.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\sermouse.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\sfloppy.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\SGRMAGENT.SYS" is sparse (flags = 32768)
File "C:\Windows\System32\snmptrap.exe" is sparse (flags = 32768)
File "C:\Windows\System32\Spectrum.exe" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\SPACEPARSER.SYS" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\SPACEPORT.SYS" is sparse (flags = 32768)
File "C:\Windows\System32\sppsvc.exe" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\srvnet.sys" is sparse (flags = 32768)
File "C:\Windows\System32\OpenSSH\SSH-AGENT.EXE" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\storahci.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\stornvme.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\STORQOSFLT.SYS" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\storufs.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\storvsc.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\tcpip.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\tcpipreg.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\tpm.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\tdx.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\vdrvroot.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\terminpt.sys" is sparse (flags = 32768)
File "C:\Windows\System32\TIERINGENGINESERVICE.EXE" is sparse (flags = 32768)
File "C:\Windows\SERVICING\TRUSTEDINSTALLER.EXE" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\TsUsbFlt.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\TsUsbGD.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\tunnel.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\uaspstor.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\Udecx.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\UcmCx.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\UCMTCPCICX.SYS" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\UCMUCSICX.SYS" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\udfs.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\umpass.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\URSCX01000.SYS" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\usbvideo.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\USBAUDIO.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\USBAUDIO2.SYS" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\usbccgp.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\usbcir.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\USBXHCI.SYS" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\usbuhci.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\usbohci.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\usbehci.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\USBHUB3.SYS" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\usbprint.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\usb80236.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\usbser.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\USBSTOR.SYS" is sparse (flags = 32768)
File "C:\Windows\System32\vds.exe" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\VERIFIEREXT.SYS" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\vhdmp.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\Vid.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\vhf.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\vmbus.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\VMBusHID.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\vmgid.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\volmgr.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\volmgrx.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\volsnap.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\volume.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\vpci.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\vsmraid.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\vwifibus.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\vwifimp.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\wacompen.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\WUDFRd.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\wanarp.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\winusb.sys" is sparse (flags = 32768)
File "C:\Windows\System32\wbengine.exe" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\Wdf01000.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\WdiWiFi.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\WDMCOMPANIONFILTER.SYS" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\wfplwfs.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\WINDOWSTRUSTEDRT.SYS" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\winnat.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\wmiacpi.sys" is sparse (flags = 32768)
File "C:\Windows\System32\wbem\WmiApSrv.exe" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\ws2ifsl.sys" is sparse (flags = 32768)
File "C:\Windows\System32\drivers\WUDFPf.sys" is sparse (flags = 32768)
File "C:\Windows\System32\NATURALAUTH.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\umpnpmgr.dll" is sparse (flags = 32768)
File "C:\Windows\System32\AarSvc.dll" is sparse (flags = 32768)
File "C:\Windows\System32\rpcss.dll" is sparse (flags = 32768)
File "C:\Windows\System32\appinfo.dll" is sparse (flags = 32768)
File "C:\Windows\System32\DISPBROKER.DESKTOP.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\MESSAGINGSERVICE.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\MICROSOFT.BLUETOOTH.USERSERVICE.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\appidsvc.dll" is sparse (flags = 32768)
File "C:\Windows\System32\AJRouter.dll" is sparse (flags = 32768)
File "C:\Windows\System32\AUTOTIMESVC.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\smphost.dll" is sparse (flags = 32768)
File "C:\Windows\System32\GRAPHICSPERFSVC.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\psmsrv.dll" is sparse (flags = 32768)
File "C:\Windows\System32\APPREADINESS.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\WINDOWS.STATEREPOSITORY.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\AUDIOENDPOINTBUILDER.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\WALLETSERVICE.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\APPXDEPLOYMENTSERVER.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\BCASTDVRUSERSERVICE.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\audiosrv.dll" is sparse (flags = 32768)
File "C:\Windows\System32\wwansvc.dll" is sparse (flags = 32768)
File "C:\Windows\System32\wlidsvc.dll" is sparse (flags = 32768)
File "C:\Windows\System32\wlansvc.dll" is sparse (flags = 32768)
File "C:\Windows\System32\wcncsvc.dll" is sparse (flags = 32768)
File "C:\Windows\System32\wevtsvc.dll" is sparse (flags = 32768)
File "C:\Windows\System32\AxInstSv.dll" is sparse (flags = 32768)
File "C:\Windows\System32\RpcEpMap.dll" is sparse (flags = 32768)
File "C:\Windows\System32\CDPUSERSVC.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\dssvc.dll" is sparse (flags = 32768)
File "C:\Windows\System32\bdesvc.dll" is sparse (flags = 32768)
File "C:\Windows\System32\CAPTURESERVICE.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\BFE.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\XBLAUTHMANAGER.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\netman.dll" is sparse (flags = 32768)
File "C:\Windows\System32\DEVICESETUPMANAGER.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\cdpsvc.dll" is sparse (flags = 32768)
File "C:\Windows\System32\umpo.dll" is sparse (flags = 32768)
File "C:\Windows\System32\qmgr.dll" is sparse (flags = 32768)
File "C:\Windows\System32\DMWAPPUSHSVC.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\CBDHSvc.dll" is sparse (flags = 32768)
File "C:\Windows\System32\ClipSVC.dll" is sparse (flags = 32768)
File "C:\Windows\System32\BTAGSERVICE.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\BTHAVCTPSVC.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\vac.dll" is sparse (flags = 32768)
File "C:\Windows\System32\das.dll" is sparse (flags = 32768)
File "C:\Windows\System32\profsvc.dll" is sparse (flags = 32768)
File "C:\Windows\System32\pnrpsvc.dll" is sparse (flags = 32768)
File "C:\Windows\System32\provsvc.dll" is sparse (flags = 32768)
File "C:\Windows\System32\bthserv.dll" is sparse (flags = 32768)
File "C:\Windows\System32\CAPABILITYACCESSMANAGER.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\certprop.dll" is sparse (flags = 32768)
File "C:\Windows\System32\CONSENTUXCLIENT.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\icsvc.dll" is sparse (flags = 32768)
File "C:\Windows\System32\NGCCTNRSVC.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\dcsvc.dll" is sparse (flags = 32768)
File "C:\Windows\System32\XBOXGIPSVC.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\TETHERINGSERVICE.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\cryptsvc.dll" is sparse (flags = 32768)
File "C:\Windows\System32\DEFRAGSVC.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\DEVICEACCESS.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\WINDOWS.DEVICES.PICKER.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\DEVICESFLOWBROKER.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\DEVQUERYBROKER.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\dhcpcore.dll" is sparse (flags = 32768)
File "C:\Windows\System32\DiagSvc.dll" is sparse (flags = 32768)
File "C:\Windows\System32\dot3svc.dll" is sparse (flags = 32768)
File "C:\Windows\System32\dusmsvc.dll" is sparse (flags = 32768)
File "C:\Windows\System32\DIAGTRACK.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\MICROSOFT.GRAPHICS.DISPLAY.DISPLAYENHANCEMENTSERVICE.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\WINDOWS.INTERNAL.MANAGEMENT.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\fdPHost.dll" is sparse (flags = 32768)
File "C:\Windows\System32\dnsrslvr.dll" is sparse (flags = 32768)
File "C:\Windows\System32\dps.dll" is sparse (flags = 32768)
File "C:\Windows\System32\WERCPLSUPPORT.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\eapsvc.dll" is sparse (flags = 32768)
File "C:\Windows\System32\efssvc.dll" is sparse (flags = 32768)
File "C:\Windows\System32\EMBEDDEDMODESVC.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\ENTERPRISEAPPMGMTSVC.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\FntCache.dll" is sparse (flags = 32768)
File "C:\Windows\System32\es.dll" is sparse (flags = 32768)
File "C:\Windows\System32\sdrsvc.dll" is sparse (flags = 32768)
File "C:\Windows\System32\srvsvc.dll" is sparse (flags = 32768)
File "C:\Windows\System32\FRAMESERVER.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\FDResPub.dll" is sparse (flags = 32768)
File "C:\Windows\System32\upnphost.dll" is sparse (flags = 32768)
File "C:\Windows\System32\fhsvc.dll" is sparse (flags = 32768)
File "C:\Windows\System32\gpsvc.dll" is sparse (flags = 32768)
File "C:\Windows\System32\hidserv.dll" is sparse (flags = 32768)
File "C:\Windows\System32\lltdsvc.dll" is sparse (flags = 32768)
File "C:\Windows\System32\ListSvc.dll" is sparse (flags = 32768)
File "C:\Windows\System32\HVHOSTSVC.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\IKEEXT.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\INSTALLSERVICE.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\iphlpsvc.dll" is sparse (flags = 32768)
File "C:\Windows\System32\IPXLATCFG.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\keyiso.dll" is sparse (flags = 32768)
File "C:\Windows\System32\msdtckrm.dll" is sparse (flags = 32768)
File "C:\Windows\System32\wscsvc.dll" is sparse (flags = 32768)
File "C:\Windows\System32\WsmSvc.dll" is sparse (flags = 32768)
File "C:\Windows\System32\wersvc.dll" is sparse (flags = 32768)
File "C:\Windows\System32\wecsvc.dll" is sparse (flags = 32768)
File "C:\Windows\System32\wcmsvc.dll" is sparse (flags = 32768)
File "C:\Windows\System32\wkssvc.dll" is sparse (flags = 32768)
File "C:\Windows\System32\lfsvc.dll" is sparse (flags = 32768)
File "C:\Windows\System32\LICENSEMANAGERSVC.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\lpasvc.dll" is sparse (flags = 32768)
File "C:\Windows\System32\lmhsvc.dll" is sparse (flags = 32768)
File "C:\Windows\System32\ipnathlp.dll" is sparse (flags = 32768)
File "C:\Windows\System32\lsm.dll" is sparse (flags = 32768)
File "C:\Windows\System32\WORKFOLDERSSVC.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\LANGUAGEOVERLAYSERVER.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\moshost.dll" is sparse (flags = 32768)
File "C:\Windows\System32\MCPMANAGEMENTSERVICE.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\MIXEDREALITYRUNTIME.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\MPSSVC.dll" is sparse (flags = 32768)
File "C:\Windows\System32\iscsiexe.dll" is sparse (flags = 32768)
File "C:\Windows\System32\nsisvc.dll" is sparse (flags = 32768)
File "C:\Windows\System32\nlasvc.dll" is sparse (flags = 32768)
File "C:\Windows\System32\ngcsvc.dll" is sparse (flags = 32768)
File "C:\Windows\System32\NcaSvc.dll" is sparse (flags = 32768)
File "C:\Windows\System32\NCDAUTOSETUP.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\NCBSERVICE.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\netlogon.dll" is sparse (flags = 32768)
File "C:\Windows\System32\trkwks.dll" is sparse (flags = 32768)
File "C:\Windows\System32\NETPROFMSVC.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\NETSETUPSVC.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\APHOSTSERVICE.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\pcasvc.dll" is sparse (flags = 32768)
File "C:\Windows\System32\p2psvc.dll" is sparse (flags = 32768)
File "C:\Windows\System32\PHONESERVICE.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\PIMINDEXMAINTENANCE.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\pla.dll" is sparse (flags = 32768)
File "C:\Windows\System32\pnrpauto.dll" is sparse (flags = 32768)
File "C:\Windows\System32\icsvcext.dll" is sparse (flags = 32768)
File "C:\Windows\System32\IPSECSVC.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\PRINTWORKFLOWSERVICE.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\PUSHTOINSTALL.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\qwave.dll" is sparse (flags = 32768)
File "C:\Windows\System32\rasauto.dll" is sparse (flags = 32768)
File "C:\Windows\System32\rasmans.dll" is sparse (flags = 32768)
File "C:\Windows\System32\mprdim.dll" is sparse (flags = 32768)
File "C:\Windows\System32\regsvc.dll" is sparse (flags = 32768)
File "C:\Windows\System32\RDXSERVICE.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\RMapi.dll" is sparse (flags = 32768)
File "C:\Windows\System32\schedsvc.dll" is sparse (flags = 32768)
File "C:\Windows\System32\SCardSvr.dll" is sparse (flags = 32768)
File "C:\Windows\System32\XBLGAMESAVE.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\SCDEVICEENUM.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\seclogon.dll" is sparse (flags = 32768)
File "C:\Windows\System32\sensrsvc.dll" is sparse (flags = 32768)
File "C:\Windows\System32\SEMgrSvc.dll" is sparse (flags = 32768)
File "C:\Windows\System32\Sens.dll" is sparse (flags = 32768)
File "C:\Windows\System32\SENSORSERVICE.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\SessEnv.dll" is sparse (flags = 32768)
File "C:\Windows\System32\SHAREDREALITYSVC.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\shsvcs.dll" is sparse (flags = 32768)
File "C:\Windows\System32\WINDOWS.SHAREDPC.ACCOUNTMANAGER.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\SMSROUTERSVC.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\StorSvc.dll" is sparse (flags = 32768)
File "C:\Windows\System32\sstpsvc.dll" is sparse (flags = 32768)
File "C:\Windows\System32\ssdpsrv.dll" is sparse (flags = 32768)
File "C:\Windows\System32\wiaservc.dll" is sparse (flags = 32768)
File "C:\Windows\System32\svsvc.dll" is sparse (flags = 32768)
File "C:\Windows\System32\swprv.dll" is sparse (flags = 32768)
File "C:\Windows\System32\sysmain.dll" is sparse (flags = 32768)
File "C:\Windows\System32\SYSTEMEVENTSBROKERSERVER.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\TabSvc.dll" is sparse (flags = 32768)
File "C:\Windows\System32\termsrv.dll" is sparse (flags = 32768)
File "C:\Windows\System32\tapisrv.dll" is sparse (flags = 32768)
File "C:\Windows\System32\THEMESERVICE.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\TIMEBROKERSERVER.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\TOKENBROKER.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\MITIGATIONCLIENT.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\TZAUTOUPDATE.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\WINDOWSUDK.SHELLCOMMON.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\umrdp.dll" is sparse (flags = 32768)
File "C:\Windows\System32\Unistore.dll" is sparse (flags = 32768)
File "C:\Windows\System32\USERDATASERVICE.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\usermgr.dll" is sparse (flags = 32768)
File "C:\Windows\System32\usosvc.dll" is sparse (flags = 32768)
File "C:\Windows\System32\vaultsvc.dll" is sparse (flags = 32768)
File "C:\Windows\System32\w32time.dll" is sparse (flags = 32768)
File "C:\Windows\System32\WAASMEDICSVC.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\WINDOWS.WARP.JITSERVICE.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\wbiosrvc.dll" is sparse (flags = 32768)
File "C:\Windows\System32\wdi.dll" is sparse (flags = 32768)
File "C:\Windows\System32\WebClnt.dll" is sparse (flags = 32768)
File "C:\Windows\System32\WEPHOSTSVC.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\WFDSCONMGRSVC.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\wiarpc.dll" is sparse (flags = 32768)
File "C:\Windows\System32\wbem\WMIsvc.dll" is sparse (flags = 32768)
File "C:\Windows\System32\FLIGHTSETTINGS.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\WINDOWS.MANAGEMENT.SERVICE.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\WPCDESKTOPMONSVC.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\WPDBUSENUM.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\WPNSERVICE.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\WPNUSERSERVICE.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\wuaueng.dll" is sparse (flags = 32768)
File "C:\Windows\System32\XBOXNETAPISVC.DLL" is sparse (flags = 32768)
File "C:\Windows\System32\unregmp2.exe" is sparse (flags = 32768)
File "C:\Windows\System32\ie4uinit.exe" is sparse (flags = 32768)
File "C:\Windows\System32\rundll32.exe" is sparse (flags = 32768)
File "C:\Windows\SysWOW64\rundll32.exe" is sparse (flags = 32768)
Scan finished

