Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Explorer.exe eating all of my memory and causing latency to be through the roof.


  • Please log in to reply
28 replies to this topic

#1 TyrionLannister

TyrionLannister

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:04:36 AM

Posted 12 January 2015 - 01:59 AM

Hey guys, so I posted this topic a few weeks ago and told myself I'd just live with the issue - now I'm fed up...

 

Back story - explorer.exe is eating up a lot of my PC's resources. Basically taking up anywhere between 1-4.5gbs of ram as well as 10-100% of usage. I'm running Windows 7 Home Premium, i5, 64 bit, 6gb of ram. I've never had this issue in the past, but it appears to be an ongoing issue even after running numerous anti-malware/viral software. I've done a clean boot as well and that also did not fix the issue. I used Process Explorer to try and locate the issue, but had no success. And I also noticed that there are two explorer.exe process but both with different command lines.

 

Somewhat related: I play a lot of League of Legends and recently the ping has been well above 200 for me (usually like 80-100). So I opened up the resource monitor, and a lot of the latency is coming from the explorer.exe process. So when I kill the process, the lag goes away...or at least when I ping the server with Ping of Legends.exe. I'm not really sure what this means, but if it helps, then all the better.

 

Any suggestions would be extremely helpful. If you need more information, I will do my best to provide it. Thank you very much in advanced.


Edited by hamluis, 13 January 2015 - 02:32 PM.
Moved from Win 7 to Am I Infectged - Hamluis.


BC AdBot (Login to Remove)

 


#2 Phantom010

Phantom010

  • Members
  • 1,022 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Cyberspace
  • Local time:05:36 AM

Posted 12 January 2015 - 07:26 AM

Are both instances of explorer.exe located in C:\WINDOWS?

 

Remove the check mark:

 

EYLW07U.png


Edited by Phantom010, 12 January 2015 - 07:29 AM.


#3 TyrionLannister

TyrionLannister
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:04:36 AM

Posted 13 January 2015 - 12:19 AM

Are both instances of explorer.exe located in C:\WINDOWS?

 

Remove the check mark:

 

EYLW07U.png

 

They are both located in C:\Windows.

 

Where can I find those folder options?



#4 Phantom010

Phantom010

  • Members
  • 1,022 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Cyberspace
  • Local time:05:36 AM

Posted 13 January 2015 - 07:27 AM

Windows 7 - Folder Options



#5 McSheHe

McSheHe

  • Members
  • 42 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:36 AM

Posted 13 January 2015 - 03:15 PM

Multiple explorer processes sounds like an MBR virus, a lot of scans won't pick it up.

 

Try running TDSSKiller.

If it is a bootkit it will bring up something similar if not identical to this.

DO NOT cure/delete anything that doesn't say Malware Object as TDSSKiller can pick up some system files 

 

2727-2-en88-127496.png



#6 Phantom010

Phantom010

  • Members
  • 1,022 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Cyberspace
  • Local time:05:36 AM

Posted 13 January 2015 - 03:20 PM

Both explorer.exe processes are legitimate and come from C:\WINDOWS. Try checking that box in Folder Options and open a folder. You'll see a second explorer.exe process appear in your Task Manager or Process Explorer. The original poster is talking about two explorer.exe processes.

Before scanning for malware, there are other troubleshooting steps to take. It's not always about malware.

Edited by Phantom010, 13 January 2015 - 03:23 PM.


#7 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,329 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:05:36 AM

Posted 13 January 2015 - 03:47 PM

You can safely run TDDSKiller..

This may make it easier.
Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.
  • .

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#8 Phantom010

Phantom010

  • Members
  • 1,022 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Cyberspace
  • Local time:05:36 AM

Posted 13 January 2015 - 05:08 PM

Of course, if that box in Folder Options doesn't have a check mark in it, I'd tend to agree that it looks suspicious...

#9 TyrionLannister

TyrionLannister
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:04:36 AM

Posted 13 January 2015 - 05:42 PM

Of course, if that box in Folder Options doesn't have a check mark in it, I'd tend to agree that it looks suspicious...

 

Yeah so there is no check mark in that box :/ I'll try scanning for malware again.

 

You can safely run TDDSKiller..

This may make it easier.
Download TDSSKiller and save it to your desktop.

  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.
  • .

 

 

There wasn't anything found by TDSS when I ran it on December 30th. Should I run it again?

 

