18:39:51.0728 0x2b6c  TDSS rootkit removing tool 3.1.0.28 Apr  9 2019 21:11:46
18:39:51.0728 0x2b6c  UEFI system
18:39:52.0796 0x2b6c  ============================================================
18:39:52.0796 0x2b6c  Current date / time: 2023/03/09 18:39:52.0796
18:39:52.0796 0x2b6c  SystemInfo:
18:39:52.0796 0x2b6c  
18:39:52.0796 0x2b6c  OS Version: 10.0.19044 ServicePack: 0.0
18:39:52.0796 0x2b6c  Product type: Workstation
18:39:52.0796 0x2b6c  ComputerName: LAPTOP-G1IEG48T
18:39:52.0796 0x2b6c  UserName: ocean
18:39:52.0796 0x2b6c  Windows directory: C:\WINDOWS
18:39:52.0796 0x2b6c  System windows directory: C:\WINDOWS
18:39:52.0796 0x2b6c  Running under WOW64
18:39:52.0796 0x2b6c  Processor architecture: Intel x64
18:39:52.0796 0x2b6c  Number of processors: 8
18:39:52.0796 0x2b6c  Page size: 0x1000
18:39:52.0796 0x2b6c  Boot type: Normal boot
18:39:52.0796 0x2b6c  CodeIntegrityOptions = 0x0000C001
18:39:52.0796 0x2b6c  ============================================================
18:39:52.0796 0x2b6c  KLMD ARK init status: drvProperties = 0xEF0F02, osBuild = 19041.0, osProperties = 0x1D
18:39:52.0800 0x2b6c  KLMD BG init status: drvProperties = 0xEF0F02, osBuild = 19041.0, osProperties = 0x1D
18:39:52.0800 0x2b6c  BG loaded
18:39:53.0008 0x2b6c  System UUID: {4ADF01F7-7568-6424-083E-F3751EA6F3C6}
18:39:53.0456 0x2b6c  !crdlk
18:39:53.0456 0x2b6c  Drive \Device\Harddisk0\DR0 - Size: 0x3B9E656000 ( 238.47 Gb ), SectorSize: 0x200, Cylinders: 0x799A, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
18:39:53.0456 0x2b6c  ============================================================
18:39:53.0456 0x2b6c  \Device\Harddisk0\DR0:
18:39:53.0456 0x2b6c  GPT partitions:
18:39:53.0456 0x2b6c  \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {4DDE8A54-2306-441B-B881-F544D256B608}, Name: EFI system partition, StartLBA 0x800, BlocksNum 0x32000
18:39:53.0456 0x2b6c  \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {2D1D7F35-E111-4DBB-8864-3687C139F8E8}, Name: Microsoft reserved partition, StartLBA 0x32800, BlocksNum 0x8000
18:39:53.0456 0x2b6c  \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {06C38A7A-A0AE-4E85-99F3-A00F72544339}, Name: Basic data partition, StartLBA 0x3A800, BlocksNum 0xA000000
18:39:53.0456 0x2b6c  \Device\Harddisk0\DR0\Partition4: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {F049B324-8565-4E89-8639-367E83C3D7D8}, Name: Basic data partition, StartLBA 0xA03A800, BlocksNum 0x11DB8800
18:39:53.0456 0x2b6c  \Device\Harddisk0\DR0\Partition5: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {B64A022D-9C58-4FEC-845E-B77F5527E0A2}, Name: Basic data partition, StartLBA 0x1BDF3000, BlocksNum 0x100000
18:39:53.0456 0x2b6c  \Device\Harddisk0\DR0\Partition6: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {BD523C43-264C-4693-A958-48C76848B979}, Name: Basic data partition, StartLBA 0x1BEF3000, BlocksNum 0x1C00000
18:39:53.0456 0x2b6c  \Device\Harddisk0\DR0\Partition7: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {D7D036BA-056C-4DA2-A01F-6F95A5AD2DE7}, Name: Basic data partition, StartLBA 0x1DAF3000, BlocksNum 0x200000
18:39:53.0456 0x2b6c  MBR partitions:
18:39:53.0456 0x2b6c  ============================================================
18:39:53.0456 0x2b6c  C: <-> \Device\Harddisk0\DR0\Partition3
18:39:53.0456 0x2b6c  D: <-> \Device\Harddisk0\DR0\Partition4
18:39:53.0456 0x2b6c  ============================================================
18:39:53.0456 0x2b6c  Initialize success
18:39:53.0456 0x2b6c  ============================================================
18:41:32.0370 0x0734  ============================================================
18:41:32.0370 0x0734  Scan started
18:41:32.0370 0x0734  Mode: Manual; SigCheck; TDLFS; 
18:41:32.0370 0x0734  ============================================================
18:41:32.0370 0x0734  KSN ping started
18:41:32.0448 0x0734  KSN ping finished: true
18:41:32.0589 0x0734  ================ Scan BIOS =================================
18:41:32.0589 0x0734  BIOS info: vendor = HUAWEI, version = 1.22, releaseDate = 02/26/2019
18:41:32.0589 0x0734  Base board info: manufacturer = HUAWEI, product = KPL-W0X-PCB, version = M1D
18:41:36.0590 0x0734  [ 682CCE904FB478FE4BF9D46A82CA4356, A12DDD23960E9E0992E48FEACED7CB88EC8DFB0EFB7A75F779564A03594EE5C0 ] BIOS
18:41:36.0605 0x0734  BIOS - ok
18:41:36.0605 0x0734  ================ Scan system memory ========================
18:41:36.0605 0x0734  System memory - ok
18:41:36.0605 0x0734  ================ Scan services =============================
18:41:36.0668 0x0734  1394ohci - ok
18:41:36.0668 0x0734  3ware - ok
18:41:36.0668 0x0734  AarSvc - ok
18:41:36.0684 0x0734  ACPI - ok
18:41:36.0684 0x0734  AcpiDev - ok
18:41:36.0684 0x0734  acpiex - ok
18:41:36.0699 0x0734  acpipagr - ok
18:41:36.0699 0x0734  AcpiPmi - ok
18:41:36.0699 0x0734  acpitime - ok
18:41:36.0715 0x0734  Acx01000 - ok
18:41:36.0715 0x0734  ADP80XX - ok
18:41:36.0715 0x0734  AFD - ok
18:41:36.0730 0x0734  afunix - ok
18:41:36.0730 0x0734  ahcache - ok
18:41:36.0730 0x0734  AJRouter - ok
18:41:36.0746 0x0734  ALG - ok
18:41:36.0762 0x0734  [ 92259BF85A166D2A25D3E8BEA4E552F2, BA3DF40E45F3CB1E4F4F7E4A3BE123FCEBE8BE2992D5BFC45F3CD105474BC181 ] AMD External Events Utility C:\WINDOWS\System32\DriverStore\FileRepository\u0335410.inf_amd64_8673f154b4eb3d39\B335408\atiesrxx.exe
