Mohl by mi někdo pomoci analyzovat log z programu HiJack?
Náhodně se mi stává, že počítač spadne. Po naběhnutí je možné dohledat SaveDump. Prosím o kontrolu, zdali by to nemohla dělat nějaká potvůrka v systému...
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:24:54, on 24.8.2012
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\Windows\System32\smss.exe
C:\Windows\system32\winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\winlogon.exe
C:\Windows\System32\svchost.exe
C:\Windows\system32\winlogon.exe
D:\Program Files Support\FreeCommander\FreeCommander.exe
C:\Program Files\UNIPOK\ProcessWatcher.exe
C:\Windows\system32\spoolsv.exe
C:\Program Files\UNIPOK\MOPAJ.exe
C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
C:\WINDOWS\system32\tlntsvr.exe
C:\Program Files\UNIPOK\upsvchost.exe
C:\Windows\system32\wscntfy.exe
C:\Windows\system32\cmd.exe
C:\Windows\explorer.exe
C:\Windows\system32\VTTimer.exe
C:\Windows\system32\VTFunkey.exe
C:\Windows\system32\VTtrayp.exe
D:\Program Files Support\FreeCommander\FreeCommander.exe
C:\Windows\system32\msiexec.exe
C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page =
http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe,%windir%\system32\userinit.exe,D:
\Program Files Support\FreeCommander\FreeCommander.exe,
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe
bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [VTTimer] VTTimer.exe
O4 - HKLM\..\Run: [VTFunkey] VTFunkey.exe
O4 - HKLM\..\Run: [VTTrayp] VTtrayp.exe
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\Windows\Network
Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:
\Windows\Network Diagnostic\xpnetdiag.exe
O10 - Broken Internet access because of LSP provider 'c:\windows\system32\nwprovau.dll' missing
O20 - Winlogon Notify: SSOExec - C:\Windows\temp\sso\ssoexec.dll (file missing)
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:
\Windows\system32\browseui.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-
3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: UPSvcHost - OLTIS Group a.s. - C:\Program Files\UNIPOK\upsvchost.exe
--
End of file - 3222 bytes
Děkuji moc
Zamrzání PC (modrá smrt)- prosím o kontrolu logu
-
Žbeky
- Moderátor
-
Guru Level 13
- Příspěvky: 22288
- Registrován: květen 08
- Bydliště: Vsetín - Pardubice
- Pohlaví:
- Stav:
Offline
Re: Zamrzání PC (modrá smrt)- prosím o kontrolu logu
Fixni:
Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
- Pokud používáš Firefox, klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
- Pokud používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected.
- Pokud používáš Chrome, nic dalšího nevybírej a dej Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranění historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit dočasné soubory Windows, vysypat koš atd.
Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Update Malwarebytes' Anti-Malware (Aktualizace Malwarebytes' Anti-Malware) a Launch Malwarebytes' Anti-Malware (Spustit aplikaci Malwarebytes' Anti-Malware), pokud jo tak klikni na tlačítko Finish
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Perform Quick Scan (Provést rychlý sken) a klikni na tlačítko Scan (Skenovat)
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Show Results
- pak zvol možnost Save Logfile a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(ZATÍM SÁM NIC NEMAŽ!).
Vlož sem pak obsah toho logu.
Kód: Vybrat vše
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe,%windir%\system32\userinit.exe,D:\Program Files Support\FreeCommander\FreeCommander.exe,
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXEStáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
- Pokud používáš Firefox, klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
- Pokud používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected.
- Pokud používáš Chrome, nic dalšího nevybírej a dej Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranění historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit dočasné soubory Windows, vysypat koš atd.
Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Update Malwarebytes' Anti-Malware (Aktualizace Malwarebytes' Anti-Malware) a Launch Malwarebytes' Anti-Malware (Spustit aplikaci Malwarebytes' Anti-Malware), pokud jo tak klikni na tlačítko Finish
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Perform Quick Scan (Provést rychlý sken) a klikni na tlačítko Scan (Skenovat)
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Show Results
- pak zvol možnost Save Logfile a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(ZATÍM SÁM NIC NEMAŽ!).
Vlož sem pak obsah toho logu.
V SZ řeším jen záležitosti týkající se fóra. Na prosby a žádosti o technickou podporu nereaguji. Díky za pochopení.
HiJackThis + návod - HW Monitor - Jak označit příspěvek za vyřešený - Pravidla fóra
HiJackThis + návod - HW Monitor - Jak označit příspěvek za vyřešený - Pravidla fóra
Re: Zamrzání PC (modrá smrt)- prosím o kontrolu logu
Provedl jsem výše zmíněné kroky a zde zasílám log z programu Malwarebytes' Anti-Malware.
Malwarebytes Anti-Malware 1.62.0.1300
www.malwarebytes.org
Database version: v2012.08.27.03
Windows XP Service Pack 3 x86 FAT
Internet Explorer 8.0.6001.18702
administrator :: MOPAJ416 [administrator]
27.8.2012 11:46:19
malwarelog
Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 200752
Time elapsed: 2 minute(s), 48 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 11
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced|Start_ShowMyDocs (PUM.Hijack.StartMenu) -> Bad: (0) Good: (1) -> No action taken.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced|Start_ShowHelp (PUM.Hijack.StartMenu) -> Bad: (0) Good: (1) -> No action taken.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced|Start_ShowSearch (PUM.Hijack.StartMenu) -> Bad: (0) Good: (1) -> No action taken.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer|NoDesktop (PUM.Hidden.Desktop) -> Bad: (1) Good: (0) -> No action taken.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer|NoSMHelp (PUM.Hijack.Help) -> Bad: (1) Good: (0) -> No action taken.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer|NoFind (PUM.Hijack.Find) -> Bad: (1) Good: (0) -> No action taken.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer|NoSetFolders (PUM.Hijack.Explorer) -> Bad: (1) Good: (0) -> No action taken.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer|StartMenuLogOff (PUM.Hijack.StartMenu) -> Bad: (1) Good: (0) -> No action taken.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer|NoStartMenuMorePrograms (PUM.Hijack.StartMenu) -> Bad: (1) Good: (0) -> No action taken.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer|NoTrayItemsDisplay (Hijack.Tray) -> Bad: (1) Good: (0) -> No action taken.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer|NoRun (PUM.Hijack.Run) -> Bad: (1) Good: (0) -> No action taken.
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
(end)
Malwarebytes Anti-Malware 1.62.0.1300
www.malwarebytes.org
Database version: v2012.08.27.03
Windows XP Service Pack 3 x86 FAT
Internet Explorer 8.0.6001.18702
administrator :: MOPAJ416 [administrator]
27.8.2012 11:46:19
malwarelog
Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 200752
Time elapsed: 2 minute(s), 48 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 11
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced|Start_ShowMyDocs (PUM.Hijack.StartMenu) -> Bad: (0) Good: (1) -> No action taken.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced|Start_ShowHelp (PUM.Hijack.StartMenu) -> Bad: (0) Good: (1) -> No action taken.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced|Start_ShowSearch (PUM.Hijack.StartMenu) -> Bad: (0) Good: (1) -> No action taken.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer|NoDesktop (PUM.Hidden.Desktop) -> Bad: (1) Good: (0) -> No action taken.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer|NoSMHelp (PUM.Hijack.Help) -> Bad: (1) Good: (0) -> No action taken.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer|NoFind (PUM.Hijack.Find) -> Bad: (1) Good: (0) -> No action taken.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer|NoSetFolders (PUM.Hijack.Explorer) -> Bad: (1) Good: (0) -> No action taken.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer|StartMenuLogOff (PUM.Hijack.StartMenu) -> Bad: (1) Good: (0) -> No action taken.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer|NoStartMenuMorePrograms (PUM.Hijack.StartMenu) -> Bad: (1) Good: (0) -> No action taken.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer|NoTrayItemsDisplay (Hijack.Tray) -> Bad: (1) Good: (0) -> No action taken.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer|NoRun (PUM.Hijack.Run) -> Bad: (1) Good: (0) -> No action taken.
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
(end)
-
Žbeky
- Moderátor
-
Guru Level 13
- Příspěvky: 22288
- Registrován: květen 08
- Bydliště: Vsetín - Pardubice
- Pohlaví:
- Stav:
Offline
Re: Zamrzání PC (modrá smrt)- prosím o kontrolu logu
Znovu spusť MbAM a dej Scan
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Show Results
- ujistit se že máš zatrhnuté všechny vypsané nálezy a klikni na tlačítko Remove Selected
- když skončí odstraňování tak se ti zobrazí log, tak ho sem dej.
- pak zvol v programu OK a pak program ukonči přes Exit
Stáhni si TDSSKiller
Na svojí plochu. Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller.2.2.7.1._(datum)_log.txt , vlož sem prosím celý obsah logu.
Vypni rezidentní štít antiviru a antispywaru
Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud bude po kontrole problém spustit aplikace nebo bude vyskakovat hláška o pokusu použít neplatnou operaci na klíč registru, který je označen pro odstranění, stačí restartovat počítač.
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Show Results
- ujistit se že máš zatrhnuté všechny vypsané nálezy a klikni na tlačítko Remove Selected
- když skončí odstraňování tak se ti zobrazí log, tak ho sem dej.
- pak zvol v programu OK a pak program ukonči přes Exit
Stáhni si TDSSKiller
Na svojí plochu. Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller.2.2.7.1._(datum)_log.txt , vlož sem prosím celý obsah logu.
Vypni rezidentní štít antiviru a antispywaru
Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud bude po kontrole problém spustit aplikace nebo bude vyskakovat hláška o pokusu použít neplatnou operaci na klíč registru, který je označen pro odstranění, stačí restartovat počítač.
V SZ řeším jen záležitosti týkající se fóra. Na prosby a žádosti o technickou podporu nereaguji. Díky za pochopení.
HiJackThis + návod - HW Monitor - Jak označit příspěvek za vyřešený - Pravidla fóra
HiJackThis + návod - HW Monitor - Jak označit příspěvek za vyřešený - Pravidla fóra
Re: Zamrzání PC (modrá smrt)- prosím o kontrolu logu
Děkuji za odpověď.
Zde je log z programu Malwarebytes Anti-Malware:
------------------------------------------------------------------
Malwarebytes Anti-Malware 1.62.0.1300
www.malwarebytes.org
Database version: v2012.08.27.03
Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
administrator :: MOPAJ416 [administrator]
28.8.2012 7:09:15
mbam-log-2012-08-28 (07-09-15).txt
Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 200749
Time elapsed: 2 minute(s), 45 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 11
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced|Start_ShowMyDocs (PUM.Hijack.StartMenu) -> Bad: (0) Good: (1) -> Quarantined and repaired successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced|Start_ShowHelp (PUM.Hijack.StartMenu) -> Bad: (0) Good: (1) -> Quarantined and repaired successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced|Start_ShowSearch (PUM.Hijack.StartMenu) -> Bad: (0) Good: (1) -> Quarantined and repaired successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer|NoDesktop (PUM.Hidden.Desktop) -> Bad: (1) Good: (0) -> Quarantined and repaired successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer|NoSMHelp (PUM.Hijack.Help) -> Bad: (1) Good: (0) -> Quarantined and repaired successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer|NoFind (PUM.Hijack.Find) -> Bad: (1) Good: (0) -> Quarantined and repaired successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer|NoSetFolders (PUM.Hijack.Explorer) -> Bad: (1) Good: (0) -> Quarantined and repaired successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer|StartMenuLogOff (PUM.Hijack.StartMenu) -> Bad: (1) Good: (0) -> Quarantined and repaired successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer|NoStartMenuMorePrograms (PUM.Hijack.StartMenu) -> Bad: (1) Good: (0) -> Quarantined and repaired successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer|NoTrayItemsDisplay (Hijack.Tray) -> Bad: (1) Good: (0) -> Quarantined and repaired successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer|NoRun (PUM.Hijack.Run) -> Bad: (1) Good: (0) -> Quarantined and repaired successfully.