20:40:39.0034 0x290c  TDSS rootkit removing tool 3.0.0.42 Dec 12 2014 00:35:20
20:40:45.0376 0x290c  ============================================================
20:40:45.0376 0x290c  Current date / time: 2014/12/30 20:40:45.0376
20:40:45.0376 0x290c  SystemInfo:
20:40:45.0376 0x290c  
20:40:45.0376 0x290c  OS Version: 6.1.7600 ServicePack: 0.0
20:40:45.0376 0x290c  Product type: Workstation
20:40:45.0377 0x290c  ComputerName: KALEMHOMEPC
20:40:45.0377 0x290c  UserName: Kalem
20:40:45.0377 0x290c  Windows directory: C:\Windows
20:40:45.0377 0x290c  System windows directory: C:\Windows
20:40:45.0377 0x290c  Running under WOW64
20:40:45.0377 0x290c  Processor architecture: Intel x64
20:40:45.0377 0x290c  Number of processors: 4
20:40:45.0377 0x290c  Page size: 0x1000
20:40:45.0377 0x290c  Boot type: Normal boot
20:40:45.0377 0x290c  ============================================================
20:40:46.0893 0x290c  KLMD registered as C:\Windows\system32\drivers\20380586.sys
20:40:49.0462 0x290c  System UUID: {58FB468E-FBBF-D066-EBB4-ED454B3788F3}
20:40:51.0831 0x290c  Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
20:40:51.0867 0x290c  Drive \Device\Harddisk5\DR9 - Size: 0x0 ( 0.00 Gb ), SectorSize: 0x200, Cylinders: 0x0, SectorsPerTrack: 0x0, TracksPerCylinder: 0x0, Type 'W'
20:40:51.0868 0x290c  ============================================================
20:40:51.0868 0x290c  \Device\Harddisk0\DR0:
20:40:51.0871 0x290c  MBR partitions:
20:40:51.0871 0x290c  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x14000, BlocksNum 0x15C3000
20:40:51.0871 0x290c  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x15D7000, BlocksNum 0x7312F5B0
20:40:51.0871 0x290c  ============================================================
20:40:52.0193 0x290c  C: <-> \Device\Harddisk0\DR0\Partition2
20:40:52.0193 0x290c  ============================================================
20:40:52.0193 0x290c  Initialize success
20:40:52.0193 0x290c  ============================================================
20:41:02.0548 0x22c8  ============================================================
20:41:02.0548 0x22c8  Scan started
20:41:02.0548 0x22c8  Mode: Manual;
20:41:02.0548 0x22c8  ============================================================
20:41:02.0548 0x22c8  KSN ping started
20:41:07.0461 0x22c8  KSN ping finished: true
20:41:18.0729 0x22c8  ================ Scan system memory ========================
20:41:18.0729 0x22c8  System memory - ok
20:41:18.0729 0x22c8  ================ Scan services =============================
20:41:19.0923 0x22c8  [ 69AA89A20DEE08BFA650AAB6CE37BD10, 87E8B55C0513F1940DEEB531C0ECCE7AF7C55F07951DA72FDCC9D8ED7A12E14F ] 1394ohci        C:\Windows\system32\DRIVERS\1394ohci.sys
20:41:19.0952 0x22c8  1394ohci - ok
20:41:20.0085 0x22c8  [ 6F11E88748CDEFD2F76AA215F97DDFE5, BD0B3561EDCDE5EFD89372793CFD09DF879709BF469542F4A049705CBA9FD060 ] ACPI            C:\Windows\system32\DRIVERS\ACPI.sys
20:41:20.0114 0x22c8  ACPI - ok
20:41:20.0197 0x22c8  [ 63B05A0420CE4BF0E4AF6DCC7CADA254, 56BCC219D6B886FD42B7D335B4A7BBA3C9BC148220CBD99F8583FB505DAE63BF ] AcpiPmi         C:\Windows\system32\DRIVERS\acpipmi.sys
20:41:20.0225 0x22c8  AcpiPmi - ok
20:41:20.0524 0x22c8  [ 4C72FDD915D62EAEF149BD9C73AB9CF4, 8EA45A1B88DFD819F0ADA3AF36D464E1BF52574269592370E0CC8D0490680E1F ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
20:41:20.0548 0x22c8  AdobeARMservice - ok
20:41:21.0191 0x22c8  [ 749F94C424524285DCDA84D695ABC12F, E5AD194AF5B8B4FDB3976D3E3F9EF942DECFEC4EBAA9881A8EF7707BB781E4AD ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
20:41:21.0220 0x22c8  AdobeFlashPlayerUpdateSvc - ok
20:41:21.0331 0x22c8  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
20:41:21.0361 0x22c8  adp94xx - ok
20:41:21.0518 0x22c8  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
20:41:21.0548 0x22c8  adpahci - ok
20:41:21.0634 0x22c8  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
20:41:21.0650 0x22c8  adpu320 - ok
20:41:21.0724 0x22c8  [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
20:41:21.0727 0x22c8  AeLookupSvc - ok
20:41:21.0887 0x22c8  [ DB9D6C6B2CD95A9CA414D045B627422E, A4A0B2ACBFE311C20EF9F06A49DBE02CE90433C2364B292F6E8F78F6C274DF88 ] AFD             C:\Windows\system32\drivers\afd.sys
20:41:21.0918 0x22c8  AFD - ok
20:41:22.0017 0x22c8  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\DRIVERS\agp440.sys
20:41:22.0041 0x22c8  agp440 - ok
20:41:22.0119 0x22c8  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
20:41:22.0148 0x22c8  ALG - ok
20:41:22.0272 0x22c8  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\DRIVERS\aliide.sys
20:41:22.0296 0x22c8  aliide - ok
20:41:22.0445 0x22c8  [ 4C1E3649C89C7D542CD18ECC5210099D, 0D6CDA3E8E66DEFAA638A59B674D290035C3189C81C4C1EE4A359EC7918FA19A ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
20:41:22.0478 0x22c8  AMD External Events Utility - ok
20:41:22.0604 0x22c8  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\DRIVERS\amdide.sys
20:41:22.0615 0x22c8  amdide - ok
20:41:22.0735 0x22c8  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
20:41:22.0742 0x22c8  AmdK8 - ok
20:41:25.0596 0x22c8  [ A3C0A15B39F979E8F3EABA901D72ECD7, D8D5C89FC85498D37EB33C75AC22F3B1FCFDB564BB11DEE63460023BA860ACF6 ] amdkmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
20:41:25.0963 0x22c8  amdkmdag - ok
20:41:26.0277 0x22c8  [ 20F3CD38B107C1BD747C0EA37D450165, 7C166B084A5AF45926DED78A5E3DC378ED3F744D46DE154A0FD83B000D3F60C3 ] amdkmdap        C:\Windows\system32\DRIVERS\atikmpag.sys
20:41:26.0303 0x22c8  amdkmdap - ok
20:41:26.0390 0x22c8  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
20:41:26.0393 0x22c8  AmdPPM - ok
20:41:26.0500 0x22c8  [ EC7EBAB00A4D8448BAB68D1E49B4BEB9, 786B30C86FA7FEC6BA2569FF818044AA0F7C134693304ED0FF7BD0541F9A755F ] amdsata         C:\Windows\system32\drivers\amdsata.sys
20:41:26.0526 0x22c8  amdsata - ok
20:41:26.0616 0x22c8  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
20:41:26.0638 0x22c8  amdsbs - ok
20:41:26.0670 0x22c8  [ DB27766102C7BF7E95140A2AA81D042E, 489F812B596EA06E53D891CD05047AA17CDF752854BBD553BA65D10799AF78DF ] amdxata         C:\Windows\system32\drivers\amdxata.sys
20:41:26.0692 0x22c8  amdxata - ok
20:41:26.0746 0x22c8  ANIWConnService - ok
20:41:26.0832 0x22c8  [ 4CCF421E6C4B2A4CBCE000715911F7CC, DD544BDAA4D948495D690B0AE031AA8A25563F0E0A64B467E5081F5C207A3596 ] anodlwf         C:\Windows\system32\DRIVERS\anodlwfx.sys
20:41:26.0833 0x22c8  anodlwf - ok
20:41:27.0247 0x22c8  [ 42FD751B27FA0E9C69BB39F39E409594, DE349CAA570957868CA1CB0BE0FAF551CD4D44FD53EBC4391B9C1C7B9CF295D2 ] AppID           C:\Windows\system32\drivers\appid.sys
20:41:27.0296 0x22c8  AppID - ok
20:41:27.0362 0x22c8  [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
20:41:27.0408 0x22c8  AppIDSvc - ok
20:41:27.0563 0x22c8  [ D065BE66822847B7F127D1F90158376E, 20F911F390FF23C2C42361A449C4344DB59F1DC21EDD1E7EBC4E80914DEF7824 ] Appinfo         C:\Windows\System32\appinfo.dll
20:41:27.0568 0x22c8  Appinfo - ok
20:41:27.0839 0x22c8  [ 30E3850F303EAE5C364782EA78579CC9, 8C94E5A9052F6E794685194EEACB31A174A947D60246908B6A0DEFA081A747A3 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
20:41:27.0842 0x22c8  Apple Mobile Device - ok
20:41:28.0061 0x22c8  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\DRIVERS\arc.sys
20:41:28.0086 0x22c8  arc - ok
20:41:28.0178 0x22c8  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
20:41:28.0208 0x22c8  arcsas - ok
20:41:28.0660 0x22c8  [ 041672BAC20B34EAEDEB033129655DD8, 14264732F0CACF5732C7652C411F0A1C3B4A4417C31DD289C8AFF170BE683E5A ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
20:41:28.0878 0x22c8  aspnet_state - ok
20:41:29.0105 0x22c8  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
20:41:29.0111 0x22c8  AsyncMac - ok
20:41:29.0453 0x22c8  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\DRIVERS\atapi.sys
20:41:29.0506 0x22c8  atapi - ok
20:41:29.0720 0x22c8  [ FB7602C5C508BE281368AAE0B61B51C6, 81FB4ABFA006974C20CA0E9FEB279A51CC4A9F0C1DA67075AA0EAD13F43B3782 ] AtiHdmiService  C:\Windows\system32\drivers\AtiHdmi.sys
20:41:29.0742 0x22c8  AtiHdmiService - ok
20:41:32.0818 0x22c8  [ A3C0A15B39F979E8F3EABA901D72ECD7, D8D5C89FC85498D37EB33C75AC22F3B1FCFDB564BB11DEE63460023BA860ACF6 ] atikmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
20:41:33.0080 0x22c8  atikmdag - ok
20:41:33.0478 0x22c8  [ 07721A77180EDD4D39CCB865BF63C7FD, 9E8117E747C86154F98F2686D805A981029CC5D11AFB115A529429C9A4579BE5 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
20:41:33.0500 0x22c8  AudioEndpointBuilder - ok
20:41:33.0717 0x22c8  [ 07721A77180EDD4D39CCB865BF63C7FD, 9E8117E747C86154F98F2686D805A981029CC5D11AFB115A529429C9A4579BE5 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
20:41:33.0730 0x22c8  AudioSrv - ok
20:41:33.0806 0x22c8  [ B20B5FA5CA050E9926E4D1DB81501B32, 91B9038349BA07E32DE809E6798167EE44087809EB1174B84EC16580040F1BE0 ] AxInstSV        C:\Windows\System32\AxInstSV.dll
20:41:33.0883 0x22c8  AxInstSV - ok
20:41:34.0065 0x22c8  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
20:41:34.0099 0x22c8  b06bdrv - ok
20:41:34.0143 0x22c8  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
20:41:34.0167 0x22c8  b57nd60a - ok
20:41:34.0260 0x22c8  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
20:41:34.0266 0x22c8  BDESVC - ok
20:41:34.0373 0x22c8  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
20:41:34.0377 0x22c8  Beep - ok
20:41:34.0576 0x22c8  [ 4992C609A6315671463E30F6512BC022, 3020034556EAC25CD90F41D3BFFDD0BB2C3D1C5BAC4359F4B71B84A9FC404495 ] BFE             C:\Windows\System32\bfe.dll
20:41:34.0636 0x22c8  BFE - ok
20:41:34.0729 0x22c8  [ 7F0C323FE3DA28AA4AA1BDA3F575707F, 7FF09CBC16A9E5F357A76FF79A3F0DD047957D474031F51A6BB4916C7911F005 ] BITS            C:\Windows\system32\qmgr.dll
20:41:35.0930 0x22c8  BITS - ok
20:41:36.0076 0x22c8  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
20:41:36.0077 0x22c8  blbdrive - ok
20:41:36.0190 0x22c8  [ 19D20159708E152267E53B66677A4995, 6401FA5C3EFF26BED075FEC68F868CD8D0598FDB45EA9381810615F7252F7A9A ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
20:41:36.0229 0x22c8  bowser - ok
20:41:36.0279 0x22c8  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
20:41:36.0280 0x22c8  BrFiltLo - ok
20:41:36.0299 0x22c8  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
20:41:36.0333 0x22c8  BrFiltUp - ok
20:41:36.0414 0x22c8  [ 5C2F352A4E961D72518261257AAE204B, 9EE1001E1D46A414A7A86FE1DBBE232203E26F54D9EF43ED31ED8EACD4D09853 ] BridgeMP        C:\Windows\system32\DRIVERS\bridge.sys
20:41:36.0455 0x22c8  BridgeMP - ok
20:41:36.0608 0x22c8  [ 94FBC06F294D58D02361918418F996E3, 62C7CC2AF8F5A0BB0C262DACDE3F72C6AC318C3840CE60E46EE2064B32BDA5EF ] Browser         C:\Windows\System32\browser.dll
20:41:36.0646 0x22c8  Browser - ok
20:41:36.0738 0x22c8  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
20:41:36.0770 0x22c8  Brserid - ok
20:41:36.0850 0x22c8  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
20:41:36.0894 0x22c8  BrSerWdm - ok
20:41:36.0952 0x22c8  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
20:41:36.0960 0x22c8  BrUsbMdm - ok
20:41:37.0038 0x22c8  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
20:41:37.0062 0x22c8  BrUsbSer - ok
20:41:37.0508 0x22c8  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
20:41:37.0520 0x22c8  BTHMODEM - ok
20:41:37.0705 0x22c8  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
20:41:37.0738 0x22c8  bthserv - ok
20:41:38.0184 0x22c8  [ 1F79342D9EB530A48742F651E570983A, 99E0B613C23FA8591E248DFA6FF2D3EE19E262BE6E070A0E43E256B69687017F ] c2cautoupdatesvc C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
20:41:38.0241 0x22c8  c2cautoupdatesvc - ok
20:41:38.0402 0x22c8  [ E4938E0A376CF0B9D989EE5C0A146891, 9DF6AB5781CD60862D9664CA9A8AF0696A1FB6D09D804CD8DE9630F40DE59E90 ] c2cpnrsvc       C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
20:41:38.0444 0x22c8  c2cpnrsvc - ok
20:41:38.0469 0x22c8  catchme - ok
20:41:38.0537 0x22c8  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
20:41:38.0581 0x22c8  cdfs - ok
20:41:38.0657 0x22c8  [ 83D2D75E1EFB81B3450C18131443F7DB, F2C686C980D818E797818E75B808E1E0B51B2045840A4BFC32D860B7DB4DFA22 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
20:41:38.0683 0x22c8  cdrom - ok
20:41:38.0836 0x22c8  [ 312E2F82AF11E79906898AC3E3D58A1F, F6CB7D8B204B94F749D5DBEFD552150AAB16A34D629F87F73823A7504465F106 ] CertPropSvc     C:\Windows\System32\certprop.dll
20:41:38.0838 0x22c8  CertPropSvc - ok
20:41:38.0925 0x22c8  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
20:41:39.0010 0x22c8  circlass - ok
20:41:39.0305 0x22c8  [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS            C:\Windows\system32\CLFS.sys
20:41:39.0330 0x22c8  CLFS - ok
20:41:39.0543 0x22c8  [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
20:41:39.0716 0x22c8  clr_optimization_v2.0.50727_32 - ok
20:41:39.0851 0x22c8  [ D1CEEA2B47CB998321C579651CE3E4F8, 654013B8FD229A50017B08DEC6CA19C7DDA8CE0771260E057A92625201D539B1 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
20:41:39.0980 0x22c8  clr_optimization_v2.0.50727_64 - ok
20:41:40.0132 0x22c8  [ 397C2677C25CBE213F3270245A401624, 8121E37108DE7A0402DC5111EBF452F91893B63EECE3AAD9EACF61C40D3FC182 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
20:41:40.0351 0x22c8  clr_optimization_v4.0.30319_32 - ok
20:41:40.0372 0x22c8  [ 29139759FCC4E4E0531ABE2EA82CE646, CFF7B2F4A9B37D343BE18DC40161DC03FA9DB308CAE9E0B3DF1FCDC3EBAC0C08 ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