18:41:36.0824 0x0734  AMD External Events Utility - ok
18:41:37.0059 0x0734  [ 80016D98BC8FB41E4B2EEBF1DF2B67CB, 0FFF00EFF6A4E880E36BD8B39D3F24641B108CF794F8733B0BBDA0311770474D ] amdacpbus       C:\WINDOWS\System32\drivers\amdacpbus.sys
18:41:37.0278 0x0734  amdacpbus - ok
18:41:37.0293 0x0734  [ 0CBCDE8754FF7E88992886BD0EC90579, 71A7DE2DAB44367E9677C85DBA6BA4B02DF7524E670A667C6A7B682E856F1C83 ] amdgpio2        C:\WINDOWS\System32\drivers\amdgpio2.sys
18:41:37.0309 0x0734  amdgpio2 - ok
18:41:37.0309 0x0734  [ EBFA20D19E7E44C84AFA46468DFECFC0, ADE1D17964E137311F38AA5847AAA954DDCBD9BE69542AFF7A4913A5BAB76BE3 ] AMDHDAudBusService C:\WINDOWS\System32\drivers\amdhdaudbus.sys
18:41:37.0324 0x0734  AMDHDAudBusService - ok
18:41:37.0324 0x0734  amdi2c - ok
18:41:37.0324 0x0734  AmdK8 - ok
18:41:37.0340 0x0734  amdkmdag - ok
18:41:37.0356 0x0734  [ 6F7124123CFCA4E37484280AA8A5F78B, BCB61239353900B78CC26DF9C6EFDF35E846090BA474CDA80B0B7329922B15E3 ] amdkmdap        C:\WINDOWS\System32\DriverStore\FileRepository\u0335410.inf_amd64_8673f154b4eb3d39\B335408\atikmpag.sys
18:41:37.0371 0x0734  amdkmdap - ok
18:41:37.0387 0x0734  AmdPPM - ok
18:41:37.0387 0x0734  [ 32FDE1AC9E56C7FAF4D1C165C93E6CC7, 9C60532D60310FEEFA942D647A78A12DA1F6DBC28403BDCC73F4512789F9EB11 ] amdpsp          C:\WINDOWS\system32\drivers\amdpsp.sys
18:41:37.0403 0x0734  amdpsp - ok
18:41:37.0403 0x0734  amdsata - ok
18:41:37.0403 0x0734  amdsbs - ok
18:41:37.0418 0x0734  amdxata - ok
18:41:37.0418 0x0734  AppID - ok
18:41:37.0418 0x0734  AppIDSvc - ok
18:41:37.0434 0x0734  Appinfo - ok
18:41:37.0434 0x0734  [ 0122ECE34AEEC95212A211C016270937, 09272421CEC30D9F732F734161D9FB3968E5A83BAC1F02F0B9D9B927C878D08A ] AppleLowerFilter C:\WINDOWS\System32\drivers\AppleLowerFilter.sys
18:41:37.0449 0x0734  AppleLowerFilter - ok
18:41:37.0449 0x0734  applockerfltr - ok
18:41:37.0449 0x0734  AppReadiness - ok
18:41:37.0449 0x0734  AppXSvc - ok
18:41:37.0465 0x0734  arcsas - ok
18:41:37.0465 0x0734  AsyncMac - ok
18:41:37.0465 0x0734  atapi - ok
18:41:37.0481 0x0734  [ D1A54E20877DBE8F5772FD249B0A6F2C, 671EAC571E8A987067F09D5BAD5BDAE5B346FAE3192B9E2FEB9953AC378EC968 ] AtiHDAudioService C:\WINDOWS\system32\drivers\AtihdWT6.sys
18:41:37.0496 0x0734  AtiHDAudioService - ok
18:41:37.0496 0x0734  AudioEndpointBuilder - ok
18:41:37.0496 0x0734  Audiosrv - ok
18:41:37.0496 0x0734  autotimesvc - ok
18:41:37.0512 0x0734  AxInstSV - ok
18:41:37.0512 0x0734  b06bdrv - ok
18:41:37.0512 0x0734  bam - ok
18:41:37.0528 0x0734  BasicDisplay - ok
18:41:37.0528 0x0734  BasicRender - ok
18:41:37.0528 0x0734  BcastDVRUserService - ok
18:41:37.0543 0x0734  bcmfn2 - ok
18:41:37.0543 0x0734  BDESVC - ok
18:41:37.0606 0x0734  [ 2A2867E1F323320FDEEF40C1DA578A9A, AF298D940B186F922464D2EF19CCFC129C77126A4F337ECF357B4FE5162A477C ] BEDaisy         C:\Program Files (x86)\Common Files\BattlEye\BEDaisy.sys
18:41:37.0684 0x0734  BEDaisy - ok
18:41:37.0700 0x0734  Beep - ok
18:41:37.0825 0x0734  [ 2353854732F8ADEF35A7ABB827B6ADBF, D41D61557F0519DC8A2925C133E8F002031D968DDC292EAC4FD685C5E4032C98 ] BEService       C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
18:41:37.0996 0x0734  BEService - ok
18:41:38.0012 0x0734  BFE - ok
18:41:38.0012 0x0734  bindflt - ok
18:41:38.0012 0x0734  BITS - ok
18:41:38.0028 0x0734  BluetoothUserService - ok
18:41:38.0028 0x0734  bowser - ok
18:41:38.0028 0x0734  BrokerInfrastructure - ok
18:41:38.0028 0x0734  BTAGService - ok
18:41:38.0043 0x0734  BthA2dp - ok
18:41:38.0043 0x0734  BthAvctpSvc - ok
18:41:38.0043 0x0734  BthEnum - ok
18:41:38.0059 0x0734  BthHFAud - ok
18:41:38.0059 0x0734  BthHFEnum - ok
18:41:38.0059 0x0734  BthLEEnum - ok
18:41:38.0059 0x0734  BthMini - ok
18:41:38.0075 0x0734  BTHMODEM - ok
18:41:38.0075 0x0734  BthPan - ok
18:41:38.0075 0x0734  BTHPORT - ok
18:41:38.0090 0x0734  bthserv - ok
18:41:38.0090 0x0734  BTHUSB - ok
18:41:38.0090 0x0734  bttflt - ok
18:41:38.0106 0x0734  buttonconverter - ok
18:41:38.0106 0x0734  CAD - ok
18:41:38.0106 0x0734  camsvc - ok
18:41:38.0122 0x0734  CaptureService - ok
18:41:38.0122 0x0734  cbdhsvc - ok
18:41:38.0137 0x0734  cdfs - ok
18:41:38.0137 0x0734  CDPSvc - ok
18:41:38.0137 0x0734  CDPUserSvc - ok
18:41:38.0153 0x0734  cdrom - ok
18:41:38.0153 0x0734  CertPropSvc - ok
18:41:38.0153 0x0734  cht4iscsi - ok
18:41:38.0153 0x0734  cht4vbd - ok
18:41:38.0168 0x0734  CimFS - ok
18:41:38.0168 0x0734  circlass - ok
18:41:38.0168 0x0734  CldFlt - ok
18:41:38.0168 0x0734  CLFS - ok
18:41:38.0372 0x0734  [ F6CCA031FF9C31DF1237D3924F60961D, 25452B9F1F6699768F9637B0B254163D07630930F320A49BD746F8C9192500C3 ] ClickToRunSvc   C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
18:41:38.0590 0x0734  ClickToRunSvc - ok
18:41:38.0606 0x0734  ClipSVC - ok
18:41:38.0622 0x0734  CmBatt - ok
18:41:38.0637 0x0734  CNG - ok
18:41:38.0637 0x0734  cnghwassist - ok
18:41:38.0637 0x0734  CompositeBus - ok
18:41:38.0653 0x0734  COMSysApp - ok
18:41:38.0653 0x0734  condrv - ok
18:41:38.0653 0x0734  ConsentUxUserSvc - ok
18:41:38.0669 0x0734  CoreMessagingRegistrar - ok
18:41:38.0669 0x0734  CredentialEnrollmentManagerUserSvc - ok
18:41:38.0669 0x0734  CredentialEnrollmentManagerUserSvc_8fb59 - ok
18:41:38.0684 0x0734  CryptSvc - ok
18:41:38.0684 0x0734  dam - ok
18:41:38.0684 0x0734  dc1-controller - ok
18:41:38.0700 0x0734  DcomLaunch - ok