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
(end)
---------------------------------------------------------
a zde je log z TDSSKiller:
-------------------
07:22:30.0312 2976 TDSS rootkit removing tool 2.8.8.0 Aug 24 2012 13:27:48
07:22:30.0359 2976 ============================================================
07:22:30.0359 2976 Current date / time: 2012/08/28 07:22:30.0359
07:22:30.0359 2976 SystemInfo:
07:22:30.0359 2976
07:22:30.0359 2976 OS Version: 5.1.2600 ServicePack: 3.0
07:22:30.0359 2976 Product type: Workstation
07:22:30.0359 2976 ComputerName: MOPAJ416
07:22:30.0359 2976 UserName: administrator
07:22:30.0359 2976 Windows directory: C:\Windows
07:22:30.0359 2976 System windows directory: C:\Windows
07:22:30.0359 2976 Processor architecture: Intel x86
07:22:30.0359 2976 Number of processors: 1
07:22:30.0359 2976 Page size: 0x1000
07:22:30.0359 2976 Boot type: Normal boot
07:22:30.0359 2976 ============================================================
07:22:31.0296 2976 Drive \Device\Harddisk0\DR0 - Size: 0x773594000 (29.80 Gb), SectorSize: 0x200, Cylinders: 0xF32, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
07:22:31.0296 2976 Drive \Device\Harddisk1\DR3 - Size: 0xEEB00000 (3.73 Gb), SectorSize: 0x200, Cylinders: 0x1E6, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
07:22:31.0296 2976 ============================================================
07:22:31.0296 2976 \Device\Harddisk0\DR0:
07:22:31.0296 2976 MBR partitions:
07:22:31.0296 2976 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x1D4EFFA
07:22:31.0296 2976 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1D4F039, BlocksNum 0x1E4A079
07:22:31.0296 2976 \Device\Harddisk1\DR3:
07:22:31.0296 2976 MBR partitions:
07:22:31.0296 2976 \Device\Harddisk1\DR3\Partition1: MBR, Type 0xB, StartLBA 0x3F, BlocksNum 0x7757C1
07:22:31.0296 2976 ============================================================
07:22:31.0296 2976 C: <-> \Device\Harddisk0\DR0\Partition1
07:22:31.0296 2976 D: <-> \Device\Harddisk0\DR0\Partition2
07:22:31.0296 2976 ============================================================
07:22:31.0296 2976 Initialize success
07:22:31.0296 2976 ============================================================
07:23:43.0609 3016 ============================================================
07:23:43.0609 3016 Scan started
07:23:43.0609 3016 Mode: Manual;
07:23:43.0609 3016 ============================================================
07:23:43.0890 3016 ================ Scan system memory ========================
07:23:43.0890 3016 System memory - ok
07:23:43.0906 3016 ================ Scan services =============================
07:23:43.0984 3016 [ C07D5197410AAB28D0D93F943F59656D ] 6to4 C:\Windows\System32\6to4svc.dll
07:23:43.0984 3016 6to4 - ok
07:23:44.0015 3016 [ 8FD99680A539792A30E97944FDAECF17 ] ACPI C:\Windows\system32\drivers\ACPI.sys
07:23:44.0031 3016 ACPI - ok
07:23:44.0046 3016 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\Windows\system32\drivers\aec.sys
07:23:44.0062 3016 aec - ok
07:23:44.0078 3016 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\Windows\System32\drivers\afd.sys
07:23:44.0078 3016 AFD - ok
07:23:44.0109 3016 [ A9A3DAA780CA6C9671A19D52456705B4 ] Alerter C:\Windows\system32\alrsvc.dll
07:23:44.0109 3016 Alerter - ok
07:23:44.0140 3016 [ 8C515081584A38AA007909CD02020B3D ] ALG C:\Windows\system32\alg.exe
07:23:44.0140 3016 ALG - ok
07:23:44.0156 3016 [ D81F7D885E9393B09EC5E46ED8D91565 ] ALiIRDA C:\Windows\system32\drivers\alifir.sys
07:23:44.0156 3016 ALiIRDA - ok
07:23:44.0187 3016 [ D8849F77C0B66226335A59D26CB4EDC6 ] AppMgmt C:\Windows\System32\appmgmts.dll
07:23:44.0187 3016 AppMgmt - ok
07:23:44.0234 3016 [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state C:\Windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
07:23:44.0234 3016 aspnet_state - ok
07:23:44.0265 3016 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\Windows\system32\drivers\asyncmac.sys
07:23:44.0265 3016 AsyncMac - ok
07:23:44.0281 3016 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\Windows\system32\drivers\atapi.sys
07:23:44.0296 3016 atapi - ok
07:23:44.0312 3016 Atmarpc - ok
07:23:44.0328 3016 [ DEF7A7882BEC100FE0B2CE2549188F9D ] AudioSrv C:\Windows\System32\audiosrv.dll
07:23:44.0328 3016 AudioSrv - ok
07:23:44.0359 3016 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\Windows\system32\drivers\audstub.sys
07:23:44.0359 3016 audstub - ok
07:23:44.0390 3016 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\Windows\system32\drivers\Beep.sys
07:23:44.0390 3016 Beep - ok
07:23:44.0421 3016 [ 574738F61FCA2935F5265DC4E5691314 ] BITS C:\WINDOWS\system32\qmgr.dll
07:23:44.0437 3016 BITS - ok
07:23:44.0453 3016 [ F934D1B230F84E1D19DD00AC5A7A83ED ] BridgeMP C:\Windows\system32\drivers\bridge.sys
07:23:44.0453 3016 BridgeMP - ok
07:23:44.0484 3016 [ A06CE3399D16DB864F55FAEB1F1927A9 ] Browser C:\Windows\System32\browser.dll
07:23:44.0484 3016 Browser - ok
07:23:44.0500 3016 [ B279426E3C0C344893ED78A613A73BDE ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
07:23:44.0500 3016 BthEnum - ok
07:23:44.0531 3016 [ FCA6F069597B62D42495191ACE3FC6C1 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
07:23:44.0531 3016 BTHMODEM - ok
07:23:44.0546 3016 [ 80602B8746D3738F5886CE3D67EF06B6 ] BthPan C:\Windows\system32\drivers\bthpan.sys
07:23:44.0546 3016 BthPan - ok
07:23:44.0578 3016 [ 51D05D5A8A7D93AB0B1A8D6A38DB3CA4 ] BTHPORT C:\Windows\system32\Drivers\BTHport.sys
07:23:44.0593 3016 BTHPORT - ok
07:23:44.0609 3016 [ BB68CEBFFD181E18A26112D1B9F90F3D ] BTHprint C:\Windows\system32\drivers\bthprint.sys
07:23:44.0609 3016 BTHprint - ok
07:23:44.0625 3016 [ 61364CD71EF63B0F038B7E9DF00F1EFA ] BTHUSB C:\Windows\system32\Drivers\BTHUSB.sys
07:23:44.0625 3016 BTHUSB - ok
07:23:44.0640 3016 [ 0BE5AEF125BE881C4F854C554F2B025C ] CCDECODE C:\Windows\system32\drivers\CCDECODE.sys
07:23:44.0640 3016 CCDECODE - ok
07:23:44.0671 3016 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\Windows\system32\drivers\Cdfs.sys
07:23:44.0671 3016 Cdfs - ok
07:23:44.0687 3016 [ 1F4260CC5B42272D71F79E570A27A4FE ] cdrom C:\Windows\system32\drivers\cdrom.sys
07:23:44.0687 3016 cdrom - ok
07:23:44.0718 3016 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 c:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
07:23:44.0718 3016 clr_optimization_v2.0.50727_32 - ok
07:23:44.0734 3016 [ 6E4C9F21F0FAE8940661144F41B13203 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
07:23:44.0734 3016 Compbatt - ok
07:23:44.0765 3016 COMSysApp - ok
07:23:44.0796 3016 [ F50D9BDBB25CCE075E514DC07472A22F ] Crusoe C:\Windows\system32\drivers\crusoe.sys
07:23:44.0796 3016 Crusoe - ok
07:23:44.0812 3016 [ 3D4E199942E29207970E04315D02AD3B ] CryptSvc C:\Windows\System32\cryptsvc.dll
07:23:44.0828 3016 CryptSvc - ok
07:23:44.0859 3016 [ 6B27A5C03DFB94B4245739065431322C ] DcomLaunch C:\Windows\system32\rpcss.dll
07:23:44.0875 3016 DcomLaunch - ok
07:23:44.0890 3016 [ 5E38D7684A49CACFB752B046357E0589 ] DHCP C:\Windows\System32\dhcpcsvc.dll
07:23:44.0906 3016 DHCP - ok
07:23:44.0921 3016 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\Windows\system32\drivers\disk.sys
07:23:44.0921 3016 Disk - ok
07:23:44.0937 3016 dmadmin - ok
07:23:44.0984 3016 [ D992FE1274BDE0F84AD826ACAE022A41 ] dmboot C:\Windows\system32\drivers\dmboot.sys
07:23:45.0015 3016 dmboot - ok
07:23:45.0031 3016 [ 7C824CF7BBDE77D95C08005717A95F6F ] dmio C:\Windows\system32\drivers\dmio.sys
07:23:45.0031 3016 dmio - ok
07:23:45.0046 3016 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\Windows\system32\drivers\dmload.sys
07:23:45.0046 3016 dmload - ok
07:23:45.0078 3016 [ 57EDEC2E5F59F0335E92F35184BC8631 ] dmserver C:\Windows\System32\dmserver.dll
07:23:45.0078 3016 dmserver - ok
07:23:45.0093 3016 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\Windows\system32\drivers\DMusic.sys
07:23:45.0093 3016 DMusic - ok
07:23:45.0125 3016 [ 5F7E24FA9EAB896051FFB87F840730D2 ] Dnscache C:\Windows\System32\dnsrslvr.dll
07:23:45.0125 3016 Dnscache - ok
07:23:45.0140 3016 [ 0F0F6E687E5E15579EF4DA8DD6945814 ] Dot3svc C:\Windows\System32\dot3svc.dll
07:23:45.0156 3016 Dot3svc - ok
07:23:45.0171 3016 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
07:23:45.0171 3016 drmkaud - ok
07:23:45.0187 3016 [ 31D172028AF5B0CE67D96D99C74B4283 ] DUAgent C:\Program Files\Common Files\DUAgent.exe
07:23:45.0187 3016 DUAgent - ok
07:23:45.0218 3016 [ 2187855A7703ADEF0CEF9EE4285182CC ] EapHost C:\Windows\System32\eapsvc.dll
07:23:45.0218 3016 EapHost - ok
07:23:45.0234 3016 [ BC93B4A066477954555966D77FEC9ECB ] ersvc C:\Windows\System32\ersvc.dll
07:23:45.0234 3016 ersvc - ok
07:23:45.0265 3016 [ 00DC0619C4742476ECA8DC82BB9B5A94 ] EvalueIO C:\Windows\system32\Drivers\EvalueIO.sys
07:23:45.0265 3016 EvalueIO - ok
07:23:45.0296 3016 [ 65DF52F5B8B6E9BBD183505225C37315 ] Eventlog C:\Windows\system32\services.exe
07:23:45.0296 3016 Eventlog - ok
07:23:45.0328 3016 [ D4991D98F2DB73C60D042F1AEF79EFAE ] EventSystem C:\Windows\system32\es.dll
07:23:45.0328 3016 EventSystem - ok
07:23:45.0359 3016 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\Windows\system32\drivers\Fastfat.sys
07:23:45.0359 3016 Fastfat - ok
07:23:45.0375 3016 [ 99BC0B50F511924348BE19C7C7313BBF ] FastUserSwitchingCompatibility C:\Windows\System32\shsvcs.dll
07:23:45.0390 3016 FastUserSwitchingCompatibility - ok
07:23:45.0406 3016 [ FB512241AACA1B0F969E604C025D91B0 ] FBWF C:\Windows\system32\drivers\Fbwf.sys
07:23:45.0406 3016 FBWF - ok
07:23:45.0421 3016 [ D45926117EB9FA946A6AF572FBE1CAA3 ] Fips C:\Windows\system32\drivers\Fips.sys
07:23:45.0421 3016 Fips - ok
07:23:45.0453 3016 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
07:23:45.0453 3016 FltMgr - ok
07:23:45.0468 3016 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
07:23:45.0468 3016 FontCache3.0.0.0 - ok
07:23:45.0500 3016 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
07:23:45.0500 3016 Fs_Rec - ok
07:23:45.0515 3016 [ AAE37F0F2F613218DCE17B42A18C38DB ] FTDIBUS C:\Windows\system32\drivers\ftdibus.sys
07:23:45.0515 3016 FTDIBUS - ok
07:23:45.0546 3016 [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk C:\Windows\system32\drivers\ftdisk.sys
07:23:45.0546 3016 Ftdisk - ok
07:23:45.0562 3016 [ 48BFD1BA45C9C9E7AB339E25ABFBA1D2 ] FTSER2K C:\Windows\system32\drivers\ftser2k.sys
07:23:45.0562 3016 FTSER2K - ok
07:23:45.0593 3016 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\Windows\system32\DRIVERS\msgpc.sys
07:23:45.0593 3016 Gpc - ok
07:23:45.0609 3016 [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
07:23:45.0625 3016 HDAudBus - ok
07:23:45.0640 3016 [ 4FCCA060DFE0C51A09DD5C3843888BCD ] helpsvc C:\Windows\PCHealth\HelpCtr\Binaries\pchsvc.dll
07:23:45.0640 3016 helpsvc - ok
07:23:45.0656 3016 [ 7BD2DE4C85EB4241EED57672B16A7D8D ] HidBth C:\Windows\system32\drivers\hidbth.sys
07:23:45.0656 3016 HidBth - ok
07:23:45.0687 3016 [ DEB04DA35CC871B6D309B77E1443C796 ] HidServ C:\Windows\System32\hidserv.dll
07:23:45.0687 3016 HidServ - ok
07:23:45.0703 3016 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb C:\Windows\system32\drivers\hidusb.sys
07:23:45.0703 3016 HidUsb - ok
07:23:45.0718 3016 [ 8878BD685E490239777BFE51320B88E9 ] hkmsvc C:\Windows\System32\kmsvc.dll
07:23:45.0734 3016 hkmsvc - ok
07:23:45.0750 3016 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\Windows\system32\Drivers\HTTP.sys
07:23:45.0765 3016 HTTP - ok
07:23:45.0781 3016 [ 6100A808600F44D999CEBDEF8841C7A3 ] HTTPFilter C:\Windows\System32\w3ssl.dll
07:23:45.0781 3016 HTTPFilter - ok
07:23:45.0828 3016 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
07:23:45.0859 3016 idsvc - ok
07:23:45.0875 3016 [ 083A052659F5310DD8B6A6CB05EDCF8E ] imapi C:\Windows\system32\drivers\imapi.sys
07:23:45.0875 3016 imapi - ok
07:23:45.0906 3016 [ 30DEAF54A9755BB8546168CFE8A6B5E1 ] ImapiService C:\Windows\system32\imapi.exe
07:23:45.0906 3016 ImapiService - ok
07:23:46.0078 3016 [ E37589414437A60797E94C0F57C546DB ] IntcAzAudAddService C:\Windows\system32\drivers\RtkHDAud.sys
07:23:46.0187 3016 IntcAzAudAddService - ok
07:23:46.0218 3016 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\Windows\system32\DRIVERS\Ip6Fw.sys
07:23:46.0218 3016 Ip6Fw - ok
07:23:46.0234 3016 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
07:23:46.0250 3016 IpFilterDriver - ok
07:23:46.0265 3016 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\Windows\system32\DRIVERS\ipinip.sys
07:23:46.0265 3016 IpInIp - ok
07:23:46.0296 3016 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\Windows\system32\DRIVERS\ipnat.sys