Chicloi · 8 Marzo, 2023 19:23

Ahora, realice usted los siguientes pasos:

IMPORTANTE:

SIGA SU MANUAL,Y LOS PASOS QUE LE HE DEJADO EN ESTE TEMA EN EL ORDEN INDICADO Y SIN INVERTIR EL ORDEN.

RESPETE EL ORDEN DE LOS PROGRAMAS EN DICHO PROCESO DE ANALISIS.

SI ALGÚN PROGRAMA LE PIDE REINICIAR, PROCEDES! PERO SOLO SI SE LO SOLICITA EL PROGRAMA.

Aclarado esto, realice usted lo siguiente:

Descargue, Instale y ejecute el siguiente programa: TDSSKiller. A continuación, le dejo la Url de Descarga del programa TDSSKiller, para que pueda ejecutar e instalar el programa correctamente y su Manual del: TDSSKiller, para que sepas cómo utilizarlo y configurarlo correctamente:

. . Url del Descarga del: TDSSKiller, para que pueda ejecutar e instalar el programa correctamente: Cick aquí: TDSSKiller. (IMPORTANTE: Descárguelo en su: escritorio):

. Manual del: TdssKiller para que sepa usted cómo configurarlo y utilizarlo correctamente:

. Seleccione la herramienta con un clic izquierdo y ejecútela presionando el botón derecho sobre ella >>> elegir tal y como se muestra en la pantalla:

. Se iniciará el Control de Cuentas de Usuario (UAC) , presione en capturada9 tal y como se muestra en la pantalla:

capturada10

Una pequeña ventana se abrirá iniciando la búsqueda de actualizaciones:

. En la próxima pantalla verá el “Acuerdo de licencia de usuario final” , presione en :

. La siguiente pantalla será la de kaspersky Security Network Statement, presione en :

. Se abrirá la ventana principal del programa:

Presione sobre :

. deje marcadas (habilitte) en dicho programa todas estas casillas que se reflejan a continuación tal y como se refleja en la siguiente pantalla:

capturadaKVRT

Si te pide que debe de reiniciar dicho programa procedes!
```
MUY IMPORTANTE:
```

. Si el equipo está infectado:

Se mostrará una pantalla similar a esta:

Seleccione usted en todas las columnas que le aparezcan a usted la siguiente opción:
Presione para que se aplique la acción.
Para desinfectar correctamente el Sistema se le puede solicitar que reinicie el equipo, presione el botón
Me manda usted una Captura de Pantalla que refleje todas las infecciones y virus que haya eliminado el dicho programa

Quedo a la espera de su respuesta!

Cantante · 9 Marzo, 2023 11:57

Hola.Pues no detectò nada.He lanzado el programa varias veces y he cargado todos los parametos,A la primera tuve que reiniciar pero despues no me lo pidiò.Lo que me extraña es que todas las veces solo haya analizado 704 archivos.Le mando una captura El reporter se abre pero no hay forma de copiarlo y pegarlo.Saludos captura Kasperskytdsskiller

Cantante · 9 Marzo, 2023 13:01

Hola de nuevo.Buscando en carpeta C habia varios archivos generados de TDSSKiller y este que adjunto coincide con la final del analisis,creo que es el reporter.