18:41:38.0700 0x0734  dcsvc - ok
18:41:38.0700 0x0734  defragsvc - ok
18:41:38.0715 0x0734  DeviceAssociationBrokerSvc - ok
18:41:38.0715 0x0734  DeviceAssociationService - ok
18:41:38.0731 0x0734  DeviceInstall - ok
18:41:38.0731 0x0734  DevicePickerUserSvc - ok
18:41:38.0731 0x0734  DevicesFlowUserSvc - ok
18:41:38.0747 0x0734  DevQueryBroker - ok
18:41:38.0747 0x0734  Dfsc - ok
18:41:38.0762 0x0734  [ CBF51205BCD29E15EBDC566CD550412F, 1B86E404F0503549DFCFCED5770A9F28D6F1815FE491A7B182E878E821229BDC ] dg_ssudbus      C:\WINDOWS\system32\DRIVERS\ssudbus2.sys
18:41:38.0841 0x0734  dg_ssudbus - ok
18:41:38.0841 0x0734  Dhcp - ok
18:41:38.0856 0x0734  diagnosticshub.standardcollector.service - ok
18:41:38.0856 0x0734  diagsvc - ok
18:41:38.0872 0x0734  DiagTrack - ok
18:41:38.0872 0x0734  disk - ok
18:41:38.0872 0x0734  DispBrokerDesktopSvc - ok
18:41:38.0872 0x0734  DisplayEnhancementService - ok
18:41:38.0887 0x0734  DmEnrollmentSvc - ok
18:41:38.0887 0x0734  dmvsc - ok
18:41:38.0887 0x0734  dmwappushservice - ok
18:41:38.0903 0x0734  Dnscache - ok
18:41:38.0919 0x0734  [ 5AC2A1694F53EEB015DD3D8BB4EDC73D, 387FFB3C67BBD81C3FF18127D9F603B9041978FBB90C870AF0B2071FFE1189E2 ] DolbyDAXAPI     C:\WINDOWS\system32\dolbyaposvc\DAX3API.exe
18:41:38.0934 0x0734  DolbyDAXAPI - ok
18:41:38.0934 0x0734  dot3svc - ok
18:41:38.0950 0x0734  DPS - ok
18:41:38.0950 0x0734  drmkaud - ok
18:41:38.0950 0x0734  DsmSvc - ok
18:41:38.0966 0x0734  DsSvc - ok
18:41:38.0966 0x0734  DusmSvc - ok
18:41:38.0966 0x0734  DXGKrnl - ok
18:41:38.0981 0x0734  Eaphost - ok
18:41:38.0997 0x0734  [ 699281C68E84D75A087B9BA70C768B79, 144AB370457790C387D1FBB866DBF71B02F2B38596319FCD30F8C4C61953C720 ] EasyAntiCheat   C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe
18:41:39.0012 0x0734  EasyAntiCheat - ok
18:41:39.0028 0x0734  ebdrv - ok
18:41:39.0028 0x0734  [ F5801470145FE1B446E98E7709311271, A0628836960198F937F134E8A9C12A5EA38D682DA3DD5E026170DFBC3EAA992E ] edgeupdate      C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
18:41:39.0044 0x0734  edgeupdate - ok
18:41:39.0059 0x0734  [ F5801470145FE1B446E98E7709311271, A0628836960198F937F134E8A9C12A5EA38D682DA3DD5E026170DFBC3EAA992E ] edgeupdatem     C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
18:41:39.0075 0x0734  edgeupdatem - ok
18:41:39.0075 0x0734  EFS - ok
18:41:39.0075 0x0734  EhStorClass - ok
18:41:39.0091 0x0734  EhStorTcgDrv - ok
18:41:39.0091 0x0734  embeddedmode - ok
18:41:39.0091 0x0734  EntAppSvc - ok
18:41:39.0106 0x0734  ErrDev - ok
18:41:39.0106 0x0734  EventLog - ok
18:41:39.0106 0x0734  EventSystem - ok
18:41:39.0122 0x0734  [ F70A099BC16564F178EDA982377911D5, 5F212EE1EA8D1E8DEEA158855E9A584313E6C8F147FD359946DCAD0786CF66E6 ] EvtEng          C:\Program Files\Intel\WiFi\bin\EvtEng.exe
18:41:39.0153 0x0734  EvtEng - ok
18:41:39.0153 0x0734  exfat - ok
18:41:39.0153 0x0734  fastfat - ok
18:41:39.0169 0x0734  Fax - ok
18:41:39.0169 0x0734  fdc - ok
18:41:39.0169 0x0734  fdPHost - ok
18:41:39.0184 0x0734  FDResPub - ok
18:41:39.0184 0x0734  fhsvc - ok
18:41:39.0184 0x0734  FileCrypt - ok
18:41:39.0200 0x0734  FileInfo - ok
18:41:39.0200 0x0734  Filetrace - ok
18:41:39.0200 0x0734  flpydisk - ok
18:41:39.0216 0x0734  FltMgr - ok
18:41:39.0231 0x0734  [ B2A625014CFF8539020F65F48D2ED4BC, BD6D2B206C0D6083A3B584B37F2013B4E39763C78A5D7D7D186129D8538B438C ] FMAPOService    C:\WINDOWS\System32\FMService64.exe
18:41:39.0419 0x0734  FMAPOService - ok
18:41:39.0419 0x0734  FontCache - ok
18:41:39.0419 0x0734  FontCache3.0.0.0 - ok
18:41:39.0434 0x0734  FrameServer - ok
18:41:39.0434 0x0734  FsDepends - ok
18:41:39.0434 0x0734  Fs_Rec - ok
18:41:39.0450 0x0734  fvevol - ok
18:41:39.0450 0x0734  gencounter - ok
18:41:39.0450 0x0734  genericusbfn - ok
18:41:39.0497 0x0734  [ AA3AEAAD94BB7527531EAC39575371AD, 1E6DD15E2CF1712BA0B5C466DA8818EDABB3CDDE749F444C2D82B5B8A3EEC254 ] GoogleChromeElevationService C:\Program Files\Google\Chrome\Application\111.0.5563.64\elevation_service.exe
18:41:39.0778 0x0734  GoogleChromeElevationService - ok
18:41:39.0794 0x0734  GPIOClx0101 - ok
18:41:39.0794 0x0734  gpsvc - ok
18:41:39.0794 0x0734  GpuEnergyDrv - ok
18:41:39.0794 0x0734  GraphicsPerfSvc - ok
18:41:39.0810 0x0734  [ 0BCA3F16DD527B4150648EC1E36CB22A, B60E92004D394D0B14A8953A2BA29951C79F2F8A6C94F495E3153DFBBEF115B6 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:41:39.0825 0x0734  gupdate - ok
18:41:39.0825 0x0734  [ 0BCA3F16DD527B4150648EC1E36CB22A, B60E92004D394D0B14A8953A2BA29951C79F2F8A6C94F495E3153DFBBEF115B6 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:41:39.0841 0x0734  gupdatem - ok
18:41:39.0841 0x0734  [ 065E4BA1EF63B6D6D073CE77821E0E06, 5B4C234D27F71931EA1CA91355CA9834A6C0CD95C1E935BFDCE03B418FBEE2EA ] hanvonugeemfilter C:\WINDOWS\System32\drivers\hanvonugeemfilter.sys
18:41:39.0872 0x0734  hanvonugeemfilter - ok
18:41:39.0872 0x0734  HdAudAddService - ok
18:41:39.0872 0x0734  HDAudBus - ok
18:41:39.0872 0x0734  HidBatt - ok
18:41:39.0888 0x0734  HidBth - ok
18:41:39.0888 0x0734  hidi2c - ok
18:41:39.0903 0x0734  hidinterrupt - ok
18:41:39.0903 0x0734  HidIr - ok
18:41:39.0903 0x0734  hidserv - ok
18:41:39.0903 0x0734  hidspi - ok
18:41:39.0919 0x0734  HidUsb - ok
18:41:39.0919 0x0734  HpSAMD - ok
18:41:39.0919 0x0734  HTTP - ok