07:23:46.0296 3016 IpNat - ok
07:23:46.0312 3016 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\Windows\system32\DRIVERS\ipsec.sys
07:23:46.0328 3016 IPSec - ok
07:23:46.0343 3016 [ ACA5E7B54409F9CB5EED97ED0C81120E ] irda C:\Windows\system32\DRIVERS\irda.sys
07:23:46.0343 3016 irda - ok
07:23:46.0375 3016 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\Windows\system32\DRIVERS\irenum.sys
07:23:46.0375 3016 IRENUM - ok
07:23:46.0390 3016 [ 49CC4533CE897CB2E93C1E84A818FDE5 ] Irmon C:\Windows\System32\irmon.dll
07:23:46.0390 3016 Irmon - ok
07:23:46.0406 3016 [ 0501F0B9AB08425F8C0EACBDCC04AA32 ] irsir C:\Windows\system32\drivers\irsir.sys
07:23:46.0406 3016 irsir - ok
07:23:46.0437 3016 [ 05A299EC56E52649B1CF2FC52D20F2D7 ] isapnp C:\Windows\system32\drivers\isapnp.sys
07:23:46.0437 3016 isapnp - ok
07:23:46.0453 3016 [ 463C1EC80CD17420A542B7F36A36F128 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
07:23:46.0453 3016 kbdclass - ok
07:23:46.0468 3016 [ 9EF487A186DEA361AA06913A75B3FA99 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
07:23:46.0468 3016 kbdhid - ok
07:23:46.0500 3016 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\Windows\system32\drivers\kmixer.sys
07:23:46.0500 3016 kmixer - ok
07:23:46.0531 3016 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\Windows\system32\drivers\KSecDD.sys
07:23:46.0531 3016 KSecDD - ok
07:23:46.0546 3016 [ 3A7C3CBE5D96B8AE96CE81F0B22FB527 ] LanmanServer C:\Windows\System32\srvsvc.dll
07:23:46.0562 3016 LanmanServer - ok
07:23:46.0578 3016 [ A8888A5327621856C0CEC4E385F69309 ] lanmanworkstation C:\Windows\System32\wkssvc.dll
07:23:46.0593 3016 lanmanworkstation - ok
07:23:46.0625 3016 [ A7DB739AE99A796D91580147E919CC59 ] LmHosts C:\Windows\System32\lmhsvc.dll
07:23:46.0625 3016 LmHosts - ok
07:23:46.0640 3016 [ 986B1FF5814366D71E0AC5755C88F2D3 ] Messenger C:\Windows\System32\msgsvc.dll
07:23:46.0656 3016 Messenger - ok
07:23:46.0671 3016 [ A7DA20AB18A1BDAE28B0F349E57DA0D1 ] mf C:\Windows\system32\drivers\mf.sys
07:23:46.0671 3016 mf - ok
07:23:46.0687 3016 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\Windows\system32\drivers\mnmdd.sys
07:23:46.0687 3016 mnmdd - ok
07:23:46.0703 3016 [ DFCBAD3CEC1C5F964962AE10E0BCC8E1 ] Modem C:\Windows\system32\drivers\Modem.sys
07:23:46.0703 3016 Modem - ok
07:23:46.0734 3016 [ 1992E0D143B09653AB0F9C5E04B0FD65 ] MODEMCSA C:\Windows\system32\drivers\MODEMCSA.sys
07:23:46.0734 3016 MODEMCSA - ok
07:23:46.0750 3016 [ 35C9E97194C8CFB8430125F8DBC34D04 ] mouclass C:\Windows\system32\drivers\mouclass.sys
07:23:46.0750 3016 mouclass - ok
07:23:46.0765 3016 [ B1C303E17FB9D46E87A98E4BA6769685 ] mouhid C:\Windows\system32\drivers\mouhid.sys
07:23:46.0765 3016 mouhid - ok
07:23:46.0796 3016 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\Windows\system32\drivers\MountMgr.sys
07:23:46.0796 3016 MountMgr - ok
07:23:46.0812 3016 [ C0F8E0C2C3C0437CF37C6781896DC3EC ] MPE C:\Windows\system32\drivers\MPE.sys
07:23:46.0812 3016 MPE - ok
07:23:46.0843 3016 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\Windows\system32\DRIVERS\mrxdav.sys
07:23:46.0843 3016 MRxDAV - ok
07:23:46.0875 3016 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MrxSmb C:\Windows\system32\DRIVERS\mrxsmb.sys
07:23:46.0890 3016 MrxSmb - ok
07:23:46.0906 3016 [ A137F1470499A205ABBB9AAFB3B6F2B1 ] MSDTC C:\Windows\system32\msdtc.exe
07:23:46.0906 3016 MSDTC - ok
07:23:46.0937 3016 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\Windows\system32\drivers\Msfs.sys
07:23:46.0937 3016 Msfs - ok
07:23:46.0953 3016 [ 8AE8450BD18D2595474DF206444AE589 ] MSFSIO C:\Windows\system32\drivers\MSFSIO.sys
07:23:46.0953 3016 MSFSIO - ok
07:23:46.0968 3016 [ 95C6432151CCFF8617352F8E616A1AA4 ] MSIRCOMM C:\Windows\system32\drivers\MSIRCOMM.sys
07:23:46.0968 3016 MSIRCOMM - ok
07:23:47.0000 3016 MSIServer - ok
07:23:47.0015 3016 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
07:23:47.0015 3016 MSKSSRV - ok
07:23:47.0031 3016 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
07:23:47.0031 3016 MSPCLOCK - ok
07:23:47.0062 3016 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
07:23:47.0062 3016 MSPQM - ok
07:23:47.0078 3016 [ D3DBDD392CA1C66A81D09A2ACFDA4F69 ] MSRIFFWV C:\Windows\system32\drivers\MSRIFFWV.sys
07:23:47.0078 3016 MSRIFFWV - ok
07:23:47.0093 3016 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
07:23:47.0093 3016 mssmbios - ok
07:23:47.0125 3016 MSSQLSERVER - ok
07:23:47.0140 3016 [ ADAF062116B4E6D96E44D26486A87AF6 ] MSSQLServerADHelper C:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe
07:23:47.0140 3016 MSSQLServerADHelper - ok
07:23:47.0156 3016 [ E53736A9E30C45FA9E7B5EAC55056D1D ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
07:23:47.0156 3016 MSTEE - ok
07:23:47.0187 3016 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\Windows\system32\drivers\Mup.sys
07:23:47.0187 3016 Mup - ok
07:23:47.0203 3016 [ 5B50F1B2A2ED47D560577B221DA734DB ] NABTSFEC C:\Windows\system32\drivers\NABTSFEC.sys
07:23:47.0203 3016 NABTSFEC - ok
07:23:47.0234 3016 [ 0102140028FAD045756796E1C685D695 ] napagent C:\Windows\System32\qagentrt.dll
07:23:47.0250 3016 napagent - ok
07:23:47.0281 3016 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\Windows\system32\drivers\NDIS.sys
07:23:47.0281 3016 NDIS - ok
07:23:47.0296 3016 [ 7FF1F1FD8609C149AA432F95A8163D97 ] NdisIP C:\Windows\system32\drivers\NdisIP.sys
07:23:47.0296 3016 NdisIP - ok
07:23:47.0312 3016 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\Windows\system32\drivers\ndistapi.sys
07:23:47.0312 3016 NdisTapi - ok
07:23:47.0343 3016 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
07:23:47.0343 3016 Ndisuio - ok
07:23:47.0359 3016 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\Windows\system32\drivers\ndiswan.sys
07:23:47.0359 3016 NdisWan - ok
07:23:47.0390 3016 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
07:23:47.0390 3016 NDProxy - ok
07:23:47.0406 3016 [ 707647A1AA0EDB6CBEF61B0C75C28ED3 ] NECIRDA C:\Windows\system32\drivers\smcirda.sys
07:23:47.0406 3016 NECIRDA - ok
07:23:47.0437 3016 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\Windows\system32\drivers\netbios.sys
07:23:47.0437 3016 NetBIOS - ok
07:23:47.0453 3016 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
07:23:47.0468 3016 NetBT - ok
07:23:47.0484 3016 [ B857BA82860D7FF85AE29B095645563B ] NetDDE C:\Windows\system32\netdde.exe
07:23:47.0484 3016 NetDDE - ok
07:23:47.0515 3016 [ B857BA82860D7FF85AE29B095645563B ] NetDDEdsdm C:\Windows\system32\netdde.exe
07:23:47.0515 3016 NetDDEdsdm - ok
07:23:47.0531 3016 [ BF2466B3E18E970D8A976FB95FC1CA85 ] Netlogon C:\Windows\system32\lsass.exe
07:23:47.0531 3016 Netlogon - ok
07:23:47.0562 3016 [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ] Netman C:\Windows\System32\netman.dll
07:23:47.0578 3016 Netman - ok
07:23:47.0593 3016 [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
07:23:47.0593 3016 NetTcpPortSharing - ok
07:23:47.0625 3016 [ 943337D786A56729263071623BBB9DE5 ] Nla C:\Windows\System32\mswsock.dll
07:23:47.0640 3016 Nla - ok
07:23:47.0656 3016 [ 1E421A6BCF2203CC61B821ADA9DE878B ] nm C:\Windows\system32\DRIVERS\NMnt.sys
07:23:47.0656 3016 nm - ok
07:23:47.0671 3016 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\Windows\system32\drivers\Npfs.sys
07:23:47.0671 3016 Npfs - ok
07:23:47.0687 3016 [ 2ADC0CA9945C65284B3D19BC18765974 ] NSCIRDA C:\Windows\system32\drivers\nscirda.sys
07:23:47.0703 3016 NSCIRDA - ok
07:23:47.0734 3016 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
07:23:47.0750 3016 Ntfs - ok
07:23:47.0765 3016 [ BF2466B3E18E970D8A976FB95FC1CA85 ] NtLmSsp C:\Windows\system32\lsass.exe
07:23:47.0765 3016 NtLmSsp - ok
07:23:47.0796 3016 [ 156F64A3345BD23C600655FB4D10BC08 ] NtmsSvc C:\Windows\system32\ntmssvc.dll
07:23:47.0812 3016 NtmsSvc - ok
07:23:47.0828 3016 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\Windows\system32\drivers\Null.sys
07:23:47.0828 3016 Null - ok
07:23:47.0859 3016 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\Windows\system32\DRIVERS\nwlnkflt.sys
07:23:47.0859 3016 NwlnkFlt - ok
07:23:47.0875 3016 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\Windows\system32\DRIVERS\nwlnkfwd.sys
07:23:47.0875 3016 NwlnkFwd - ok
07:23:47.0906 3016 [ 8B8B1BE2DBA4025DA6786C645F77F123 ] NwlnkIpx C:\Windows\system32\DRIVERS\nwlnkipx.sys
07:23:47.0906 3016 NwlnkIpx - ok
07:23:47.0921 3016 [ 56D34A67C05E94E16377C60609741FF8 ] NwlnkNb C:\Windows\system32\DRIVERS\nwlnknb.sys
07:23:47.0921 3016 NwlnkNb - ok
07:23:47.0953 3016 [ C0BB7D1615E1ACBDC99757F6CEAF8CF0 ] NwlnkSpx C:\Windows\system32\DRIVERS\nwlnkspx.sys
07:23:47.0953 3016 NwlnkSpx - ok
07:23:47.0968 3016 [ 21DA9E0E8A1A9F06F0259318CF6750DE ] OBOE C:\Windows\system32\drivers\tos4mo.sys
07:23:47.0968 3016 OBOE - ok
07:23:47.0984 3016 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\Windows\system32\drivers\PartMgr.sys
07:23:48.0000 3016 PartMgr - ok
07:23:48.0015 3016 [ A219903CCF74233761D92BEF471A07B1 ] PCI C:\Windows\system32\drivers\pci.sys
07:23:48.0015 3016 PCI - ok
07:23:48.0031 3016 [ CCF5F451BB1A5A2A522A76E670000FF0 ] pciide C:\Windows\system32\drivers\pciide.sys
07:23:48.0031 3016 pciide - ok
07:23:48.0062 3016 PDCOMP - ok
07:23:48.0078 3016 PDFRAME - ok
07:23:48.0093 3016 PDRELI - ok
07:23:48.0109 3016 PDRFRAME - ok
07:23:48.0171 3016 [ 65DF52F5B8B6E9BBD183505225C37315 ] PlugPlay C:\Windows\system32\services.exe
07:23:48.0171 3016 PlugPlay - ok
07:23:48.0187 3016 [ BF2466B3E18E970D8A976FB95FC1CA85 ] PolicyAgent C:\Windows\system32\lsass.exe
07:23:48.0203 3016 PolicyAgent - ok
07:23:48.0218 3016 [ A012D02F3CF9EAA4D6CD4D81F79A480F ] POSPerformanceCounters C:\Program Files\Microsoft Point Of Service\Microsoft.PointOfService.Service.exe
07:23:48.0218 3016 POSPerformanceCounters - ok
07:23:48.0234 3016 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\Windows\system32\drivers\raspptp.sys
07:23:48.0234 3016 PptpMiniport - ok
07:23:48.0265 3016 [ A32BEBAF723557681BFC6BD93E98BD26 ] Processor C:\Windows\system32\drivers\processr.sys
07:23:48.0265 3016 Processor - ok
07:23:48.0281 3016 [ BF2466B3E18E970D8A976FB95FC1CA85 ] ProtectedStorage C:\Windows\system32\lsass.exe
07:23:48.0281 3016 ProtectedStorage - ok
07:23:48.0312 3016 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\Windows\system32\drivers\psched.sys
07:23:48.0312 3016 PSched - ok
07:23:48.0328 3016 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\Windows\system32\drivers\ptilink.sys
07:23:48.0328 3016 Ptilink - ok
07:23:48.0343 3016 [ EB631AD8B3E8DCE20CEF046B6D602B98 ] Ramdisk C:\Windows\system32\DRIVERS\ramdisk.sys
07:23:48.0359 3016 Ramdisk - ok
07:23:48.0375 3016 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
07:23:48.0375 3016 RasAcd - ok
07:23:48.0390 3016 [ AD188BE7BDF94E8DF4CA0A55C00A5073 ] RasAuto C:\Windows\System32\rasauto.dll
07:23:48.0406 3016 RasAuto - ok
07:23:48.0421 3016 [ 0207D26DDF796A193CCD9F83047BB5FC ] Rasirda C:\Windows\system32\drivers\rasirda.sys
07:23:48.0421 3016 Rasirda - ok
07:23:48.0437 3016 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\Windows\system32\drivers\rasl2tp.sys
07:23:48.0453 3016 Rasl2tp - ok
07:23:48.0468 3016 [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] RasMan C:\Windows\System32\rasmans.dll
07:23:48.0484 3016 RasMan - ok
07:23:48.0500 3016 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\Windows\system32\drivers\raspppoe.sys
07:23:48.0500 3016 RasPppoe - ok
07:23:48.0531 3016 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\Windows\system32\drivers\raspti.sys
07:23:48.0531 3016 Raspti - ok
07:23:48.0546 3016 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\Windows\system32\DRIVERS\rdbss.sys
07:23:48.0562 3016 Rdbss - ok
07:23:48.0578 3016 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
07:23:48.0578 3016 RDPCDD - ok
07:23:48.0609 3016 [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
07:23:48.0625 3016 rdpdr - ok
07:23:48.0656 3016 [ FC105DD312ED64EB66BFF111E8EC6EAC ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
07:23:48.0656 3016 RDPWD - ok
07:23:48.0671 3016 [ F828DD7E1419B6653894A8F97A0094C5 ] redbook C:\Windows\system32\drivers\redbook.sys
07:23:48.0671 3016 redbook - ok
07:23:48.0703 3016 [ 83EC82895FF3ED1D8BCEE215BD9FDD8C ] RegFilter C:\Windows\system32\drivers\regflt.sys
07:23:48.0703 3016 RegFilter - ok
07:23:48.0718 3016 [ 7E699FF5F59B5D9DE5390E3C34C67CF5 ] RemoteAccess C:\Windows\System32\mprdim.dll
07:23:48.0718 3016 RemoteAccess - ok