12:23:37.0416 0x0ba4  TDSS rootkit removing tool 3.1.0.28 Apr  9 2019 21:11:46
12:23:37.0416 0x0ba4  UEFI system
12:23:46.0168 0x0ba4  ============================================================
12:23:46.0168 0x0ba4  Current date / time: 2023/03/09 12:23:46.0168
12:23:46.0169 0x0ba4  SystemInfo:
12:23:46.0169 0x0ba4  
12:23:46.0169 0x0ba4  OS Version: 10.0.19044 ServicePack: 0.0
12:23:46.0169 0x0ba4  Product type: Workstation
12:23:46.0169 0x0ba4  ComputerName: DESKTOP-CCT01F4
12:23:46.0169 0x0ba4  UserName: Camilo
12:23:46.0169 0x0ba4  Windows directory: C:\WINDOWS
12:23:46.0169 0x0ba4  System windows directory: C:\WINDOWS
12:23:46.0169 0x0ba4  Running under WOW64
12:23:46.0169 0x0ba4  Processor architecture: Intel x64
12:23:46.0169 0x0ba4  Number of processors: 4
12:23:46.0169 0x0ba4  Page size: 0x1000
12:23:46.0169 0x0ba4  Boot type: Normal boot
12:23:46.0169 0x0ba4  CodeIntegrityOptions = 0x00000001
12:23:46.0169 0x0ba4  ============================================================
12:23:46.0171 0x0ba4  KLMD ARK init status: drvProperties = 0xEF0F02, osBuild = 19041.0, osProperties = 0x1D
12:23:46.0172 0x0ba4  KLMD BG init status: drvProperties = 0xEF0F02, osBuild = 19041.0, osProperties = 0x1D
12:23:46.0172 0x0ba4  BG loaded
12:23:46.0599 0x0ba4  System UUID: {C42ADDF0-E205-73C9-57E0-9FB510866C5A}
12:23:47.0165 0x0ba4  !crdlk
12:23:47.0177 0x0ba4  Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'A'
12:23:47.0193 0x0ba4  ============================================================
12:23:47.0193 0x0ba4  \Device\Harddisk0\DR0:
12:23:47.0193 0x0ba4  GPT partitions:
12:23:47.0203 0x0ba4  \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {C206EB63-1FEE-4D9B-AA56-68FEAD58EAC3}, Name: EFI system partition, StartLBA 0x800, BlocksNum 0x82000
12:23:47.0203 0x0ba4  \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {B3F5A6D6-A010-4A76-8044-FB97B3C68ED9}, Name: Microsoft reserved partition, StartLBA 0x82800, BlocksNum 0x8000
12:23:47.0203 0x0ba4  \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {7BC322CC-C902-4E16-AAC5-310C1F6F31CA}, Name: Basic data partition, StartLBA 0x8A800, BlocksNum 0x2E7974CF
12:23:47.0203 0x0ba4  \Device\Harddisk0\DR0\Partition4: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {C316B33A-C365-47FD-8FF8-0B44378EEDE0}, Name: , StartLBA 0x2E822000, BlocksNum 0x114000
12:23:47.0204 0x0ba4  \Device\Harddisk0\DR0\Partition5: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {05D437A0-0D79-4462-9EDD-D40627B9A510}, Name: Basic data partition, StartLBA 0x2E936000, BlocksNum 0x45DD0800
12:23:47.0204 0x0ba4  MBR partitions:
12:23:47.0204 0x0ba4  ============================================================
12:23:47.0245 0x0ba4  C: <-> \Device\Harddisk0\DR0\Partition3
12:23:47.0293 0x0ba4  D: <-> \Device\Harddisk0\DR0\Partition5
12:23:47.0293 0x0ba4  ============================================================
12:23:47.0293 0x0ba4  Initialize success
12:23:47.0293 0x0ba4  ============================================================
12:24:13.0889 0x1b68  ============================================================
12:24:13.0889 0x1b68  Scan started
12:24:13.0889 0x1b68  Mode: Manual; SigCheck; TDLFS; 
12:24:13.0889 0x1b68  ============================================================
12:24:13.0889 0x1b68  KSN ping started
12:24:14.0072 0x1b68  KSN ping finished: true
12:24:18.0822 0x1b68  ================ Scan BIOS =================================
12:24:18.0830 0x1b68  BIOS info: vendor = American Megatrends Inc., version = X541UA.307, releaseDate = 04/17/2019
12:24:18.0830 0x1b68  Base board info: manufacturer = ASUSTeK COMPUTER INC., product = X541UA, version = 1.0       
12:24:20.0884 0x1b68  [ D52E46863CFD6806B5BC624BDCE866B2, 7A8828BCE5D3B9C649F7637FB4A79A4B35E249BC4604471FCC93F7EA921406CD ] BIOS
12:24:20.0884 0x1b68  BIOS - ok
12:24:20.0892 0x1b68  ================ Scan system memory ========================
12:24:20.0894 0x1b68  System memory - ok
12:24:20.0895 0x1b68  ================ Scan services =============================
12:24:21.0122 0x1b68  1394ohci - ok
12:24:21.0133 0x1b68  3ware - ok
12:24:21.0185 0x1b68  AarSvc - ok
12:24:21.0285 0x1b68  ACPI - ok
12:24:21.0302 0x1b68  AcpiDev - ok
12:24:21.0312 0x1b68  acpiex - ok
12:24:21.0317 0x1b68  acpipagr - ok
12:24:21.0344 0x1b68  AcpiPmi - ok
12:24:21.0349 0x1b68  acpitime - ok
12:24:21.0368 0x1b68  Acx01000 - ok
12:24:21.0484 0x1b68  [ 620D6B3B34AFCC1B627FC915347DE458, 03B55D4676586ABDE797586913086BE07D4F93BB4644D6195CEFB213C687E1C6 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
12:24:21.0590 0x1b68  AdobeARMservice - ok
12:24:21.0616 0x1b68  ADP80XX - ok
12:24:21.0667 0x1b68  AFD - ok
12:24:21.0701 0x1b68  [ 369D447837E75992748C4EAE9782B993, E7B834D2AB1BB7D6743BAAFAF01EEBF88C7029B8C0755AA7562427E78D31B130 ] aftap0901       C:\WINDOWS\System32\drivers\aftap0901.sys
12:24:21.0734 0x1b68  aftap0901 - ok
12:24:21.0766 0x1b68  afunix - ok
12:24:21.0790 0x1b68  ahcache - ok
12:24:21.0816 0x1b68  [ EF91AC93FD14599002CC21D10F9F0D58, FF0621E2D8C2FCA676182F3B0B7BFB35A50836435BD520D4C7E0FC1FE6A7B0C2 ] AiCharger       C:\WINDOWS\system32\DRIVERS\AiCharger.sys
12:24:21.0836 0x1b68  AiCharger - ok
12:24:21.0865 0x1b68  AJRouter - ok
12:24:21.0876 0x1b68  ALG - ok
12:24:21.0901 0x1b68  amdgpio2 - ok
12:24:21.0921 0x1b68  amdi2c - ok
12:24:21.0950 0x1b68  AmdK8 - ok
12:24:21.0958 0x1b68  AmdPPM - ok
12:24:21.0971 0x1b68  amdsata - ok
12:24:21.0978 0x1b68  amdsbs - ok
12:24:21.0985 0x1b68  amdxata - ok
12:24:22.0016 0x1b68  AppID - ok
12:24:22.0036 0x1b68  AppIDSvc - ok
12:24:22.0067 0x1b68  Appinfo - ok
12:24:22.0099 0x1b68  applockerfltr - ok
12:24:22.0132 0x1b68  AppReadiness - ok
12:24:22.0166 0x1b68  AppXSvc - ok
12:24:22.0175 0x1b68  arcsas - ok
12:24:22.0215 0x1b68  [ 8662BF373089190FF139F86940698E8F, C046B4B39C9AE65777E8733E114E74E7A694ED88D7F7247CFF7795FF6759FBA0 ] ASICAMUSB3      C:\WINDOWS\System32\Drivers\ASICAMUSB3.sys
12:24:22.0251 0x1b68  ASICAMUSB3 - ok
12:24:22.0350 0x1b68  [ DC932785E0BEBCD6F980068047BD80BC, 9882A8664EDBD100EB01796045FD5B268AB45560BBC7A3E373B9D3956D3E6893 ] ASLDRService    C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
12:24:22.0389 0x1b68  ASLDRService - ok
12:24:22.0417 0x1b68  [ 116DD55EEF8843D7C526EB17A932822F, 003326A58256A5BF9912A0B4F6F39295C2909596B33C3837A0C85C7BA7523E14 ] ASMMAP64        C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys
12:24:22.0432 0x1b68  ASMMAP64 - ok
12:24:22.0434 0x1b68  Asus WebStorage Windows Service - ok
12:24:22.0449 0x1b68  [ CAA69B5EF70E88C1E8A8A2C341151063, CE3C178C6EBDA538411FC8677D84735AF6991D047106522F0E1CC08BB1FEF412 ] AsusPTPDrv      C:\WINDOWS\System32\drivers\AsusPTPFilter.sys
12:24:22.0474 0x1b68  AsusPTPDrv - ok
12:24:22.0490 0x1b68  AsyncMac - ok
12:24:22.0517 0x1b68  atapi - ok
12:24:22.0531 0x1b68  [ F989273B3F820E5C20F6D1F351E8EBE9, 20E195451CB383CFD8F181A616E48B2F47A71A65D7F28B679A7C7964667FD895 ] ATKGFNEXSrv     C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
12:24:22.0550 0x1b68  ATKGFNEXSrv - ok
12:24:22.0584 0x1b68  [ 0E717D7FED23731863EC44B4031DC268, A6F98FE201320FE3FF041768E426008C86B15BA7593EA04B1AC71B6FAE837A1E ] ATKWMIACPIIO    C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys
12:24:22.0599 0x1b68  ATKWMIACPIIO - ok
12:24:22.0632 0x1b68  AudioEndpointBuilder - ok
12:24:22.0640 0x1b68  Audiosrv - ok
12:24:22.0667 0x1b68  autotimesvc - ok
12:24:22.0698 0x1b68  AxInstSV - ok
12:24:22.0752 0x1b68  b06bdrv - ok
12:24:22.0785 0x1b68  bam - ok
12:24:22.0890 0x1b68  BasicDisplay - ok
12:24:22.0906 0x1b68  BasicRender - ok
12:24:22.0966 0x1b68  BcastDVRUserService - ok
12:24:23.0017 0x1b68  bcmfn2 - ok
12:24:23.0040 0x1b68  BDESVC - ok
12:24:23.0052 0x1b68  Beep - ok
12:24:23.0067 0x1b68  BFE - ok
12:24:23.0098 0x1b68  bindflt - ok
12:24:23.0114 0x1b68  BITS - ok
12:24:23.0165 0x1b68  BluetoothUserService - ok
12:24:23.0199 0x1b68  bowser - ok
12:24:23.0232 0x1b68  BrokerInfrastructure - ok
12:24:23.0266 0x1b68  BTAGService - ok
12:24:23.0334 0x1b68  [ 888D1150B6B0E7811C5383D6F6B1E747, B557726692CF2A39B1C6845EE00A1E4EA3DFBE215BE91FF7DAE0E73B821FCD18 ] BTDevManager    C:\Program Files (x86)\REALTEK\Realtek Bluetooth Filter ONLY\BTDevMgr.exe
12:24:23.0361 0x1b68  BTDevManager - ok
12:24:23.0376 0x1b68  BthA2dp - ok
12:24:23.0400 0x1b68  BthAvctpSvc - ok
12:24:23.0432 0x1b68  BthEnum - ok
12:24:23.0448 0x1b68  BthHFEnum - ok
12:24:23.0466 0x1b68  BthLEEnum - ok
12:24:23.0481 0x1b68  BthMini - ok
12:24:23.0488 0x1b68  BTHMODEM - ok
12:24:23.0499 0x1b68  BthPan - ok
12:24:23.0508 0x1b68  BTHPORT - ok
12:24:23.0514 0x1b68  bthserv - ok
12:24:23.0550 0x1b68  BTHUSB - ok
12:24:23.0583 0x1b68  bttflt - ok
12:24:23.0599 0x1b68  buttonconverter - ok
12:24:23.0616 0x1b68  CAD - ok
12:24:23.0666 0x1b68  camsvc - ok
12:24:23.0697 0x1b68  CaptureService - ok
12:24:23.0733 0x1b68  cbdhsvc - ok
12:24:23.0797 0x1b68  cdfs - ok
12:24:23.0865 0x1b68  CDPSvc - ok
12:24:23.0882 0x1b68  CDPUserSvc - ok
12:24:23.0915 0x1b68  cdrom - ok
12:24:23.0948 0x1b68  CertPropSvc - ok
12:24:23.0999 0x1b68  cht4iscsi - ok
12:24:24.0019 0x1b68  cht4vbd - ok
12:24:24.0050 0x1b68  CimFS - ok
12:24:24.0083 0x1b68  circlass - ok
12:24:24.0113 0x1b68  CldFlt - ok
12:24:24.0131 0x1b68  CLFS - ok
12:24:24.0546 0x1b68  [ F6CCA031FF9C31DF1237D3924F60961D, 25452B9F1F6699768F9637B0B254163D07630930F320A49BD746F8C9192500C3 ] ClickToRunSvc   C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
12:24:24.0826 0x1b68  ClickToRunSvc - ok
12:24:24.0864 0x1b68  ClipSVC - ok
12:24:24.0915 0x1b68  CmBatt - ok
12:24:24.0963 0x1b68  CNG - ok
12:24:24.0983 0x1b68  cnghwassist - ok
12:24:25.0014 0x1b68  CompositeBus - ok
12:24:25.0024 0x1b68  COMSysApp - ok
12:24:25.0048 0x1b68  condrv - ok
12:24:25.0097 0x1b68  ConsentUxUserSvc - ok
12:24:25.0147 0x1b68  CoreMessagingRegistrar - ok
12:24:25.0248 0x1b68  [ E7F640743A8FFD1C41809B604ED01E12, D96A35F109E3CB01AC2C71D5B71225854853F211B076BC3218D499D80B29C210 ] cphs            C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_9f310939ec1eebf9\IntelCpHeciSvc.exe