18:41:39.0935 0x0734  [ 122D038392F0207F5F4FD1F13C010224, 00669E53C61DA74FCE81EDD0BBAF33C10569135B6152CF300DF56B3D15F94833 ] Huawei          C:\WINDOWS\System32\drivers\osd_driver.sys
18:41:39.0950 0x0734  Huawei - ok
18:41:39.0966 0x0734  [ 927F5BB5C7151E1F53D83EDAAEF60E69, 9F91C2800FB0D0A7E5BE8ED6DF6578B7E8995A194EDDDE2417405848A5087E6E ] Huawei_OSDServer C:\WINDOWS\System32\RPC\OSD\osdservice.exe
18:41:39.0981 0x0734  Huawei_OSDServer - ok
18:41:39.0997 0x0734  hvcrash - ok
18:41:39.0997 0x0734  HvHost - ok
18:41:39.0997 0x0734  hvservice - ok
18:41:39.0997 0x0734  HwNClx0101 - ok
18:41:40.0013 0x0734  [ 4D145ED4ADF3B78A40517F7366362EF2, 6489436EA359F0BB5AA6F7F56506A45422C8670081E297904AF586910448443B ] hwnetstat       C:\Program Files\Huawei\PCManager\WFPDriver.sys
18:41:40.0013 0x0734  hwnetstat - ok
18:41:40.0028 0x0734  [ 7742A336F538BBC486045D910E01C122, 58A3FBF927D83C5AF1C7A90E883AF9609E0AD346CC10F1FDD11C8A03052D1C85 ] HwOs2ECx64      C:\Program Files\Huawei\PCManager\HwOs2EC10x64.sys
18:41:40.0044 0x0734  HwOs2ECx64 - ok
18:41:40.0044 0x0734  hwpolicy - ok
18:41:40.0044 0x0734  hyperkbd - ok
18:41:40.0060 0x0734  HyperVideo - ok
18:41:40.0060 0x0734  i8042prt - ok
18:41:40.0060 0x0734  iagpio - ok
18:41:40.0075 0x0734  iai2c - ok
18:41:40.0075 0x0734  iaLPSS2i_GPIO2 - ok
18:41:40.0075 0x0734  iaLPSS2i_GPIO2_BXT_P - ok
18:41:40.0091 0x0734  iaLPSS2i_GPIO2_CNL - ok
18:41:40.0091 0x0734  iaLPSS2i_GPIO2_GLK - ok
18:41:40.0091 0x0734  iaLPSS2i_I2C - ok
18:41:40.0091 0x0734  iaLPSS2i_I2C_BXT_P - ok
18:41:40.0107 0x0734  iaLPSS2i_I2C_CNL - ok
18:41:40.0107 0x0734  iaLPSS2i_I2C_GLK - ok
18:41:40.0107 0x0734  iaLPSSi_GPIO - ok
18:41:40.0122 0x0734  iaLPSSi_I2C - ok
18:41:40.0122 0x0734  iaStorAVC - ok
18:41:40.0138 0x0734  iaStorV - ok
18:41:40.0138 0x0734  ibbus - ok
18:41:40.0138 0x0734  [ 4EB3CAB3CB215F52A50CB0BECB9C71A3, 508B768D1FD258D56C3E2F61B04935ADB601BD8BEE4469A42066705EBECC111B ] ibtusb          C:\WINDOWS\System32\drivers\ibtusb.sys
18:41:40.0153 0x0734  ibtusb - ok
18:41:40.0169 0x0734  icssvc - ok
18:41:40.0169 0x0734  IKEEXT - ok
18:41:40.0169 0x0734  IndirectKmd - ok
18:41:40.0185 0x0734  InstallService - ok
18:41:40.0278 0x0734  [ 47E7C1F33C6687499A6A72B63D570EEC, A999D697D5537B085DD1F5DBC0BDC099088037CEB656E0F70619360319546A71 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RTKVHD64.sys
18:41:40.0403 0x0734  IntcAzAudAddService - ok
18:41:40.0403 0x0734  intelide - ok
18:41:40.0419 0x0734  intelpep - ok
18:41:40.0419 0x0734  intelpmax - ok
18:41:40.0435 0x0734  intelppm - ok
18:41:40.0435 0x0734  iorate - ok
18:41:40.0435 0x0734  IpFilterDriver - ok
18:41:40.0450 0x0734  iphlpsvc - ok
18:41:40.0450 0x0734  IPMIDRV - ok
18:41:40.0450 0x0734  IPNAT - ok
18:41:40.0466 0x0734  IPT - ok
18:41:40.0466 0x0734  IpxlatCfgSvc - ok
18:41:40.0466 0x0734  isapnp - ok
18:41:40.0482 0x0734  iScsiPrt - ok
18:41:40.0482 0x0734  ItSas35i - ok
18:41:40.0482 0x0734  kbdclass - ok
18:41:40.0482 0x0734  kbdhid - ok
18:41:40.0497 0x0734  kdnic - ok
18:41:40.0497 0x0734  KeyIso - ok
18:41:40.0497 0x0734  KSecDD - ok
18:41:40.0513 0x0734  KSecPkg - ok
18:41:40.0513 0x0734  ksthunk - ok
18:41:40.0513 0x0734  KtmRm - ok
18:41:40.0513 0x0734  LanmanServer - ok
18:41:40.0529 0x0734  LanmanWorkstation - ok
18:41:40.0529 0x0734  [ 666EBE71E30816FBD5A93E10222CF278, 5F980B307C26BE1A101212FA2D63779324BB476A3B43153B345C03B7C765E203 ] LCD_Service     C:\Program Files\Huawei\HwLcdEnhancement\LCD_Service.exe
18:41:40.0544 0x0734  LCD_Service - ok
18:41:40.0544 0x0734  lfsvc - ok
18:41:40.0544 0x0734  LicenseManager - ok
18:41:40.0560 0x0734  lltdio - ok
18:41:40.0560 0x0734  lltdsvc - ok
18:41:40.0560 0x0734  lmhosts - ok
18:41:40.0575 0x0734  LSI_SAS - ok
18:41:40.0575 0x0734  LSI_SAS2i - ok
18:41:40.0575 0x0734  LSI_SAS3i - ok
18:41:40.0591 0x0734  LSI_SSS - ok
18:41:40.0591 0x0734  LSM - ok
18:41:40.0591 0x0734  luafv - ok
18:41:40.0591 0x0734  LxpSvc - ok
18:41:40.0607 0x0734  MapsBroker - ok
18:41:40.0607 0x0734  mausbhost - ok
18:41:40.0607 0x0734  mausbip - ok
18:41:40.0654 0x0734  [ 340235AF10DA73A0516F379157A02B92, 34B501A8AF0C627CFCFF70AAD7F3C58C3ECB990B8AE2D630A18ECBCB74E40F7E ] MBAMainService  C:\Program Files\Huawei\PCManager\MateBookService.exe
18:41:40.0700 0x0734  MBAMainService - detected UnsignedFile.Multi.Generic ( 1 )
18:41:40.0794 0x0734  Detect skipped due to KSN trusted
18:41:40.0794 0x0734  MBAMainService - ok
18:41:40.0810 0x0734  [ 6A21162E1C8A9F65787B14BC439EB077, 8B7990E1C676F53918E41F6B18B20179D77E598352D9243B05E2EA22B2D9E4FE ] MBAMChameleon   C:\WINDOWS\System32\Drivers\MbamChameleon.sys
18:41:40.0872 0x0734  MBAMChameleon - ok
18:41:40.0872 0x0734  [ 9E77C51E14FA9A323EE1635DC74ECC07, B5619D758AE6A65C1663F065E53E6B68A00511E7D7ACCB3E07ED94BFD0B1EDE0 ] MbamElam        C:\WINDOWS\system32\DRIVERS\MbamElam.sys
18:41:40.0888 0x0734  MbamElam - ok
18:41:41.0044 0x0734  [ 9E4C3C3DEC7CF9D3FFEB350E13009DC4, 315E45BA935D14A590DC5279779945DC74C553C3F5A285553ADD7DE4CCEE6B4F ] MBAMService     C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
18:41:41.0201 0x0734  MBAMService - ok
18:41:41.0216 0x0734  [ 1DC6D344EE9B6B024BA23278891DB9A5, 823E1C7321E177B006C1F3FD1EC8B99607A12D2C3C321F3A6CBBCF7030B6C240 ] MBAMSwissArmy   C:\WINDOWS\System32\Drivers\mbamswissarmy.sys
18:41:41.0232 0x0734  MBAMSwissArmy - ok
18:41:41.0232 0x0734  MbbCx - ok