07:23:48.0750 3016 [ 5B19B557B0C188210A56A6B699D90B8F ] RemoteRegistry C:\Windows\system32\regsvc.dll
07:23:48.0750 3016 RemoteRegistry - ok
07:23:48.0765 3016 [ 851C30DF2807FCFA21E4C681A7D6440E ] RFCOMM C:\Windows\system32\drivers\rfcomm.sys
07:23:48.0781 3016 RFCOMM - ok
07:23:48.0796 3016 [ C711645C76B8ED87C021BF6165E52795 ] RMCAST C:\Windows\system32\Drivers\RMCast.sys
07:23:48.0812 3016 RMCAST - ok
07:23:48.0828 3016 [ AAED593F84AFA419BBAE8572AF87CF6A ] RpcLocator C:\Windows\system32\locator.exe
07:23:48.0828 3016 RpcLocator - ok
07:23:48.0859 3016 [ 6B27A5C03DFB94B4245739065431322C ] RpcSs C:\Windows\system32\rpcss.dll
07:23:48.0875 3016 RpcSs - ok
07:23:48.0890 3016 [ 3529828EC571FB2F64F6B142F9109993 ] RTL8023xp C:\Windows\system32\DRIVERS\Rtnicxp.sys
07:23:48.0906 3016 RTL8023xp - ok
07:23:48.0921 3016 [ D507C1400284176573224903819FFDA3 ] rtl8139 C:\Windows\system32\drivers\RTL8139.SYS
07:23:48.0921 3016 rtl8139 - ok
07:23:48.0953 3016 [ BF2466B3E18E970D8A976FB95FC1CA85 ] SamSs C:\Windows\system32\lsass.exe
07:23:48.0953 3016 SamSs - ok
07:23:48.0984 3016 [ 86D007E7A654B9A71D1D7D856B104353 ] SCardSvr C:\Windows\System32\SCardSvr.exe
07:23:48.0984 3016 SCardSvr - ok
07:23:49.0000 3016 [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] Schedule C:\Windows\system32\schedsvc.dll
07:23:49.0015 3016 Schedule - ok
07:23:49.0031 3016 [ 089870DAB7AA277585C475AE09EE4C63 ] scsiscan C:\Windows\system32\drivers\scsiscan.sys
07:23:49.0031 3016 scsiscan - ok
07:23:49.0046 3016 [ CBE612E2BB6A10E3563336191EDA1250 ] seclogon C:\Windows\System32\seclogon.dll
07:23:49.0046 3016 seclogon - ok
07:23:49.0078 3016 [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] SENS C:\Windows\system32\sens.dll
07:23:49.0078 3016 SENS - ok
07:23:49.0093 3016 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] Serenum C:\Windows\system32\drivers\serenum.sys
07:23:49.0093 3016 Serenum - ok
07:23:49.0125 3016 [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] Serial C:\Windows\system32\drivers\serial.sys
07:23:49.0125 3016 Serial - ok
07:23:49.0187 3016 [ 83F41D0D89645D7235C051AB1D9523AC ] SharedAccess C:\Windows\System32\ipnathlp.dll
07:23:49.0187 3016 SharedAccess - ok
07:23:49.0218 3016 [ 99BC0B50F511924348BE19C7C7313BBF ] ShellHWDetection C:\Windows\System32\shsvcs.dll
07:23:49.0218 3016 ShellHWDetection - ok
07:23:49.0234 3016 [ 98A1D044331E034DB85D334213E0CC2D ] SIERRA C:\Windows\system32\drivers\irmk7.sys
07:23:49.0234 3016 SIERRA - ok
07:23:49.0250 3016 [ 866D538EBE33709A5C9F5C62B73B7D14 ] SLIP C:\Windows\system32\drivers\SLIP.sys
07:23:49.0250 3016 SLIP - ok
07:23:49.0281 3016 [ 707647A1AA0EDB6CBEF61B0C75C28ED3 ] SMCIRDA C:\Windows\system32\drivers\smcirda.sys
07:23:49.0281 3016 SMCIRDA - ok
07:23:49.0296 3016 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\Windows\system32\drivers\splitter.sys
07:23:49.0312 3016 splitter - ok
07:23:49.0328 3016 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\Windows\system32\spoolsv.exe
07:23:49.0328 3016 Spooler - ok
07:23:49.0359 3016 [ D2B096CD2F56FAC6EEEED9A77DDF6DC8 ] SQLBrowser C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
07:23:49.0375 3016 SQLBrowser - ok
07:23:49.0390 3016 [ 54902536AAD0E9B99BC65F89C0CAF93F ] SQLWriter C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
07:23:49.0390 3016 SQLWriter - ok
07:23:49.0406 3016 [ 76BB022C2FB6902FD5BDD4F78FC13A5D ] sr C:\Windows\system32\Drivers\sr.sys
07:23:49.0421 3016 sr - ok
07:23:49.0437 3016 [ 3805DF0AC4296A34BA4BF93B346CC378 ] srservice C:\Windows\system32\srsvc.dll
07:23:49.0453 3016 srservice - ok
07:23:49.0484 3016 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\Windows\system32\DRIVERS\srv.sys
07:23:49.0484 3016 Srv - ok
07:23:49.0515 3016 [ 0A5679B3714EDAB99E357057EE88FCA6 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
07:23:49.0515 3016 SSDPSRV - ok
07:23:49.0531 3016 [ A1A16662C6B1A665D965D61B9EECC5A7 ] STIrUsb C:\Windows\system32\drivers\irstusb.sys
07:23:49.0531 3016 STIrUsb - ok
07:23:49.0562 3016 [ 8BAD69CBAC032D4BBACFCE0306174C30 ] StiSvc C:\Windows\system32\wiaservc.dll
07:23:49.0578 3016 StiSvc - ok
07:23:49.0593 3016 [ 77813007BA6265C4B6098187E6ED79D2 ] streamip C:\Windows\system32\drivers\StreamIP.sys
07:23:49.0593 3016 streamip - ok
07:23:49.0625 3016 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\Windows\system32\drivers\swenum.sys
07:23:49.0625 3016 swenum - ok
07:23:49.0640 3016 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\Windows\system32\drivers\swmidi.sys
07:23:49.0640 3016 swmidi - ok
07:23:49.0671 3016 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\Windows\system32\drivers\sysaudio.sys
07:23:49.0671 3016 sysaudio - ok
07:23:49.0687 3016 [ C7ABBC59B43274B1109DF6B24D617051 ] SysmonLog C:\Windows\system32\smlogsvc.exe
07:23:49.0703 3016 SysmonLog - ok
07:23:49.0734 3016 [ 3CB78C17BB664637787C9A1C98F79C38 ] TapiSrv C:\Windows\System32\tapisrv.dll
07:23:49.0734 3016 TapiSrv - ok
07:23:49.0765 3016 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\Windows\system32\DRIVERS\tcpip.sys
07:23:49.0765 3016 Tcpip - ok
07:23:49.0796 3016 [ 4E53BBCC4BE37D7A4BD6EF1098C89FF7 ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip6.sys
07:23:49.0812 3016 Tcpip6 - ok
07:23:49.0828 3016 [ 3FC234C9E20918CE856FFA42C421E678 ] TDASYNC C:\Windows\system32\drivers\TDASYNC.sys
07:23:49.0828 3016 TDASYNC - ok
07:23:49.0843 3016 [ 182A77EECBDEA330472A9A7A6F1457CE ] TDIPX C:\Windows\system32\drivers\TDIPX.sys
07:23:49.0843 3016 TDIPX - ok
07:23:49.0859 3016 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\Windows\system32\drivers\TDPIPE.sys
07:23:49.0875 3016 TDPIPE - ok
07:23:49.0890 3016 [ 5FB281F720939CBE9961D1808CC270E9 ] TDSPX C:\Windows\system32\drivers\TDSPX.sys
07:23:49.0890 3016 TDSPX - ok
07:23:49.0906 3016 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\Windows\system32\drivers\TDTCP.sys
07:23:49.0906 3016 TDTCP - ok
07:23:49.0937 3016 [ 88155247177638048422893737429D9E ] TermDD C:\Windows\system32\drivers\termdd.sys
07:23:49.0937 3016 TermDD - ok
07:23:49.0968 3016 [ FF3477C03BE7201C294C35F684B3479F ] TermService C:\Windows\System32\termsrv.dll
07:23:49.0984 3016 TermService - ok
07:23:50.0000 3016 [ 99BC0B50F511924348BE19C7C7313BBF ] Themes C:\Windows\System32\shsvcs.dll
07:23:50.0000 3016 Themes - ok
07:23:50.0031 3016 [ DB7205804759FF62C34E3EFD8A4CC76A ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe
07:23:50.0031 3016 TlntSvr - ok
07:23:50.0062 3016 [ 8F861EDA21C05857EB8197300A92501C ] tunmp C:\Windows\system32\drivers\tunmp.sys
07:23:50.0062 3016 tunmp - ok
07:23:50.0078 3016 [ D85938F272D1BCF3DB3A31FC0A048928 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
07:23:50.0093 3016 uagp35 - ok
07:23:50.0109 3016 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\Windows\system32\drivers\Udfs.sys
07:23:50.0109 3016 Udfs - ok
07:23:50.0140 3016 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\Windows\system32\drivers\update.sys
07:23:50.0156 3016 Update - ok
07:23:50.0187 3016 [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91 ] upnphost C:\Windows\System32\upnphost.dll
07:23:50.0187 3016 upnphost - ok
07:23:50.0203 3016 [ 05365FB38FCA1E98F7A566AAAF5D1815 ] UPS C:\Windows\System32\ups.exe
07:23:50.0218 3016 UPS - ok
07:23:50.0234 3016 [ 6EE8DF903AA7D036C034B630375156D5 ] UPSvcHost C:\Program Files\UNIPOK\upsvchost.exe
07:23:50.0234 3016 UPSvcHost - ok
07:23:50.0250 3016 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\Windows\system32\drivers\usbccgp.sys
07:23:50.0265 3016 usbccgp - ok
07:23:50.0281 3016 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\Windows\system32\drivers\usbehci.sys
07:23:50.0281 3016 usbehci - ok
07:23:50.0296 3016 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\Windows\system32\drivers\USBHUB.SYS
07:23:50.0312 3016 usbhub - ok
07:23:50.0328 3016 [ 0DAECCE65366EA32B162F85F07C6753B ] usbohci C:\Windows\system32\drivers\usbohci.sys
07:23:50.0328 3016 usbohci - ok
07:23:50.0343 3016 [ A717C8721046828520C9EDF31288FC00 ] usbprint C:\Windows\system32\drivers\usbprint.sys
07:23:50.0343 3016 usbprint - ok
07:23:50.0375 3016 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\Windows\system32\drivers\usbscan.sys
07:23:50.0375 3016 usbscan - ok
07:23:50.0390 3016 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\Windows\system32\drivers\USBSTOR.SYS
07:23:50.0390 3016 USBSTOR - ok
07:23:50.0421 3016 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
07:23:50.0421 3016 usbuhci - ok
07:23:50.0437 3016 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\Windows\System32\drivers\vga.sys
07:23:50.0437 3016 VgaSave - ok
07:23:50.0453 3016 [ 72801819332A6EED19D66127B923260C ] viagfx C:\Windows\system32\DRIVERS\vtminiwr.sys
07:23:50.0453 3016 viagfx - ok
07:23:50.0484 3016 [ 4C8FCB5CC53AAB716D810740FE59D025 ] volsnap C:\Windows\system32\drivers\volsnap.sys
07:23:50.0484 3016 volsnap - ok
07:23:50.0515 3016 [ 7A9DB3A67C333BF0BD42E42B8596854B ] VSS C:\Windows\System32\vssvc.exe
07:23:50.0531 3016 VSS - ok
07:23:50.0562 3016 [ 54AF4B1D5459500EF0937F6D33B1914F ] W32Time C:\WINDOWS\system32\w32time.dll
07:23:50.0562 3016 W32Time - ok
07:23:50.0593 3016 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\Windows\system32\drivers\wanarp.sys
07:23:50.0593 3016 Wanarp - ok
07:23:50.0625 3016 [ 617ED846455B8A77A61DE73A5AC0E6C0 ] WBFIRDMA C:\Windows\system32\drivers\wbfirdma.sys
07:23:50.0625 3016 WBFIRDMA - ok
07:23:50.0640 3016 WDICA - ok
07:23:50.0656 3016 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\Windows\system32\drivers\wdmaud.sys
07:23:50.0671 3016 wdmaud - ok
07:23:50.0687 3016 [ 77A354E28153AD2D5E120A5A8687BC06 ] WebClient C:\Windows\System32\webclnt.dll
07:23:50.0687 3016 WebClient - ok
07:23:50.0734 3016 [ 2D0E4ED081963804CCC196A0929275B5 ] winmgmt C:\Windows\system32\wbem\WMIsvc.dll
07:23:50.0734 3016 winmgmt - ok
07:23:50.0796 3016 [ E76F8807070ED04E7408A86D6D3A6137 ] WMI C:\Windows\System32\advapi32.dll
07:23:50.0812 3016 WMI - ok
07:23:50.0843 3016 [ E0673F1106E62A68D2257E376079F821 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
07:23:50.0843 3016 WmiApSrv - ok
07:23:50.0875 3016 [ 7C278E6408D1DCE642230C0585A854D5 ] wscsvc C:\Windows\system32\wscsvc.dll
07:23:50.0875 3016 wscsvc - ok
07:23:50.0890 3016 [ C98B39829C2BBD34E454150633C62C78 ] WSTCODEC C:\Windows\system32\drivers\WSTCODEC.SYS
07:23:50.0890 3016 WSTCODEC - ok
07:23:50.0921 3016 [ 365980DA5B43B397542429B0743E6226 ] wuauserv C:\Windows\system32\wuauserv.dll
07:23:50.0921 3016 wuauserv - ok
07:23:50.0968 3016 [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] WZCSVC C:\Windows\System32\wzcsvc.dll
07:23:50.0984 3016 WZCSVC - ok
07:23:51.0000 3016 [ 295D21F14C335B53CB8154E5B1F892B9 ] xmlprov C:\Windows\System32\xmlprov.dll
07:23:51.0015 3016 xmlprov - ok
07:23:51.0046 3016 ================ Scan global ===============================
07:23:51.0062 3016 [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\Windows\system32\basesrv.dll
07:23:51.0093 3016 [ 95CF3446911A6E25EE4086DF8A45B2AA ] C:\Windows\system32\winsrv.dll
07:23:51.0125 3016 [ 95CF3446911A6E25EE4086DF8A45B2AA ] C:\Windows\system32\winsrv.dll
07:23:51.0140 3016 [ 65DF52F5B8B6E9BBD183505225C37315 ] C:\Windows\system32\services.exe
07:23:51.0156 3016 [Global] - ok
07:23:51.0156 3016 ================ Scan MBR ==================================
07:23:51.0171 3016 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk0\DR0
07:23:51.0250 3016 \Device\Harddisk0\DR0 - ok
07:23:51.0265 3016 [ E5E645E6D321E2633F296DA60A47A359 ] \Device\Harddisk1\DR3
07:24:09.0484 3016 \Device\Harddisk1\DR3 - ok
07:24:09.0484 3016 ================ Scan VBR ==================================
07:24:09.0500 3016 [ 6F8FA43A7C141899DF46B526A48CECF5 ] \Device\Harddisk0\DR0\Partition1
07:24:09.0500 3016 \Device\Harddisk0\DR0\Partition1 - ok
07:24:09.0515 3016 [ B02FD5605DD6479602F2F817D36DD331 ] \Device\Harddisk0\DR0\Partition2
07:24:09.0531 3016 \Device\Harddisk0\DR0\Partition2 - ok
07:24:09.0546 3016 [ 43DA2EE0FC1C1998D632DE8DB718C536 ] \Device\Harddisk1\DR3\Partition1
07:24:09.0546 3016 \Device\Harddisk1\DR3\Partition1 - ok
07:24:09.0546 3016 ============================================================
07:24:09.0546 3016 Scan finished
07:24:09.0546 3016 ============================================================
07:24:09.0593 2996 Detected object count: 0
07:24:09.0593 2996 Actual detected object count: 0
---------------------------------------
Při pokusu o spuštění ComboFix mi to vypsalo tuto hlášku:
"Do not run Combofix in Compatability Mode". Poté se program vypnul....