12:24:25.0271 0x1b68  cphs - ok
12:24:25.0313 0x1b68  [ 3576075C251DDFCE2C105BCA5F173C71, E21FA07D21261E2583645969941DFEDCE1C4EAE690262161BFA0073697AB8D4A ] cplspcon        C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_9f310939ec1eebf9\IntelCpHDCPSvc.exe
12:24:25.0323 0x1b68  cplspcon - ok
12:24:25.0381 0x1b68  CredentialEnrollmentManagerUserSvc - ok
12:24:25.0431 0x1b68  CredentialEnrollmentManagerUserSvc_91cac - ok
12:24:25.0447 0x1b68  CryptSvc - ok
12:24:25.0480 0x1b68  dam - ok
12:24:25.0546 0x1b68  [ 8AD76E0B347BB690697535CE95B1C656, 7655221B493047C61285E1DE78807D0584920B0D14D150E2487DA9728B1926F3 ] dbupdate        C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
12:24:25.0580 0x1b68  dbupdate - ok
12:24:25.0605 0x1b68  [ 8AD76E0B347BB690697535CE95B1C656, 7655221B493047C61285E1DE78807D0584920B0D14D150E2487DA9728B1926F3 ] dbupdatem       C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
12:24:25.0614 0x1b68  dbupdatem - ok
12:24:25.0645 0x1b68  DcomLaunch - ok
12:24:25.0663 0x1b68  dcsvc - ok
12:24:25.0705 0x1b68  defragsvc - ok
12:24:25.0747 0x1b68  DevActSvc - ok
12:24:25.0782 0x1b68  DeviceAssociationBrokerSvc - ok
12:24:25.0813 0x1b68  DeviceAssociationService - ok
12:24:25.0864 0x1b68  DeviceInstall - ok
12:24:25.0897 0x1b68  DevicePickerUserSvc - ok
12:24:25.0947 0x1b68  DevicesFlowUserSvc - ok
12:24:25.0981 0x1b68  DevQueryBroker - ok
12:24:26.0013 0x1b68  Dfsc - ok
12:24:26.0080 0x1b68  [ E11A98B7D066FA4AE5D2BCC2FB657521, A1050704920E29E0823E1F51BA87EE537C4976BBCB3EB307320296DDCB7D95E2 ] dg_ssudbus      C:\WINDOWS\system32\DRIVERS\ssudbus2.sys
12:24:26.0113 0x1b68  dg_ssudbus - ok
12:24:26.0130 0x1b68  Dhcp - ok
12:24:26.0197 0x1b68  diagnosticshub.standardcollector.service - ok
12:24:26.0248 0x1b68  diagsvc - ok
12:24:26.0284 0x1b68  DiagTrack - ok
12:24:26.0314 0x1b68  disk - ok
12:24:26.0347 0x1b68  DispBrokerDesktopSvc - ok
12:24:26.0379 0x1b68  DisplayEnhancementService - ok
12:24:26.0397 0x1b68  DmEnrollmentSvc - ok
12:24:26.0414 0x1b68  dmvsc - ok
12:24:26.0426 0x1b68  dmwappushservice - ok
12:24:26.0435 0x1b68  Dnscache - ok
12:24:26.0465 0x1b68  dot3svc - ok
12:24:26.0496 0x1b68  DPS - ok
12:24:26.0529 0x1b68  [ 225C4E9280B2AE38DCAA5E2FEFC437C2, DB52CEE6D99478B9858F41C440DE2856CC7A5A7E95F7CA7C2F2EED266DB4BDB1 ] dptf_acpi       C:\WINDOWS\System32\drivers\dptf_acpi.sys
12:24:26.0550 0x1b68  dptf_acpi - ok
12:24:26.0602 0x1b68  [ 4DD17AA07FA0A75E79B47E5B7F18964D, 157983BEAD4C8F7218E46392F8672E7052C8E81CF842A9E82DAA8AE8CC4020C9 ] dptf_cpu        C:\WINDOWS\System32\drivers\dptf_cpu.sys
12:24:26.0612 0x1b68  dptf_cpu - ok
12:24:26.0647 0x1b68  drmkaud - ok
12:24:26.0679 0x1b68  DsmSvc - ok
12:24:26.0697 0x1b68  DsSvc - ok
12:24:26.0705 0x1b68  DusmSvc - ok
12:24:26.0746 0x1b68  DXGKrnl - ok
12:24:26.0755 0x1b68  Eaphost - ok
12:24:26.0779 0x1b68  ebdrv - ok
12:24:26.0794 0x1b68  edgeupdate - ok
12:24:26.0800 0x1b68  edgeupdatem - ok
12:24:26.0831 0x1b68  EFS - ok
12:24:26.0864 0x1b68  EhStorClass - ok
12:24:26.0884 0x1b68  EhStorTcgDrv - ok
12:24:26.0931 0x1b68  embeddedmode - ok
12:24:26.0963 0x1b68  EntAppSvc - ok
12:24:26.0970 0x1b68  ErrDev - ok
12:24:27.0181 0x1b68  [ 49EDBE0603232013F7247413407F713E, D834CD05D759B0A0CCFDACF56819C3A6A51E8B61CF2B355472A43B87E31CD9FD ] esifsvc         C:\WINDOWS\SysWOW64\esif_uf.exe
12:24:27.0207 0x1b68  esifsvc - ok
12:24:27.0248 0x1b68  [ A63C10A6A6B09FED00046DDD313C2CC1, 7DEC320019698CE8122FD02F39127E003895E2351F7C35F3D73D97030C34CAB2 ] esif_lf         C:\WINDOWS\system32\DRIVERS\esif_lf.sys
12:24:27.0262 0x1b68  esif_lf - ok
12:24:27.0313 0x1b68  [ 95515708F41A7E283D6725506F56F6F2, 321058A27D7462E55E39D253AD5D8B19A9ACF754666400F82FE0542F33E733C6 ] ESProtectionDriver C:\WINDOWS\system32\drivers\mbae64.sys
12:24:27.0347 0x1b68  ESProtectionDriver - ok
12:24:27.0379 0x1b68  EventLog - ok
12:24:27.0430 0x1b68  EventSystem - ok
12:24:27.0463 0x1b68  exfat - ok
12:24:27.0498 0x1b68  [ 0EE1D766D9B671AB101978723FE3558B, 7144181AD870BBDD2CA1AAA9990ACE5760D35620A775713C27AAFD1D0245AA4C ] farmntio        C:\Windows\system32\drivers\farmntio.sys
12:24:27.0533 0x1b68  farmntio - detected UnsignedFile.Multi.Generic ( 1 )
12:24:27.0731 0x1b68  Detect skipped due to KSN trusted
12:24:27.0731 0x1b68  farmntio - ok
12:24:27.0746 0x1b68  fastfat - ok
12:24:27.0778 0x1b68  Fax - ok
12:24:27.0847 0x1b68  [ 273C8426CB8FCAF9BDAD04F59B080490, B4B1427B74540860C8312DC25E527A1E12738CF8FFDCA01D7F8F85808550326A ] FBAgent         C:\Program Files (x86)\FarStone\TotalRecovery Pro\EFB\FBAgent.exe
12:24:27.0878 0x1b68  FBAgent - ok
12:24:27.0912 0x1b68  fdc - ok
12:24:27.0928 0x1b68  fdPHost - ok
12:24:27.0943 0x1b68  FDResPub - ok
12:24:27.0962 0x1b68  fhsvc - ok
12:24:27.0983 0x1b68  FileCrypt - ok
12:24:27.0997 0x1b68  FileInfo - ok
12:24:28.0005 0x1b68  Filetrace - ok
12:24:28.0014 0x1b68  flpydisk - ok
12:24:28.0046 0x1b68  FltMgr - ok
12:24:28.0078 0x1b68  FontCache - ok
12:24:28.0180 0x1b68  FontCache3.0.0.0 - ok
12:24:28.0230 0x1b68  FrameServer - ok
12:24:28.0263 0x1b68  FsDepends - ok
12:24:28.0294 0x1b68  Fs_Rec - ok
12:24:28.0328 0x1b68  fvevol - ok
12:24:28.0335 0x1b68  GamesAppIntegrationService - ok
12:24:28.0341 0x1b68  GamesAppService - ok
12:24:28.0395 0x1b68  gencounter - ok
12:24:28.0579 0x1b68  genericusbfn - ok
12:24:28.0861 0x1b68  [ F3A89ED29438281FA14CDE44B6B22E13, 5247E8C34B51837E8A757BBCF01F02E9C45616888414D301D19CA47D9EEF4CA3 ] GoogleChromeElevationService C:\Program Files\Google\Chrome\Application\110.0.5481.178\elevation_service.exe
12:24:28.0923 0x1b68  GoogleChromeElevationService - ok
12:24:28.0961 0x1b68  GPIOClx0101 - ok
12:24:28.0977 0x1b68  gpsvc - ok
12:24:28.0995 0x1b68  GpuEnergyDrv - ok
12:24:29.0044 0x1b68  GraphicsPerfSvc - ok
12:24:29.0128 0x1b68  [ E4BF1E4D8477FBF8411E274F95A0D528, 62F622B022D4D8A52BAF02BCF0C163F6FD046265CC4553D2A8B267F8EDED4B76 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
12:24:29.0147 0x1b68  gupdate - ok
12:24:29.0169 0x1b68  [ E4BF1E4D8477FBF8411E274F95A0D528, 62F622B022D4D8A52BAF02BCF0C163F6FD046265CC4553D2A8B267F8EDED4B76 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
12:24:29.0178 0x1b68  gupdatem - ok
12:24:29.0193 0x1b68  HdAudAddService - ok
12:24:29.0229 0x1b68  HDAudBus - ok
12:24:29.0243 0x1b68  HidBatt - ok
12:24:29.0261 0x1b68  HidBth - ok
12:24:29.0274 0x1b68  hidi2c - ok
12:24:29.0280 0x1b68  hidinterrupt - ok
12:24:29.0292 0x1b68  HidIr - ok
12:24:29.0311 0x1b68  hidserv - ok
12:24:29.0317 0x1b68  hidspi - ok
12:24:29.0344 0x1b68  [ 2866EE966A0D19307E247A22BE110522, F11B8F5A3344AF5B48C411F5547E1589987C6A63CF2DFCAC80044B98AF4BDD63 ] HIDSwitch       C:\WINDOWS\System32\drivers\AsRadioControl.sys
12:24:29.0351 0x1b68  HIDSwitch - ok
12:24:29.0395 0x1b68  HidUsb - ok
12:24:29.0409 0x1b68  HpSAMD - ok
12:24:29.0429 0x1b68  HTTP - ok
12:24:29.0448 0x1b68  hvcrash - ok
12:24:29.0460 0x1b68  HvHost - ok
12:24:29.0496 0x1b68  hvservice - ok
12:24:29.0510 0x1b68  HwNClx0101 - ok
12:24:29.0527 0x1b68  hwpolicy - ok
12:24:29.0547 0x1b68  hyperkbd - ok
12:24:29.0557 0x1b68  HyperVideo - ok
12:24:29.0570 0x1b68  i8042prt - ok
12:24:29.0579 0x1b68  iagpio - ok
12:24:29.0590 0x1b68  iai2c - ok
12:24:29.0599 0x1b68  iaLPSS2i_GPIO2 - ok
12:24:29.0605 0x1b68  iaLPSS2i_GPIO2_BXT_P - ok
12:24:29.0612 0x1b68  iaLPSS2i_GPIO2_CNL - ok
12:24:29.0619 0x1b68  iaLPSS2i_GPIO2_GLK - ok
12:24:29.0624 0x1b68  iaLPSS2i_I2C - ok
12:24:29.0631 0x1b68  iaLPSS2i_I2C_BXT_P - ok
12:24:29.0636 0x1b68  iaLPSS2i_I2C_CNL - ok
12:24:29.0644 0x1b68  iaLPSS2i_I2C_GLK - ok
12:24:29.0649 0x1b68  iaLPSSi_GPIO - ok
12:24:29.0654 0x1b68  iaLPSSi_I2C - ok
12:24:29.0727 0x1b68  [ 62EECD3225EF2B5649780746928F5CF7, 974A5CCAFD0A514D45838F330121095195D57CF9295B5FD790F6E73A95A9C4C0 ] iaStorA         C:\WINDOWS\system32\drivers\iaStorA.sys
12:24:29.0776 0x1b68  iaStorA - ok
12:24:29.0783 0x1b68  iaStorAVC - ok
12:24:29.0790 0x1b68  iaStorV - ok
12:24:29.0794 0x1b68  ibbus - ok
12:24:29.0865 0x1b68  [ 8F085579FC9202B3782536B557A5E7E1, 55E59C8868F98B1F5AC6FE90BD3D8C2B2C3D61F32BEAB425400621985E146127 ] ICEsoundService C:\WINDOWS\system32\ICEsoundService64.exe
12:24:29.0894 0x1b68  ICEsoundService - ok
12:24:29.0928 0x1b68  icssvc - ok
12:24:30.0493 0x1b68  [ FC3D524D96A84D28497A4FEC4E2AEC42, F4A01312244114071F01AD1CBDA68C9D006547AB52B34EF2F7D2FE1DFEB4520C ] igfx            C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_9f310939ec1eebf9\igdkmd64.sys
12:24:31.0009 0x1b68  igfx - ok
12:24:31.0060 0x1b68  [ 1138664D39E0AFE51DFC8F4B178F4F5C, 10A8A12B7B05D797E3A9A0E9A33E97147D5ED3D3302ED32D0EB7E67D8EA96C62 ] igfxCUIService2.0.0.0 C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_9f310939ec1eebf9\igfxCUIService.exe
12:24:31.0096 0x1b68  igfxCUIService2.0.0.0 - ok
12:24:31.0126 0x1b68  IKEEXT - ok
12:24:31.0161 0x1b68  IndirectKmd - ok
12:24:31.0210 0x1b68  InstallService - ok
12:24:31.0442 0x1b68  [ 3634AB5A2DCB51B894443EF929ECCFE5, 0D5C08EB52944A7BF7A46A4EDA4BF5111D2A13544E524A49B107BC3A73474C31 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RTKVHD64.sys
12:24:31.0558 0x1b68  IntcAzAudAddService - ok
12:24:31.0643 0x1b68  [ 380EDC712EF93AB5AAAD6F8EF7808679, 733709D6AAD2222A38A909102E0CF7525F4AB9C7E4AE7A9533C6A668B1552AF9 ] IntcDAud        C:\WINDOWS\System32\DriverStore\FileRepository\intcdaud.inf_amd64_0d54ec4feb82b9c1\IntcDAud.sys
12:24:31.0678 0x1b68  IntcDAud - ok
12:24:31.0828 0x1b68  [ AE32376564771525DCDD2F0280619E1A, 233B7B272DCD9080DE7C9593EB7993745D1037EA87B69617E7176F074DFD5968 ] Intel(R) Capability Licensing Service TCP IP Interface C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
12:24:31.0870 0x1b68  Intel(R) Capability Licensing Service TCP IP Interface - ok
12:24:31.0949 0x1b68  [ 56BA2118E48D0BBB980ADAA830220C1D, 88FF0A1E7A87D1B50F90D3088436BE91CFEC6BB3B888EB536D6537468DDC8C29 ] Intel(R) Security Assist C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