20:41:40.0506 0x22c8  clr_optimization_v4.0.30319_64 - ok
20:41:40.0617 0x22c8  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
20:41:40.0672 0x22c8  CmBatt - ok
20:41:40.0719 0x22c8  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\DRIVERS\cmdide.sys
20:41:40.0720 0x22c8  cmdide - ok
20:41:40.0907 0x22c8  [ CA7720B73446FDDEC5C69519C1174C98, F24796765587CC1D653A04783B1659564F42E600DA3AFA3DED724592B291D033 ] CNG             C:\Windows\system32\Drivers\cng.sys
20:41:40.0930 0x22c8  CNG - ok
20:41:41.0169 0x22c8  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
20:41:41.0200 0x22c8  Compbatt - ok
20:41:41.0282 0x22c8  [ F26B3A86F6FA87CA360B879581AB4123, 723904362614FE47F6CC0EA0656BA1B47EA32D73BAFB61688A5E5CAE4340B1BF ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
20:41:41.0338 0x22c8  CompositeBus - ok
20:41:41.0496 0x22c8  COMSysApp - ok
20:41:41.0530 0x22c8  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
20:41:41.0573 0x22c8  crcdisk - ok
20:41:41.0711 0x22c8  [ F02786B66375292E58C8777082D4396D, EE7BCD10C014A16A06619EFD47226FAA1460A67CD7687EA8C38D63C71DBCD51B ] CryptSvc        C:\Windows\system32\cryptsvc.dll
20:41:41.0744 0x22c8  CryptSvc - ok
20:41:42.0133 0x22c8  [ 72794D112CBAFF3BC0C29BF7350D4741, 060C207F27306A3464FBCD8B08BDC97E34923ECA349933ECB059848BD08F41ED ] cvhsvc          C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
20:41:42.0237 0x22c8  cvhsvc - ok
20:41:42.0320 0x22c8  [ 882FE32D6787C124D9D1F95473CF11CC, BFBBC90494A7D9B019326D2005EFF35FEECB94BAD23DFA14580656F86EA48934 ] Darusb_win7x    C:\Windows\system32\DRIVERS\Darusb_win7x.sys
20:41:42.0360 0x22c8  Darusb_win7x - ok
20:41:42.0469 0x22c8  DCE - ok
20:41:42.0583 0x22c8  [ 7266972E86890E2B30C0C322E906B027, BFA30E85F5BD3AA933913BD7C6D2B5993DB7AFB0C98349B61A6BEF0BDC8A3680 ] DcomLaunch      C:\Windows\system32\rpcss.dll
20:41:42.0638 0x22c8  DcomLaunch - ok
20:41:42.0844 0x22c8  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
20:41:42.0863 0x22c8  defragsvc - ok
20:41:42.0983 0x22c8  [ 9C253CE7311CA60FC11C774692A13208, 23507138576DB75AA8B7415140F7B5D8A90CB2661796223870461C721A36AEBF ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
20:41:43.0090 0x22c8  DfsC - ok
20:41:43.0502 0x22c8  [ CE3B9562D997F69B330D181A8875960F, 6FEE6622859198C5C13545867EF7CFE8EDC991360E976F792313DAA9C82CC5C8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
20:41:43.0520 0x22c8  Dhcp - ok
20:41:43.0582 0x22c8  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
20:41:43.0583 0x22c8  discache - ok
20:41:43.0695 0x22c8  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\Windows\system32\DRIVERS\disk.sys
20:41:43.0710 0x22c8  Disk - ok
20:41:43.0980 0x22c8  [ 85CF424C74A1D5EC33533E1DBFF9920A, 882D5FA0D5EC053D76A0C46A6047A621D607651693CF94E5506219EECCC8D079 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
20:41:43.0998 0x22c8  Dnscache - ok
20:41:44.0161 0x22c8  [ 0840ABBBDF438691EE65A20040635CBE, F83597ECECFADBA45242B683A19A01ADF84203B016301B64530C7BE8234175E8 ] DockLoginService C:\Program Files\Dell\DellDock\DockLogin.exe
20:41:44.0208 0x22c8  DockLoginService - ok
20:41:44.0305 0x22c8  [ 14452ACDB09B70964C8C21BF80A13ACB, DA0AAAC04626EFF4256D7095FF1DDA1F1B17676E26990C418BDF5090476F2AB4 ] dot3svc         C:\Windows\System32\dot3svc.dll
20:41:44.0357 0x22c8  dot3svc - ok
20:41:44.0581 0x22c8  [ B42ED0320C6E41102FDE0005154849BB, 4DB872E23AD049C3C9FDC0759FC58BFA60DA91B18BC82B611BFA300D26DDFC7A ] Dot4            C:\Windows\system32\DRIVERS\Dot4.sys
20:41:44.0630 0x22c8  Dot4 - ok
20:41:44.0733 0x22c8  [ 85135AD27E79B689335C08167D917CDE, B023ABF4CC71862AE107B27D3CD698517074A97FA76A8AE18058ACF39AC1E786 ] Dot4Print       C:\Windows\system32\DRIVERS\Dot4Prt.sys
20:41:44.0741 0x22c8  Dot4Print - ok
20:41:44.0772 0x22c8  [ FD05A02B0370BC3000F402E543CA5814, 089B1113E640F495F470E8F57060B89546270481B309DC8ED3C3D13A849076A3 ] dot4usb         C:\Windows\system32\DRIVERS\dot4usb.sys
20:41:44.0809 0x22c8  dot4usb - ok
20:41:45.0010 0x22c8  [ 8C2BA6BEA949EE6E68385F5692BAFB94, 1047F473DCE0FB56BEA5C1B7929752C1FBAB5983C8202ABB4EEA48FCD60A353A ] DPS             C:\Windows\system32\dps.dll
20:41:45.0029 0x22c8  DPS - ok
20:41:45.0149 0x22c8  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
20:41:45.0198 0x22c8  drmkaud - ok
20:41:45.0377 0x22c8  [ 1633B9ABF52784A1331476397A48CBEF, 697780697C4C55FCCF5FB65C93FB37B3F5A43BF0C59FDBB9EF822D0E993E47BD ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
20:41:45.0427 0x22c8  DXGKrnl - ok
20:41:45.0629 0x22c8  EagleX64 - ok
20:41:45.0693 0x22c8  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
20:41:45.0706 0x22c8  EapHost - ok
20:41:46.0508 0x22c8  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
20:41:46.0693 0x22c8  ebdrv - ok
20:41:46.0780 0x22c8  [ 156F6159457D0AA7E59B62681B56EB90, 27B855BF79490E4CC58D38A920C077A56785494BFFF0B448A898486009B24937 ] EFS             C:\Windows\System32\lsass.exe
20:41:46.0791 0x22c8  EFS - ok
20:41:46.0972 0x22c8  [ 47C071994C3F649F23D9CD075AC9304A, B7AA2DD6AD14F18A19620F5FB79D50C630D3750E72DD67BF8D105CC4F5CE1D46 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
20:41:47.0062 0x22c8  ehRecvr - ok
20:41:47.0157 0x22c8  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe
20:41:47.0188 0x22c8  ehSched - ok
20:41:47.0365 0x22c8  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
20:41:47.0382 0x22c8  elxstor - ok
20:41:47.0433 0x22c8  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\DRIVERS\errdev.sys
20:41:47.0480 0x22c8  ErrDev - ok
20:41:47.0667 0x22c8  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
20:41:47.0681 0x22c8  EventSystem - ok
20:41:47.0745 0x22c8  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys
20:41:47.0763 0x22c8  exfat - ok
20:41:47.0860 0x22c8  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
20:41:47.0908 0x22c8  fastfat - ok
20:41:48.0049 0x22c8  [ D607B2F1BEE3992AA6C2C92C0A2F0855, E22301C8F01DBF0A38A85165959BB070647C996CB1BCD50FDFE3DDDCA427DF2A ] Fax             C:\Windows\system32\fxssvc.exe
20:41:48.0072 0x22c8  Fax - ok
20:41:48.0179 0x22c8  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
20:41:48.0210 0x22c8  fdc - ok
20:41:48.0310 0x22c8  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
20:41:48.0316 0x22c8  fdPHost - ok
20:41:48.0425 0x22c8  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
20:41:48.0431 0x22c8  FDResPub - ok
20:41:48.0522 0x22c8  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
20:41:48.0539 0x22c8  FileInfo - ok
20:41:48.0623 0x22c8  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
20:41:48.0624 0x22c8  Filetrace - ok
20:41:48.0835 0x22c8  [ 8669BE94F63944E4F899C3950B520241, 9991E57B3C366D59BD186CEAA78D4590EDB2BC127250CF4D1522CBE413453E72 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
20:41:48.0931 0x22c8  FLEXnet Licensing Service - ok
20:41:48.0981 0x22c8  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
20:41:48.0991 0x22c8  flpydisk - ok
20:41:49.0066 0x22c8  [ F7866AF72ABBAF84B1FA5AA195378C59, 9D522044FE9C18FB3EC327E675737C01F2A8231DDE900421D3A431596946A7F8 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
20:41:49.0094 0x22c8  FltMgr - ok
20:41:49.0346 0x22c8  [ CB5E4B9C319E3C6BB363EB7E58A4A051, C9DCF2C2A6AFE0A0F3E23A265843D0C423C08B2E54702C5B389CF293D9A6BAC5 ] FontCache       C:\Windows\system32\FntCache.dll
20:41:49.0391 0x22c8  FontCache - ok
20:41:49.0589 0x22c8  [ 8D89E3131C27FDD6932189CB785E1B7A, AC7DA4C5E6D2E41D1A1DE146E46F034FAF0FB11AD801F070F2D5CD08166E9EB7 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
20:41:49.0683 0x22c8  FontCache3.0.0.0 - ok
20:41:49.0749 0x22c8  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
20:41:49.0766 0x22c8  FsDepends - ok
20:41:49.0851 0x22c8  [ D3E3F93D67821A2DB2B3D9FAC2DC2064, 727FAA7E15A20ED3A37668D294ABDE6EAF1C87C34EE283C99EE3303E85001404 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
20:41:49.0908 0x22c8  Fs_Rec - ok
20:41:50.0176 0x22c8  [ AE87BA80D0EC3B57126ED2CDC15B24ED, 7E0EA3CDB78054D9A4E3B5142305943F2914536D80B8FC363414C8838D51D56C ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
20:41:50.0194 0x22c8  fvevol - ok
20:41:50.0307 0x22c8  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
20:41:50.0366 0x22c8  gagp30kx - ok
20:41:50.0551 0x22c8  [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
20:41:50.0592 0x22c8  GEARAspiWDM - ok
20:41:50.0779 0x22c8  [ FE5AB4525BC2EC68B9119A6E5D40128B, 088DE37982CEE78A0C1181389A3BFF1E352DF504074B3E8F3EA244DB271BF216 ] gpsvc           C:\Windows\System32\gpsvc.dll
20:41:50.0828 0x22c8  gpsvc - ok
20:41:51.0149 0x22c8  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
20:41:51.0161 0x22c8  gupdate - ok
20:41:51.0223 0x22c8  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
20:41:51.0225 0x22c8  gupdatem - ok
20:41:51.0366 0x22c8  [ 1E6438D4EA6E1174A3B3B1EDC4DE660B, F9995CFEC7BBFE10B06EEE04CA6B49658275C43096E57747BFF9C2C31A0F9011 ] hamachi         C:\Windows\system32\DRIVERS\hamachi.sys
20:41:51.0391 0x22c8  hamachi - ok
20:41:51.0464 0x22c8  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
20:41:51.0509 0x22c8  hcw85cir - ok
20:41:51.0694 0x22c8  [ 6410F6F415B2A5A9037224C41DA8BF12, 5B8452BC49FDA2215281D27B22FA9BE46B0460F51C4DC70E58B687CFB541F3A5 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
20:41:51.0736 0x22c8  HdAudAddService - ok
20:41:51.0894 0x22c8  [ 0A49913402747A0B67DE940FB42CBDBB, 61A45DBDCEB4A2D5C3C28F6BC8C5ADC51D0240A7553DF44BCC4355FC06F72B83 ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
20:41:51.0906 0x22c8  HDAudBus - ok
20:41:52.0054 0x22c8  [ B6AC71AAA2B10848F57FC49D55A651AF, 4FAD833654E86F9FAF972AC8AF87FD4A9A765B26B96F096BBD63506B5D521A91 ] HECIx64         C:\Windows\system32\DRIVERS\HECIx64.sys
20:41:52.0083 0x22c8  HECIx64 - ok
20:41:52.0184 0x22c8  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
20:41:52.0202 0x22c8  HidBatt - ok
20:41:52.0258 0x22c8  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
20:41:52.0275 0x22c8  HidBth - ok
20:41:52.0430 0x22c8  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
20:41:52.0489 0x22c8  HidIr - ok
20:41:52.0637 0x22c8  [ 943B20F119F05BCAB4D2593E2D3D4278, 7056691C0EFF0AA236195BD254E452C026EEDFB2E257330F92A072D4CEC3B712 ] hidkmdf         C:\Windows\system32\DRIVERS\hidkmdf.sys
20:41:52.0673 0x22c8  hidkmdf - ok
20:41:52.0837 0x22c8  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\System32\hidserv.dll
20:41:52.0872 0x22c8  hidserv - ok
20:41:53.0211 0x22c8  [ B3BF6B5B50006DEF50B66306D99FCF6F, D39A1DEBE7C464922919826D15199ED25E263BF58633593DD412D78F98921417 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
20:41:53.0228 0x22c8  HidUsb - ok
20:41:53.0392 0x22c8  [ EFA58EDE58DD74388FFD04CB32681518, 76D81F9BC1A4D85A779B79DEC23B79F1568AA236CD49247414093CDC1FCC150F ] hkmsvc          C:\Windows\system32\kmsvc.dll
20:41:53.0395 0x22c8  hkmsvc - ok
20:41:53.0501 0x22c8  [ 046B2673767CA626E2CFB7FDF735E9E8, 9C932DCC5DE9B1919AB38C01D76AD7BBAF491DE6D158662407974748BC0B4C6C ] HomeGroupListener C:\Windows\system32\ListSvc.dll
20:41:53.0530 0x22c8  HomeGroupListener - ok
20:41:53.0623 0x22c8  [ 06A7422224D9865A5613710A089987DF, EF604B4B6918D3FDC8E90ED9004E6E7340E0F399C214C65CCE3A7C8C576FA1C0 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
20:41:53.0657 0x22c8  HomeGroupProvider - ok
20:41:53.0724 0x22c8  [ 0886D440058F203EBA0E1825E4355914, BC49C4CEFE324A08C864A4BF4FEA9A70151FAB7CC30BDC28344F3FFD2F500070 ] HpSAMD          C:\Windows\system32\DRIVERS\HpSAMD.sys
20:41:53.0726 0x22c8  HpSAMD - ok
20:41:53.0845 0x22c8  [ CEE049CAC4EFA7F4E1E4AD014414A5D4, 433AE2D845850F1D7A48275BBD87B3F0E7DD48F2282C727C4B777ECD92CC331D ] HTTP            C:\Windows\system32\drivers\HTTP.sys
20:41:53.0867 0x22c8  HTTP - ok
20:41:53.0920 0x22c8  [ F17766A19145F111856378DF337A5D79, FC1633FB865A5324EBCBE5F97D297B899FABBDD965D862C2EFC743CD36F47E62 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
20:41:53.0920 0x22c8  hwpolicy - ok
20:41:54.0011 0x22c8  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
20:41:54.0022 0x22c8  i8042prt - ok
20:41:54.0177 0x22c8  [ 631FA8935163B01FC0C02966CB3ADB92, F6BDA41EB4AB0A7215A4ABC88461AF174E1439AC37D7663D43D43ABB68F70E2F ] iaStor          C:\Windows\system32\DRIVERS\iaStor.sys
20:41:54.0186 0x22c8  iaStor - ok
20:41:54.0359 0x22c8  [ 7493EA4DE41348F7D3EDBF9DB298F56A, D40BE4E8D90B5F6EF0B16F3B9E9F63273FE558492A560CB291C7DE2864794CCB ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
20:41:54.0476 0x22c8  IAStorDataMgrSvc - ok
20:41:54.0714 0x22c8  [ B75E45C564E944A2657167D197AB29DA, 622EA73F4D9CAE17628C18148FB241817A0AE6D80A74B099204ED27C1A750B24 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
20:41:54.0734 0x22c8  iaStorV - ok
20:41:54.0892 0x22c8  [ 2F2BE70D3E02B6FA877921AB9516D43C, E04255EE4BD95FC1539EB1EB9F702B039F65993D31A4531DA487274543EF5226 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
20:41:54.0976 0x22c8  idsvc - ok
20:41:55.0037 0x22c8  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
20:41:55.0085 0x22c8  iirsp - ok
20:41:55.0407 0x22c8  [ C5B4683680DF085B57BC53E5EF34861F, 9C06517DFCB3ED7BB1166F7EB6CCC8713E6B68283C75420C0EDC182094AA1B8F ] IKEEXT          C:\Windows\System32\ikeext.dll
20:41:55.0447 0x22c8  IKEEXT - ok
20:41:55.0904 0x22c8  [ EE64207F2F5C20BFE5F73DB2566C4601, 760874FA661EC86B25802BFC03E238EA2DCBB5AFD3444AC5101A0C3AD4D7BED9 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
20:41:55.0972 0x22c8  IntcAzAudAddService - ok