Zde je log z programu Malwarebytes Anti-Malware:
------------------------------------------------------------------
Malwarebytes Anti-Malware 1.62.0.1300
www.malwarebytes.org
Database version: v2012.08.27.03
Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
administrator :: MOPAJ416 [administrator]
28.8.2012 7:09:15
mbam-log-2012-08-28 (07-09-15).txt
Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 200749
Time elapsed: 2 minute(s), 45 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 11
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced|Start_ShowMyDocs (PUM.Hijack.StartMenu) -> Bad: (0) Good: (1) -> Quarantined and repaired successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced|Start_ShowHelp (PUM.Hijack.StartMenu) -> Bad: (0) Good: (1) -> Quarantined and repaired successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced|Start_ShowSearch (PUM.Hijack.StartMenu) -> Bad: (0) Good: (1) -> Quarantined and repaired successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer|NoDesktop (PUM.Hidden.Desktop) -> Bad: (1) Good: (0) -> Quarantined and repaired successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer|NoSMHelp (PUM.Hijack.Help) -> Bad: (1) Good: (0) -> Quarantined and repaired successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer|NoFind (PUM.Hijack.Find) -> Bad: (1) Good: (0) -> Quarantined and repaired successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer|NoSetFolders (PUM.Hijack.Explorer) -> Bad: (1) Good: (0) -> Quarantined and repaired successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer|StartMenuLogOff (PUM.Hijack.StartMenu) -> Bad: (1) Good: (0) -> Quarantined and repaired successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer|NoStartMenuMorePrograms (PUM.Hijack.StartMenu) -> Bad: (1) Good: (0) -> Quarantined and repaired successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer|NoTrayItemsDisplay (Hijack.Tray) -> Bad: (1) Good: (0) -> Quarantined and repaired successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer|NoRun (PUM.Hijack.Run) -> Bad: (1) Good: (0) -> Quarantined and repaired successfully.
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
(end)
---------------------------------------------------------
a zde je log z TDSSKiller:
-------------------
07:22:30.0312 2976 TDSS rootkit removing tool 2.8.8.0 Aug 24 2012 13:27:48
07:22:30.0359 2976 ============================================================
07:22:30.0359 2976 Current date / time: 2012/08/28 07:22:30.0359
07:22:30.0359 2976 SystemInfo:
07:22:30.0359 2976
07:22:30.0359 2976 OS Version: 5.1.2600 ServicePack: 3.0
07:22:30.0359 2976 Product type: Workstation
07:22:30.0359 2976 ComputerName: MOPAJ416
07:22:30.0359 2976 UserName: administrator
07:22:30.0359 2976 Windows directory: C:\Windows
07:22:30.0359 2976 System windows directory: C:\Windows
07:22:30.0359 2976 Processor architecture: Intel x86
07:22:30.0359 2976 Number of processors: 1
07:22:30.0359 2976 Page size: 0x1000
07:22:30.0359 2976 Boot type: Normal boot
07:22:30.0359 2976 ============================================================
07:22:31.0296 2976 Drive \Device\Harddisk0\DR0 - Size: 0x773594000 (29.80 Gb), SectorSize: 0x200, Cylinders: 0xF32, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
07:22:31.0296 2976 Drive \Device\Harddisk1\DR3 - Size: 0xEEB00000 (3.73 Gb), SectorSize: 0x200, Cylinders: 0x1E6, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
07:22:31.0296 2976 ============================================================
07:22:31.0296 2976 \Device\Harddisk0\DR0:
07:22:31.0296 2976 MBR partitions:
07:22:31.0296 2976 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x1D4EFFA
07:22:31.0296 2976 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1D4F039, BlocksNum 0x1E4A079
07:22:31.0296 2976 \Device\Harddisk1\DR3:
07:22:31.0296 2976 MBR partitions:
07:22:31.0296 2976 \Device\Harddisk1\DR3\Partition1: MBR, Type 0xB, StartLBA 0x3F, BlocksNum 0x7757C1
07:22:31.0296 2976 ============================================================
07:22:31.0296 2976 C: <-> \Device\Harddisk0\DR0\Partition1
07:22:31.0296 2976 D: <-> \Device\Harddisk0\DR0\Partition2
07:22:31.0296 2976 ============================================================
07:22:31.0296 2976 Initialize success
07:22:31.0296 2976 ============================================================
07:23:43.0609 3016 ============================================================
07:23:43.0609 3016 Scan started
07:23:43.0609 3016 Mode: Manual;
07:23:43.0609 3016 ============================================================
07:23:43.0890 3016 ================ Scan system memory ========================
07:23:43.0890 3016 System memory - ok
07:23:43.0906 3016 ================ Scan services =============================
07:23:43.0984 3016 [ C07D5197410AAB28D0D93F943F59656D ] 6to4 C:\Windows\System32\6to4svc.dll
07:23:43.0984 3016 6to4 - ok
07:23:44.0015 3016 [ 8FD99680A539792A30E97944FDAECF17 ] ACPI C:\Windows\system32\drivers\ACPI.sys
07:23:44.0031 3016 ACPI - ok
07:23:44.0046 3016 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\Windows\system32\drivers\aec.sys
07:23:44.0062 3016 aec - ok
07:23:44.0078 3016 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\Windows\System32\drivers\afd.sys
07:23:44.0078 3016 AFD - ok
07:23:44.0109 3016 [ A9A3DAA780CA6C9671A19D52456705B4 ] Alerter C:\Windows\system32\alrsvc.dll
07:23:44.0109 3016 Alerter - ok
07:23:44.0140 3016 [ 8C515081584A38AA007909CD02020B3D ] ALG C:\Windows\system32\alg.exe
07:23:44.0140 3016 ALG - ok
07:23:44.0156 3016 [ D81F7D885E9393B09EC5E46ED8D91565 ] ALiIRDA C:\Windows\system32\drivers\alifir.sys
07:23:44.0156 3016 ALiIRDA - ok
07:23:44.0187 3016 [ D8849F77C0B66226335A59D26CB4EDC6 ] AppMgmt C:\Windows\System32\appmgmts.dll
07:23:44.0187 3016 AppMgmt - ok
07:23:44.0234 3016 [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state C:\Windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
07:23:44.0234 3016 aspnet_state - ok
07:23:44.0265 3016 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\Windows\system32\drivers\asyncmac.sys
07:23:44.0265 3016 AsyncMac - ok
07:23:44.0281 3016 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\Windows\system32\drivers\atapi.sys
07:23:44.0296 3016 atapi - ok
07:23:44.0312 3016 Atmarpc - ok
07:23:44.0328 3016 [ DEF7A7882BEC100FE0B2CE2549188F9D ] AudioSrv C:\Windows\System32\audiosrv.dll
07:23:44.0328 3016 AudioSrv - ok
07:23:44.0359 3016 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\Windows\system32\drivers\audstub.sys
07:23:44.0359 3016 audstub - ok
07:23:44.0390 3016 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\Windows\system32\drivers\Beep.sys
07:23:44.0390 3016 Beep - ok
07:23:44.0421 3016 [ 574738F61FCA2935F5265DC4E5691314 ] BITS C:\WINDOWS\system32\qmgr.dll
07:23:44.0437 3016 BITS - ok
07:23:44.0453 3016 [ F934D1B230F84E1D19DD00AC5A7A83ED ] BridgeMP C:\Windows\system32\drivers\bridge.sys
07:23:44.0453 3016 BridgeMP - ok
07:23:44.0484 3016 [ A06CE3399D16DB864F55FAEB1F1927A9 ] Browser C:\Windows\System32\browser.dll
07:23:44.0484 3016 Browser - ok
07:23:44.0500 3016 [ B279426E3C0C344893ED78A613A73BDE ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
07:23:44.0500 3016 BthEnum - ok
07:23:44.0531 3016 [ FCA6F069597B62D42495191ACE3FC6C1 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
07:23:44.0531 3016 BTHMODEM - ok
07:23:44.0546 3016 [ 80602B8746D3738F5886CE3D67EF06B6 ] BthPan C:\Windows\system32\drivers\bthpan.sys
07:23:44.0546 3016 BthPan - ok
07:23:44.0578 3016 [ 51D05D5A8A7D93AB0B1A8D6A38DB3CA4 ] BTHPORT C:\Windows\system32\Drivers\BTHport.sys
07:23:44.0593 3016 BTHPORT - ok
07:23:44.0609 3016 [ BB68CEBFFD181E18A26112D1B9F90F3D ] BTHprint C:\Windows\system32\drivers\bthprint.sys
07:23:44.0609 3016 BTHprint - ok
07:23:44.0625 3016 [ 61364CD71EF63B0F038B7E9DF00F1EFA ] BTHUSB C:\Windows\system32\Drivers\BTHUSB.sys
07:23:44.0625 3016 BTHUSB - ok
07:23:44.0640 3016 [ 0BE5AEF125BE881C4F854C554F2B025C ] CCDECODE C:\Windows\system32\drivers\CCDECODE.sys
07:23:44.0640 3016 CCDECODE - ok
07:23:44.0671 3016 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\Windows\system32\drivers\Cdfs.sys
07:23:44.0671 3016 Cdfs - ok
07:23:44.0687 3016 [ 1F4260CC5B42272D71F79E570A27A4FE ] cdrom C:\Windows\system32\drivers\cdrom.sys
07:23:44.0687 3016 cdrom - ok
07:23:44.0718 3016 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 c:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
07:23:44.0718 3016 clr_optimization_v2.0.50727_32 - ok
07:23:44.0734 3016 [ 6E4C9F21F0FAE8940661144F41B13203 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
07:23:44.0734 3016 Compbatt - ok
07:23:44.0765 3016 COMSysApp - ok
07:23:44.0796 3016 [ F50D9BDBB25CCE075E514DC07472A22F ] Crusoe C:\Windows\system32\drivers\crusoe.sys
07:23:44.0796 3016 Crusoe - ok
07:23:44.0812 3016 [ 3D4E199942E29207970E04315D02AD3B ] CryptSvc C:\Windows\System32\cryptsvc.dll
07:23:44.0828 3016 CryptSvc - ok
07:23:44.0859 3016 [ 6B27A5C03DFB94B4245739065431322C ] DcomLaunch C:\Windows\system32\rpcss.dll
07:23:44.0875 3016 DcomLaunch - ok
07:23:44.0890 3016 [ 5E38D7684A49CACFB752B046357E0589 ] DHCP C:\Windows\System32\dhcpcsvc.dll
07:23:44.0906 3016 DHCP - ok
07:23:44.0921 3016 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\Windows\system32\drivers\disk.sys
07:23:44.0921 3016 Disk - ok
07:23:44.0937 3016 dmadmin - ok
07:23:44.0984 3016 [ D992FE1274BDE0F84AD826ACAE022A41 ] dmboot C:\Windows\system32\drivers\dmboot.sys
07:23:45.0015 3016 dmboot - ok
07:23:45.0031 3016 [ 7C824CF7BBDE77D95C08005717A95F6F ] dmio C:\Windows\system32\drivers\dmio.sys
07:23:45.0031 3016 dmio - ok
07:23:45.0046 3016 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\Windows\system32\drivers\dmload.sys
07:23:45.0046 3016 dmload - ok
07:23:45.0078 3016 [ 57EDEC2E5F59F0335E92F35184BC8631 ] dmserver C:\Windows\System32\dmserver.dll
07:23:45.0078 3016 dmserver - ok
07:23:45.0093 3016 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\Windows\system32\drivers\DMusic.sys
07:23:45.0093 3016 DMusic - ok
07:23:45.0125 3016 [ 5F7E24FA9EAB896051FFB87F840730D2 ] Dnscache C:\Windows\System32\dnsrslvr.dll
07:23:45.0125 3016 Dnscache - ok
07:23:45.0140 3016 [ 0F0F6E687E5E15579EF4DA8DD6945814 ] Dot3svc C:\Windows\System32\dot3svc.dll
07:23:45.0156 3016 Dot3svc - ok
07:23:45.0171 3016 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
07:23:45.0171 3016 drmkaud - ok
07:23:45.0187 3016 [ 31D172028AF5B0CE67D96D99C74B4283 ] DUAgent C:\Program Files\Common Files\DUAgent.exe
07:23:45.0187 3016 DUAgent - ok
07:23:45.0218 3016 [ 2187855A7703ADEF0CEF9EE4285182CC ] EapHost C:\Windows\System32\eapsvc.dll
07:23:45.0218 3016 EapHost - ok
07:23:45.0234 3016 [ BC93B4A066477954555966D77FEC9ECB ] ersvc C:\Windows\System32\ersvc.dll
07:23:45.0234 3016 ersvc - ok
07:23:45.0265 3016 [ 00DC0619C4742476ECA8DC82BB9B5A94 ] EvalueIO C:\Windows\system32\Drivers\EvalueIO.sys
07:23:45.0265 3016 EvalueIO - ok
07:23:45.0296 3016 [ 65DF52F5B8B6E9BBD183505225C37315 ] Eventlog C:\Windows\system32\services.exe
07:23:45.0296 3016 Eventlog - ok