12:24:31.0984 0x1b68  Intel(R) Security Assist - detected UnsignedFile.Multi.Generic ( 1 )
12:24:32.0331 0x1b68  Detect skipped due to KSN trusted
12:24:32.0335 0x1b68  Intel(R) Security Assist - ok
12:24:32.0416 0x1b68  intelide - ok
12:24:32.0451 0x1b68  intelpep - ok
12:24:32.0479 0x1b68  intelpmax - ok
12:24:32.0524 0x1b68  intelppm - ok
12:24:32.0554 0x1b68  iorate - ok
12:24:32.0583 0x1b68  IpFilterDriver - ok
12:24:32.0612 0x1b68  iphlpsvc - ok
12:24:32.0625 0x1b68  IPMIDRV - ok
12:24:32.0640 0x1b68  IPNAT - ok
12:24:32.0647 0x1b68  IPT - ok
12:24:32.0675 0x1b68  IpxlatCfgSvc - ok
12:24:32.0691 0x1b68  [ 8CA2C261AB69D0195BED81E58EDF167D, B192B7E42543C277BF8F6D48649DA4C121E6C23BDD0B51A973BA7A2D95525478 ] isaHelperSvc    C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe
12:24:32.0710 0x1b68  isaHelperSvc - detected UnsignedFile.Multi.Generic ( 1 )
12:24:32.0888 0x1b68  Detect skipped due to KSN trusted
12:24:32.0888 0x1b68  isaHelperSvc - ok
12:24:32.0925 0x1b68  isapnp - ok
12:24:32.0959 0x1b68  iScsiPrt - ok
12:24:32.0991 0x1b68  ItSas35i - ok
12:24:33.0059 0x1b68  [ 735E3E8507957F426CB7D93B35741C91, 386956AD22513DF3A10C7BA7C9503F2DBD5262A3CBD0C4EEFE540E3CFC27D348 ] jhi_service     C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
12:24:33.0091 0x1b68  jhi_service - ok
12:24:33.0101 0x1b68  kbdclass - ok
12:24:33.0105 0x1b68  kbdhid - ok
12:24:33.0110 0x1b68  kdnic - ok
12:24:33.0124 0x1b68  KeyIso - ok
12:24:33.0159 0x1b68  KSecDD - ok
12:24:33.0192 0x1b68  KSecPkg - ok
12:24:33.0208 0x1b68  ksthunk - ok
12:24:33.0241 0x1b68  KtmRm - ok
12:24:33.0257 0x1b68  LanmanServer - ok
12:24:33.0274 0x1b68  LanmanWorkstation - ok
12:24:33.0307 0x1b68  lfsvc - ok
12:24:33.0406 0x1b68  [ 55FDAE68E61DE1EAB54ADE984C745ADE, 318D9918861DFF8C4FDE411ABF1FED62B849B5B285050505437C999FF6584073 ] LibreViewMASMonitor C:\Program Files (x86)\LibreView Device Drivers\LibreViewMASMonitor.exe
12:24:33.0427 0x1b68  LibreViewMASMonitor - detected UnsignedFile.Multi.Generic ( 1 )
12:24:33.0644 0x1b68  Detect skipped due to KSN trusted
12:24:33.0644 0x1b68  LibreViewMASMonitor - ok
12:24:33.0692 0x1b68  LicenseManager - ok
12:24:33.0731 0x1b68  lltdio - ok
12:24:33.0784 0x1b68  lltdsvc - ok
12:24:33.0807 0x1b68  lmhosts - ok
12:24:33.0875 0x1b68  [ 2F085AF4E4E70B59F50A0948A6E2972B, BB24C11BDD069E8DF5140593D957D45146B36D411B10A79355EDFBE8180C8C84 ] LMS             C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
12:24:33.0925 0x1b68  LMS - ok
12:24:33.0957 0x1b68  LSI_SAS - ok
12:24:33.0970 0x1b68  LSI_SAS2i - ok
12:24:33.0979 0x1b68  LSI_SAS3i - ok
12:24:33.0984 0x1b68  LSI_SSS - ok
12:24:34.0008 0x1b68  LSM - ok
12:24:34.0041 0x1b68  luafv - ok
12:24:34.0108 0x1b68  LxpSvc - ok
12:24:34.0146 0x1b68  MapsBroker - ok
12:24:34.0165 0x1b68  mausbhost - ok
12:24:34.0173 0x1b68  mausbip - ok
12:24:34.0241 0x1b68  [ 6A21162E1C8A9F65787B14BC439EB077, 8B7990E1C676F53918E41F6B18B20179D77E598352D9243B05E2EA22B2D9E4FE ] MBAMChameleon   C:\WINDOWS\System32\Drivers\MbamChameleon.sys
12:24:34.0272 0x1b68  MBAMChameleon - ok
12:24:34.0307 0x1b68  [ 9E77C51E14FA9A323EE1635DC74ECC07, B5619D758AE6A65C1663F065E53E6B68A00511E7D7ACCB3E07ED94BFD0B1EDE0 ] MbamElam        C:\WINDOWS\system32\DRIVERS\MbamElam.sys
12:24:34.0340 0x1b68  MbamElam - ok
12:24:34.0373 0x1b68  [ 172617D364D7913A70F4A4E0D976BB95, B78DBBA8786F8A77F3FFAC55CF32408F4AA864A8ABAE4FCD52D4DDFE11F6FDC2 ] MBAMFarflt      C:\WINDOWS\system32\DRIVERS\farflt.sys
12:24:34.0413 0x1b68  MBAMFarflt - ok
12:24:34.0429 0x1b68  [ 4B4F4A100699D1EBE7F98AF1411F6DD5, 9DB95A82528F0F554677825DD50FE186F36FEF26CC6B627AFC82FD86A5803B69 ] MBAMProtection  C:\WINDOWS\system32\DRIVERS\mbam.sys
12:24:34.0457 0x1b68  MBAMProtection - ok
12:24:34.0841 0x1b68  [ 9E4C3C3DEC7CF9D3FFEB350E13009DC4, 315E45BA935D14A590DC5279779945DC74C553C3F5A285553ADD7DE4CCEE6B4F ] MBAMService     C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
12:24:35.0056 0x1b68  MBAMService - ok
12:24:35.0108 0x1b68  [ 1DC6D344EE9B6B024BA23278891DB9A5, 823E1C7321E177B006C1F3FD1EC8B99607A12D2C3C321F3A6CBBCF7030B6C240 ] MBAMSwissArmy   C:\WINDOWS\System32\Drivers\mbamswissarmy.sys
12:24:35.0137 0x1b68  MBAMSwissArmy - ok
12:24:35.0157 0x1b68  [ 1E12DFD5396809DA1C6CC5BCFFBEA079, 5AFFFAFC7392D7E587228B50862CBF2C435E45E596148FA05AC3C2D0AF7721DA ] MBAMWebProtection C:\WINDOWS\system32\DRIVERS\mwac.sys
12:24:35.0190 0x1b68  MBAMWebProtection - ok
12:24:35.0223 0x1b68  MbbCx - ok
12:24:35.0258 0x1b68  McpManagementService - ok
12:24:35.0289 0x1b68  megasas - ok
12:24:35.0302 0x1b68  megasas2i - ok
12:24:35.0311 0x1b68  megasas35i - ok
12:24:35.0317 0x1b68  megasr - ok
12:24:35.0339 0x1b68  [ 8EC6459491D8508BBA5E3CEC5C930914, E01AEE2E6F569429BC5582AEB63A2CB288499A878B0806D21CC9D78F00E0B284 ] MEIx64          C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys
12:24:35.0377 0x1b68  MEIx64 - ok
12:24:35.0424 0x1b68  MessagingService - ok
12:24:35.0507 0x1b68  [ 123271BD5237AB991DC5C21FDF8835EB, 004F8F9228EE291A0E36CE33078D572D61733516F9AA5CFC832AF204C6869E89 ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
12:24:35.0548 0x1b68  Microsoft Office Groove Audit Service - ok
12:24:35.0590 0x1b68  Microsoft_Bluetooth_AvrcpTransport - ok
12:24:35.0607 0x1b68  MixedRealityOpenXRSvc - ok
12:24:35.0639 0x1b68  mlx4_bus - ok
12:24:35.0672 0x1b68  MMCSS - ok
12:24:35.0707 0x1b68  Modem - ok
12:24:35.0739 0x1b68  monitor - ok
12:24:35.0747 0x1b68  mouclass - ok
12:24:35.0752 0x1b68  mouhid - ok
12:24:35.0757 0x1b68  mountmgr - ok
12:24:35.0806 0x1b68  [ CA4C4C7A7EED4E7DDA6662B7A1E99545, 8E400402B8630806E447F962A5497092E7CEE86FD1BAC8CF37BB1DD0BFBC03A4 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
12:24:35.0839 0x1b68  MozillaMaintenance - ok
12:24:35.0843 0x1b68  mpsdrv - ok
12:24:35.0872 0x1b68  mpssvc - ok
12:24:35.0906 0x1b68  MRxDAV - ok
12:24:35.0939 0x1b68  mrxsmb - ok
12:24:35.0956 0x1b68  mrxsmb20 - ok
12:24:35.0989 0x1b68  MsBridge - ok
12:24:36.0008 0x1b68  MSDTC - ok
12:24:36.0031 0x1b68  Msfs - ok
12:24:36.0057 0x1b68  msgpiowin32 - ok
12:24:36.0072 0x1b68  mshidkmdf - ok
12:24:36.0072 0x1b68  mshidumdf - ok
12:24:36.0093 0x1b68  msisadrv - ok
12:24:36.0124 0x1b68  MSiSCSI - ok
12:24:36.0140 0x1b68  msiserver - ok
12:24:36.0157 0x1b68  MSKSSRV - ok
12:24:36.0173 0x1b68  MsLldp - ok
12:24:36.0182 0x1b68  MSPCLOCK - ok
12:24:36.0192 0x1b68  MSPQM - ok
12:24:36.0200 0x1b68  MsQuic - ok
12:24:36.0223 0x1b68  MsRPC - ok
12:24:36.0248 0x1b68  mssmbios - ok
12:24:36.0258 0x1b68  MSTEE - ok
12:24:36.0268 0x1b68  MTConfig - ok
12:24:36.0294 0x1b68  Mup - ok
12:24:36.0300 0x1b68  mvumis - ok
12:24:36.0455 0x1b68  [ 030A0AEE0F469060BD6096FFAA7FF28F, C31046076BF2ABD9D1FFD5A4287746B239172677440CC7E3E381614E3D3A3083 ] NanoServiceMain C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe
12:24:36.0505 0x1b68  NanoServiceMain - ok
12:24:36.0556 0x1b68  NativeWifiP - ok
12:24:36.0589 0x1b68  NaturalAuthentication - ok
12:24:36.0620 0x1b68  NcaSvc - ok
12:24:36.0656 0x1b68  NcbService - ok
12:24:36.0673 0x1b68  NcdAutoSetup - ok
12:24:36.0705 0x1b68  ndfltr - ok
12:24:36.0756 0x1b68  NDIS - ok
12:24:36.0782 0x1b68  NdisCap - ok
12:24:36.0807 0x1b68  NdisImPlatform - ok
12:24:36.0823 0x1b68  NdisTapi - ok
12:24:36.0838 0x1b68  Ndisuio - ok
12:24:36.0855 0x1b68  NdisVirtualBus - ok
12:24:36.0888 0x1b68  NdisWan - ok
12:24:36.0905 0x1b68  ndiswanlegacy - ok
12:24:36.0923 0x1b68  NDKPing - ok
12:24:36.0939 0x1b68  ndproxy - ok
12:24:36.0950 0x1b68  Ndu - ok
12:24:36.0973 0x1b68  NetAdapterCx - ok
12:24:36.0980 0x1b68  NetBIOS - ok
12:24:36.0992 0x1b68  NetBT - ok
12:24:37.0008 0x1b68  Netlogon - ok
12:24:37.0039 0x1b68  Netman - ok
12:24:37.0072 0x1b68  netprofm - ok
12:24:37.0114 0x1b68  NetSetupSvc - ok
12:24:37.0249 0x1b68  NetTcpPortSharing - ok
12:24:37.0306 0x1b68  netvsc - ok
12:24:37.0356 0x1b68  NgcCtnrSvc - ok
12:24:37.0389 0x1b68  NgcSvc - ok
12:24:37.0448 0x1b68  NlaSvc - ok
12:24:37.0507 0x1b68  [ D2E8935CD7D650E4211B992BC669AD62, E615A9CB9CDEEB2A2AFC58A4D2F2EE8D946ADBD893BF79FC995630EF1594342E ] NNSDNS          C:\WINDOWS\system32\DRIVERS\NNSDNS.sys
12:24:37.0541 0x1b68  NNSDNS - ok
12:24:37.0571 0x1b68  [ 44800C694D7368D1EE6895AA655868D6, 1AD56095830EFB6224C1F27EA0C5A7CEFD93A28EFF2EEA4869467B456A2E44F9 ] NNSHTTP         C:\WINDOWS\system32\DRIVERS\NNSHTTP.sys
12:24:37.0589 0x1b68  NNSHTTP - ok
12:24:37.0639 0x1b68  [ 41C82013CE5055CC496F16C0A8A03812, 81A826DFF18E197325364014DA7D629ABD2A8037F0CDD23D28B23E37E3E2A12E ] NNSHTTPS        C:\WINDOWS\system32\DRIVERS\NNSHTTPS.sys
12:24:37.0659 0x1b68  NNSHTTPS - ok
12:24:37.0722 0x1b68  [ C7920709E8BFE50CDBE30707E606F8CF, E236301D1EA5421F9A8DB054ABAE0BBABB73E4FCECB329F526ECF54333D91659 ] NNSIDS          C:\WINDOWS\system32\DRIVERS\NNSIDS.sys
12:24:37.0755 0x1b68  NNSIDS - ok
12:24:37.0788 0x1b68  [ 5807DFF533689077A6D8A92515C4B3D1, 1036AB7B05E2E702909B1398E45E635F8AF2B6989DBC2335CDB55631F4EA801E ] NNSNAHSL        C:\WINDOWS\system32\DRIVERS\NNSNAHSL.sys
12:24:37.0810 0x1b68  NNSNAHSL - ok
12:24:37.0838 0x1b68  [ 611179A29997E80FC64C3584B846A14E, 5D267DB8D1BE1BC4DC78346FE9EC5D14EB69BDD508783312FDE55F576E6A9613 ] NNSPICC         C:\WINDOWS\system32\DRIVERS\NNSPICC.sys
12:24:37.0862 0x1b68  NNSPICC - ok
12:24:37.0889 0x1b68  [ 202ED47F990FE4D6FF909E2B6770559D, 027C07F7F365C9933AF6A56ED1CC768F2A7442687CE0852DEEB1AE37CA1A74BD ] NNSPIHSW        C:\WINDOWS\system32\DRIVERS\NNSPIHSW.sys
12:24:37.0925 0x1b68  NNSPIHSW - ok
12:24:37.0954 0x1b68  [ 331003AC876953423877DF2823B673F5, 74E63B2454FE777EC0E2B680F667F01F4E1ACF6F113F16CFE7A57E260561565F ] NNSPOP3         C:\WINDOWS\system32\DRIVERS\NNSPOP3.sys
12:24:37.0976 0x1b68  NNSPOP3 - ok
12:24:37.0987 0x1b68  [ EFF9BD1580F6F255BAF76DCC7BBC3D4D, CB227C80594BB0DE4C305CA3E93CA8C4F8C43FAF36A061DA6F3B24E246671EE9 ] NNSPROT         C:\WINDOWS\system32\DRIVERS\NNSPROT.sys
12:24:38.0021 0x1b68  NNSPROT - ok
12:24:38.0055 0x1b68  [ 61F36CCADAAF80F87F852481761E332C, 59064A72A3C5AB86091D840AF16DA49B63413DD8B70E0A9FFA82951CA8083E4A ] NNSPRV          C:\WINDOWS\system32\DRIVERS\NNSPRV.sys