20:41:56.0099 0x22c8  [ 49072EDBC5C2F964917D1B585C90ED0A, 23B39F2813229CBB88A987A4A0B04C6D86234B1B8684E4E51A2F05ADDF06084B ] IntcDAud        C:\Windows\system32\DRIVERS\IntcDAud.sys
20:41:56.0118 0x22c8  IntcDAud - ok
20:41:56.0187 0x22c8  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\DRIVERS\intelide.sys
20:41:56.0246 0x22c8  intelide - ok
20:41:56.0365 0x22c8  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
20:41:56.0367 0x22c8  intelppm - ok
20:41:56.0509 0x22c8  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
20:41:56.0556 0x22c8  IPBusEnum - ok
20:41:56.0599 0x22c8  [ 722DD294DF62483CECAAE6E094B4D695, 41ABB42EF969EA8A84B546908EBBDC2411D964DE101CE6DD3D7ECF109085E0C0 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
20:41:56.0623 0x22c8  IpFilterDriver - ok
20:41:57.0038 0x22c8  [ F8E058D17363EC580E4B7232778B6CB5, 02352919F349C57930A0B032FBDC45327FB473D310DE7AC721F4694FDE7D21FB ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
20:41:57.0079 0x22c8  iphlpsvc - ok
20:41:57.0219 0x22c8  [ E2B4A4494DB7CB9B89B55CA268C337C5, C59BC4AA03D10647641EC7533F78BC7E2EA6FC48B8B2CF1A49B5148EF40A90FB ] IPMIDRV         C:\Windows\system32\DRIVERS\IPMIDrv.sys
20:41:57.0287 0x22c8  IPMIDRV - ok
20:41:57.0433 0x22c8  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
20:41:57.0472 0x22c8  IPNAT - ok
20:41:57.0908 0x22c8  [ B6E8B931EFEF4112C6A401931627DC6B, 89A0745360928F7DD0A522FF5FBFEED4FC831F37D6CF88D5E66FA91FD6F0A1DF ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
20:41:58.0007 0x22c8  iPod Service - ok
20:41:58.0138 0x22c8  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
20:41:58.0196 0x22c8  IRENUM - ok
20:41:58.0243 0x22c8  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\DRIVERS\isapnp.sys
20:41:58.0264 0x22c8  isapnp - ok
20:41:58.0455 0x22c8  [ FA4D2557DE56D45B0A346F93564BE6E1, 2827EC3582FF59FFD55BBD4A4F0DDFFEAD4F2537FA043B3A69904FE920B1619C ] iScsiPrt        C:\Windows\system32\DRIVERS\msiscsi.sys
20:41:58.0515 0x22c8  iScsiPrt - ok
20:41:58.0720 0x22c8  [ 9D7EA8C7215D8D4AE7BE110EEE61085D, C8AEC99985AEAD52FA4FA14DA98EE465594EA1392E2010D0B474CD467D766EE8 ] k57nd60a        C:\Windows\system32\DRIVERS\k57nd60a.sys
20:41:58.0779 0x22c8  k57nd60a - ok
20:41:58.0850 0x22c8  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
20:41:58.0892 0x22c8  kbdclass - ok
20:41:58.0948 0x22c8  [ 6DEF98F8541E1B5DCEB2C822A11F7323, F6EE4A7A6A7A1F243D32CA9241CA4816C92EB7BF2AADDD09234968C2CAAE6C0D ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
20:41:58.0975 0x22c8  kbdhid - ok
20:41:59.0030 0x22c8  [ 156F6159457D0AA7E59B62681B56EB90, 27B855BF79490E4CC58D38A920C077A56785494BFFF0B448A898486009B24937 ] KeyIso          C:\Windows\system32\lsass.exe
20:41:59.0031 0x22c8  KeyIso - ok
20:41:59.0086 0x22c8  [ 4F4B5FDE429416877DE7143044582EB5, A28FFEA078DBD91F3CC28088810EEEB727107B3F0F48370B44D87DC8F8C55B99 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
20:41:59.0158 0x22c8  KSecDD - ok
20:41:59.0264 0x22c8  [ 6F40465A44ECDC1731BEFAFEC5BDD03C, 317334D414D0AF73CB4D9CA11EA80C641E786760B8800F2795D0CB38378DBB80 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
20:41:59.0302 0x22c8  KSecPkg - ok
20:41:59.0356 0x22c8  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
20:41:59.0357 0x22c8  ksthunk - ok
20:41:59.0539 0x22c8  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
20:41:59.0617 0x22c8  KtmRm - ok
20:41:59.0775 0x22c8  [ 81F1D04D4D0E433099365127375FD501, C2A81B5A482C974E8108806486EC28CB2D81400D42639682FE7B7A9BDF14BA9B ] LanmanServer    C:\Windows\System32\srvsvc.dll
20:41:59.0804 0x22c8  LanmanServer - ok
20:41:59.0904 0x22c8  [ 27026EAC8818E8A6C00A1CAD2F11D29A, A12858CCB3B2419D66C667A46B106DA7A7BA97FFFA9634BFAE95DDF193C430D5 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
20:41:59.0911 0x22c8  LanmanWorkstation - ok
20:42:00.0062 0x22c8  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
20:42:00.0083 0x22c8  lltdio - ok
20:42:00.0260 0x22c8  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
20:42:00.0287 0x22c8  lltdsvc - ok
20:42:00.0334 0x22c8  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
20:42:00.0365 0x22c8  lmhosts - ok
20:42:00.0468 0x22c8  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
20:42:00.0543 0x22c8  LSI_FC - ok
20:42:00.0626 0x22c8  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
20:42:00.0657 0x22c8  LSI_SAS - ok
20:42:00.0823 0x22c8  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
20:42:00.0825 0x22c8  LSI_SAS2 - ok
20:42:01.0049 0x22c8  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
20:42:01.0085 0x22c8  LSI_SCSI - ok
20:42:01.0230 0x22c8  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
20:42:01.0233 0x22c8  luafv - ok
20:42:01.0796 0x22c8  [ 4208B958E35F0E596AA241EFB664636B, 16848BA9052A58D03B420E2E803605CDE59D99E01691CA0FEA92EFE43CB8F318 ] lxduCATSCustConnectService C:\Windows\system32\spool\DRIVERS\x64\3\\lxduserv.exe
20:42:02.0011 0x22c8  lxduCATSCustConnectService - ok
20:42:02.0013 0x22c8  lxdu_device - ok
20:42:02.0318 0x22c8  [ 8A50D5304E6AE48664CF5838EC32F647, C76943FABEE1B5E1B641AA610668CCD4227E2C4B191DD30B79D3AB31A9E8B5BE ] MBAMSwissArmy   C:\Windows\system32\drivers\MBAMSwissArmy.sys
20:42:02.0396 0x22c8  MBAMSwissArmy - ok
20:42:02.0712 0x22c8  [ F453D1E6D881E8F8717E20CCD4199E85, 99864785355638479F0A005E5E1D22067A13EC41FDD1BD1E561577F38A134453 ] McComponentHostService C:\Program Files (x86)\McAfee Security Scan\2.0.181\McCHSvc.exe
20:42:02.0721 0x22c8  McComponentHostService - ok
20:42:02.0843 0x22c8  [ F84C8F1000BC11E3B7B23CBD3BAFF111, BB4C4FFE3F6C9E5C16C06F6F666F177B94E1CF878397BCC0BDAF6EB3341AAED8 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
20:42:02.0935 0x22c8  Mcx2Svc - ok
20:42:03.0065 0x22c8  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
20:42:03.0102 0x22c8  megasas - ok
20:42:03.0169 0x22c8  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
20:42:03.0212 0x22c8  MegaSR - ok
20:42:03.0288 0x22c8  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
20:42:03.0301 0x22c8  MMCSS - ok
20:42:03.0341 0x22c8  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
20:42:03.0352 0x22c8  Modem - ok
20:42:03.0400 0x22c8  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
20:42:03.0439 0x22c8  monitor - ok
20:42:03.0556 0x22c8  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
20:42:03.0558 0x22c8  mouclass - ok
20:42:03.0652 0x22c8  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
20:42:03.0687 0x22c8  mouhid - ok
20:42:03.0706 0x22c8  [ 791AF66C4D0E7C90A3646066386FB571, BF67643099494AEADDDC85E4D97AFF1017806A1DF554F9BE6C864FFECC9EAF42 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
20:42:03.0709 0x22c8  mountmgr - ok
20:42:04.0021 0x22c8  [ B4E9C7383A705628AD491CF0F87D901F, 5C0CD7133D4F5B1E0466CDB2A2210ECA57206A8BC41F37BC6324120AE5501C70 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
20:42:04.0036 0x22c8  MozillaMaintenance - ok
20:42:04.0077 0x22c8  [ 609D1D87649ECC19796F4D76D4C15CEA, 5369F4C83FBAE9C4CFB9ACD36F07479E3F3FD784D79B82AE8D95B818B9F9CE00 ] mpio            C:\Windows\system32\DRIVERS\mpio.sys
20:42:04.0080 0x22c8  mpio - ok
20:42:04.0149 0x22c8  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
20:42:04.0179 0x22c8  mpsdrv - ok
20:42:04.0422 0x22c8  [ AECAB449567D1846DAD63ECE49E893E3, 7A67A16A3E04574B7CAD097632ABA9B361BBEFDD6B36B7B8E3A1996EC529C2DC ] MpsSvc          C:\Windows\system32\mpssvc.dll
20:42:04.0457 0x22c8  MpsSvc - ok
20:42:04.0483 0x22c8  [ 30524261BB51D96D6FCBAC20C810183C, 19598A9CD0EAAE4ACBF1069E721AB2853452F33FCFB3B5113F023A88A90BF42D ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
20:42:04.0486 0x22c8  MRxDAV - ok
20:42:04.0547 0x22c8  [ 040D62A9D8AD28922632137ACDD984F2, D9457BDA88C2E3AA4E716C0657B77A4A3E212328CDABD5C18279B6440E1C1594 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
20:42:04.0581 0x22c8  mrxsmb - ok
20:42:04.0732 0x22c8  [ F0067552F8F9B33D7C59403AB808A3CB, 698B63528E1943BB4253BF7578DC128AA824C71BD04FF0521277E68B20656C02 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
20:42:04.0742 0x22c8  mrxsmb10 - ok
20:42:04.0802 0x22c8  [ 3C142D31DE9F2F193218A53FE2632051, 026B3A932A95D5160B64E470FC414F3D388D429317D5EAEA2D476F715C4CAE75 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
20:42:04.0815 0x22c8  mrxsmb20 - ok
20:42:04.0878 0x22c8  [ BCCF16D5FB1109162380E3E28DC9E4E5, E27253A4AD6A82A2F47FD36EC849EEBFA30538C97E1A3FF39FEFB34D3F908C9D ] msahci          C:\Windows\system32\DRIVERS\msahci.sys
20:42:04.0897 0x22c8  msahci - ok
20:42:04.0995 0x22c8  [ 8D27B597229AED79430FB9DB3BCBFBD0, 3D58E08B47E8AE419D405BF263929DFA6F2F5F0C2D79FD8D6F2CED6452F6F248 ] msdsm           C:\Windows\system32\DRIVERS\msdsm.sys
20:42:05.0021 0x22c8  msdsm - ok
20:42:05.0090 0x22c8  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
20:42:05.0095 0x22c8  MSDTC - ok
20:42:05.0243 0x22c8  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
20:42:05.0249 0x22c8  Msfs - ok
20:42:05.0274 0x22c8  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
20:42:05.0275 0x22c8  mshidkmdf - ok
20:42:05.0437 0x22c8  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\DRIVERS\msisadrv.sys
20:42:05.0449 0x22c8  msisadrv - ok
20:42:05.0522 0x22c8  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
20:42:05.0531 0x22c8  MSiSCSI - ok
20:42:05.0534 0x22c8  msiserver - ok
20:42:05.0573 0x22c8  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
20:42:05.0574 0x22c8  MSKSSRV - ok
20:42:05.0606 0x22c8  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
20:42:05.0621 0x22c8  MSPCLOCK - ok
20:42:05.0639 0x22c8  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
20:42:05.0640 0x22c8  MSPQM - ok
20:42:05.0686 0x22c8  [ 89CB141AA8616D8C6A4610FA26C60964, 76E72F6A0348EDC58A8E6F88C7F024B8B077670400BD5A833811DAFCF9F517CC ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
20:42:05.0694 0x22c8  MsRPC - ok
20:42:05.0714 0x22c8  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
20:42:05.0728 0x22c8  mssmbios - ok
20:42:05.0743 0x22c8  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
20:42:05.0755 0x22c8  MSTEE - ok
20:42:05.0777 0x22c8  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
20:42:05.0778 0x22c8  MTConfig - ok
20:42:05.0818 0x22c8  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys
20:42:05.0820 0x22c8  Mup - ok
20:42:05.0977 0x22c8  [ 4987E079A4530FA737A128BE54B63B12, 27E51CC7D4D90DC4397575491DE7EFE15808709F097E2828E46AA73C771A47A4 ] napagent        C:\Windows\system32\qagentRT.dll
20:42:05.0995 0x22c8  napagent - ok
20:42:06.0225 0x22c8  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
20:42:06.0295 0x22c8  NativeWifiP - ok
20:42:06.0584 0x22c8  [ CAD515DBD07D082BB317D9928CE8962C, 7AFA6D6154AC68F9FCC37B7B3324F7A170AE91035805026445F24F6EB4FB7F2E ] NDIS            C:\Windows\system32\drivers\ndis.sys
20:42:06.0606 0x22c8  NDIS - ok
20:42:06.0634 0x22c8  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
20:42:06.0636 0x22c8  NdisCap - ok
20:42:06.0662 0x22c8  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
20:42:06.0697 0x22c8  NdisTapi - ok
20:42:06.0756 0x22c8  [ F105BA1E22BF1F2EE8F005D4305E4BEC, 723DA09E13D0F50634D9F114590B837D16F7B36AA0DA2AB8F8C2D9991624EA8F ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
20:42:06.0780 0x22c8  Ndisuio - ok
20:42:06.0792 0x22c8  [ 557DFAB9CA1FCB036AC77564C010DAD3, 8A21B342AFE5B498FB62EDDC81A3ADA9570677B7A382666090E0ABB1F85FEF29 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
20:42:06.0799 0x22c8  NdisWan - ok
20:42:06.0836 0x22c8  [ 659B74FB74B86228D6338D643CD3E3CF, 83D741B7A2A204A661A80C226212749F514800060D05E217FA6DC14D62F38F80 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
20:42:06.0850 0x22c8  NDProxy - ok
20:42:06.0870 0x22c8  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
20:42:06.0871 0x22c8  NetBIOS - ok
20:42:06.0910 0x22c8  [ 9162B273A44AB9DCE5B44362731D062A, 5A1BA6DBFEBB2618DC9D4CC55FA071C170A5D22FFB24CE62DD5B3210D8B45F39 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
20:42:06.0938 0x22c8  NetBT - ok
20:42:06.0972 0x22c8  [ 156F6159457D0AA7E59B62681B56EB90, 27B855BF79490E4CC58D38A920C077A56785494BFFF0B448A898486009B24937 ] Netlogon        C:\Windows\system32\lsass.exe
20:42:06.0973 0x22c8  Netlogon - ok
20:42:07.0034 0x22c8  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
20:42:07.0043 0x22c8  Netman - ok
20:42:07.0269 0x22c8  [ 9A7D3A1AA5C830744FF6C44BB55A347A, 42D3281893DB4C0DDA6A7BDA92D3CCE23968D0E3CF880777B8DBBFD955629B08 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:42:07.0386 0x22c8  NetMsmqActivator - ok
20:42:07.0493 0x22c8  [ 9A7D3A1AA5C830744FF6C44BB55A347A, 42D3281893DB4C0DDA6A7BDA92D3CCE23968D0E3CF880777B8DBBFD955629B08 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:42:07.0495 0x22c8  NetPipeActivator - ok
20:42:07.0592 0x22c8  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
20:42:07.0616 0x22c8  netprofm - ok
20:42:07.0710 0x22c8  [ 9A7D3A1AA5C830744FF6C44BB55A347A, 42D3281893DB4C0DDA6A7BDA92D3CCE23968D0E3CF880777B8DBBFD955629B08 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:42:07.0712 0x22c8  NetTcpActivator - ok
20:42:07.0753 0x22c8  [ 9A7D3A1AA5C830744FF6C44BB55A347A, 42D3281893DB4C0DDA6A7BDA92D3CCE23968D0E3CF880777B8DBBFD955629B08 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:42:07.0756 0x22c8  NetTcpPortSharing - ok
20:42:07.0814 0x22c8  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
20:42:07.0839 0x22c8  nfrd960 - ok
20:42:07.0888 0x22c8  [ D9A0CE66046D6EFA0C61BAA885CBA0A8, 06C3331C7F3EE0E0B95E8302CB80315E965587C4D6231785B8ACF3FAE4731FAF ] NlaSvc          C:\Windows\System32\nlasvc.dll