07:23:45.0328 3016 [ D4991D98F2DB73C60D042F1AEF79EFAE ] EventSystem C:\Windows\system32\es.dll
07:23:45.0328 3016 EventSystem - ok
07:23:45.0359 3016 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\Windows\system32\drivers\Fastfat.sys
07:23:45.0359 3016 Fastfat - ok
07:23:45.0375 3016 [ 99BC0B50F511924348BE19C7C7313BBF ] FastUserSwitchingCompatibility C:\Windows\System32\shsvcs.dll
07:23:45.0390 3016 FastUserSwitchingCompatibility - ok
07:23:45.0406 3016 [ FB512241AACA1B0F969E604C025D91B0 ] FBWF C:\Windows\system32\drivers\Fbwf.sys
07:23:45.0406 3016 FBWF - ok
07:23:45.0421 3016 [ D45926117EB9FA946A6AF572FBE1CAA3 ] Fips C:\Windows\system32\drivers\Fips.sys
07:23:45.0421 3016 Fips - ok
07:23:45.0453 3016 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
07:23:45.0453 3016 FltMgr - ok
07:23:45.0468 3016 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
07:23:45.0468 3016 FontCache3.0.0.0 - ok
07:23:45.0500 3016 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
07:23:45.0500 3016 Fs_Rec - ok
07:23:45.0515 3016 [ AAE37F0F2F613218DCE17B42A18C38DB ] FTDIBUS C:\Windows\system32\drivers\ftdibus.sys
07:23:45.0515 3016 FTDIBUS - ok
07:23:45.0546 3016 [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk C:\Windows\system32\drivers\ftdisk.sys
07:23:45.0546 3016 Ftdisk - ok
07:23:45.0562 3016 [ 48BFD1BA45C9C9E7AB339E25ABFBA1D2 ] FTSER2K C:\Windows\system32\drivers\ftser2k.sys
07:23:45.0562 3016 FTSER2K - ok
07:23:45.0593 3016 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\Windows\system32\DRIVERS\msgpc.sys
07:23:45.0593 3016 Gpc - ok
07:23:45.0609 3016 [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
07:23:45.0625 3016 HDAudBus - ok
07:23:45.0640 3016 [ 4FCCA060DFE0C51A09DD5C3843888BCD ] helpsvc C:\Windows\PCHealth\HelpCtr\Binaries\pchsvc.dll
07:23:45.0640 3016 helpsvc - ok
07:23:45.0656 3016 [ 7BD2DE4C85EB4241EED57672B16A7D8D ] HidBth C:\Windows\system32\drivers\hidbth.sys
07:23:45.0656 3016 HidBth - ok
07:23:45.0687 3016 [ DEB04DA35CC871B6D309B77E1443C796 ] HidServ C:\Windows\System32\hidserv.dll
07:23:45.0687 3016 HidServ - ok
07:23:45.0703 3016 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb C:\Windows\system32\drivers\hidusb.sys
07:23:45.0703 3016 HidUsb - ok
07:23:45.0718 3016 [ 8878BD685E490239777BFE51320B88E9 ] hkmsvc C:\Windows\System32\kmsvc.dll
07:23:45.0734 3016 hkmsvc - ok
07:23:45.0750 3016 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\Windows\system32\Drivers\HTTP.sys
07:23:45.0765 3016 HTTP - ok
07:23:45.0781 3016 [ 6100A808600F44D999CEBDEF8841C7A3 ] HTTPFilter C:\Windows\System32\w3ssl.dll
07:23:45.0781 3016 HTTPFilter - ok
07:23:45.0828 3016 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
07:23:45.0859 3016 idsvc - ok
07:23:45.0875 3016 [ 083A052659F5310DD8B6A6CB05EDCF8E ] imapi C:\Windows\system32\drivers\imapi.sys
07:23:45.0875 3016 imapi - ok
07:23:45.0906 3016 [ 30DEAF54A9755BB8546168CFE8A6B5E1 ] ImapiService C:\Windows\system32\imapi.exe
07:23:45.0906 3016 ImapiService - ok
07:23:46.0078 3016 [ E37589414437A60797E94C0F57C546DB ] IntcAzAudAddService C:\Windows\system32\drivers\RtkHDAud.sys
07:23:46.0187 3016 IntcAzAudAddService - ok
07:23:46.0218 3016 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\Windows\system32\DRIVERS\Ip6Fw.sys
07:23:46.0218 3016 Ip6Fw - ok
07:23:46.0234 3016 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
07:23:46.0250 3016 IpFilterDriver - ok
07:23:46.0265 3016 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\Windows\system32\DRIVERS\ipinip.sys
07:23:46.0265 3016 IpInIp - ok
07:23:46.0296 3016 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\Windows\system32\DRIVERS\ipnat.sys
07:23:46.0296 3016 IpNat - ok
07:23:46.0312 3016 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\Windows\system32\DRIVERS\ipsec.sys
07:23:46.0328 3016 IPSec - ok
07:23:46.0343 3016 [ ACA5E7B54409F9CB5EED97ED0C81120E ] irda C:\Windows\system32\DRIVERS\irda.sys
07:23:46.0343 3016 irda - ok
07:23:46.0375 3016 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\Windows\system32\DRIVERS\irenum.sys
07:23:46.0375 3016 IRENUM - ok
07:23:46.0390 3016 [ 49CC4533CE897CB2E93C1E84A818FDE5 ] Irmon C:\Windows\System32\irmon.dll
07:23:46.0390 3016 Irmon - ok
07:23:46.0406 3016 [ 0501F0B9AB08425F8C0EACBDCC04AA32 ] irsir C:\Windows\system32\drivers\irsir.sys
07:23:46.0406 3016 irsir - ok
07:23:46.0437 3016 [ 05A299EC56E52649B1CF2FC52D20F2D7 ] isapnp C:\Windows\system32\drivers\isapnp.sys
07:23:46.0437 3016 isapnp - ok
07:23:46.0453 3016 [ 463C1EC80CD17420A542B7F36A36F128 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
07:23:46.0453 3016 kbdclass - ok
07:23:46.0468 3016 [ 9EF487A186DEA361AA06913A75B3FA99 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
07:23:46.0468 3016 kbdhid - ok
07:23:46.0500 3016 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\Windows\system32\drivers\kmixer.sys
07:23:46.0500 3016 kmixer - ok
07:23:46.0531 3016 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\Windows\system32\drivers\KSecDD.sys
07:23:46.0531 3016 KSecDD - ok
07:23:46.0546 3016 [ 3A7C3CBE5D96B8AE96CE81F0B22FB527 ] LanmanServer C:\Windows\System32\srvsvc.dll
07:23:46.0562 3016 LanmanServer - ok
07:23:46.0578 3016 [ A8888A5327621856C0CEC4E385F69309 ] lanmanworkstation C:\Windows\System32\wkssvc.dll
07:23:46.0593 3016 lanmanworkstation - ok
07:23:46.0625 3016 [ A7DB739AE99A796D91580147E919CC59 ] LmHosts C:\Windows\System32\lmhsvc.dll
07:23:46.0625 3016 LmHosts - ok
07:23:46.0640 3016 [ 986B1FF5814366D71E0AC5755C88F2D3 ] Messenger C:\Windows\System32\msgsvc.dll
07:23:46.0656 3016 Messenger - ok
07:23:46.0671 3016 [ A7DA20AB18A1BDAE28B0F349E57DA0D1 ] mf C:\Windows\system32\drivers\mf.sys
07:23:46.0671 3016 mf - ok
07:23:46.0687 3016 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\Windows\system32\drivers\mnmdd.sys
07:23:46.0687 3016 mnmdd - ok
07:23:46.0703 3016 [ DFCBAD3CEC1C5F964962AE10E0BCC8E1 ] Modem C:\Windows\system32\drivers\Modem.sys
07:23:46.0703 3016 Modem - ok
07:23:46.0734 3016 [ 1992E0D143B09653AB0F9C5E04B0FD65 ] MODEMCSA C:\Windows\system32\drivers\MODEMCSA.sys
07:23:46.0734 3016 MODEMCSA - ok
07:23:46.0750 3016 [ 35C9E97194C8CFB8430125F8DBC34D04 ] mouclass C:\Windows\system32\drivers\mouclass.sys
07:23:46.0750 3016 mouclass - ok
07:23:46.0765 3016 [ B1C303E17FB9D46E87A98E4BA6769685 ] mouhid C:\Windows\system32\drivers\mouhid.sys
07:23:46.0765 3016 mouhid - ok
07:23:46.0796 3016 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\Windows\system32\drivers\MountMgr.sys
07:23:46.0796 3016 MountMgr - ok
07:23:46.0812 3016 [ C0F8E0C2C3C0437CF37C6781896DC3EC ] MPE C:\Windows\system32\drivers\MPE.sys
07:23:46.0812 3016 MPE - ok
07:23:46.0843 3016 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\Windows\system32\DRIVERS\mrxdav.sys
07:23:46.0843 3016 MRxDAV - ok
07:23:46.0875 3016 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MrxSmb C:\Windows\system32\DRIVERS\mrxsmb.sys
07:23:46.0890 3016 MrxSmb - ok
07:23:46.0906 3016 [ A137F1470499A205ABBB9AAFB3B6F2B1 ] MSDTC C:\Windows\system32\msdtc.exe
07:23:46.0906 3016 MSDTC - ok
07:23:46.0937 3016 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\Windows\system32\drivers\Msfs.sys
07:23:46.0937 3016 Msfs - ok
07:23:46.0953 3016 [ 8AE8450BD18D2595474DF206444AE589 ] MSFSIO C:\Windows\system32\drivers\MSFSIO.sys
07:23:46.0953 3016 MSFSIO - ok
07:23:46.0968 3016 [ 95C6432151CCFF8617352F8E616A1AA4 ] MSIRCOMM C:\Windows\system32\drivers\MSIRCOMM.sys
07:23:46.0968 3016 MSIRCOMM - ok
07:23:47.0000 3016 MSIServer - ok
07:23:47.0015 3016 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
07:23:47.0015 3016 MSKSSRV - ok
07:23:47.0031 3016 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
07:23:47.0031 3016 MSPCLOCK - ok
07:23:47.0062 3016 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
07:23:47.0062 3016 MSPQM - ok
07:23:47.0078 3016 [ D3DBDD392CA1C66A81D09A2ACFDA4F69 ] MSRIFFWV C:\Windows\system32\drivers\MSRIFFWV.sys
07:23:47.0078 3016 MSRIFFWV - ok
07:23:47.0093 3016 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
07:23:47.0093 3016 mssmbios - ok
07:23:47.0125 3016 MSSQLSERVER - ok
07:23:47.0140 3016 [ ADAF062116B4E6D96E44D26486A87AF6 ] MSSQLServerADHelper C:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe
07:23:47.0140 3016 MSSQLServerADHelper - ok
07:23:47.0156 3016 [ E53736A9E30C45FA9E7B5EAC55056D1D ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
07:23:47.0156 3016 MSTEE - ok
07:23:47.0187 3016 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\Windows\system32\drivers\Mup.sys
07:23:47.0187 3016 Mup - ok
07:23:47.0203 3016 [ 5B50F1B2A2ED47D560577B221DA734DB ] NABTSFEC C:\Windows\system32\drivers\NABTSFEC.sys
07:23:47.0203 3016 NABTSFEC - ok
07:23:47.0234 3016 [ 0102140028FAD045756796E1C685D695 ] napagent C:\Windows\System32\qagentrt.dll
07:23:47.0250 3016 napagent - ok
07:23:47.0281 3016 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\Windows\system32\drivers\NDIS.sys
07:23:47.0281 3016 NDIS - ok
07:23:47.0296 3016 [ 7FF1F1FD8609C149AA432F95A8163D97 ] NdisIP C:\Windows\system32\drivers\NdisIP.sys
07:23:47.0296 3016 NdisIP - ok
07:23:47.0312 3016 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\Windows\system32\drivers\ndistapi.sys
07:23:47.0312 3016 NdisTapi - ok
07:23:47.0343 3016 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
07:23:47.0343 3016 Ndisuio - ok
07:23:47.0359 3016 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\Windows\system32\drivers\ndiswan.sys
07:23:47.0359 3016 NdisWan - ok
07:23:47.0390 3016 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
07:23:47.0390 3016 NDProxy - ok
07:23:47.0406 3016 [ 707647A1AA0EDB6CBEF61B0C75C28ED3 ] NECIRDA C:\Windows\system32\drivers\smcirda.sys
07:23:47.0406 3016 NECIRDA - ok
07:23:47.0437 3016 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\Windows\system32\drivers\netbios.sys
07:23:47.0437 3016 NetBIOS - ok
07:23:47.0453 3016 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
07:23:47.0468 3016 NetBT - ok
07:23:47.0484 3016 [ B857BA82860D7FF85AE29B095645563B ] NetDDE C:\Windows\system32\netdde.exe
07:23:47.0484 3016 NetDDE - ok
07:23:47.0515 3016 [ B857BA82860D7FF85AE29B095645563B ] NetDDEdsdm C:\Windows\system32\netdde.exe
07:23:47.0515 3016 NetDDEdsdm - ok
07:23:47.0531 3016 [ BF2466B3E18E970D8A976FB95FC1CA85 ] Netlogon C:\Windows\system32\lsass.exe
07:23:47.0531 3016 Netlogon - ok
07:23:47.0562 3016 [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ] Netman C:\Windows\System32\netman.dll
07:23:47.0578 3016 Netman - ok
07:23:47.0593 3016 [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
07:23:47.0593 3016 NetTcpPortSharing - ok
07:23:47.0625 3016 [ 943337D786A56729263071623BBB9DE5 ] Nla C:\Windows\System32\mswsock.dll
07:23:47.0640 3016 Nla - ok
07:23:47.0656 3016 [ 1E421A6BCF2203CC61B821ADA9DE878B ] nm C:\Windows\system32\DRIVERS\NMnt.sys
07:23:47.0656 3016 nm - ok
07:23:47.0671 3016 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\Windows\system32\drivers\Npfs.sys
07:23:47.0671 3016 Npfs - ok
07:23:47.0687 3016 [ 2ADC0CA9945C65284B3D19BC18765974 ] NSCIRDA C:\Windows\system32\drivers\nscirda.sys
07:23:47.0703 3016 NSCIRDA - ok