18:41:41.0263 0x0734  [ F8AD2A7ED4B594AF73750E66453D6F58, 5B0FE5A037352E0FBD26DB485C8BB76D8CD186B42A2F8EAA0B748B576D3879F8 ] McAfee WebAdvisor C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe
18:41:41.0279 0x0734  McAfee WebAdvisor - ok
18:41:41.0294 0x0734  McpManagementService - ok
18:41:41.0294 0x0734  megasas - ok
18:41:41.0294 0x0734  megasas2i - ok
18:41:41.0310 0x0734  megasas35i - ok
18:41:41.0310 0x0734  megasr - ok
18:41:41.0326 0x0734  MessagingService - ok
18:41:41.0326 0x0734  MicrosoftEdgeElevationService - ok
18:41:41.0326 0x0734  Microsoft_Bluetooth_AvrcpTransport - ok
18:41:41.0341 0x0734  MixedRealityOpenXRSvc - ok
18:41:41.0341 0x0734  mlx4_bus - ok
18:41:41.0341 0x0734  MMCSS - ok
18:41:41.0357 0x0734  Modem - ok
18:41:41.0357 0x0734  monitor - ok
18:41:41.0357 0x0734  mouclass - ok
18:41:41.0373 0x0734  mouhid - ok
18:41:41.0373 0x0734  mountmgr - ok
18:41:41.0388 0x0734  [ CA4C4C7A7EED4E7DDA6662B7A1E99545, 8E400402B8630806E447F962A5497092E7CEE86FD1BAC8CF37BB1DD0BFBC03A4 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
18:41:41.0404 0x0734  MozillaMaintenance - ok
18:41:41.0404 0x0734  [ CC513C00999921F83964CFB52A3966BE, C9E46E1201A7FC7D7098FAA844FBC452DF3A0683517393046DDE447BEBC005BB ] MpKsl24b3a5db   C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{8A610548-9E4D-4428-99C8-ECA877F25543}\MpKslDrv.sys
18:41:41.0451 0x0734  MpKsl24b3a5db - ok
18:41:41.0466 0x0734  mpsdrv - ok
18:41:41.0466 0x0734  mpssvc - ok
18:41:41.0466 0x0734  MRxDAV - ok
18:41:41.0482 0x0734  mrxsmb - ok
18:41:41.0482 0x0734  mrxsmb20 - ok
18:41:41.0482 0x0734  MsBridge - ok
18:41:41.0498 0x0734  MSDTC - ok
18:41:41.0498 0x0734  Msfs - ok
18:41:41.0513 0x0734  msgpiowin32 - ok
18:41:41.0513 0x0734  mshidkmdf - ok
18:41:41.0513 0x0734  mshidumdf - ok
18:41:41.0529 0x0734  msisadrv - ok
18:41:41.0529 0x0734  MSiSCSI - ok
18:41:41.0529 0x0734  msiserver - ok
18:41:41.0544 0x0734  MSKSSRV - ok
18:41:41.0544 0x0734  MsLldp - ok
18:41:41.0544 0x0734  MSPCLOCK - ok
18:41:41.0560 0x0734  MSPQM - ok
18:41:41.0560 0x0734  MsQuic - ok
18:41:41.0560 0x0734  MsRPC - ok
18:41:41.0576 0x0734  mssmbios - ok
18:41:41.0576 0x0734  MSTEE - ok
18:41:41.0576 0x0734  MTConfig - ok
18:41:41.0576 0x0734  Mup - ok
18:41:41.0591 0x0734  mvumis - ok
18:41:41.0607 0x0734  [ E737011E12F3D350202E130EF0F5EBC7, 85F4576C6468CA8A6BDFBBF566138C6E28D516418E18B8CED6649B8912A141B8 ] MyWiFiDHCPDNS   C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
18:41:41.0623 0x0734  MyWiFiDHCPDNS - ok
18:41:41.0623 0x0734  NativeWifiP - ok
18:41:41.0623 0x0734  NaturalAuthentication - ok
18:41:41.0638 0x0734  NcaSvc - ok
18:41:41.0638 0x0734  NcbService - ok
18:41:41.0654 0x0734  NcdAutoSetup - ok
18:41:41.0654 0x0734  ndfltr - ok
18:41:41.0654 0x0734  NDIS - ok
18:41:41.0669 0x0734  NdisCap - ok
18:41:41.0669 0x0734  NdisImPlatform - ok
18:41:41.0669 0x0734  NdisTapi - ok
18:41:41.0685 0x0734  Ndisuio - ok
18:41:41.0685 0x0734  NdisVirtualBus - ok
18:41:41.0685 0x0734  NdisWan - ok
18:41:41.0701 0x0734  ndiswanlegacy - ok
18:41:41.0701 0x0734  NDKPing - ok
18:41:41.0701 0x0734  ndproxy - ok
18:41:41.0701 0x0734  Ndu - ok
18:41:41.0716 0x0734  NetAdapterCx - ok
18:41:41.0716 0x0734  NetBIOS - ok
18:41:41.0732 0x0734  NetBT - ok
18:41:41.0732 0x0734  Netlogon - ok
18:41:41.0732 0x0734  Netman - ok
18:41:41.0732 0x0734  netprofm - ok
18:41:41.0748 0x0734  NetSetupSvc - ok
18:41:41.0748 0x0734  NetTcpPortSharing - ok
18:41:41.0763 0x0734  netvsc - ok
18:41:41.0763 0x0734  Netwtw06 - ok
18:41:41.0779 0x0734  NgcCtnrSvc - ok
18:41:41.0779 0x0734  NgcSvc - ok
18:41:41.0779 0x0734  NlaSvc - ok
18:41:41.0795 0x0734  Npfs - ok
18:41:41.0795 0x0734  npsvctrig - ok
18:41:41.0795 0x0734  nsi - ok
18:41:41.0810 0x0734  nsiproxy - ok
18:41:41.0810 0x0734  Ntfs - ok
18:41:41.0826 0x0734  Null - ok
18:41:41.0826 0x0734  nvdimm - ok
18:41:41.0841 0x0734  nvraid - ok
18:41:41.0841 0x0734  nvstor - ok
18:41:41.0841 0x0734  OneSyncSvc - ok
18:41:41.0904 0x0734  [ BEAA2A7144E549EB5C04D8DE9E200797, 9DD7DB938F454525DAB2907352C4DC83B7F744FB21C3616606A2575BD41271EC ] Origin Client Service C:\Program Files (x86)\Origin\OriginClientService.exe
18:41:41.0966 0x0734  Origin Client Service - ok
18:41:42.0029 0x0734  [ A9F12BBAE4A76832753F71648C17430B, C5531E19BBA54BF1E19433EC36812E7EF5B49F2F7D0A59FE8F04642EDE345D15 ] Origin Web Helper Service C:\Program Files (x86)\Origin\OriginWebHelperService.exe
18:41:42.0107 0x0734  Origin Web Helper Service - ok
18:41:42.0123 0x0734  p2pimsvc - ok
18:41:42.0123 0x0734  p2psvc - ok
18:41:42.0123 0x0734  Parport - ok
18:41:42.0138 0x0734  partmgr - ok
18:41:42.0138 0x0734  PcaSvc - ok
18:41:42.0154 0x0734  pci - ok
18:41:42.0154 0x0734  pciide - ok
18:41:42.0154 0x0734  pcmcia - ok
18:41:42.0170 0x0734  pcw - ok
18:41:42.0170 0x0734  pdc - ok
18:41:42.0185 0x0734  PEAUTH - ok
18:41:42.0185 0x0734  perceptionsimulation - ok
18:41:42.0185 0x0734  percsas2i - ok
18:41:42.0201 0x0734  percsas3i - ok
18:41:42.0217 0x0734  PerfHost - ok
18:41:42.0233 0x0734  PhoneSvc - ok
18:41:42.0233 0x0734  PimIndexMaintenanceSvc - ok
18:41:42.0248 0x0734  PktMon - ok
18:41:42.0248 0x0734  pla - ok
18:41:42.0263 0x0734  PlugPlay - ok
18:41:42.0263 0x0734  pmem - ok
18:41:42.0263 0x0734  PNPMEM - ok
18:41:42.0279 0x0734  PNRPAutoReg - ok
18:41:42.0279 0x0734  PNRPsvc - ok
18:41:42.0279 0x0734  PolicyAgent - ok