20:42:07.0895 0x22c8  NlaSvc - ok
20:42:08.0011 0x22c8  [ C31FA031335EFF434B2D94278E74BCCE, F5DFD40C16E4013CBAD0E4FB8EF2B4419702B9C215218F69C4A2DD7C4C4C1E2B ] NPF             C:\Windows\system32\drivers\npf.sys
20:42:08.0071 0x22c8  NPF - ok
20:42:08.0101 0x22c8  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
20:42:08.0102 0x22c8  Npfs - ok
20:42:08.0191 0x22c8  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
20:42:08.0214 0x22c8  nsi - ok
20:42:08.0218 0x22c8  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
20:42:08.0219 0x22c8  nsiproxy - ok
20:42:08.0395 0x22c8  [ 378E0E0DFEA67D98AE6EA53ADBBD76BC, 2A78A36A729B271FE54A54E507EBC9AD9B9D764DBCB58AC3CBB8FC76D0075391 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
20:42:08.0455 0x22c8  Ntfs - ok
20:42:08.0468 0x22c8  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
20:42:08.0469 0x22c8  Null - ok
20:42:08.0570 0x22c8  [ C87B11EB78428853F9E8495C47E53C10, FAE479DB0812967B3FF968773BA998591B4F50BE4329B8349BCA7E6EAB1B0474 ] NVHDA           C:\Windows\system32\drivers\nvhda64v.sys
20:42:08.0597 0x22c8  NVHDA - ok
20:42:10.0456 0x22c8  [ 185B4FFECD886A424B57B58AE173FBBE, 7CFD51694091035639B900EC64FAD62CC1E5F3DC520F59CC27540B170A957C60 ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
20:42:10.0781 0x22c8  nvlddmkm - ok
20:42:11.0240 0x22c8  [ C22ADABFABBC2B7AC189C87D87B1ABD6, 20886F806C1C02FA8BAA8B76AFCC32C40FA51921ED8D97F592DF9F92BFA933EE ] NvNetworkService C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
20:42:11.0274 0x22c8  NvNetworkService - ok
20:42:11.0330 0x22c8  [ A4D9C9A608A97F59307C2F2600EDC6A4, D786F4CA2D10BAC31CE14A338C442F7027D4BB2E955AB99BC44C2F241D383BBE ] nvraid          C:\Windows\system32\drivers\nvraid.sys
20:42:11.0339 0x22c8  nvraid - ok
20:42:11.0365 0x22c8  [ 6C1D5F70E7A6A3FD1C90D840EDC048B9, 8D5337742A0F5B04D636C163CE77D4A9B3684CF81170026912A402513B44BA77 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
20:42:11.0389 0x22c8  nvstor - ok
20:42:11.0567 0x22c8  [ A88135181D776F8C18550A589A9CAF2D, 47CA5246A55198BA5DEDD34C93A3C5E2DF0EED29ADA3F27AB963857116B6048E ] NvStreamKms     C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys
20:42:11.0569 0x22c8  NvStreamKms - ok
20:42:11.0591 0x22c8  NvStreamSvc - ok
20:42:11.0769 0x22c8  [ E1CE82592245B9E9621F17FBF457DB4E, 98B021623B10EBF7ED370BC2516D8377C09E9E2BB49BD96F492F55006B1B8CC4 ] nvsvc           C:\Windows\system32\nvvsvc.exe
20:42:11.0810 0x22c8  nvsvc - ok
20:42:11.0970 0x22c8  [ 75034A4D7C02327D150B617571D4196A, 8E7DAFEC4307E883D52BD0B5F0732E26E019C953770B52ACBBAD3074A66393CB ] nvvad_WaveExtensible C:\Windows\system32\drivers\nvvad64v.sys
20:42:11.0972 0x22c8  nvvad_WaveExtensible - ok
20:42:12.0068 0x22c8  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\DRIVERS\nv_agp.sys
20:42:12.0077 0x22c8  nv_agp - ok
20:42:12.0143 0x22c8  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\DRIVERS\ohci1394.sys
20:42:12.0151 0x22c8  ohci1394 - ok
20:42:12.0213 0x22c8  [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
20:42:12.0222 0x22c8  ose - ok
20:42:12.0958 0x22c8  [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
20:42:13.0151 0x22c8  osppsvc - ok
20:42:13.0230 0x22c8  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
20:42:13.0237 0x22c8  p2pimsvc - ok
20:42:13.0285 0x22c8  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
20:42:13.0298 0x22c8  p2psvc - ok
20:42:13.0332 0x22c8  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
20:42:13.0339 0x22c8  Parport - ok
20:42:13.0423 0x22c8  [ 90061B1ACFE8CCAA5345750FFE08D8B8, 76309683FFDF380AF9C6E1D9A52E46B011A0BF1026D747181D01F3312B7541C7 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
20:42:13.0426 0x22c8  partmgr - ok
20:42:13.0532 0x22c8  [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc          C:\Windows\System32\pcasvc.dll
20:42:13.0555 0x22c8  PcaSvc - ok
20:42:13.0657 0x22c8  [ F36F6504009F2FB0DFD1B17A116AD74B, 33A4C217F7DC5E5B7E1B6CF335327C8FE6CC5D6D048D420252965574CAD83918 ] pci             C:\Windows\system32\DRIVERS\pci.sys
20:42:13.0691 0x22c8  pci - ok
20:42:13.0740 0x22c8  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\DRIVERS\pciide.sys
20:42:13.0752 0x22c8  pciide - ok
20:42:13.0811 0x22c8  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
20:42:13.0842 0x22c8  pcmcia - ok
20:42:13.0890 0x22c8  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
20:42:13.0919 0x22c8  pcw - ok
20:42:13.0986 0x22c8  [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
20:42:14.0012 0x22c8  PEAUTH - ok
20:42:14.0565 0x22c8  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
20:42:14.0596 0x22c8  PerfHost - ok
20:42:14.0726 0x22c8  [ 557E9A86F65F0DE18C9B6751DFE9D3F1, 630EE5A80335929517A22D130C75CBCE882B92978372A6F36C30B9D353C7BB07 ] pla             C:\Windows\system32\pla.dll
20:42:14.0756 0x22c8  pla - ok
20:42:14.0815 0x22c8  [ 98B1721B8718164293B9701B98C52D77, 27F5F00D4AA394D4D8D0A0062EDC3F944B603E07CAAEDC5CC959BA1E8C208C2A ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
20:42:14.0827 0x22c8  PlugPlay - ok
20:42:14.0864 0x22c8  PnkBstrA - ok
20:42:14.0872 0x22c8  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
20:42:14.0890 0x22c8  PNRPAutoReg - ok
20:42:14.0955 0x22c8  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
20:42:14.0961 0x22c8  PNRPsvc - ok
20:42:15.0080 0x22c8  [ 166EB40D1F5B47E615DE3D0FFFE5F243, E32BCCA0D25CD631C221986EBE9F6C54BF2F12DE1672D69CCC4E22AD07D0525A ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
20:42:15.0120 0x22c8  PolicyAgent - ok
20:42:15.0177 0x22c8  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\Windows\system32\umpo.dll
20:42:15.0183 0x22c8  Power - ok
20:42:15.0230 0x22c8  [ 27CC19E81BA5E3403C48302127BDA717, C580FC552DDF9C163FC325B38B05C06FFD696495E4C01514BCD6346CFE4F0B40 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
20:42:15.0257 0x22c8  PptpMiniport - ok
20:42:15.0287 0x22c8  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\DRIVERS\processr.sys
20:42:15.0289 0x22c8  Processor - ok
20:42:15.0347 0x22c8  [ 97293447431311C06703368AD0F6C4BE, 302A3CA8F6961717D95469B20A8A71954D4ECFCDF4638238D3D44AAE5A8D9B8B ] ProfSvc         C:\Windows\system32\profsvc.dll
20:42:15.0352 0x22c8  ProfSvc - ok
20:42:15.0371 0x22c8  [ 156F6159457D0AA7E59B62681B56EB90, 27B855BF79490E4CC58D38A920C077A56785494BFFF0B448A898486009B24937 ] ProtectedStorage C:\Windows\system32\lsass.exe
20:42:15.0372 0x22c8  ProtectedStorage - ok
20:42:15.0472 0x22c8  [ EE992183BD8EAEFD9973F352E587A299, 6B28930FAA0A54FAADDAF2231553D7F5D45C7227454C6D49A86DFC9EF6BC9043 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
20:42:15.0479 0x22c8  Psched - ok
20:42:15.0530 0x22c8  [ 4712CC14E720ECCCC0AA16949D18AAF1, AF0223D118A25CA14EC1AF8A40A793D3CBCBE3576CCACBCD4F9A3D3F10407262 ] PxHlpa64        C:\Windows\system32\Drivers\PxHlpa64.sys
20:42:15.0532 0x22c8  PxHlpa64 - ok
20:42:15.0789 0x22c8  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
20:42:15.0867 0x22c8  ql2300 - ok
20:42:15.0911 0x22c8  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
20:42:15.0943 0x22c8  ql40xx - ok
20:42:16.0114 0x22c8  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
20:42:16.0145 0x22c8  QWAVE - ok
20:42:16.0178 0x22c8  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
20:42:16.0179 0x22c8  QWAVEdrv - ok
20:42:16.0220 0x22c8  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
20:42:16.0243 0x22c8  RasAcd - ok
20:42:16.0358 0x22c8  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
20:42:16.0391 0x22c8  RasAgileVpn - ok
20:42:16.0475 0x22c8  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
20:42:16.0478 0x22c8  RasAuto - ok
20:42:16.0571 0x22c8  [ 87A6E852A22991580D6D39ADC4790463, 0F757C6E5B57DFC239CE1BEC88EF16C07E7F1A40D629A9A6DF3CB6B88FB9E642 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
20:42:16.0644 0x22c8  Rasl2tp - ok
20:42:16.0730 0x22c8  [ 47394ED3D16D053F5906EFE5AB51CC83, FE5D1249788DB6D85C55769251B0AED738D3BBA04DF57124E03397D3C0599286 ] RasMan          C:\Windows\System32\rasmans.dll
20:42:16.0738 0x22c8  RasMan - ok
20:42:16.0805 0x22c8  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
20:42:16.0813 0x22c8  RasPppoe - ok
20:42:16.0897 0x22c8  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
20:42:16.0906 0x22c8  RasSstp - ok
20:42:16.0961 0x22c8  [ 3BAC8142102C15D59A87757C1D41DCE5, C0C2C6887EA5A439E69221196348382ACE3E1942C9C6E0A970E153890F71724C ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
20:42:16.0989 0x22c8  rdbss - ok
20:42:17.0014 0x22c8  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
20:42:17.0030 0x22c8  rdpbus - ok
20:42:17.0039 0x22c8  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
20:42:17.0040 0x22c8  RDPCDD - ok
20:42:17.0074 0x22c8  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
20:42:17.0074 0x22c8  RDPENCDD - ok
20:42:17.0078 0x22c8  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
20:42:17.0078 0x22c8  RDPREFMP - ok
20:42:17.0123 0x22c8  [ 447DE7E3DEA39D422C1504F245B668B1, C54D90D2F9405E011E490D3C2F0F64488B87B969C95E367C076BBFCFD8654909 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
20:42:17.0132 0x22c8  RDPWD - ok
20:42:17.0185 0x22c8  [ 634B9A2181D98F15941236886164EC8B, 15C55F05FD3CD751F619F18E2ADF91552AE82146501CD031402277F496A5B7D8 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
20:42:17.0243 0x22c8  rdyboost - ok
20:42:17.0423 0x22c8  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
20:42:17.0438 0x22c8  RemoteAccess - ok
20:42:17.0604 0x22c8  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
20:42:17.0695 0x22c8  RemoteRegistry - ok
20:42:17.0786 0x22c8  [ 7B04C9843921AB1F695FB395422C5360, C9B02BE0384357FD242613C2A12029B45322AF9A795CD69F33500CA7530899A7 ] RimUsb          C:\Windows\system32\Drivers\RimUsb_AMD64.sys
20:42:17.0800 0x22c8  RimUsb - ok
20:42:18.0088 0x22c8  [ 05FC44D32A144925EAE45570029FD6E1, 843976755AC807920C84D769D91C04AFA9CD02B71F4E8F20B0C16493AA878923 ] RoxMediaDB10    c:\Program Files (x86)\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe
20:42:18.0202 0x22c8  RoxMediaDB10 - ok
20:42:18.0297 0x22c8  [ A780D3EAA74582EA1DEB6BD9C7A3D9C9, 9F66C47D49AADDC946C20945685C1B8BDFAF011D9CD840AC9F3130B5BA09946C ] rpcapd          C:\Program Files (x86)\WinPcap\rpcapd.exe
20:42:18.0307 0x22c8  rpcapd - ok
20:42:18.0340 0x22c8  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
20:42:18.0365 0x22c8  RpcEptMapper - ok
20:42:18.0397 0x22c8  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
20:42:18.0420 0x22c8  RpcLocator - ok
20:42:18.0473 0x22c8  [ 7266972E86890E2B30C0C322E906B027, BFA30E85F5BD3AA933913BD7C6D2B5993DB7AFB0C98349B61A6BEF0BDC8A3680 ] RpcSs           C:\Windows\system32\rpcss.dll
20:42:18.0482 0x22c8  RpcSs - ok
20:42:18.0626 0x22c8  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
20:42:18.0645 0x22c8  rspndr - ok
20:42:18.0712 0x22c8  [ 3C85058541D55BFCEFD9177A68A507C6, 4719C435B1F632E644A1830570B933A3714682FEC64BF15C1405FEF2E2349688 ] RTL8192su       C:\Windows\system32\DRIVERS\RTL8192su.sys
20:42:18.0739 0x22c8  RTL8192su - ok
20:42:19.0303 0x22c8  [ 62704EA9894B7C6F3B36ED708C73358C, 16E44618B91F689E8D0DF91E22E57D9136B493101C5415F2D7E9E778C636E5E5 ] RtlWlanu        C:\Windows\system32\DRIVERS\rtwlanu.sys
20:42:19.0412 0x22c8  RtlWlanu - ok
20:42:19.0489 0x22c8  [ E5DCAF3BA52C18B8C267B8525393750E, 874B78270C60FE426C3B35C0B5FD00EA35D88C081BB94E03F9B71E4479FE46A7 ] RunSwUSB        C:\Windows\runSW.exe
20:42:19.0490 0x22c8  RunSwUSB - ok
20:42:19.0492 0x22c8  RxFilter - ok
20:42:19.0537 0x22c8  [ 156F6159457D0AA7E59B62681B56EB90, 27B855BF79490E4CC58D38A920C077A56785494BFFF0B448A898486009B24937 ] SamSs           C:\Windows\system32\lsass.exe
20:42:19.0538 0x22c8  SamSs - ok
20:42:19.0551 0x22c8  [ E3BBB89983DAF5622C1D50CF49F28227, 49370DC142D577D657BF5755AA9B8625C35D3DDAF1F9466B4888507FB8E6FF07 ] sbp2port        C:\Windows\system32\DRIVERS\sbp2port.sys
20:42:19.0565 0x22c8  sbp2port - ok
20:42:19.0610 0x22c8  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
20:42:19.0629 0x22c8  SCardSvr - ok
20:42:19.0741 0x22c8  [ 6CE6F98EA3D07A9C2CE3CD0A5A86352D, 64A07303E538A1EE439D4AAD0DEBBD6037219D37B884026701A06E59A729E9C9 ] SCDEmu          C:\Windows\system32\drivers\SCDEmu.sys
20:42:19.0754 0x22c8  SCDEmu - ok
20:42:19.0798 0x22c8  [ C94DA20C7E3BA1DCA269BC8460D98387, E1A5629728A79233B62BA87B4354BC3A332A853CC36A60E77B34923F4BCA8A61 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
20:42:19.0810 0x22c8  scfilter - ok
20:42:19.0998 0x22c8  [ 624D0F5FF99428BB90A5B8A4123E918E, 90A43E6F09B56CB86A3E3851F8E5ABB74905AEB70296F4B87BEDBC3027E65E86 ] Schedule        C:\Windows\system32\schedsvc.dll
20:42:20.0062 0x22c8  Schedule - ok
20:42:20.0109 0x22c8  [ 312E2F82AF11E79906898AC3E3D58A1F, F6CB7D8B204B94F749D5DBEFD552150AAB16A34D629F87F73823A7504465F106 ] SCPolicySvc     C:\Windows\System32\certprop.dll
20:42:20.0110 0x22c8  SCPolicySvc - ok
20:42:20.0207 0x22c8  [ 765A27C3279CE11D14CB9E4F5869FCA5, B6C2EFFBA938828FEF7FE992A4C88B3154D053763C38762DCE13252FE9571FA1 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
20:42:20.0246 0x22c8  SDRSVC - ok
20:42:20.0309 0x22c8  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
20:42:20.0325 0x22c8  secdrv - ok
20:42:20.0343 0x22c8  [ 463B386EBC70F98DA5DFF85F7E654346, 8E27B18B04AF587719D1DAE75A042DB998E06CAE112BD68626EF046036D2DCDC ] seclogon        C:\Windows\system32\seclogon.dll
20:42:20.0354 0x22c8  seclogon - ok
20:42:20.0360 0x22c8  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\system32\sens.dll