12:24:38.0080 0x1b68  NNSPRV - ok
12:24:38.0090 0x1b68  [ D88B56F46E57D68EAC8AD447BF0BB775, 79FBCD9CB38252B1D2C1BD3E8F606FC6FAC4F907748E0676CCD51DEB7292772C ] NNSSMTP         C:\WINDOWS\system32\DRIVERS\NNSSMTP.sys
12:24:38.0122 0x1b68  NNSSMTP - ok
12:24:38.0155 0x1b68  [ 90F9449EBC706AA3C86891445C314D7B, 4B550856A8578B5CB7DD35FD80EDD408011D477CA66513E18924640ACE772A27 ] NNSSTRM         C:\WINDOWS\system32\DRIVERS\NNSSTRM.sys
12:24:38.0187 0x1b68  NNSSTRM - ok
12:24:38.0204 0x1b68  Npfs - ok
12:24:38.0255 0x1b68  npsvctrig - ok
12:24:38.0270 0x1b68  nsi - ok
12:24:38.0290 0x1b68  nsiproxy - ok
12:24:38.0325 0x1b68  Ntfs - ok
12:24:38.0325 0x1b68  Null - ok
12:24:38.0343 0x1b68  nvdimm - ok
12:24:38.0363 0x1b68  nvraid - ok
12:24:38.0370 0x1b68  nvstor - ok
12:24:38.0507 0x1b68  [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv          C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
12:24:38.0523 0x1b68  odserv - ok
12:24:38.0555 0x1b68  OneSyncSvc - ok
12:24:38.0604 0x1b68  [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
12:24:38.0652 0x1b68  ose - ok
12:24:38.0737 0x1b68  [ 8EBA5640D3316EC1D2F251F591A8D739, 586F4B9FD0151B97E9AF628FB639B274B5993290057E1C455B3907FE92C3D572 ] ose64           C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
12:24:38.0770 0x1b68  ose64 - ok
12:24:38.0803 0x1b68  p2pimsvc - ok
12:24:38.0837 0x1b68  p2psvc - ok
12:24:38.0905 0x1b68  [ 4D7E86B82E737812351EFEDD0F0E609F, 3FA09A55282C22DF3B140D5426DB49B935E69E25DC43C038EC03D517925805DA ] Panda VPN Service C:\Program Files (x86)\Panda Security\Panda Security Protection\Hydra.Sdk.Windows.Service.exe
12:24:38.0936 0x1b68  Panda VPN Service - ok
12:24:39.0004 0x1b68  [ 2EDB070017C9784E8E9A00CD921544D4, 1D21EF845CE5779DCBE222F52757520DE1E5DD8497EE28FDF5C027FBFAD9F0EF ] PandaAgent      C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe
12:24:39.0037 0x1b68  PandaAgent - ok
12:24:39.0053 0x1b68  Parport - ok
12:24:39.0088 0x1b68  partmgr - ok
12:24:39.0119 0x1b68  PcaSvc - ok
12:24:39.0155 0x1b68  pci - ok
12:24:39.0186 0x1b68  pciide - ok
12:24:39.0213 0x1b68  pcmcia - ok
12:24:39.0253 0x1b68  pcw - ok
12:24:39.0295 0x1b68  pdc - ok
12:24:39.0337 0x1b68  PEAUTH - ok
12:24:39.0386 0x1b68  perceptionsimulation - ok
12:24:39.0415 0x1b68  percsas2i - ok
12:24:39.0438 0x1b68  percsas3i - ok
12:24:39.0551 0x1b68  PerfHost - ok
12:24:39.0635 0x1b68  PhoneSvc - ok
12:24:39.0680 0x1b68  PimIndexMaintenanceSvc - ok
12:24:39.0738 0x1b68  PktMon - ok
12:24:39.0789 0x1b68  pla - ok
12:24:39.0838 0x1b68  PlugPlay - ok
12:24:39.0870 0x1b68  pmem - ok
12:24:39.0904 0x1b68  PNPMEM - ok
12:24:39.0937 0x1b68  PNRPAutoReg - ok
12:24:39.0955 0x1b68  PNRPsvc - ok
12:24:39.0987 0x1b68  PolicyAgent - ok
12:24:40.0019 0x1b68  portcfg - ok
12:24:40.0072 0x1b68  Power - ok
12:24:40.0119 0x1b68  PptpMiniport - ok
12:24:40.0781 0x1b68  [ DB6AF2064701FA70F3C7BB21FA2DF5B2, 41A0DD7932F1C6AFBD55B5D15CA46FDA45A8739ABF3605C0C73B75149D4BD8E8 ] PrintNotify     C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll
12:24:40.0907 0x1b68  PrintNotify - ok
12:24:40.0952 0x1b68  PrintWorkflowUserSvc - ok
12:24:40.0985 0x1b68  Processor - ok
12:24:41.0019 0x1b68  ProfSvc - ok
12:24:41.0052 0x1b68  Psched - ok
12:24:41.0256 0x1b68  [ B51C74A10497463B8A2AA59D1C1D142B, 2BDD9263C0D0BD5BE85F3B182AEA331F355B655BECD93D96BFB3E348660BE4E6 ] pselamsvc       C:\Program Files (x86)\Panda Security\Panda Security Protection\pselamsvc.exe
12:24:41.0296 0x1b68  pselamsvc - ok
12:24:41.0335 0x1b68  [ B4A5BD0EAA0F52D16F5DBF92C042524E, 8AF2177DBA385E6F13FA0904CDD5D2DD5A29D0531493C61DF72FB890B25ABE3A ] PSINAflt        C:\WINDOWS\system32\DRIVERS\PSINAflt.sys
12:24:41.0360 0x1b68  PSINAflt - ok
12:24:41.0388 0x1b68  [ 24ED16161B26460A7E550D4B54DCAAE8, 107F40AA40E3D3409C27271451BEF10B9E7DAAAD089CCE59E31E23B5B987115B ] psinelam        C:\WINDOWS\system32\DRIVERS\psinelam.sys
12:24:41.0418 0x1b68  psinelam - ok
12:24:41.0450 0x1b68  [ 32F86A6C04691E0905192A8713D6CE1F, ECD7DE7044E76CEB4C8AF149C3BE3B02F96798A601BA7D3E3F26BC8CAA05F77D ] PSINFile        C:\WINDOWS\system32\DRIVERS\PSINFile.sys
12:24:41.0469 0x1b68  PSINFile - ok
12:24:41.0502 0x1b68  [ D70BDB20FFC2F442838723B63D494A54, 168564A5221BA16CA1DC49698BE9A51BB108007D3B3A037169BE504527F1062D ] PSINKNC         C:\WINDOWS\system32\DRIVERS\PSINKNC.sys
12:24:41.0517 0x1b68  PSINKNC - ok
12:24:41.0538 0x1b68  [ 266E49856F283D4CD4114F49B3CF4605, 5ACA5929D2F9DB985436DFEF198BE91E1A29555D949761C46A00277DEB112AA9 ] PSINProc        C:\WINDOWS\system32\DRIVERS\PSINProc.sys
12:24:41.0568 0x1b68  PSINProc - ok
12:24:41.0617 0x1b68  [ 7947F92E80A5EED4BDA6AFD87E5740E4, 432EFCBC80B10934B28A37AC45E809ECA68B33EFE1291A2D6A405E39F875D054 ] PSINProt        C:\WINDOWS\system32\DRIVERS\PSINProt.sys
12:24:41.0649 0x1b68  PSINProt - ok
12:24:41.0668 0x1b68  [ 81933306D9E6531051D10C82881B6518, B39669D57F21DD85A58F687BB497D185D6BF5E3ECB34219CA10250E385387A4E ] PSINReg         C:\WINDOWS\system32\DRIVERS\PSINReg.sys
12:24:41.0685 0x1b68  PSINReg - ok
12:24:41.0751 0x1b68  [ 1E989AA5BFC9EA8E097FFE51E31086D9, 2DD05470567E6D101505A834F52D5F46E0D0A0B57D05B9126BBE5B39CCB6AF68 ] PSKMAD          C:\WINDOWS\system32\DRIVERS\PSKMAD.sys
12:24:41.0802 0x1b68  PSKMAD - ok
12:24:41.0836 0x1b68  [ ACC625233232283862D86C2BC9F047DA, BC008D5109B8DF11B2CDBFFB06FDC2DB8328DF5A16FC308418086D8EDC336A79 ] PSUAService     C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe
12:24:41.0847 0x1b68  PSUAService - ok
12:24:41.0885 0x1b68  PushToInstall - ok
12:24:41.0918 0x1b68  QWAVE - ok
12:24:41.0952 0x1b68  QWAVEdrv - ok
12:24:41.0971 0x1b68  Ramdisk - ok
12:24:41.0984 0x1b68  RasAcd - ok
12:24:42.0018 0x1b68  RasAgileVpn - ok
12:24:42.0033 0x1b68  RasAuto - ok
12:24:42.0052 0x1b68  Rasl2tp - ok
12:24:42.0083 0x1b68  RasMan - ok
12:24:42.0092 0x1b68  RasPppoe - ok
12:24:42.0102 0x1b68  RasSstp - ok
12:24:42.0134 0x1b68  rdbss - ok
12:24:42.0168 0x1b68  rdpbus - ok
12:24:42.0201 0x1b68  RDPDR - ok
12:24:42.0289 0x1b68  RdpVideoMiniport - ok
12:24:42.0309 0x1b68  rdyboost - ok
12:24:42.0368 0x1b68  ReFS - ok
12:24:42.0403 0x1b68  ReFSv1 - ok
12:24:42.0451 0x1b68  RemoteAccess - ok
12:24:42.0519 0x1b68  RemoteRegistry - ok
12:24:42.0586 0x1b68  RetailDemo - ok
12:24:42.0606 0x1b68  RFCOMM - ok
12:24:42.0651 0x1b68  rhproxy - ok
12:24:42.0700 0x1b68  RmSvc - ok
12:24:42.0735 0x1b68  RpcEptMapper - ok
12:24:42.0768 0x1b68  RpcLocator - ok
12:24:42.0801 0x1b68  RpcSs - ok
12:24:42.0851 0x1b68  [ 685B0561F0E0B13CD7DDBC47892BD732, D277FBAAE817DD071D6973BB47991E9DCBE64169169B321BF0A5FEA91AEF1981 ] RSBASTOR        C:\WINDOWS\System32\drivers\RtsBaStor.sys
12:24:42.0917 0x1b68  RSBASTOR - ok
12:24:42.0934 0x1b68  rspndr - ok
12:24:43.0000 0x1b68  [ D23AF14A8C26855B3D6CB5F8E32B08F3, 6B903B9C97CECE2AD41614F5129EB9E5DC5BC3AB6A3E28D51940CD1F414041FA ] rt640x64        C:\WINDOWS\System32\drivers\rt640x64.sys
12:24:43.0033 0x1b68  rt640x64 - ok
12:24:43.0067 0x1b68  [ 3BFB070CC6B1F820D14768B1EC3991C6, B4ED7CE848FEE3E3A69016228B149A96624FB0AC1D36A7A86F73BF23C89FA649 ] RtkBtFilter     C:\WINDOWS\System32\drivers\RtkBtfilter.sys
12:24:43.0090 0x1b68  RtkBtFilter - ok
12:24:43.0150 0x1b68  [ 61227D4CB642C0D39ABC8034FF9B857E, AFAA9ABE34D08DBB6E36E69F9BC3FFF6D553552E7962FC466572D8A88843AF33 ] RtkBtManServ    C:\WINDOWS\RtkBtManServ.exe
12:24:43.0171 0x1b68  RtkBtManServ - ok
12:24:43.0464 0x1b68  [ 67B22F88762D8013317862EFFA49F307, 550780AD7F46D159FAD7FC99744BEF33BF3C37ABEB03F8DC2666E988A00705EF ] RTWlanE02       C:\WINDOWS\System32\drivers\rtwlane02.sys
12:24:43.0650 0x1b68  RTWlanE02 - ok
12:24:43.0686 0x1b68  s3cap - ok
12:24:43.0717 0x1b68  SamSs - ok
12:24:43.0736 0x1b68  sbp2port - ok
12:24:43.0766 0x1b68  SCardSvr - ok
12:24:43.0800 0x1b68  ScDeviceEnum - ok
12:24:43.0815 0x1b68  scfilter - ok
12:24:43.0833 0x1b68  Schedule - ok
12:24:43.0866 0x1b68  scmbus - ok
12:24:43.0883 0x1b68  SCPolicySvc - ok
12:24:43.0916 0x1b68  sdbus - ok
12:24:43.0950 0x1b68  SDFRd - ok
12:24:43.0978 0x1b68  SDRSVC - ok
12:24:44.0003 0x1b68  sdstor - ok
12:24:44.0033 0x1b68  seclogon - ok
12:24:44.0066 0x1b68  SecurityHealthService - ok
12:24:44.0118 0x1b68  SEMgrSvc - ok
12:24:44.0149 0x1b68  SENS - ok
12:24:44.0217 0x1b68  SensorDataService - ok
12:24:44.0251 0x1b68  SensorService - ok
12:24:44.0283 0x1b68  SensrSvc - ok
12:24:44.0318 0x1b68  SerCx - ok
12:24:44.0342 0x1b68  SerCx2 - ok
12:24:44.0367 0x1b68  Serenum - ok
12:24:44.0389 0x1b68  Serial - ok
12:24:44.0399 0x1b68  sermouse - ok
12:24:44.0465 0x1b68  SessionEnv - ok
12:24:44.0476 0x1b68  sfloppy - ok
12:24:44.0499 0x1b68  SgrmAgent - ok
12:24:44.0549 0x1b68  SgrmBroker - ok
12:24:44.0600 0x1b68  SharedAccess - ok
12:24:44.0666 0x1b68  SharedRealitySvc - ok
12:24:44.0716 0x1b68  ShellHWDetection - ok
12:24:44.0766 0x1b68  shpamsvc - ok
12:24:44.0817 0x1b68  SiSRaid2 - ok
12:24:44.0849 0x1b68  SiSRaid4 - ok
12:24:44.0872 0x1b68  SmartSAMD - ok
12:24:44.0916 0x1b68  smphost - ok
12:24:44.0966 0x1b68  SmsRouter - ok
12:24:45.0033 0x1b68  SNMPTRAP - ok
12:24:45.0072 0x1b68  spaceparser - ok
12:24:45.0102 0x1b68  spaceport - ok
12:24:45.0133 0x1b68  SpatialGraphFilter - ok
12:24:45.0167 0x1b68  SpbCx - ok
12:24:45.0200 0x1b68  spectrum - ok
12:24:45.0233 0x1b68  Spooler - ok
12:24:45.0273 0x1b68  sppsvc - ok
12:24:45.0317 0x1b68  srv2 - ok
12:24:45.0366 0x1b68  srvnet - ok
12:24:45.0416 0x1b68  SSDPSRV - ok
12:24:45.0466 0x1b68  ssh-agent - ok
12:24:45.0499 0x1b68  SstpSvc - ok
12:24:45.0566 0x1b68  StateRepository - ok
12:24:45.0617 0x1b68  stexstor - ok
12:24:45.0649 0x1b68  stisvc - ok
12:24:45.0698 0x1b68  storahci - ok
12:24:45.0752 0x1b68  storflt - ok
12:24:45.0782 0x1b68  stornvme - ok
12:24:45.0805 0x1b68  storqosflt - ok
12:24:45.0848 0x1b68  StorSvc - ok
12:24:45.0867 0x1b68  storufs - ok
12:24:45.0878 0x1b68  storvsc - ok
12:24:45.0897 0x1b68  svsvc - ok
12:24:45.0963 0x1b68  swenum - ok
12:24:45.0998 0x1b68  swprv - ok
12:24:46.0049 0x1b68  Synth3dVsc - ok