18:41:42.0295 0x0734  portcfg - ok
18:41:42.0295 0x0734  Power - ok
18:41:42.0310 0x0734  PptpMiniport - ok
18:41:42.0388 0x0734  [ DB6AF2064701FA70F3C7BB21FA2DF5B2, 41A0DD7932F1C6AFBD55B5D15CA46FDA45A8739ABF3605C0C73B75149D4BD8E8 ] PrintNotify     C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll
18:41:42.0513 0x0734  PrintNotify - ok
18:41:42.0529 0x0734  PrintWorkflowUserSvc - ok
18:41:42.0529 0x0734  Processor - ok
18:41:42.0545 0x0734  ProfSvc - ok
18:41:42.0545 0x0734  Psched - ok
18:41:42.0545 0x0734  PushToInstall - ok
18:41:42.0560 0x0734  QWAVE - ok
18:41:42.0560 0x0734  QWAVEdrv - ok
18:41:42.0560 0x0734  Ramdisk - ok
18:41:42.0576 0x0734  RasAcd - ok
18:41:42.0576 0x0734  RasAgileVpn - ok
18:41:42.0592 0x0734  RasAuto - ok
18:41:42.0592 0x0734  Rasl2tp - ok
18:41:42.0592 0x0734  RasMan - ok
18:41:42.0607 0x0734  RasPppoe - ok
18:41:42.0607 0x0734  RasSstp - ok
18:41:42.0623 0x0734  rdbss - ok
18:41:42.0623 0x0734  rdpbus - ok
18:41:42.0623 0x0734  RDPDR - ok
18:41:42.0639 0x0734  RdpVideoMiniport - ok
18:41:42.0654 0x0734  rdyboost - ok
18:41:42.0670 0x0734  ReFS - ok
18:41:42.0670 0x0734  ReFSv1 - ok
18:41:42.0685 0x0734  [ 0402ED31C7EF3D5A5BAA110AC3A141D8, 872AB8C6C31911B042267A329E4D86AD9FB444F0E6A753A7050EEE68FC9229DE ] RegSrvc         C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
18:41:42.0701 0x0734  RegSrvc - ok
18:41:42.0701 0x0734  RemoteAccess - ok
18:41:42.0717 0x0734  RemoteRegistry - ok
18:41:42.0717 0x0734  RetailDemo - ok
18:41:42.0717 0x0734  RFCOMM - ok
18:41:42.0732 0x0734  rhproxy - ok
18:41:42.0732 0x0734  RmSvc - ok
18:41:42.0732 0x0734  RpcEptMapper - ok
18:41:42.0748 0x0734  RpcLocator - ok
18:41:42.0748 0x0734  RpcSs - ok
18:41:42.0748 0x0734  rspndr - ok
18:41:42.0795 0x0734  [ 7D09127C1D79D1D7C5988BB6EF9A6C34, 8154CE46D1ADE5E228F8A90B86AA88E4AD7DC592353F9A2A7C1B8407B7145BC5 ] RtkAudioUniversalService C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_82608b626ba1b8a0\RtkAudUService64.exe
18:41:42.0826 0x0734  RtkAudioUniversalService - ok
18:41:42.0842 0x0734  s3cap - ok
18:41:42.0842 0x0734  SamSs - ok
18:41:42.0842 0x0734  sbp2port - ok
18:41:42.0857 0x0734  SCardSvr - ok
18:41:42.0857 0x0734  ScDeviceEnum - ok
18:41:42.0857 0x0734  scfilter - ok
18:41:42.0873 0x0734  Schedule - ok
18:41:42.0873 0x0734  scmbus - ok
18:41:42.0889 0x0734  SCPolicySvc - ok
18:41:42.0889 0x0734  sdbus - ok
18:41:42.0889 0x0734  SDFRd - ok
18:41:42.0904 0x0734  SDRSVC - ok
18:41:42.0904 0x0734  sdstor - ok
18:41:42.0920 0x0734  seclogon - ok
18:41:42.0920 0x0734  SecurityHealthService - ok
18:41:42.0920 0x0734  SEMgrSvc - ok
18:41:42.0936 0x0734  SENS - ok
18:41:42.0936 0x0734  SensorDataService - ok
18:41:42.0936 0x0734  SensorService - ok
18:41:42.0951 0x0734  SensrSvc - ok
18:41:42.0951 0x0734  SerCx - ok
18:41:42.0951 0x0734  SerCx2 - ok
18:41:42.0967 0x0734  Serenum - ok
18:41:42.0967 0x0734  Serial - ok
18:41:42.0982 0x0734  sermouse - ok
18:41:42.0998 0x0734  SessionEnv - ok
18:41:42.0998 0x0734  sfloppy - ok
18:41:42.0998 0x0734  SgrmAgent - ok
18:41:43.0014 0x0734  SgrmBroker - ok
18:41:43.0014 0x0734  SharedAccess - ok
18:41:43.0014 0x0734  SharedRealitySvc - ok
18:41:43.0029 0x0734  ShellHWDetection - ok
18:41:43.0029 0x0734  shpamsvc - ok
18:41:43.0045 0x0734  SiSRaid2 - ok
18:41:43.0045 0x0734  SiSRaid4 - ok
18:41:43.0045 0x0734  SmartSAMD - ok
18:41:43.0045 0x0734  smphost - ok
18:41:43.0061 0x0734  SmsRouter - ok
18:41:43.0061 0x0734  SNMPTRAP - ok
18:41:43.0076 0x0734  spaceparser - ok
18:41:43.0076 0x0734  spaceport - ok
18:41:43.0076 0x0734  SpatialGraphFilter - ok
18:41:43.0092 0x0734  SpbCx - ok
18:41:43.0092 0x0734  spectrum - ok
18:41:43.0092 0x0734  Spooler - ok
18:41:43.0107 0x0734  sppsvc - ok
18:41:43.0107 0x0734  srv2 - ok
18:41:43.0107 0x0734  srvnet - ok
18:41:43.0123 0x0734  SSDPSRV - ok
18:41:43.0123 0x0734  ssh-agent - ok
18:41:43.0139 0x0734  SstpSvc - ok
18:41:43.0139 0x0734  [ 1C5FD22FF5D42A4F2CA92F958EF00E6A, 02F949D7C9D586EC9479A87AEEF60CAC2949C8BABEF241E6CBDC335273822E5E ] ssudmdm         C:\WINDOWS\system32\DRIVERS\ssudmdm.sys
18:41:43.0170 0x0734  ssudmdm - ok
18:41:43.0186 0x0734  StateRepository - ok
18:41:43.0232 0x0734  [ 2ED7A74CE62766C931ADDD4C4A05E01C, 79FAF798DEE0422FBB1FE414787512E620ECDB570F26CD08968DDCB51E82EFD7 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
18:41:43.0279 0x0734  Steam Client Service - ok
18:41:43.0295 0x0734  stexstor - ok
18:41:43.0295 0x0734  stisvc - ok
18:41:43.0311 0x0734  storahci - ok
18:41:43.0311 0x0734  storflt - ok
18:41:43.0311 0x0734  stornvme - ok
18:41:43.0326 0x0734  storqosflt - ok
18:41:43.0326 0x0734  StorSvc - ok
18:41:43.0326 0x0734  storufs - ok
18:41:43.0342 0x0734  storvsc - ok
18:41:43.0342 0x0734  svsvc - ok
18:41:43.0342 0x0734  swenum - ok
18:41:43.0358 0x0734  swprv - ok
18:41:43.0358 0x0734  Synth3dVsc - ok
18:41:43.0373 0x0734  SysMain - ok
18:41:43.0373 0x0734  SystemEventsBroker - ok
18:41:43.0373 0x0734  TabletInputService - ok
18:41:43.0389 0x0734  TapiSrv - ok
18:41:43.0389 0x0734  Tcpip - ok
18:41:43.0389 0x0734  Tcpip6 - ok
18:41:43.0404 0x0734  tcpipreg - ok
18:41:43.0420 0x0734  tdx - ok
18:41:43.0420 0x0734  Telemetry - ok
18:41:43.0420 0x0734  terminpt - ok
18:41:43.0436 0x0734  TermService - ok
18:41:43.0436 0x0734  Themes - ok
18:41:43.0451 0x0734  TieringEngineService - ok