20:42:20.0382 0x22c8  SENS - ok
20:42:20.0397 0x22c8  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
20:42:20.0413 0x22c8  SensrSvc - ok
20:42:20.0456 0x22c8  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
20:42:20.0457 0x22c8  Serenum - ok
20:42:20.0496 0x22c8  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\DRIVERS\serial.sys
20:42:20.0530 0x22c8  Serial - ok
20:42:20.0567 0x22c8  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
20:42:20.0568 0x22c8  sermouse - ok
20:42:20.0631 0x22c8  [ C3BC61CE47FF6F4E88AB8A3B429A36AF, 6CA53AD0CB7215BAE3467EC1FD490E3A18504BD6CD4F0FABF9BD37516AB9DFE0 ] SessionEnv      C:\Windows\system32\sessenv.dll
20:42:20.0648 0x22c8  SessionEnv - ok
20:42:20.0792 0x22c8  SessionLauncher - ok
20:42:20.0835 0x22c8  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\DRIVERS\sffdisk.sys
20:42:20.0836 0x22c8  sffdisk - ok
20:42:20.0853 0x22c8  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\DRIVERS\sffp_mmc.sys
20:42:20.0854 0x22c8  sffp_mmc - ok
20:42:20.0868 0x22c8  [ 178298F767FE638C9FEDCBDEF58BB5E4, 053D12CFEE5C54EA7D06F9C9CAE93544FE258A4825CDE2A14090BC81A96E1CF7 ] sffp_sd         C:\Windows\system32\DRIVERS\sffp_sd.sys
20:42:20.0878 0x22c8  sffp_sd - ok
20:42:20.0938 0x22c8  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
20:42:20.0951 0x22c8  sfloppy - ok
20:42:21.0067 0x22c8  [ C6CC9297BD53E5229653303E556AA539, 921E21EDED244FEE15B56564B97C97785F45AB862C1012BFA0B96B121DC90076 ] Sftfs           C:\Windows\system32\DRIVERS\Sftfslh.sys
20:42:21.0098 0x22c8  Sftfs - ok
20:42:21.0294 0x22c8  [ 13693B6354DD6E72DC5131DA7D764B90, 447EFDA7CFB1F62EA316219D996406C8DC374097DB903F362D6E945227D8BB2D ] sftlist         C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
20:42:21.0320 0x22c8  sftlist - ok
20:42:21.0356 0x22c8  [ 390AA7BC52CEE43F6790CDEA1E776703, 0D008289E4B14EF56D5233B7C8C789A36503FBAA8896660776557D6F08808FA7 ] Sftplay         C:\Windows\system32\DRIVERS\Sftplaylh.sys
20:42:21.0370 0x22c8  Sftplay - ok
20:42:21.0388 0x22c8  [ 617E29A0B0A2807466560D4C4E338D3E, 5E95D38DB9A6776EB4A15A952FA7949831D6F660EED8C3E79BD09D102BAC5D67 ] Sftredir        C:\Windows\system32\DRIVERS\Sftredirlh.sys
20:42:21.0413 0x22c8  Sftredir - ok
20:42:21.0551 0x22c8  [ E1974A92AC0914A3859359A0A8C82C68, 4908917F72D6E531B44488F06A05915F0DA9767758E44C886F5F93F46BA79654 ] SftService      C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
20:42:21.0588 0x22c8  SftService - ok
20:42:21.0622 0x22c8  [ 8F571F016FA1976F445147E9E6C8AE9B, 527AB960F2E08F598D1B953BDA4EA749831DD3C765DA278044B8AB22365F02B5 ] Sftvol          C:\Windows\system32\DRIVERS\Sftvollh.sys
20:42:21.0627 0x22c8  Sftvol - ok
20:42:21.0676 0x22c8  [ C3CDDD18F43D44AB713CF8C4916F7696, 38093295825AFDD08D7E32CC4EF2A6C447F6D6E3C6F7EA5554C25E7C3F16FC92 ] sftvsa          C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
20:42:21.0710 0x22c8  sftvsa - ok
20:42:21.0852 0x22c8  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
20:42:21.0888 0x22c8  SharedAccess - ok
20:42:21.0960 0x22c8  [ 0298AC45D0EFFFB2DB4BAA7DD186E7BF, 1C1D17301A4D37DBF906955CCABD2A3FDA47AFB24CBA978CF851123762249848 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
20:42:22.0022 0x22c8  ShellHWDetection - ok
20:42:22.0091 0x22c8  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
20:42:22.0102 0x22c8  SiSRaid2 - ok
20:42:22.0131 0x22c8  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
20:42:22.0134 0x22c8  SiSRaid4 - ok
20:42:22.0346 0x22c8  [ F6EF225A23D336CA30001E5007644C24, B0A4B1256C1074F1B4F73E3BBA16FD4683D6EEA583DEEF8E11EFD29BA7541F2A ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
20:42:22.0353 0x22c8  SkypeUpdate - ok
20:42:22.0401 0x22c8  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
20:42:22.0415 0x22c8  Smb - ok
20:42:22.0467 0x22c8  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
20:42:22.0469 0x22c8  SNMPTRAP - ok
20:42:22.0492 0x22c8  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
20:42:22.0504 0x22c8  spldr - ok
20:42:22.0565 0x22c8  [ F8E1FA03CB70D54A9892AC88B91D1E7B, 55EECAAD4C7EC0868BE937F4ADDA026AFDFCC614E94DE4B3248BFF2BE7FF13E8 ] Spooler         C:\Windows\System32\spoolsv.exe
20:42:22.0585 0x22c8  Spooler - ok
20:42:22.0963 0x22c8  [ 913D843498553A1BC8F8DBAD6358E49F, F8B931FDABF669D642CBDCD2FF31E07F8A5E2D5F72E11D4A8FF219CCFB5825E9 ] sppsvc          C:\Windows\system32\sppsvc.exe
20:42:23.0112 0x22c8  sppsvc - ok
20:42:23.0120 0x22c8  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
20:42:23.0141 0x22c8  sppuinotify - ok
20:42:23.0276 0x22c8  [ D630B6F2E8379B6F10DC16E82A426552, 9F7949B11BCEF55B38119ED45BD92117A8551BEC8A2BCD88EA89707C48120F1B ] sprtsvc_DellSupportCenter C:\Program Files (x86)\Dell Support Center\bin\sprtsvc.exe
20:42:23.0290 0x22c8  sprtsvc_DellSupportCenter - ok
20:42:23.0369 0x22c8  [ 2408C0366D96BCDF63E8F1C78E4A29C5, 66F646890695B5D80536E88B1566C8765D89CFE25954ED650F6D773EFF045016 ] srv             C:\Windows\system32\DRIVERS\srv.sys
20:42:23.0390 0x22c8  srv - ok
20:42:23.0448 0x22c8  [ 76548F7B818881B47D8D1AE1BE9C11F8, 8F1356B07A6A55746FC71B6DB0322128941AE890850196F2B19BC01E6FC9B41C ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
20:42:23.0461 0x22c8  srv2 - ok
20:42:23.0522 0x22c8  [ 0AF6E19D39C70844C5CAA8FB0183C36E, 4494EEFDEA7198888D32E74727E5BC0AC628FFA70B1FE7EB59DBEEDC1A95D0DD ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
20:42:23.0528 0x22c8  srvnet - ok
20:42:23.0564 0x22c8  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
20:42:23.0575 0x22c8  SSDPSRV - ok
20:42:23.0580 0x22c8  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
20:42:23.0583 0x22c8  SstpSvc - ok
20:42:23.0756 0x22c8  [ 189879824D01F9A0DD1D72259A120F50, D587688E9EF7C43319AB87EEA368C9310F3A8F4A8A6D8A6E427A54126C209DF0 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
20:42:23.0793 0x22c8  Steam Client Service - ok
20:42:24.0077 0x22c8  [ A9425CB7D5A698EA49BE0DF55A448E68, 2DB5B00D6AAB6D0D60EFE5FE26C50FD1AB3D4F9E2BA2EAD8A0BE1F1AF9082C12 ] Stereo Service  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
20:42:24.0100 0x22c8  Stereo Service - ok
20:42:24.0152 0x22c8  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
20:42:24.0154 0x22c8  stexstor - ok
20:42:24.0357 0x22c8  [ 52D0E33B681BD0F33FDC08812FEE4F7D, BBEBC0773402F6697D2F14F63E5E4FDC2180466E7FDBD306E408535B10160249 ] stisvc          C:\Windows\System32\wiaservc.dll
20:42:24.0370 0x22c8  stisvc - ok
20:42:24.0435 0x22c8  [ FF5EB78AF7DFB68C2FB363537AAF753E, BF34EBC28A18D31ADA21098FCD2F2D5FACE7AA9B49DB1AFA4AD248B2A58FE86E ] stllssvr        c:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
20:42:24.0448 0x22c8  stllssvr - ok
20:42:24.0474 0x22c8  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
20:42:24.0476 0x22c8  swenum - ok
20:42:24.0683 0x22c8  [ F577910A133A592234EBAAD3F3AFA258, 36F514740EE2D2B2F7ABFFFA13D575233EC4CE774EB58BF889C09930FEF1F443 ] SwitchBoard     C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
20:42:24.0761 0x22c8  SwitchBoard - ok
20:42:24.0800 0x22c8  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
20:42:24.0838 0x22c8  swprv - ok
20:42:24.0980 0x22c8  [ 3C1284516A62078FB68F768DE4F1A7BE, 67ECD462335EF88773E4BAEAB230A68EC92A25F8CD8F115873F669205AE6A1A9 ] SysMain         C:\Windows\system32\sysmain.dll
20:42:25.0061 0x22c8  SysMain - ok
20:42:25.0082 0x22c8  [ 238935C3CF2854886DC7CBB2A0E2CC66, BBF7A70BF218A544CC1A6FB81F75EAD29D418794162936BE197D6D61FE0DB1C4 ] TabletInputService C:\Windows\System32\TabSvc.dll
20:42:25.0086 0x22c8  TabletInputService - ok
20:42:25.0185 0x22c8  [ F9BE29D5E097F03F81D3CD12B794CB66, 5EC208DEAF7C721F4C36512E7DAD4AC66578AB935B9502A5E1E213BC91BE508C ] tap0901         C:\Windows\system32\DRIVERS\tap0901.sys
20:42:25.0194 0x22c8  tap0901 - ok
20:42:25.0208 0x22c8  [ 884264AC597B690C5707C89723BB8E7B, 9BF209A4128019421F7EC4AFF71103C5F411DB6CFB32AAC1633E789AD7A30708 ] TapiSrv         C:\Windows\System32\tapisrv.dll
20:42:25.0238 0x22c8  TapiSrv - ok
20:42:25.0275 0x22c8  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\Windows\System32\tbssvc.dll
20:42:25.0286 0x22c8  TBS - ok
20:42:25.0566 0x22c8  [ 624C5B3AA4C99B3184BB922D9ECE3FF0, DF9527CBA335A51513FBFFD95DAF3FA79A19F2B417C533EE384D397FB1E0889E ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
20:42:25.0616 0x22c8  Tcpip - ok
20:42:25.0757 0x22c8  [ 624C5B3AA4C99B3184BB922D9ECE3FF0, DF9527CBA335A51513FBFFD95DAF3FA79A19F2B417C533EE384D397FB1E0889E ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
20:42:25.0787 0x22c8  TCPIP6 - ok
20:42:25.0881 0x22c8  [ 76D078AF6F587B162D50210F761EB9ED, 3813171036B4036306CADC29F877ADAE44B241DDF65B3699C352B7CDA9EC68C9 ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
20:42:25.0883 0x22c8  tcpipreg - ok
20:42:25.0918 0x22c8  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
20:42:25.0924 0x22c8  TDPIPE - ok
20:42:25.0994 0x22c8  [ 7518F7BCFD4B308ABC9192BACAF6C970, CF08E547EF4059DA3F5A2FCBA98939E84092BB6E0E37F9BBCD1E4D9EBB8A58BB ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
20:42:26.0018 0x22c8  TDTCP - ok
20:42:26.0046 0x22c8  [ 079125C4B17B01FCAEEBCE0BCB290C0F, B2DF1F2317EF5DCF0A89327332E9F2770ED604005B3138C095FF01AA63B91437 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
20:42:26.0062 0x22c8  tdx - ok
20:42:26.0644 0x22c8  [ 6B1B2F8D62D606B200C2072564090104, 5EC2A32CAC5729CD26C2A5E1EFF65B4CE24E41BB89F098FF9B9C4968756712FA ] TeamViewer8     C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
20:42:26.0754 0x22c8  TeamViewer8 - ok
20:42:26.0774 0x22c8  [ C448651339196C0E869A355171875522, C12441CF21D7D47804952B968689D78E3BA0323A90C4C811B54A6B2E6260BAD4 ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
20:42:26.0793 0x22c8  TermDD - ok
20:42:26.0873 0x22c8  [ 0F05EC2887BFE197AD82A13287D2F404, 78C8A8FE9B1101430CA79875DA34413C35B6D7A5EE1932E454C50731335437A6 ] TermService     C:\Windows\System32\termsrv.dll
20:42:26.0905 0x22c8  TermService - ok
20:42:26.0925 0x22c8  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
20:42:26.0938 0x22c8  Themes - ok
20:42:27.0012 0x22c8  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
20:42:27.0014 0x22c8  THREADORDER - ok
20:42:27.0054 0x22c8  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
20:42:27.0064 0x22c8  TrkWks - ok
20:42:27.0158 0x22c8  [ 840F7FB849F5887A49BA18C13B2DA920, A59C40A090E03C0136A865FC54508BA938E7B467C8198BC009FE263E6C275781 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
20:42:27.0187 0x22c8  TrustedInstaller - ok
20:42:27.0215 0x22c8  [ 61B96C26131E37B24E93327A0BD1FB95, 7C551B6FD0447258BC3FDED72D8D41A0E8B731562170C264295592D45F85D9FF ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
20:42:27.0226 0x22c8  tssecsrv - ok
20:42:27.0309 0x22c8  [ 3836171A2CDF3AF8EF10856DB9835A70, 74CD0A21B4E5B47E8D762CC28282CA8D512D424EC591D90099B9F8D034AA2FC2 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
20:42:27.0316 0x22c8  tunnel - ok
20:42:27.0327 0x22c8  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
20:42:27.0329 0x22c8  uagp35 - ok
20:42:27.0379 0x22c8  [ 31BA4A33AFAB6A69EA092B18017F737F, CD19290394D20CCCCD186C80A682000D3A1187ABCB292753402C88C6FB83AB7F ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
20:42:27.0419 0x22c8  udfs - ok
20:42:27.0501 0x22c8  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
20:42:27.0503 0x22c8  UI0Detect - ok
20:42:27.0583 0x22c8  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\DRIVERS\uliagpkx.sys
20:42:27.0608 0x22c8  uliagpkx - ok
20:42:27.0673 0x22c8  [ EAB6C35E62B1B0DB0D1B48B671D3A117, E65034BF757AE4D21F69D7A91A7990E326A29A0CE9F871FD704B5E6CCC821FF0 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
20:42:27.0692 0x22c8  umbus - ok
20:42:27.0732 0x22c8  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
20:42:27.0748 0x22c8  UmPass - ok
20:42:27.0866 0x22c8  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
20:42:27.0892 0x22c8  upnphost - ok
20:42:27.0998 0x22c8  [ C9E9D59C0099A9FF51697E9306A44240, 78D9A7A5E5742962B6978F475BF06CB32262F1D214699D3D40538476A58012A1 ] USBAAPL64       C:\Windows\system32\Drivers\usbaapl64.sys
20:42:28.0007 0x22c8  USBAAPL64 - ok
20:42:28.0102 0x22c8  [ 77B01BC848298223A95D4EC23E1785A1, 7D0FBBA746588401400226BB966507EE34EEBB2F4F16607601E3D7383CAD34E2 ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
20:42:28.0157 0x22c8  usbaudio - ok
20:42:28.0206 0x22c8  [ 537A4E03D7103C12D42DFD8FFDB5BDC9, 4E6F43A27E629C9769FAEF305BDCD3D7EDBEE1A98B919AF95CF045407A4297D6 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
20:42:28.0218 0x22c8  usbccgp - ok
20:42:28.0277 0x22c8  [ AF0892A803FDDA7492F595368E3B68E7, F263346DEB4D742EB436CF578F187AC8521D84CED52E98475E6198EC52244F07 ] usbcir          C:\Windows\system32\DRIVERS\usbcir.sys
20:42:28.0296 0x22c8  usbcir - ok
20:42:28.0331 0x22c8  [ FBB21EBE49F6D560DB37AC25FBC68E66, 0F7B2F9BB4062FE24698FF6E5738E83B7FDA9E7FDE9206BEF18C8818627FF2CC ] usbehci         C:\Windows\system32\drivers\usbehci.sys
20:42:28.0343 0x22c8  usbehci - ok
20:42:28.0419 0x22c8  [ 6B7A8A99C4A459E73C286A6763EA24CC, 3A8D6AE1D970AAEC4E08B76DB1B2C06AC003AF4F50339416072973E89F660EE2 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
20:42:28.0445 0x22c8  usbhub - ok
20:42:28.0486 0x22c8  [ 8C88AA7617B4CBC2E4BED61D26B33A27, 4575F0DDFF68C5632CBB7BE93A66FFEDD85BD4D4AEE79C44B2EDA4F8642C6EBF ] usbohci         C:\Windows\system32\drivers\usbohci.sys
20:42:28.0490 0x22c8  usbohci - ok
20:42:28.0544 0x22c8  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
