NB zamrzne a monitor se rozmaže

[Mc_Murphy]

Zdravím.

Po domluvě s uživatelem chodnik74 via PM si sem dovolím vstoupit.


Hlídej si místo na systémovém disku C:\ => 8 GB už je na hraně, systém by se mohl začít dusit. Volné místo doporučuji udržovat na hranici +/- 10 GB, jinak se může systém zpomalovat.


Fixni v HJT níže uvedené položky.

• Fixnout znamená, že spustíš HJT, zvolíš možnost [Do a system scan only] a zaškrtneš čtvereček vlevo od mnou vypsaných položek.
• Poté klikneš na [Fix checked] a odsouhlasíš [ANO].
• Položky, které v seznamu nenajdeš, prostě přeskoč.
• HJT najdeš zde: C:\Program Files\trend micro\Martin.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')


Dále stáhni utilitu OTM z jednoho z těchto odkazů:

• http://oldtimer.geekstogo.com/OTM.exe
• http://oldtimer.geekstogo.com/OTM.com
• http://oldtimer.geekstogo.com/OTM.scr

Ulož ji na Plochu a dvojklikem spusť.

Do levého okna Paste Instructions for Items to be Moved zkopíruj tento script (pouze zelená písmenka v bílém poli!):

Kód: Vybrat vše

:Commands
[ClearAllRestorePoints]
[ResetHosts]
[Purity]
[EmptyTemp]
[EmptyFlash]

:Files
%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp /s

:Services
JavaQuickStarterService

:Reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Wireless Console 2"=-
"DU Meter"=-
"nwiz"=-
"NvMediaCenter"=-
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SMSERIAL]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^BlueSoleil.lnk]

Nyní klikni na tlačítko [MoveIt!], čímž vše spustíš.
Po restartu mi sem hoď log, který najdeš v C:\_OTM\MovedFiles\

[xstation]

All processes killed
========== COMMANDS ==========

Restore points cleared and new OTM Restore Point set!
C:\WINDOWS\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

[EMPTYTEMP]

User: All Users

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: LocalService
->Temp folder emptied: 66016 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: Martin
->Temp folder emptied: 13512357 bytes
->Temporary Internet Files folder emptied: 11219631 bytes
->Java cache emptied: 33419 bytes
->Opera cache emptied: 19819114 bytes
->Flash cache emptied: 1516 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 17761638 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 60,00 mb


[EMPTYFLASH]

User: All Users

User: Default User

User: LocalService

User: Martin
->Flash cache emptied: 0 bytes

User: NetworkService

Total Flash Files Cleaned = 0,00 mb

========== FILES ==========
File/Folder C:\WINDOWS\system32\*.tmp.dll not found.
File/Folder C:\WINDOWS\system32\SET*.tmp not found.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP1042.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP1122.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP1147.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP1279.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP137F.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP13D5.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP176B.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP1850.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP185A.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP43.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP8FC.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP927.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAPF28.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAPF5F.tmp folder moved successfully.
========== SERVICES/DRIVERS ==========
Service JavaQuickStarterService stopped successfully!
Service JavaQuickStarterService deleted successfully!
========== REGISTRY ==========
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\Wireless Console 2 deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\DU Meter deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\nwiz deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\NvMediaCenter deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SMSERIAL\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^BlueSoleil.lnk\ deleted successfully.

OTM by OldTimer - Version 3.1.19.0 log created on 03012012_120554

Files moved on Reboot...

Registry entries deleted on Reboot...

[Mc_Murphy]

OK, OTM provedlo, co mělo - jak se chová počítač?

[xstation]

Tak změna bohužel zatím žádná. Opět se mi to seklo.

[Mc_Murphy]

Tak to si troufám říct, že to bude opravdu HW problém. Co si o tom myslí kolega chodnik74 ?

[chodnik74]

Minidupy nemáme

Test grafiky jede, při zátěži pc nepadal

Teplota vyšší, doporučuji vyfoukat, jenže uživatel píše, že už tak učinil.. Čili jedině vyřešit chlazení

Disk v pořádku

Havěť čisté, MBAM + kolega prověřil


Mrknu se ještě co nám říká systém...