18:41:43.0451 0x0734  TimeBrokerSvc - ok
18:41:43.0451 0x0734  TokenBroker - ok
18:41:43.0467 0x0734  TPM - ok
18:41:43.0467 0x0734  TrkWks - ok
18:41:43.0467 0x0734  TroubleshootingSvc - ok
18:41:43.0483 0x0734  TrustedInstaller - ok
18:41:43.0498 0x0734  TsUsbFlt - ok
18:41:43.0498 0x0734  TsUsbGD - ok
18:41:43.0498 0x0734  tunnel - ok
18:41:43.0514 0x0734  tzautoupdate - ok
18:41:43.0514 0x0734  UASPStor - ok
18:41:43.0514 0x0734  UcmCx0101 - ok
18:41:43.0529 0x0734  UcmTcpciCx0101 - ok
18:41:43.0529 0x0734  UcmUcsiAcpiClient - ok
18:41:43.0545 0x0734  UcmUcsiCx0101 - ok
18:41:43.0545 0x0734  Ucx01000 - ok
18:41:43.0545 0x0734  UdeCx - ok
18:41:43.0561 0x0734  udfs - ok
18:41:43.0561 0x0734  UdkUserSvc - ok
18:41:43.0576 0x0734  UEFI - ok
18:41:43.0576 0x0734  Ufx01000 - ok
18:41:43.0576 0x0734  UfxChipidea - ok
18:41:43.0592 0x0734  ufxsynopsys - ok
18:41:43.0608 0x0734  [ C700E9FF4294A956BF6C1A632A9D1E61, 50CB56A76CCCA455B461E6DE17DFB2E45CEB564CC626A4F6931CD729D255165B ] uhssvc          C:\Program Files\Microsoft Update Health Tools\uhssvc.exe
18:41:43.0624 0x0734  uhssvc - ok
18:41:43.0639 0x0734  umbus - ok
18:41:43.0639 0x0734  UmPass - ok
18:41:43.0639 0x0734  UmRdpService - ok
18:41:43.0654 0x0734  UnistoreSvc - ok
18:41:43.0670 0x0734  upnphost - ok
18:41:43.0670 0x0734  UrsChipidea - ok
18:41:43.0670 0x0734  UrsCx01000 - ok
18:41:43.0686 0x0734  UrsSynopsys - ok
18:41:43.0686 0x0734  usbaudio - ok
18:41:43.0701 0x0734  usbaudio2 - ok
18:41:43.0701 0x0734  usbccgp - ok
18:41:43.0701 0x0734  usbcir - ok
18:41:43.0717 0x0734  usbehci - ok
18:41:43.0717 0x0734  usbhub - ok
18:41:43.0717 0x0734  USBHUB3 - ok
18:41:43.0733 0x0734  usbohci - ok
18:41:43.0733 0x0734  usbprint - ok
18:41:43.0748 0x0734  usbser - ok
18:41:43.0748 0x0734  USBSTOR - ok
18:41:43.0748 0x0734  usbuhci - ok
18:41:43.0764 0x0734  usbvideo - ok
18:41:43.0764 0x0734  USBXHCI - ok
18:41:43.0780 0x0734  UserDataSvc - ok
18:41:43.0780 0x0734  UserManager - ok
18:41:43.0795 0x0734  UsoSvc - ok
18:41:43.0795 0x0734  VacSvc - ok
18:41:43.0811 0x0734  VaultSvc - ok
18:41:43.0811 0x0734  vdrvroot - ok
18:41:43.0811 0x0734  vds - ok
18:41:43.0826 0x0734  VerifierExt - ok
18:41:43.0826 0x0734  vhdmp - ok
18:41:43.0826 0x0734  vhf - ok
18:41:43.0842 0x0734  Vid - ok
18:41:43.0842 0x0734  VirtualRender - ok
18:41:43.0858 0x0734  vmbus - ok
18:41:43.0858 0x0734  VMBusHID - ok
18:41:43.0858 0x0734  vmgid - ok
18:41:43.0873 0x0734  vmicguestinterface - ok
18:41:43.0873 0x0734  vmicheartbeat - ok
18:41:43.0873 0x0734  vmickvpexchange - ok
18:41:43.0889 0x0734  vmicrdv - ok
18:41:43.0889 0x0734  vmicshutdown - ok
18:41:43.0905 0x0734  vmictimesync - ok
18:41:43.0905 0x0734  vmicvmsession - ok
18:41:43.0920 0x0734  vmicvss - ok
18:41:43.0920 0x0734  volmgr - ok
18:41:43.0920 0x0734  volmgrx - ok
18:41:43.0936 0x0734  volsnap - ok
18:41:43.0936 0x0734  volume - ok
18:41:43.0951 0x0734  vpci - ok
18:41:43.0951 0x0734  vsmraid - ok
18:41:43.0951 0x0734  VSS - ok
18:41:43.0967 0x0734  VSTXRAID - ok
18:41:43.0967 0x0734  vwifibus - ok
18:41:43.0967 0x0734  vwififlt - ok
18:41:43.0983 0x0734  vwifimp - ok
18:41:43.0983 0x0734  W32Time - ok
18:41:43.0999 0x0734  WaaSMedicSvc - ok
18:41:43.0999 0x0734  WacomPen - ok
18:41:44.0014 0x0734  WalletService - ok
18:41:44.0014 0x0734  wanarp - ok
18:41:44.0014 0x0734  wanarpv6 - ok
18:41:44.0030 0x0734  WarpJITSvc - ok
18:41:44.0030 0x0734  wbengine - ok
18:41:44.0030 0x0734  WbioSrvc - ok
18:41:44.0045 0x0734  wcifs - ok
18:41:44.0045 0x0734  Wcmsvc - ok
18:41:44.0061 0x0734  wcncsvc - ok
18:41:44.0061 0x0734  wcnfs - ok
18:41:44.0076 0x0734  WdBoot - ok
18:41:44.0076 0x0734  [ CD1C4678B0F07D23612D5839398552C8, 8C7128CC40EEB931C3BD2C97A37890525E315657A871901EC637D67C00D19C36 ] WDC_SAM         C:\WINDOWS\System32\drivers\wdcsam64.sys
18:41:44.0092 0x0734  WDC_SAM - ok
18:41:44.0108 0x0734  Wdf01000 - ok
18:41:44.0108 0x0734  WdFilter - ok
18:41:44.0123 0x0734  WdiServiceHost - ok
18:41:44.0123 0x0734  WdiSystemHost - ok
18:41:44.0123 0x0734  wdiwifi - ok
18:41:44.0139 0x0734  WdmCompanionFilter - ok
18:41:44.0139 0x0734  WdNisDrv - ok
18:41:44.0155 0x0734  WdNisSvc - ok
18:41:44.0155 0x0734  [ 7B03416B590FE34B8A5E2BF0847C3E4A, 2BA8AE5A764D472DC7F29FA79F47E307560CDB8C0671ECDB835FE9077D4F2348 ] WDTDrv          C:\WINDOWS\System32\Drivers\WDTDrv.sys
18:41:44.0170 0x0734  WDTDrv - ok
18:41:44.0170 0x0734  WebClient - ok
18:41:44.0170 0x0734  Wecsvc - ok
18:41:44.0186 0x0734  WEPHOSTSVC - ok
18:41:44.0186 0x0734  wercplsupport - ok
18:41:44.0202 0x0734  WerSvc - ok
18:41:44.0202 0x0734  WFDSConMgrSvc - ok
18:41:44.0202 0x0734  WFPLWFS - ok
18:41:44.0217 0x0734  WiaRpc - ok
18:41:44.0217 0x0734  WIMMount - ok
18:41:44.0233 0x0734  WinDefend - ok
18:41:44.0233 0x0734  WindowsTrustedRT - ok
18:41:44.0248 0x0734  WindowsTrustedRTProxy - ok
18:41:44.0248 0x0734  WinHttpAutoProxySvc - ok
18:41:44.0264 0x0734  WinMad - ok
18:41:44.0264 0x0734  Winmgmt - ok
18:41:44.0280 0x0734  WinNat - ok
18:41:44.0280 0x0734  WinRM - ok
18:41:44.0295 0x0734  WINUSB - ok
18:41:44.0295 0x0734  WinVerbs - ok
18:41:44.0311 0x0734  wisvc - ok
18:41:44.0311 0x0734  WlanSvc - ok
18:41:44.0327 0x0734  wlidsvc - ok
18:41:44.0327 0x0734  wlpasvc - ok
18:41:44.0327 0x0734  WManSvc - ok
18:41:44.0342 0x0734  WmiAcpi - ok
18:41:44.0342 0x0734  wmiApSrv - ok