20:42:28.0555 0x22c8  usbprint - ok
20:42:28.0629 0x22c8  [ AAA2513C8AED8B54B189FD0C6B1634C0, 02FEE0B756AA559C29477A19861AC16D5A3152DC3C897C7D466423438B6A5E42 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
20:42:28.0644 0x22c8  usbscan - ok
20:42:28.0708 0x22c8  [ F39983647BC1F3E6100778DDFE9DCE29, 3BD36594F7C753680DB5A4354B1D6A33FC3011631D2D56DD4B2464AA99C85F7B ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
20:42:28.0711 0x22c8  USBSTOR - ok
20:42:28.0755 0x22c8  [ 0B5B3B2DF3FD1709618ACFA50B8392B0, 19F040A16C86C475DD33D935E6244593EC73FF9F8C872BC060DDD8AE4F3EDB55 ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
20:42:28.0767 0x22c8  usbuhci - ok
20:42:28.0892 0x22c8  [ 7CB8C573C6E4A2714402CC0A36EAB4FE, FCD65AA3723617F58F77C4DA93CE910C712B8AA9411B5C4A60DC6C684EA53C1B ] usbvideo        C:\Windows\system32\Drivers\usbvideo.sys
20:42:28.0910 0x22c8  usbvideo - ok
20:42:28.0968 0x22c8  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
20:42:28.0981 0x22c8  UxSms - ok
20:42:29.0062 0x22c8  [ 156F6159457D0AA7E59B62681B56EB90, 27B855BF79490E4CC58D38A920C077A56785494BFFF0B448A898486009B24937 ] VaultSvc        C:\Windows\system32\lsass.exe
20:42:29.0063 0x22c8  VaultSvc - ok
20:42:29.0110 0x22c8  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\DRIVERS\vdrvroot.sys
20:42:29.0112 0x22c8  vdrvroot - ok
20:42:29.0154 0x22c8  [ 44D73E0BBC1D3C8981304BA15135C2F2, 2849387BBCFB0189AF5604D2F7A631BD5D6BBB2CA73AF6E870069AF382A74DED ] vds             C:\Windows\System32\vds.exe
20:42:29.0167 0x22c8  vds - ok
20:42:29.0465 0x22c8  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
20:42:29.0477 0x22c8  vga - ok
20:42:29.0498 0x22c8  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
20:42:29.0499 0x22c8  VgaSave - ok
20:42:29.0514 0x22c8  [ C82E748660F62A242B2DFAC1442F22A4, 24AD6CAA918C5AB6F461D88825885C8637C224001AAD7A80BDC240368CDB0B7E ] vhdmp           C:\Windows\system32\DRIVERS\vhdmp.sys
20:42:29.0522 0x22c8  vhdmp - ok
20:42:29.0629 0x22c8  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\DRIVERS\viaide.sys
20:42:29.0630 0x22c8  viaide - ok
20:42:29.0655 0x22c8  [ 2B1A3DAE2B4E70DBBA822B7A03FBD4A3, 91F2B935E1E88C5542650F7D679A75D0562F4A5812179D1EC146D4B6351361E2 ] volmgr          C:\Windows\system32\DRIVERS\volmgr.sys
20:42:29.0669 0x22c8  volmgr - ok
20:42:29.0695 0x22c8  [ 99B0CBB569CA79ACAED8C91461D765FB, 5BE394A39A941DE2AA1212E66B7068F90D423FA816238657CB9B2DA8BBE69B9B ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
20:42:29.0707 0x22c8  volmgrx - ok
20:42:29.0755 0x22c8  [ 58F82EED8CA24B461441F9C3E4F0BF5C, 40B8C9C9D1BEDD1507138273A3C000C753C8765E1873F2170DE63555A042928C ] volsnap         C:\Windows\system32\DRIVERS\volsnap.sys
20:42:29.0772 0x22c8  volsnap - ok
20:42:29.0809 0x22c8  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
20:42:29.0817 0x22c8  vsmraid - ok
20:42:29.0921 0x22c8  [ 787898BF9FB6D7BD87A36E2D95C899BA, A6C0C7402B1A198E7B3D6D7D283FCB5815AC429DA68FC9B54C67707F3233CCB5 ] VSS             C:\Windows\system32\vssvc.exe
20:42:29.0987 0x22c8  VSS - ok
20:42:30.0010 0x22c8  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
20:42:30.0014 0x22c8  vwifibus - ok
20:42:30.0034 0x22c8  [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
20:42:30.0059 0x22c8  vwififlt - ok
20:42:30.0141 0x22c8  [ 6A638FC4BFDDC4D9B186C28C91BD1A01, 5521F1DC515586777EC4837E0AEAA3E613CC178AF1074031C4D0D0C695A93168 ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys
20:42:30.0172 0x22c8  vwifimp - ok
20:42:30.0257 0x22c8  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
20:42:30.0272 0x22c8  W32Time - ok
20:42:30.0433 0x22c8  [ 0D67B715AE6729D0B518D20B7A7BAD1C, 05B044CB816CBF54DCB634AC765A5937C76B471722C6D6E1A9C27E7EBAB68913 ] WacHidRouter    C:\Windows\system32\DRIVERS\wachidrouter.sys
20:42:30.0445 0x22c8  WacHidRouter - ok
20:42:30.0459 0x22c8  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
20:42:30.0495 0x22c8  WacomPen - ok
20:42:30.0566 0x22c8  [ 1042B08B4336EF3CE34E09435BB33A4A, A42B447B4A9B364BAE329F75D36A906999E8CB754F1B10DE322B6611FF9764F7 ] wacomrouterfilter C:\Windows\system32\DRIVERS\wacomrouterfilter.sys
20:42:30.0567 0x22c8  wacomrouterfilter - ok
20:42:30.0613 0x22c8  [ 47CA49400643EFFD3F1C9A27E1D69324, 7EFD3405282264F7987172B226882FCDD223F771959B9CEBEBF9ECEA317D85B0 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
20:42:30.0634 0x22c8  WANARP - ok
20:42:30.0638 0x22c8  [ 47CA49400643EFFD3F1C9A27E1D69324, 7EFD3405282264F7987172B226882FCDD223F771959B9CEBEBF9ECEA317D85B0 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
20:42:30.0640 0x22c8  Wanarpv6 - ok
20:42:30.0682 0x22c8  wanatw - ok
20:42:30.0884 0x22c8  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
20:42:30.0947 0x22c8  WatAdminSvc - ok
20:42:31.0158 0x22c8  [ 5AB1BB85BD8B5089CC5D64200DEDAE68, 28777D4F3CD07C8E3465B6DA0FCA994E0B93071A3A0D4D1D64C1DF633DD1C64F ] wbengine        C:\Windows\system32\wbengine.exe
20:42:31.0218 0x22c8  wbengine - ok
20:42:31.0297 0x22c8  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
20:42:31.0364 0x22c8  WbioSrvc - ok
20:42:31.0458 0x22c8  [ DD1BAE8EBFC653824D29CCF8C9054D68, 81D6640222FE276D721168745F6BB905D4E756909A9B2C706AF25465D748772D ] wcncsvc         C:\Windows\System32\wcncsvc.dll
20:42:31.0501 0x22c8  wcncsvc - ok
20:42:31.0518 0x22c8  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
20:42:31.0537 0x22c8  WcsPlugInService - ok
20:42:31.0558 0x22c8  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\DRIVERS\wd.sys
20:42:31.0577 0x22c8  Wd - ok
20:42:31.0878 0x22c8  [ DEE16AB97AFB535329D0D0BE3F5929CE, EA739BD9918401FD3BACDAE146E0B8CE4F5168F789071D01BCD75AC357E06B81 ] WDBackup        C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe
20:42:31.0933 0x22c8  WDBackup - ok
20:42:32.0064 0x22c8  [ A3D04EBF5227886029B4532F20D026F7, D90F7B9C176008675DA0B5FD7E4973CBC2A04172CEDF8FB7D3B3B4F27B5440D7 ] WDC_SAM         C:\Windows\system32\DRIVERS\wdcsam64.sys
20:42:32.0065 0x22c8  WDC_SAM - ok
20:42:32.0148 0x22c8  [ 0978D90C8B61F73E926F7194CBCA331C, 0A8C60DB9569F799727441DD57ADE70D8320E42F0739A638107AC0FE70B89547 ] WDDriveService  C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe
20:42:32.0158 0x22c8  WDDriveService - ok
20:42:32.0224 0x22c8  [ 441BD2D7B4F98134C3A4F9FA570FD250, FF20815273014C5A27C2B75E2C70FE674809293627056199F502DFDF4CECFCA1 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
20:42:32.0238 0x22c8  Wdf01000 - ok
20:42:32.0271 0x22c8  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost  C:\Windows\system32\wdi.dll
20:42:32.0276 0x22c8  WdiServiceHost - ok
20:42:32.0294 0x22c8  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost   C:\Windows\system32\wdi.dll
20:42:32.0296 0x22c8  WdiSystemHost - ok
20:42:32.0339 0x22c8  [ 733006127F235BE7C35354EBEE7B9A7B, 2C7E7030D586C36261F33F29883337695493D48CEA415D6DBA7C5635845A5B32 ] WebClient       C:\Windows\System32\webclnt.dll
20:42:32.0355 0x22c8  WebClient - ok
20:42:32.0377 0x22c8  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
20:42:32.0383 0x22c8  Wecsvc - ok
20:42:32.0411 0x22c8  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
20:42:32.0428 0x22c8  wercplsupport - ok
20:42:32.0505 0x22c8  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
20:42:32.0529 0x22c8  WerSvc - ok
20:42:32.0573 0x22c8  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
20:42:32.0574 0x22c8  WfpLwf - ok
20:42:32.0616 0x22c8  [ B14EF15BD757FA488F9C970EEE9C0D35, F27DF2D47E7076786AE7C396583D7A1C56B93E766711066C900964FC7313E794 ] WimFltr         C:\Windows\system32\DRIVERS\wimfltr.sys
20:42:32.0621 0x22c8  WimFltr - ok
20:42:32.0689 0x22c8  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
20:42:32.0690 0x22c8  WIMMount - ok
20:42:32.0724 0x22c8  WinDefend - ok
20:42:32.0775 0x22c8  WinHttpAutoProxySvc - ok
20:42:33.0043 0x22c8  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
20:42:33.0065 0x22c8  Winmgmt - ok
20:42:33.0443 0x22c8  [ 41FBB751936B387F9179E7F03A74FE29, 7A73D887BEC19DFC485ED42B4E6ABEBF824555139B81EA30731A00773E707464 ] WinRM           C:\Windows\system32\WsmSvc.dll
20:42:33.0486 0x22c8  WinRM - ok
20:42:33.0521 0x22c8  [ 4D52C872018AF7E18D078978DCC3F6F2, 046A0E56091120950422F8A83C8126682AAF0BBA97CF18DF0D0D4D59D01A4F28 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
20:42:33.0523 0x22c8  WinUsb - ok
20:42:33.0557 0x22c8  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
20:42:33.0579 0x22c8  Wlansvc - ok
20:42:33.0632 0x22c8  [ C71EE856C4F5B52E2D094F494CEE4936, C19B8FCED774F282010EC59DFE06275B94C1B273811E60A36E22041B529683F0 ] WlanWpsSvc      C:\Program Files (x86)\D-Link\DWA-130 revE\WlanWpsSvc.exe
20:42:33.0636 0x22c8  WlanWpsSvc - ok
20:42:33.0718 0x22c8  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\DRIVERS\wmiacpi.sys
20:42:33.0743 0x22c8  WmiAcpi - ok
20:42:33.0825 0x22c8  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
20:42:33.0829 0x22c8  wmiApSrv - ok
20:42:33.0859 0x22c8  WMPNetworkSvc - ok
20:42:33.0872 0x22c8  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
20:42:33.0874 0x22c8  WPCSvc - ok
20:42:33.0879 0x22c8  [ 2E57DDF2880A7E52E76F41C7E96D327B, D24E19B6091C197D77D71BC044CE2E5A57BE0A2F00D1BB0732E380A398230E63 ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
20:42:33.0883 0x22c8  WPDBusEnum - ok
20:42:33.0930 0x22c8  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
20:42:33.0932 0x22c8  ws2ifsl - ok
20:42:34.0011 0x22c8  [ 8F9F3969933C02DA96EB0F84576DB43E, C424D7B881A4DCC348433CF02044383013E32DB94CC66D1D20E1866CB3B0F952 ] wscsvc          C:\Windows\system32\wscsvc.dll
20:42:34.0015 0x22c8  wscsvc - ok
20:42:34.0018 0x22c8  WSearch - ok
20:42:34.0079 0x22c8  [ B3730C83E305A8D5E195EC5CAF508D06, 616116565252E866E429250C4131A0B0F86C43BE58B97A7B34DCED6CCC2DFD93 ] WTabletServicePro C:\Program Files\Tablet\Wacom\WTabletServicePro.exe
20:42:34.0096 0x22c8  WTabletServicePro - ok
20:42:34.0203 0x22c8  [ D9EF901DCA379CFE914E9FA13B73B4C4, 3BE9693B7B2AFEE23D72AF5DA211379724D752F0EC18ACB7D3DE3DDFC5AE0004 ] wuauserv        C:\Windows\system32\wuaueng.dll
20:42:34.0272 0x22c8  wuauserv - ok
20:42:34.0313 0x22c8  [ C63907207B837A5C05CF6D1606AA0008, 48EA50875C40B8451F1D0A4961B6886448C4EEBBA4EE0C24D9EBB9B635CDB4DB ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
20:42:34.0324 0x22c8  WudfPf - ok
20:42:34.0350 0x22c8  [ D885A873D733020F8B9B9FF4B1666158, 57C0A8CC7F92E149EA42E2BA7CDAA84887AB3030EBDAB46D2D44BFA7CAD98678 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
20:42:34.0355 0x22c8  WUDFRd - ok
20:42:34.0376 0x22c8  [ 27B9BEE5AAC00139E3A3AF5D6227A0DC, 6287D44DDBA8481EFD785B4FB75FDE7639273BED4CAB433EA74B8C05F6E9B330 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
20:42:34.0385 0x22c8  wudfsvc - ok
20:42:34.0402 0x22c8  [ 9A3452B3C2A46C073166C5CF49FAD1AE, D6F95F51D8E37BA4CF403965EC08CCFEEA9EEFDBFC7752432EAEC19925BDA115 ] WwanSvc         C:\Windows\System32\wwansvc.dll
20:42:34.0428 0x22c8  WwanSvc - ok
20:42:34.0522 0x22c8  [ 4A5CE13408945E525503B5F73D29B9C5, D58BB31AF17752508EA67931BF170CE46877DC204FC5DA7EED5A078AEB0CA0FD ] xnacc           C:\Windows\system32\DRIVERS\xnacc.sys
20:42:34.0538 0x22c8  xnacc - ok
20:42:34.0595 0x22c8  [ 74983ADDCA2D9618512C088D856D6615, C4592EFC1206BD813221814FD529AD38ED26E4AE086613EB95D3D5E20448A1F0 ] {1E444BE9-B8EC-4ce6-8C2B-6536FB7F4FB7} C:\Program Files (x86)\CyberLink\PowerDVD DX\000.fcl
20:42:34.0599 0x22c8  {1E444BE9-B8EC-4ce6-8C2B-6536FB7F4FB7} - ok
20:42:34.0615 0x22c8  ================ Scan global ===============================
20:42:34.0632 0x22c8  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
20:42:34.0654 0x22c8  [ 0CB6EBF4B461A6043353C570BD72A1E1, B6DA0AE56A7DC373F60CA1EF69E4D55E6F2EEB0D62AB78D555C5F85EB389A356 ] C:\Windows\system32\winsrv.dll
20:42:34.0670 0x22c8  [ 0CB6EBF4B461A6043353C570BD72A1E1, B6DA0AE56A7DC373F60CA1EF69E4D55E6F2EEB0D62AB78D555C5F85EB389A356 ] C:\Windows\system32\winsrv.dll
20:42:34.0725 0x22c8  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
20:42:34.0742 0x22c8  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
20:42:34.0750 0x22c8  [ Global ] - ok
20:42:34.0751 0x22c8  ================ Scan MBR ==================================
20:42:35.0305 0x22c8  [ CDB4DE4BBD714F152979DA2DCBEF57EB ] \Device\Harddisk0\DR0
20:42:37.0488 0x22c8  \Device\Harddisk0\DR0 - ok
20:42:37.0489 0x22c8  ================ Scan VBR ==================================
20:42:37.0490 0x22c8  [ A64660F41DBBA64F851359DD0DEBF27C ] \Device\Harddisk0\DR0\Partition1
20:42:37.0551 0x22c8  \Device\Harddisk0\DR0\Partition1 - ok
20:42:37.0580 0x22c8  [ 3396555D423E099AD72697E9340789F1 ] \Device\Harddisk0\DR0\Partition2
20:42:37.0624 0x22c8  \Device\Harddisk0\DR0\Partition2 - ok
20:42:37.0624 0x22c8  ================ Scan generic autorun ======================
20:42:37.0707 0x22c8  [ 44A9229022A519ED45294A1934C05EEC, 6DEF0DB5F9B50E9B0AFEE1CF50066BEB4FB7E15E2DC829A499509925660D6992 ] C:\Users\Kalem\AppData\Local\FluxSoftware\Flux\flux.exe
20:42:37.0748 0x22c8  f.lux - ok
20:42:37.0749 0x22c8  Waiting for KSN requests completion. In queue: 105
20:42:38.0749 0x22c8  Waiting for KSN requests completion. In queue: 105
20:42:39.0749 0x22c8  Waiting for KSN requests completion. In queue: 105
20:42:41.0396 0x22c8  Win FW state via NFP2: enabled
20:42:43.0862 0x22c8  ============================================================
20:42:43.0862 0x22c8  Scan finished
20:42:43.0862 0x22c8  ============================================================
20:42:43.0868 0x33dc  Detected object count: 0
20:42:43.0868 0x33dc  Actual detected object count: 0