07:23:47.0734 3016 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
07:23:47.0750 3016 Ntfs - ok
07:23:47.0765 3016 [ BF2466B3E18E970D8A976FB95FC1CA85 ] NtLmSsp C:\Windows\system32\lsass.exe
07:23:47.0765 3016 NtLmSsp - ok
07:23:47.0796 3016 [ 156F64A3345BD23C600655FB4D10BC08 ] NtmsSvc C:\Windows\system32\ntmssvc.dll
07:23:47.0812 3016 NtmsSvc - ok
07:23:47.0828 3016 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\Windows\system32\drivers\Null.sys
07:23:47.0828 3016 Null - ok
07:23:47.0859 3016 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\Windows\system32\DRIVERS\nwlnkflt.sys
07:23:47.0859 3016 NwlnkFlt - ok
07:23:47.0875 3016 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\Windows\system32\DRIVERS\nwlnkfwd.sys
07:23:47.0875 3016 NwlnkFwd - ok
07:23:47.0906 3016 [ 8B8B1BE2DBA4025DA6786C645F77F123 ] NwlnkIpx C:\Windows\system32\DRIVERS\nwlnkipx.sys
07:23:47.0906 3016 NwlnkIpx - ok
07:23:47.0921 3016 [ 56D34A67C05E94E16377C60609741FF8 ] NwlnkNb C:\Windows\system32\DRIVERS\nwlnknb.sys
07:23:47.0921 3016 NwlnkNb - ok
07:23:47.0953 3016 [ C0BB7D1615E1ACBDC99757F6CEAF8CF0 ] NwlnkSpx C:\Windows\system32\DRIVERS\nwlnkspx.sys
07:23:47.0953 3016 NwlnkSpx - ok
07:23:47.0968 3016 [ 21DA9E0E8A1A9F06F0259318CF6750DE ] OBOE C:\Windows\system32\drivers\tos4mo.sys
07:23:47.0968 3016 OBOE - ok
07:23:47.0984 3016 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\Windows\system32\drivers\PartMgr.sys
07:23:48.0000 3016 PartMgr - ok
07:23:48.0015 3016 [ A219903CCF74233761D92BEF471A07B1 ] PCI C:\Windows\system32\drivers\pci.sys
07:23:48.0015 3016 PCI - ok
07:23:48.0031 3016 [ CCF5F451BB1A5A2A522A76E670000FF0 ] pciide C:\Windows\system32\drivers\pciide.sys
07:23:48.0031 3016 pciide - ok
07:23:48.0062 3016 PDCOMP - ok
07:23:48.0078 3016 PDFRAME - ok
07:23:48.0093 3016 PDRELI - ok
07:23:48.0109 3016 PDRFRAME - ok
07:23:48.0171 3016 [ 65DF52F5B8B6E9BBD183505225C37315 ] PlugPlay C:\Windows\system32\services.exe
07:23:48.0171 3016 PlugPlay - ok
07:23:48.0187 3016 [ BF2466B3E18E970D8A976FB95FC1CA85 ] PolicyAgent C:\Windows\system32\lsass.exe
07:23:48.0203 3016 PolicyAgent - ok
07:23:48.0218 3016 [ A012D02F3CF9EAA4D6CD4D81F79A480F ] POSPerformanceCounters C:\Program Files\Microsoft Point Of Service\Microsoft.PointOfService.Service.exe
07:23:48.0218 3016 POSPerformanceCounters - ok
07:23:48.0234 3016 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\Windows\system32\drivers\raspptp.sys
07:23:48.0234 3016 PptpMiniport - ok
07:23:48.0265 3016 [ A32BEBAF723557681BFC6BD93E98BD26 ] Processor C:\Windows\system32\drivers\processr.sys
07:23:48.0265 3016 Processor - ok
07:23:48.0281 3016 [ BF2466B3E18E970D8A976FB95FC1CA85 ] ProtectedStorage C:\Windows\system32\lsass.exe
07:23:48.0281 3016 ProtectedStorage - ok
07:23:48.0312 3016 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\Windows\system32\drivers\psched.sys
07:23:48.0312 3016 PSched - ok
07:23:48.0328 3016 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\Windows\system32\drivers\ptilink.sys
07:23:48.0328 3016 Ptilink - ok
07:23:48.0343 3016 [ EB631AD8B3E8DCE20CEF046B6D602B98 ] Ramdisk C:\Windows\system32\DRIVERS\ramdisk.sys
07:23:48.0359 3016 Ramdisk - ok
07:23:48.0375 3016 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
07:23:48.0375 3016 RasAcd - ok
07:23:48.0390 3016 [ AD188BE7BDF94E8DF4CA0A55C00A5073 ] RasAuto C:\Windows\System32\rasauto.dll
07:23:48.0406 3016 RasAuto - ok
07:23:48.0421 3016 [ 0207D26DDF796A193CCD9F83047BB5FC ] Rasirda C:\Windows\system32\drivers\rasirda.sys
07:23:48.0421 3016 Rasirda - ok
07:23:48.0437 3016 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\Windows\system32\drivers\rasl2tp.sys
07:23:48.0453 3016 Rasl2tp - ok
07:23:48.0468 3016 [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] RasMan C:\Windows\System32\rasmans.dll
07:23:48.0484 3016 RasMan - ok
07:23:48.0500 3016 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\Windows\system32\drivers\raspppoe.sys
07:23:48.0500 3016 RasPppoe - ok
07:23:48.0531 3016 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\Windows\system32\drivers\raspti.sys
07:23:48.0531 3016 Raspti - ok
07:23:48.0546 3016 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\Windows\system32\DRIVERS\rdbss.sys
07:23:48.0562 3016 Rdbss - ok
07:23:48.0578 3016 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
07:23:48.0578 3016 RDPCDD - ok
07:23:48.0609 3016 [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
07:23:48.0625 3016 rdpdr - ok
07:23:48.0656 3016 [ FC105DD312ED64EB66BFF111E8EC6EAC ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
07:23:48.0656 3016 RDPWD - ok
07:23:48.0671 3016 [ F828DD7E1419B6653894A8F97A0094C5 ] redbook C:\Windows\system32\drivers\redbook.sys
07:23:48.0671 3016 redbook - ok
07:23:48.0703 3016 [ 83EC82895FF3ED1D8BCEE215BD9FDD8C ] RegFilter C:\Windows\system32\drivers\regflt.sys
07:23:48.0703 3016 RegFilter - ok
07:23:48.0718 3016 [ 7E699FF5F59B5D9DE5390E3C34C67CF5 ] RemoteAccess C:\Windows\System32\mprdim.dll
07:23:48.0718 3016 RemoteAccess - ok
07:23:48.0750 3016 [ 5B19B557B0C188210A56A6B699D90B8F ] RemoteRegistry C:\Windows\system32\regsvc.dll
07:23:48.0750 3016 RemoteRegistry - ok
07:23:48.0765 3016 [ 851C30DF2807FCFA21E4C681A7D6440E ] RFCOMM C:\Windows\system32\drivers\rfcomm.sys
07:23:48.0781 3016 RFCOMM - ok
07:23:48.0796 3016 [ C711645C76B8ED87C021BF6165E52795 ] RMCAST C:\Windows\system32\Drivers\RMCast.sys
07:23:48.0812 3016 RMCAST - ok
07:23:48.0828 3016 [ AAED593F84AFA419BBAE8572AF87CF6A ] RpcLocator C:\Windows\system32\locator.exe
07:23:48.0828 3016 RpcLocator - ok
07:23:48.0859 3016 [ 6B27A5C03DFB94B4245739065431322C ] RpcSs C:\Windows\system32\rpcss.dll
07:23:48.0875 3016 RpcSs - ok
07:23:48.0890 3016 [ 3529828EC571FB2F64F6B142F9109993 ] RTL8023xp C:\Windows\system32\DRIVERS\Rtnicxp.sys
07:23:48.0906 3016 RTL8023xp - ok
07:23:48.0921 3016 [ D507C1400284176573224903819FFDA3 ] rtl8139 C:\Windows\system32\drivers\RTL8139.SYS
07:23:48.0921 3016 rtl8139 - ok
07:23:48.0953 3016 [ BF2466B3E18E970D8A976FB95FC1CA85 ] SamSs C:\Windows\system32\lsass.exe
07:23:48.0953 3016 SamSs - ok
07:23:48.0984 3016 [ 86D007E7A654B9A71D1D7D856B104353 ] SCardSvr C:\Windows\System32\SCardSvr.exe
07:23:48.0984 3016 SCardSvr - ok
07:23:49.0000 3016 [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] Schedule C:\Windows\system32\schedsvc.dll
07:23:49.0015 3016 Schedule - ok
07:23:49.0031 3016 [ 089870DAB7AA277585C475AE09EE4C63 ] scsiscan C:\Windows\system32\drivers\scsiscan.sys
07:23:49.0031 3016 scsiscan - ok
07:23:49.0046 3016 [ CBE612E2BB6A10E3563336191EDA1250 ] seclogon C:\Windows\System32\seclogon.dll
07:23:49.0046 3016 seclogon - ok
07:23:49.0078 3016 [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] SENS C:\Windows\system32\sens.dll
07:23:49.0078 3016 SENS - ok
07:23:49.0093 3016 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] Serenum C:\Windows\system32\drivers\serenum.sys
07:23:49.0093 3016 Serenum - ok
07:23:49.0125 3016 [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] Serial C:\Windows\system32\drivers\serial.sys
07:23:49.0125 3016 Serial - ok
07:23:49.0187 3016 [ 83F41D0D89645D7235C051AB1D9523AC ] SharedAccess C:\Windows\System32\ipnathlp.dll
07:23:49.0187 3016 SharedAccess - ok
07:23:49.0218 3016 [ 99BC0B50F511924348BE19C7C7313BBF ] ShellHWDetection C:\Windows\System32\shsvcs.dll
07:23:49.0218 3016 ShellHWDetection - ok
07:23:49.0234 3016 [ 98A1D044331E034DB85D334213E0CC2D ] SIERRA C:\Windows\system32\drivers\irmk7.sys
07:23:49.0234 3016 SIERRA - ok
07:23:49.0250 3016 [ 866D538EBE33709A5C9F5C62B73B7D14 ] SLIP C:\Windows\system32\drivers\SLIP.sys
07:23:49.0250 3016 SLIP - ok
07:23:49.0281 3016 [ 707647A1AA0EDB6CBEF61B0C75C28ED3 ] SMCIRDA C:\Windows\system32\drivers\smcirda.sys
07:23:49.0281 3016 SMCIRDA - ok
07:23:49.0296 3016 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\Windows\system32\drivers\splitter.sys
07:23:49.0312 3016 splitter - ok
07:23:49.0328 3016 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\Windows\system32\spoolsv.exe
07:23:49.0328 3016 Spooler - ok
07:23:49.0359 3016 [ D2B096CD2F56FAC6EEEED9A77DDF6DC8 ] SQLBrowser C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
07:23:49.0375 3016 SQLBrowser - ok
07:23:49.0390 3016 [ 54902536AAD0E9B99BC65F89C0CAF93F ] SQLWriter C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
07:23:49.0390 3016 SQLWriter - ok
07:23:49.0406 3016 [ 76BB022C2FB6902FD5BDD4F78FC13A5D ] sr C:\Windows\system32\Drivers\sr.sys
07:23:49.0421 3016 sr - ok
07:23:49.0437 3016 [ 3805DF0AC4296A34BA4BF93B346CC378 ] srservice C:\Windows\system32\srsvc.dll
07:23:49.0453 3016 srservice - ok
07:23:49.0484 3016 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\Windows\system32\DRIVERS\srv.sys
07:23:49.0484 3016 Srv - ok
07:23:49.0515 3016 [ 0A5679B3714EDAB99E357057EE88FCA6 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
07:23:49.0515 3016 SSDPSRV - ok
07:23:49.0531 3016 [ A1A16662C6B1A665D965D61B9EECC5A7 ] STIrUsb C:\Windows\system32\drivers\irstusb.sys
07:23:49.0531 3016 STIrUsb - ok
07:23:49.0562 3016 [ 8BAD69CBAC032D4BBACFCE0306174C30 ] StiSvc C:\Windows\system32\wiaservc.dll
07:23:49.0578 3016 StiSvc - ok
07:23:49.0593 3016 [ 77813007BA6265C4B6098187E6ED79D2 ] streamip C:\Windows\system32\drivers\StreamIP.sys
07:23:49.0593 3016 streamip - ok
07:23:49.0625 3016 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\Windows\system32\drivers\swenum.sys
07:23:49.0625 3016 swenum - ok
07:23:49.0640 3016 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\Windows\system32\drivers\swmidi.sys
07:23:49.0640 3016 swmidi - ok
07:23:49.0671 3016 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\Windows\system32\drivers\sysaudio.sys
07:23:49.0671 3016 sysaudio - ok
07:23:49.0687 3016 [ C7ABBC59B43274B1109DF6B24D617051 ] SysmonLog C:\Windows\system32\smlogsvc.exe
07:23:49.0703 3016 SysmonLog - ok
07:23:49.0734 3016 [ 3CB78C17BB664637787C9A1C98F79C38 ] TapiSrv C:\Windows\System32\tapisrv.dll
07:23:49.0734 3016 TapiSrv - ok
07:23:49.0765 3016 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\Windows\system32\DRIVERS\tcpip.sys
07:23:49.0765 3016 Tcpip - ok
07:23:49.0796 3016 [ 4E53BBCC4BE37D7A4BD6EF1098C89FF7 ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip6.sys
07:23:49.0812 3016 Tcpip6 - ok
07:23:49.0828 3016 [ 3FC234C9E20918CE856FFA42C421E678 ] TDASYNC C:\Windows\system32\drivers\TDASYNC.sys
07:23:49.0828 3016 TDASYNC - ok
07:23:49.0843 3016 [ 182A77EECBDEA330472A9A7A6F1457CE ] TDIPX C:\Windows\system32\drivers\TDIPX.sys
07:23:49.0843 3016 TDIPX - ok
07:23:49.0859 3016 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\Windows\system32\drivers\TDPIPE.sys
07:23:49.0875 3016 TDPIPE - ok
07:23:49.0890 3016 [ 5FB281F720939CBE9961D1808CC270E9 ] TDSPX C:\Windows\system32\drivers\TDSPX.sys
07:23:49.0890 3016 TDSPX - ok
07:23:49.0906 3016 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\Windows\system32\drivers\TDTCP.sys
07:23:49.0906 3016 TDTCP - ok
07:23:49.0937 3016 [ 88155247177638048422893737429D9E ] TermDD C:\Windows\system32\drivers\termdd.sys
07:23:49.0937 3016 TermDD - ok
07:23:49.0968 3016 [ FF3477C03BE7201C294C35F684B3479F ] TermService C:\Windows\System32\termsrv.dll