18:41:44.0358 0x0734  WMPNetworkSvc - ok
18:41:44.0358 0x0734  Wof - ok
18:41:44.0373 0x0734  workfolderssvc - ok
18:41:44.0373 0x0734  WpcMonSvc - ok
18:41:44.0389 0x0734  WPDBusEnum - ok
18:41:44.0389 0x0734  WpdUpFltr - ok
18:41:44.0389 0x0734  WpnService - ok
18:41:44.0405 0x0734  WpnUserService - ok
18:41:44.0405 0x0734  ws2ifsl - ok
18:41:44.0420 0x0734  wscsvc - ok
18:41:44.0420 0x0734  WSDPrintDevice - ok
18:41:44.0420 0x0734  WSDScan - ok
18:41:44.0436 0x0734  WSearch - ok
18:41:44.0452 0x0734  wuauserv - ok
18:41:44.0452 0x0734  WudfPf - ok
18:41:44.0452 0x0734  WUDFRd - ok
18:41:44.0467 0x0734  WUDFWpdFs - ok
18:41:44.0467 0x0734  WUDFWpdMtp - ok
18:41:44.0467 0x0734  WwanSvc - ok
18:41:44.0483 0x0734  XblAuthManager - ok
18:41:44.0483 0x0734  XblGameSave - ok
18:41:44.0483 0x0734  xboxgip - ok
18:41:44.0499 0x0734  XboxGipSvc - ok
18:41:44.0499 0x0734  XboxNetApiSvc - ok
18:41:44.0514 0x0734  xinputhid - ok
18:41:44.0514 0x0734  [ C7C0866526F3383BA8E54C0E02A1F245, CA3B89FCD5C6EC1C9F5C7E2A86346CE81E24EAE6B6865B5862727AE0A8A47179 ] XPPenTablet     C:\WINDOWS\System32\drivers\XPPenTablet.sys
18:41:44.0530 0x0734  XPPenTablet - ok
18:41:44.0545 0x0734  xusb22 - ok
18:41:44.0608 0x0734  [ 86DAAF947ED2B8E5C4CCA9749FE25522, 7B1ADBDA906A3ACB9D9F972C634D98D4F1EB5252836A3564A5C4736781332BAC ] ZeroConfigService C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
18:41:44.0702 0x0734  ZeroConfigService - ok
18:41:44.0702 0x0734  ================ Scan global ===============================
18:41:44.0717 0x0734  [ Global ] - ok
18:41:44.0717 0x0734  ================ Scan MBR ==================================
18:41:44.0717 0x0734  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
18:41:44.0749 0x0734  \Device\Harddisk0\DR0 - ok
18:41:44.0749 0x0734  ================ Scan VBR ==================================
18:41:44.0749 0x0734  [ C4E6F3AB218757503BC51C88DA1E2703 ] \Device\Harddisk0\DR0\Partition1
18:41:44.0749 0x0734  \Device\Harddisk0\DR0\Partition1 - ok
18:41:44.0749 0x0734  [ B1E27AA018409DE6BFD73F8AFB883A65 ] \Device\Harddisk0\DR0\Partition2
18:41:44.0749 0x0734  \Device\Harddisk0\DR0\Partition2 - ok
18:41:44.0764 0x0734  [ F51C69FE9265E7B40C0797EB5BFE1D93 ] \Device\Harddisk0\DR0\Partition3
18:41:44.0764 0x0734  \Device\Harddisk0\DR0\Partition3 - ok
18:41:44.0764 0x0734  [ 8F7175715C1E1C785C6C2224DC373C05 ] \Device\Harddisk0\DR0\Partition4
18:41:44.0764 0x0734  \Device\Harddisk0\DR0\Partition4 - ok
18:41:44.0764 0x0734  [ 3044524E1094BC0CE94A366BE6C6977E ] \Device\Harddisk0\DR0\Partition5
18:41:44.0764 0x0734  \Device\Harddisk0\DR0\Partition5 - ok
18:41:44.0780 0x0734  [ 201E5EA14356B979628C6413FE12AE13 ] \Device\Harddisk0\DR0\Partition6
18:41:44.0780 0x0734  \Device\Harddisk0\DR0\Partition6 - ok
18:41:44.0780 0x0734  [ E35B1CBBCD6324FBA2E7BF52ADF84CA2 ] \Device\Harddisk0\DR0\Partition7
18:41:44.0780 0x0734  \Device\Harddisk0\DR0\Partition7 - ok
18:41:44.0780 0x0734  ================ Scan active images ========================
18:41:44.0780 0x0734  ================ Scan generic autorun ======================
18:41:44.0780 0x0734  SecurityHealth - ok
18:41:44.0827 0x0734  [ 7D09127C1D79D1D7C5988BB6EF9A6C34, 8154CE46D1ADE5E228F8A90B86AA88E4AD7DC592353F9A2A7C1B8407B7145BC5 ] C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_82608b626ba1b8a0\RtkAudUService64.exe
18:41:44.0843 0x0734  RtkAudUService - ok
18:41:44.0874 0x0734  [ AC835AE6055F96256AC26B271069C06E, 2DB4E30FCE4333A48C1C2CA3F85F085F80DCAF3D1755721E630DA9C66ED2A4F5 ] C:\Program Files\Pentablet\PenTablet.exe
18:41:44.0905 0x0734  PenTablet - ok
18:41:44.0952 0x0734  [ FE84F125C65B81039ACC9EA54B887EA8, 546DBCC7A073099096A027EFBA2598B8242476A0EE20D7026DDEE2251B0EDF57 ] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
18:41:45.0014 0x0734  Wondershare Helper Compact.exe - ok
18:41:45.0030 0x0734  OneDriveSetup - ok
18:41:45.0030 0x0734  OneDriveSetup - ok
18:41:45.0061 0x0734  [ 13E3F1E318224A1593F8783086ACA044, 9B2DE7E18319BC24FFADAC02E1A1ADC82571BE94B4C63B075435868F232E2724 ] C:\Users\ocean\AppData\Local\Discord\Update.exe
18:41:45.0108 0x0734  Discord - ok
18:41:45.0171 0x0734  [ 5A19698FB09729ABFF3102773232A5F8, 48690FE327C139008163A0357781DE0D86320EBD87EB5FDE0095C5B3957AA8BE ] C:\Program Files (x86)\Steam\steam.exe
18:41:45.0249 0x0734  Steam - ok
18:41:45.0296 0x0734  [ D8C30D7EF8CB9EDF68D48B2F87D96EA7, 88CD090311ED261AFC49A5CE495F64F047890E9874AD3B9CE20F91ABDACA76F2 ] C:\Program Files (x86)\Freedom\FreedomBlocker.exe
18:41:45.0342 0x0734  Freedom - ok
18:41:45.0436 0x0734  [ ED689538304A78428942FAC35BB47DB6, 0CDE4A5AC7745C124381A9BFD0A75221804A59F8C5A5A7EA2B468FDC5C5AFCAE ] C:\Users\ocean\AppData\Roaming\uTorrent Web\utweb.exe
18:41:45.0546 0x0734  utweb - ok
18:41:45.0546 0x0734  Waiting for KSN requests completion. In queue: 56
18:41:46.0609 0x0734  AV detected via SS2: Windows Defender, windowsdefender:// (  ), 0x61100 ( enabled : updated )
18:41:46.0624 0x0734  Win FW state via NFP2: enabled ( trusted )
18:41:46.0703 0x0734  ============================================================
18:41:46.0703 0x0734  Scan finished
18:41:46.0703 0x0734  ============================================================
18:41:46.0718 0x0708  Detected object count: 0
18:41:46.0718 0x0708  Actual detected object count: 0
18:43:08.0025 0x28a0  Deinitialize success