12:24:46.0082 0x1b68  SysMain - ok
12:24:46.0133 0x1b68  SystemEventsBroker - ok
12:24:46.0186 0x1b68  TabletInputService - ok
12:24:46.0215 0x1b68  TapiSrv - ok
12:24:46.0266 0x1b68  Tcpip - ok
12:24:46.0282 0x1b68  Tcpip6 - ok
12:24:46.0350 0x1b68  tcpipreg - ok
12:24:46.0398 0x1b68  tdx - ok
12:24:46.0414 0x1b68  Telemetry - ok
12:24:46.0427 0x1b68  terminpt - ok
12:24:46.0449 0x1b68  TermService - ok
12:24:46.0482 0x1b68  Themes - ok
12:24:46.0516 0x1b68  TieringEngineService - ok
12:24:46.0582 0x1b68  TimeBrokerSvc - ok
12:24:46.0631 0x1b68  TokenBroker - ok
12:24:46.0681 0x1b68  TPM - ok
12:24:46.0805 0x1b68  [ 1F9EE31770782886A3A3CF7C174765AF, B9896CDD6A275E94721823B928BB1ACA336E36B8C25A45084D1751559EB9D58F ] Tran_Process_Proc C:\Program Files (x86)\FarStone\TotalRecovery Pro\EFB\DCNTranProc.exe
12:24:46.0838 0x1b68  Tran_Process_Proc - ok
12:24:46.0880 0x1b68  TrkWks - ok
12:24:46.0917 0x1b68  TroubleshootingSvc - ok
12:24:46.0999 0x1b68  TrustedInstaller - ok
12:24:47.0035 0x1b68  TsUsbFlt - ok
12:24:47.0064 0x1b68  TsUsbGD - ok
12:24:47.0115 0x1b68  tunnel - ok
12:24:47.0180 0x1b68  tzautoupdate - ok
12:24:47.0215 0x1b68  UASPStor - ok
12:24:47.0247 0x1b68  UcmCx0101 - ok
12:24:47.0282 0x1b68  UcmTcpciCx0101 - ok
12:24:47.0301 0x1b68  UcmUcsiAcpiClient - ok
12:24:47.0327 0x1b68  UcmUcsiCx0101 - ok
12:24:47.0356 0x1b68  Ucx01000 - ok
12:24:47.0366 0x1b68  UdeCx - ok
12:24:47.0397 0x1b68  udfs - ok
12:24:47.0448 0x1b68  UdkUserSvc - ok
12:24:47.0482 0x1b68  UEFI - ok
12:24:47.0530 0x1b68  Ufx01000 - ok
12:24:47.0549 0x1b68  UfxChipidea - ok
12:24:47.0584 0x1b68  ufxsynopsys - ok
12:24:47.0700 0x1b68  [ C700E9FF4294A956BF6C1A632A9D1E61, 50CB56A76CCCA455B461E6DE17DFB2E45CEB564CC626A4F6931CD729D255165B ] uhssvc          C:\Program Files\Microsoft Update Health Tools\uhssvc.exe
12:24:47.0747 0x1b68  uhssvc - ok
12:24:47.0764 0x1b68  umbus - ok
12:24:47.0769 0x1b68  UmPass - ok
12:24:47.0796 0x1b68  UmRdpService - ok
12:24:47.0832 0x1b68  UnistoreSvc - ok
12:24:47.0868 0x1b68  upnphost - ok
12:24:47.0896 0x1b68  UrsChipidea - ok
12:24:47.0918 0x1b68  UrsCx01000 - ok
12:24:47.0930 0x1b68  UrsSynopsys - ok
12:24:47.0964 0x1b68  usbaudio - ok
12:24:47.0973 0x1b68  usbaudio2 - ok
12:24:47.0995 0x1b68  usbccgp - ok
12:24:48.0004 0x1b68  usbcir - ok
12:24:48.0015 0x1b68  usbehci - ok
12:24:48.0029 0x1b68  usbhub - ok
12:24:48.0045 0x1b68  USBHUB3 - ok
12:24:48.0060 0x1b68  usbohci - ok
12:24:48.0081 0x1b68  usbprint - ok
12:24:48.0112 0x1b68  usbrndis6 - ok
12:24:48.0125 0x1b68  usbser - ok
12:24:48.0146 0x1b68  USBSTOR - ok
12:24:48.0160 0x1b68  usbuhci - ok
12:24:48.0199 0x1b68  usbvideo - ok
12:24:48.0263 0x1b68  USBXHCI - ok
12:24:48.0297 0x1b68  UserDataSvc - ok
12:24:48.0380 0x1b68  UserManager - ok
12:24:48.0413 0x1b68  UsoSvc - ok
12:24:48.0531 0x1b68  [ C10F1CD8A376295440708A51DCC37572, 2BC87A5CE5112FF79F052286BACE6A0087D798F80D9F7FEFA07E1F2A704AAB24 ] UVC             C:\WINDOWS\system32\DRIVERS\usbcam_298.sys
12:24:48.0563 0x1b68  UVC - ok
12:24:48.0597 0x1b68  VacSvc - ok
12:24:48.0629 0x1b68  VaultSvc - ok
12:24:48.0662 0x1b68  vdrvroot - ok
12:24:48.0713 0x1b68  vds - ok
12:24:48.0730 0x1b68  VerifierExt - ok
12:24:48.0779 0x1b68  vhdmp - ok
12:24:48.0794 0x1b68  vhf - ok
12:24:48.0812 0x1b68  Vid - ok
12:24:48.0848 0x1b68  VirtualRender - ok
12:24:48.0896 0x1b68  vmbus - ok
12:24:48.0911 0x1b68  VMBusHID - ok
12:24:48.0946 0x1b68  vmgid - ok
12:24:48.0979 0x1b68  vmicguestinterface - ok
12:24:49.0004 0x1b68  vmicheartbeat - ok
12:24:49.0020 0x1b68  vmickvpexchange - ok
12:24:49.0063 0x1b68  vmicrdv - ok
12:24:49.0080 0x1b68  vmicshutdown - ok
12:24:49.0097 0x1b68  vmictimesync - ok
12:24:49.0115 0x1b68  vmicvmsession - ok
12:24:49.0132 0x1b68  vmicvss - ok
12:24:49.0179 0x1b68  volmgr - ok
12:24:49.0200 0x1b68  volmgrx - ok
12:24:49.0222 0x1b68  volsnap - ok
12:24:49.0245 0x1b68  volume - ok
12:24:49.0279 0x1b68  vpci - ok
12:24:49.0300 0x1b68  vsmraid - ok
12:24:49.0348 0x1b68  VSS - ok
12:24:49.0364 0x1b68  VSTXRAID - ok
12:24:49.0395 0x1b68  vwifibus - ok
12:24:49.0465 0x1b68  vwififlt - ok
12:24:49.0479 0x1b68  vwifimp - ok
12:24:49.0530 0x1b68  W32Time - ok
12:24:49.0595 0x1b68  WaaSMedicSvc - ok
12:24:49.0617 0x1b68  WacomPen - ok
12:24:49.0663 0x1b68  WalletService - ok
12:24:49.0695 0x1b68  wanarp - ok
12:24:49.0729 0x1b68  wanarpv6 - ok
12:24:49.0763 0x1b68  WarpJITSvc - ok
12:24:49.0816 0x1b68  wbengine - ok
12:24:49.0861 0x1b68  WbioSrvc - ok
12:24:49.0894 0x1b68  wcifs - ok
12:24:49.0946 0x1b68  Wcmsvc - ok
12:24:49.0996 0x1b68  wcncsvc - ok
12:24:50.0046 0x1b68  wcnfs - ok
12:24:50.0100 0x1b68  WdBoot - ok
12:24:50.0157 0x1b68  Wdf01000 - ok
12:24:50.0181 0x1b68  WdFilter - ok
12:24:50.0218 0x1b68  WdiServiceHost - ok
12:24:50.0231 0x1b68  WdiSystemHost - ok
12:24:50.0262 0x1b68  wdiwifi - ok
12:24:50.0279 0x1b68  WdmCompanionFilter - ok
12:24:50.0294 0x1b68  WdNisDrv - ok
12:24:50.0427 0x1b68  WdNisSvc - ok
12:24:50.0478 0x1b68  WebClient - ok
12:24:50.0512 0x1b68  Wecsvc - ok
12:24:50.0562 0x1b68  WEPHOSTSVC - ok
12:24:50.0616 0x1b68  wercplsupport - ok
12:24:50.0662 0x1b68  WerSvc - ok
12:24:50.0710 0x1b68  WFDSConMgrSvc - ok
12:24:50.0736 0x1b68  WFPLWFS - ok
12:24:50.0778 0x1b68  WiaRpc - ok
12:24:50.0812 0x1b68  WIMMount - ok
12:24:50.0860 0x1b68  WinDefend - ok
12:24:50.0912 0x1b68  WindowsTrustedRT - ok
12:24:50.0952 0x1b68  WindowsTrustedRTProxy - ok
12:24:50.0993 0x1b68  WinHttpAutoProxySvc - ok
12:24:51.0031 0x1b68  WinMad - ok
12:24:51.0078 0x1b68  Winmgmt - ok
12:24:51.0130 0x1b68  WinNat - ok
12:24:51.0177 0x1b68  WinRM - ok
12:24:51.0246 0x1b68  WINUSB - ok
12:24:51.0279 0x1b68  WinVerbs - ok
12:24:51.0326 0x1b68  wisvc - ok
12:24:51.0349 0x1b68  WlanSvc - ok
12:24:51.0377 0x1b68  wlidsvc - ok
12:24:51.0428 0x1b68  wlpasvc - ok
12:24:51.0460 0x1b68  WManSvc - ok
12:24:51.0481 0x1b68  WmiAcpi - ok
12:24:51.0544 0x1b68  wmiApSrv - ok
12:24:51.0628 0x1b68  WMPNetworkSvc - ok
12:24:51.0677 0x1b68  Wof - ok
12:24:51.0744 0x1b68  workfolderssvc - ok
12:24:51.0796 0x1b68  WpcMonSvc - ok
12:24:51.0845 0x1b68  WPDBusEnum - ok
12:24:51.0883 0x1b68  WpdUpFltr - ok
12:24:51.0930 0x1b68  WpnService - ok
12:24:51.0964 0x1b68  WpnUserService - ok
12:24:52.0110 0x1b68  [ B10EF4070C151D7BF9C5F6466D8C6B58, 535839C4BE85431FBC478463CE43BC836F76D3A4881C59D7EB450C409988E1DA ] wpscloudsvr     C:\Program Files (x86)\Kingsoft\office6\wpscloudsvr.exe
12:24:52.0143 0x1b68  wpscloudsvr - ok
12:24:52.0168 0x1b68  ws2ifsl - ok
12:24:52.0195 0x1b68  wscsvc - ok
12:24:52.0214 0x1b68  WSearch - ok
12:24:52.0233 0x1b68  wuauserv - ok
12:24:52.0260 0x1b68  WudfPf - ok
12:24:52.0293 0x1b68  WUDFRd - ok
12:24:52.0313 0x1b68  WUDFWpdFs - ok
12:24:52.0329 0x1b68  WUDFWpdMtp - ok
12:24:52.0360 0x1b68  WwanSvc - ok
12:24:52.0393 0x1b68  XblAuthManager - ok
12:24:52.0443 0x1b68  XblGameSave - ok
12:24:52.0478 0x1b68  xboxgip - ok
12:24:52.0512 0x1b68  XboxGipSvc - ok
12:24:52.0559 0x1b68  XboxNetApiSvc - ok
12:24:52.0610 0x1b68  xinputhid - ok
12:24:52.0629 0x1b68  ================ Scan global ===============================
12:24:52.0730 0x1b68  [ Global ] - ok
12:24:52.0742 0x1b68  ================ Scan MBR ==================================
12:24:52.0755 0x1b68  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
12:24:52.0877 0x1b68  \Device\Harddisk0\DR0 - ok
12:24:52.0878 0x1b68  ================ Scan VBR ==================================
12:24:52.0884 0x1b68  [ 4CAE52CD900C18EB99FEBA498EC13399 ] \Device\Harddisk0\DR0\Partition1
12:24:52.0885 0x1b68  \Device\Harddisk0\DR0\Partition1 - ok
12:24:52.0909 0x1b68  [ 494C8CC71311C136DFDA0E9135EF2DC7 ] \Device\Harddisk0\DR0\Partition2
12:24:52.0909 0x1b68  \Device\Harddisk0\DR0\Partition2 - ok
12:24:52.0933 0x1b68  [ 14D7874D9603AAC280AE58CA759150CB ] \Device\Harddisk0\DR0\Partition3
12:24:52.0940 0x1b68  \Device\Harddisk0\DR0\Partition3 - ok
12:24:52.0959 0x1b68  [ 921FC529B80507AA91D934EB5E1EF898 ] \Device\Harddisk0\DR0\Partition4
12:24:52.0965 0x1b68  \Device\Harddisk0\DR0\Partition4 - ok
12:24:52.0977 0x1b68  [ F69D66960771549DF2595623ACE53A2D ] \Device\Harddisk0\DR0\Partition5
12:24:52.0986 0x1b68  \Device\Harddisk0\DR0\Partition5 - ok
12:24:52.0990 0x1b68  ================ Scan active images ========================
12:24:52.0990 0x1b68  ================ Scan generic autorun ======================
12:24:53.0014 0x1b68  SecurityHealth - ok
12:24:53.0108 0x1b68  [ 0E34B7BB1FCF22BCC1E394D16F9E992B, 382CA8E6BAC301E2F277F8EDA03D263FF71272796A8EED582C36294EEE9191F9 ] C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe
12:24:53.0108 0x1b68  GrooveMonitor - ok
12:24:53.0261 0x1b68  [ 74A27011C122CEACF81F65E3DFBF7968, 7C5292BE2F293AECB0DBB108ADF966A0AC497D3D27E9622EA3D5A4E8731C150D ] C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe
12:24:53.0296 0x1b68  PSUAMain - ok
12:24:53.0381 0x1b68  OneDriveSetup - ok
12:24:53.0391 0x1b68  OneDriveSetup - ok
12:24:53.0577 0x1b68  OneDrive - ok
12:24:53.0577 0x1b68  Waiting for KSN requests completion. In queue: 3
12:24:54.0666 0x1b68  AV detected via SS2: Malwarebytes, C:\Program Files\Malwarebytes\Anti-Malware\MBAMWsc.exe ( 3.0.0.225 ), 0x61000 ( enabled : updated )
12:24:54.0669 0x1b68  AV detected via SS2: Panda Dome, C:\Program Files (x86)\Panda Security\Panda Security Protection\PAV3WSC.exe ( 20.2.0.0 ), 0x71000 ( enabled : updated )
12:24:54.0670 0x1b68  AV detected via SS2: Windows Defender, windowsdefender:// (  ), 0x60100 ( disabled : updated )
12:24:54.0674 0x1b68  FW detected via SS2: Panda Firewall, C:\Program Files (x86)\Panda Security\Panda Security Protection\PAV3WSC.exe ( 20.2.0.0 ), 0x71000 ( enabled )
12:24:54.0788 0x1b68  ============================================================
12:24:54.0788 0x1b68  Scan finished
12:24:54.0788 0x1b68  ============================================================
12:24:54.0812 0x1b6c  Detected object count: 0
12:24:54.0812 0x1b6c  Actual detected object count: 0
12:36:57.0461 0x0eac  Deinitialize success