07:23:49.0984 3016 TermService - ok
07:23:50.0000 3016 [ 99BC0B50F511924348BE19C7C7313BBF ] Themes C:\Windows\System32\shsvcs.dll
07:23:50.0000 3016 Themes - ok
07:23:50.0031 3016 [ DB7205804759FF62C34E3EFD8A4CC76A ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe
07:23:50.0031 3016 TlntSvr - ok
07:23:50.0062 3016 [ 8F861EDA21C05857EB8197300A92501C ] tunmp C:\Windows\system32\drivers\tunmp.sys
07:23:50.0062 3016 tunmp - ok
07:23:50.0078 3016 [ D85938F272D1BCF3DB3A31FC0A048928 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
07:23:50.0093 3016 uagp35 - ok
07:23:50.0109 3016 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\Windows\system32\drivers\Udfs.sys
07:23:50.0109 3016 Udfs - ok
07:23:50.0140 3016 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\Windows\system32\drivers\update.sys
07:23:50.0156 3016 Update - ok
07:23:50.0187 3016 [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91 ] upnphost C:\Windows\System32\upnphost.dll
07:23:50.0187 3016 upnphost - ok
07:23:50.0203 3016 [ 05365FB38FCA1E98F7A566AAAF5D1815 ] UPS C:\Windows\System32\ups.exe
07:23:50.0218 3016 UPS - ok
07:23:50.0234 3016 [ 6EE8DF903AA7D036C034B630375156D5 ] UPSvcHost C:\Program Files\UNIPOK\upsvchost.exe
07:23:50.0234 3016 UPSvcHost - ok
07:23:50.0250 3016 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\Windows\system32\drivers\usbccgp.sys
07:23:50.0265 3016 usbccgp - ok
07:23:50.0281 3016 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\Windows\system32\drivers\usbehci.sys
07:23:50.0281 3016 usbehci - ok
07:23:50.0296 3016 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\Windows\system32\drivers\USBHUB.SYS
07:23:50.0312 3016 usbhub - ok
07:23:50.0328 3016 [ 0DAECCE65366EA32B162F85F07C6753B ] usbohci C:\Windows\system32\drivers\usbohci.sys
07:23:50.0328 3016 usbohci - ok
07:23:50.0343 3016 [ A717C8721046828520C9EDF31288FC00 ] usbprint C:\Windows\system32\drivers\usbprint.sys
07:23:50.0343 3016 usbprint - ok
07:23:50.0375 3016 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\Windows\system32\drivers\usbscan.sys
07:23:50.0375 3016 usbscan - ok
07:23:50.0390 3016 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\Windows\system32\drivers\USBSTOR.SYS
07:23:50.0390 3016 USBSTOR - ok
07:23:50.0421 3016 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
07:23:50.0421 3016 usbuhci - ok
07:23:50.0437 3016 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\Windows\System32\drivers\vga.sys
07:23:50.0437 3016 VgaSave - ok
07:23:50.0453 3016 [ 72801819332A6EED19D66127B923260C ] viagfx C:\Windows\system32\DRIVERS\vtminiwr.sys
07:23:50.0453 3016 viagfx - ok
07:23:50.0484 3016 [ 4C8FCB5CC53AAB716D810740FE59D025 ] volsnap C:\Windows\system32\drivers\volsnap.sys
07:23:50.0484 3016 volsnap - ok
07:23:50.0515 3016 [ 7A9DB3A67C333BF0BD42E42B8596854B ] VSS C:\Windows\System32\vssvc.exe
07:23:50.0531 3016 VSS - ok
07:23:50.0562 3016 [ 54AF4B1D5459500EF0937F6D33B1914F ] W32Time C:\WINDOWS\system32\w32time.dll
07:23:50.0562 3016 W32Time - ok
07:23:50.0593 3016 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\Windows\system32\drivers\wanarp.sys
07:23:50.0593 3016 Wanarp - ok
07:23:50.0625 3016 [ 617ED846455B8A77A61DE73A5AC0E6C0 ] WBFIRDMA C:\Windows\system32\drivers\wbfirdma.sys
07:23:50.0625 3016 WBFIRDMA - ok
07:23:50.0640 3016 WDICA - ok
07:23:50.0656 3016 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\Windows\system32\drivers\wdmaud.sys
07:23:50.0671 3016 wdmaud - ok
07:23:50.0687 3016 [ 77A354E28153AD2D5E120A5A8687BC06 ] WebClient C:\Windows\System32\webclnt.dll
07:23:50.0687 3016 WebClient - ok
07:23:50.0734 3016 [ 2D0E4ED081963804CCC196A0929275B5 ] winmgmt C:\Windows\system32\wbem\WMIsvc.dll
07:23:50.0734 3016 winmgmt - ok
07:23:50.0796 3016 [ E76F8807070ED04E7408A86D6D3A6137 ] WMI C:\Windows\System32\advapi32.dll
07:23:50.0812 3016 WMI - ok
07:23:50.0843 3016 [ E0673F1106E62A68D2257E376079F821 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
07:23:50.0843 3016 WmiApSrv - ok
07:23:50.0875 3016 [ 7C278E6408D1DCE642230C0585A854D5 ] wscsvc C:\Windows\system32\wscsvc.dll
07:23:50.0875 3016 wscsvc - ok
07:23:50.0890 3016 [ C98B39829C2BBD34E454150633C62C78 ] WSTCODEC C:\Windows\system32\drivers\WSTCODEC.SYS
07:23:50.0890 3016 WSTCODEC - ok
07:23:50.0921 3016 [ 365980DA5B43B397542429B0743E6226 ] wuauserv C:\Windows\system32\wuauserv.dll
07:23:50.0921 3016 wuauserv - ok
07:23:50.0968 3016 [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] WZCSVC C:\Windows\System32\wzcsvc.dll
07:23:50.0984 3016 WZCSVC - ok
07:23:51.0000 3016 [ 295D21F14C335B53CB8154E5B1F892B9 ] xmlprov C:\Windows\System32\xmlprov.dll
07:23:51.0015 3016 xmlprov - ok
07:23:51.0046 3016 ================ Scan global ===============================
07:23:51.0062 3016 [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\Windows\system32\basesrv.dll
07:23:51.0093 3016 [ 95CF3446911A6E25EE4086DF8A45B2AA ] C:\Windows\system32\winsrv.dll
07:23:51.0125 3016 [ 95CF3446911A6E25EE4086DF8A45B2AA ] C:\Windows\system32\winsrv.dll
07:23:51.0140 3016 [ 65DF52F5B8B6E9BBD183505225C37315 ] C:\Windows\system32\services.exe
07:23:51.0156 3016 [Global] - ok
07:23:51.0156 3016 ================ Scan MBR ==================================
07:23:51.0171 3016 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk0\DR0
07:23:51.0250 3016 \Device\Harddisk0\DR0 - ok
07:23:51.0265 3016 [ E5E645E6D321E2633F296DA60A47A359 ] \Device\Harddisk1\DR3
07:24:09.0484 3016 \Device\Harddisk1\DR3 - ok
07:24:09.0484 3016 ================ Scan VBR ==================================
07:24:09.0500 3016 [ 6F8FA43A7C141899DF46B526A48CECF5 ] \Device\Harddisk0\DR0\Partition1
07:24:09.0500 3016 \Device\Harddisk0\DR0\Partition1 - ok
07:24:09.0515 3016 [ B02FD5605DD6479602F2F817D36DD331 ] \Device\Harddisk0\DR0\Partition2
07:24:09.0531 3016 \Device\Harddisk0\DR0\Partition2 - ok
07:24:09.0546 3016 [ 43DA2EE0FC1C1998D632DE8DB718C536 ] \Device\Harddisk1\DR3\Partition1
07:24:09.0546 3016 \Device\Harddisk1\DR3\Partition1 - ok
07:24:09.0546 3016 ============================================================
07:24:09.0546 3016 Scan finished
07:24:09.0546 3016 ============================================================
07:24:09.0593 2996 Detected object count: 0
07:24:09.0593 2996 Actual detected object count: 0
---------------------------------------
Při pokusu o spuštění ComboFix mi to vypsalo tuto hlášku:
"Do not run Combofix in Compatability Mode". Poté se program vypnul....
-
jaro3
- člen Security týmu
-
Guru Level 15
- Příspěvky: 43298
- Registrován: červen 07
- Bydliště: Jižní Čechy
- Pohlaví:
- Stav:
Offline
Re: Zamrzání PC (modrá smrt)- prosím o kontrolu logu
Zkus ho v nouz. režimu spustit.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Re: Zamrzání PC (modrá smrt)- prosím o kontrolu logu
Tak bohužel ani v nouzovým režimu žádný výsledek. Stále mi to v průběhu běhu programu hodí hlášku:
Warning - compatibility mode
Warning!!
Do not run ComboFix in Compatibility MOde.
Doing so may damage the machine.
Napadá Vás ještě jiné řešení, případně jiný prográmek, který by se dal použít?
Díky Rosta
Warning - compatibility mode
Warning!!
Do not run ComboFix in Compatibility MOde.
Doing so may damage the machine.
Napadá Vás ještě jiné řešení, případně jiný prográmek, který by se dal použít?
Díky Rosta
-
memphisto
- Guru Level 13
- Příspěvky: 21113
- Registrován: září 06
- Bydliště: Zlín - České Budějovice
- Pohlaví:
- Stav:
Offline
Re: Zamrzání PC (modrá smrt)- prosím o kontrolu logu
Nenavolil jsi mu aby se spouštěl v režimu kompatibility?
PRAVIDLA PC-HELP.CZ, PRAVIDLA sekce HijackThis, HijackThis návod, Memtest, CCleaner
Logy z programu HijackThis neposílejte prosím přes SZ, ale vkládejte je do patřičné sekce. Děkuji
Logy z programu HijackThis neposílejte prosím přes SZ, ale vkládejte je do patřičné sekce. Děkuji
Re: Zamrzání PC (modrá smrt)- prosím o kontrolu logu
Používám systém win XP POS Ready. Zde není možné jako ve Vistách a výš nastavit režim kontability.....:)
-
jaro3
- člen Security týmu
-
Guru Level 15
- Příspěvky: 43298
- Registrován: červen 07
- Bydliště: Jižní Čechy
- Pohlaví:
- Stav:
Offline
Re: Zamrzání PC (modrá smrt)- prosím o kontrolu logu
ComboFix se odinstaluje takto:
Start-Spustit a zadej ComboFix /Uninstall
Vyčisti systém CCleanerem
Stáhni si OTC
na plochu. Poklepej na něj. Potom klikni na Clean up!.
Restartuj PC , pokud Ti bude doporučeno.
Stáhni AVP Tools
na svojí plochu.
http://www.sosej.cz/Download/Kaspersky- ... nload.html
Zaškrtni :
Hidden startup objects
System Memory
Disk boot sectors
Dokumenty
My email
Počítač
Místní disk C
Místní disk D
Jednotka DVD-Rom (E)
Jednotka BD-ROM (G)
A jiné , např. Flash disky , které máš připojeny.
Pokračuj podle instrukcí.Na konci se objeví textový soubor , který si hned ulož (save log) na svojí plochu pod názvem KAS.txt .Poté sem vlož celý obsah toho logu.
Pokud se Ti log nezobrazí:
Pokud máš AVPtool stále zapnutý, zkus zmáčknout tlačítko Zpráva (Report).
Pokud se Ti zobrazí tabulka, klikni na ní pravým myšítkem a dej Maximalize a měli by se Ti zobrazit výsledky.
Stáhni si a nainstaluj WhoCrashed
otevři ho a klikni na Analyze.
Program vytvoří zprávu , zkopíruj celou a vlož prosím sem.
Start-Spustit a zadej ComboFix /Uninstall
Vyčisti systém CCleanerem
Stáhni si OTC
na plochu. Poklepej na něj. Potom klikni na Clean up!.
Restartuj PC , pokud Ti bude doporučeno.
Stáhni AVP Tools
na svojí plochu.
http://www.sosej.cz/Download/Kaspersky- ... nload.html
Zaškrtni :
Hidden startup objects
System Memory
Disk boot sectors
Dokumenty
My email
Počítač
Místní disk C
Místní disk D
Jednotka DVD-Rom (E)
Jednotka BD-ROM (G)
A jiné , např. Flash disky , které máš připojeny.
Pokračuj podle instrukcí.Na konci se objeví textový soubor , který si hned ulož (save log) na svojí plochu pod názvem KAS.txt .Poté sem vlož celý obsah toho logu.
Pokud se Ti log nezobrazí:
Pokud máš AVPtool stále zapnutý, zkus zmáčknout tlačítko Zpráva (Report).
Pokud se Ti zobrazí tabulka, klikni na ní pravým myšítkem a dej Maximalize a měli by se Ti zobrazit výsledky.
Stáhni si a nainstaluj WhoCrashed
otevři ho a klikni na Analyze.
Program vytvoří zprávu , zkopíruj celou a vlož prosím sem.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Re: Zamrzání PC (modrá smrt)- prosím o kontrolu logu
Zde posílám logy z programů:
https://skydrive.live.com/redir?resid=6 ... xZuMgwNQuc
Je to docela velké, abych to vkládal přímo sem..:) Je tam i savedump.
Díky Rosta
https://skydrive.live.com/redir?resid=6 ... xZuMgwNQuc
Je to docela velké, abych to vkládal přímo sem..:) Je tam i savedump.
Díky Rosta
-
Žbeky
- Moderátor
-
Guru Level 13
- Příspěvky: 22288
- Registrován: květen 08
- Bydliště: Vsetín - Pardubice
- Pohlaví:
- Stav:
Offline
Re: Zamrzání PC (modrá smrt)- prosím o kontrolu logu
Whocrashed nejde otevřít
V SZ řeším jen záležitosti týkající se fóra. Na prosby a žádosti o technickou podporu nereaguji. Díky za pochopení.
HiJackThis + návod - HW Monitor - Jak označit příspěvek za vyřešený - Pravidla fóra
HiJackThis + návod - HW Monitor - Jak označit příspěvek za vyřešený - Pravidla fóra
Kdo je online
Uživatelé prohlížející si toto fórum: Žádní registrovaní uživatelé a 94 hostů