Edited by TyrionLannister, 13 January 2015 - 05:43 PM.


#10 Phantom010

Phantom010

  • Members
  • 1,022 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Cyberspace
  • Local time:05:36 AM

Posted 13 January 2015 - 05:53 PM

Can you copy/paste the command lines from Process Explorer please?



#11 TyrionLannister

TyrionLannister
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:04:36 AM

Posted 13 January 2015 - 06:56 PM

Can you copy/paste the command lines from Process Explorer please?

 

C:\Windows\Explorer.EXE

 

and

 

C:\Windows\explorer.exe



#12 Phantom010

Phantom010

  • Members
  • 1,022 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Cyberspace
  • Local time:05:36 AM

Posted 13 January 2015 - 07:08 PM

Not sure why one has capital letters and the other not. You may want to send the file to VirusTotal for a scan.


Edited by Phantom010, 13 January 2015 - 07:10 PM.


#13 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,329 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:05:36 AM

Posted 13 January 2015 - 08:20 PM


Please run SFC (System File Checker)
Please run System File Checker sfc /scannow... For more information on this tool see How To Use Sfc.exe To Repair System Files

NOTE for Vista/WIN 7 users..The command needs to be run from an Elevated Command Prompt.Click Start, type cmd into the Start/Search box,
right-click cmd.exe in the list above and select 'Run as Administrator'


You will need your operating system CD handy.

Open Windows Task Manager....by pressing CTRL+SHIFT+ESC

Then click File.. then New Task(Run)

In the box that opens type sfc /scannow ......There is a space between c and /

Click OK
Let it run and insert the CD when asked.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#14 TyrionLannister

TyrionLannister
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:04:36 AM

Posted 13 January 2015 - 08:54 PM

Not sure why one has capital letters and the other not. You may want to send the file to VirusTotal for a scan.

 

The one without capital letters is the one eating up my PCs resources.

 

I did a scan on virustotal and it came up clean. The other thing is that I could only scan one of the explorer folders. Since the location is the same for both. I noticed that in the Process Explorer, the one using up the resources is under the tab of the regular one as well..



#15 Phantom010

Phantom010

  • Members
  • 1,022 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Cyberspace
  • Local time:05:36 AM

Posted 13 January 2015 - 09:10 PM

Can you identify the explorer.exe thread (Threads tab) inside Process Explorer using the most CPU?






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users