Chicloi · 9 Marzo, 2023 16:21

Ahora, realice usted los siguientes pasos:

Selecciona: Inicio () >> de la lista que te sale busca y un click en la carpeta que pone: >> un click en: > un click donde dice: >> un click donde dice: >> .

Maximice usted la pantalla y me manda una ó varias Capturas de Pantalla con todo lo que se refleje!

Quedo a la espera de su respuesta!

Cantante · 11 Marzo, 2023 10:08

Hola.Por motivos de viaje le escribo desde casa de un amigo y no tengo aquì el portatil.Si acaso “reiniciarè” el asunto dentro de algunos dias.Muchas gracias.

Chicloi · 11 Marzo, 2023 11:20

Buenas @Cantante sin problema, cuando usted vuelva a estar disponible realiza usted lo que le he indicado y me manda usted lo que le he solicitado.

Quedo a la espera de su respuesta!

Cantante · 19 Marzo, 2023 18:16

Hola de nuevo. Pues no se lo que hice pero el sistema al arrancar ultimamente se quedaba bloqueado.Hablando con un amigo informatico me dijo que tenìa “incompatibilidad de antivirus”,al tener varios instalados.Le hicimos un formateo al sistema y ya va bien,al tiempo que el famoso Win32/Caypnamer.A!ml desapareciò.Muerto el perro se fuè con el la rabia.Le reitero a usted mi agradecimiento que tanto tiempo me dedicò.Muchas gracias.

Chicloi · 20 Marzo, 2023 11:03

Me alegro que se le haya podido solucionar el problema por el cual usted ha abierto este tema.

Ya que el problema por el cual usted ha abierto este tema se ha solucionado doy por solucionado su tema.

Cantante · 20 Marzo, 2023 18:36

Muchas garcias de nuevo

system · 22 Marzo, 2023 18:37

Este tema se cerró automáticamente 2 días después de la última publicación. No se permiten nuevas respuestas.