Exportujeme protokol událostí Systém

• Klikněte pravým tlačítkem myši na tento počítač-spravovat
• Dále se proklikejte následovně: Systémové nástroje-Prohlížeč událostí-Systém
• Klikněte pravým tlačítkem myši na Systém a dejte volbu Uložit soubor protokolu jako..
• Uložte soubor někam na disk a nahrajte na http://www.leteckaposta.cz a vložte mi sem odkaz

[xstation]

http://leteckaposta.cz/595739047

[chodnik74]

Dovolím si zde citovat...

Služba Eset Nod32 Boot neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.


Při čekání na připojení služby Eset Nod32 Boot bylo dosaženo časového limitu (30000 ms).


Služba Java Quick Starter byla neočekávaně ukončena. Tento stav nastal již 1krát.


Služba NVIDIA Display Driver Service byla neočekávaně ukončena. Tento stav nastal již 1krát.


Služba PIXMA Extended Survey Program byla neočekávaně ukončena. Tento stav nastal již 1krát.

Služba BlueSoleil Hid Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Tohle je mi nějaké divné...

Poprosím kolegu o test na rootkity, děkuji


Přeinstalujte ESET

[Mc_Murphy]

Udělej scan pomocí TDSS Killer.

Stáhni si TDSSKiller a ulož ho na Plochu.

• Dvojklik na TDSSKiller.exe, potom kliknout na Spustit kontrolu - Start Scan.
• Pokud je detekován infikovaný soubor(y), bude předvolená akce Cure, klikni na tlačítko Continue.
• Pokud je detekovaný podezřelý (suspicious) soubor, bude předvolená akce Skip, klikni na Continue.
• Program Tě může požádat, abys restartoval počítač pro dokončení procesu. Klikni na Reboot Now.
• Jestli se restart nevyžaduje, klikni na tlačítko Report. Soubor s logem by se měl objevit. Zkopíruj ho a vlož jej sem.
• Je-li vyžadován restart počítače, zpráva je k dispozici ve Tvém kořenovém adresáři (například C:\ složka) ve formě "TDSSKiller. _log.txt".

[xstation]

09:22:47.0109 3320 TDSS rootkit removing tool 2.7.17.0 Feb 29 2012 14:02:24
09:22:47.0265 3320 ============================================================
09:22:47.0265 3320 Current date / time: 2012/03/02 09:22:47.0265
09:22:47.0265 3320 SystemInfo:
09:22:47.0265 3320
09:22:47.0265 3320 OS Version: 5.1.2600 ServicePack: 3.0
09:22:47.0265 3320 Product type: Workstation
09:22:47.0265 3320 ComputerName: NOTEBOOK
09:22:47.0265 3320 UserName: Martin
09:22:47.0265 3320 Windows directory: C:\WINDOWS
09:22:47.0265 3320 System windows directory: C:\WINDOWS
09:22:47.0265 3320 Processor architecture: Intel x86
09:22:47.0265 3320 Number of processors: 1
09:22:47.0265 3320 Page size: 0x1000
09:22:47.0265 3320 Boot type: Normal boot
09:22:47.0265 3320 ============================================================
09:22:48.0890 3320 Drive \Device\Harddisk0\DR0 - Size: 0x1BF2976000 (111.79 Gb), SectorSize: 0x200, Cylinders: 0x3901, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
09:22:48.0890 3320 \Device\Harddisk0\DR0:
09:22:48.0890 3320 MBR used
09:22:48.0890 3320 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x2800A34
09:22:48.0906 3320 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2800AB2, BlocksNum 0xB78EE4E
09:22:49.0140 3320 Initialize success
09:22:49.0140 3320 ============================================================
09:22:59.0937 3872 ============================================================
09:22:59.0937 3872 Scan started
09:22:59.0937 3872 Mode: Manual;
09:22:59.0937 3872 ============================================================
09:23:00.0218 3872 Abiosdsk - ok
09:23:00.0234 3872 abp480n5 - ok
09:23:00.0265 3872 ACPI (4fe34f1f3126b61fcc6b2043aa8112c9) C:\WINDOWS\system32\DRIVERS\ACPI.sys
09:23:00.0281 3872 ACPI - ok
09:23:00.0296 3872 ACPIEC (afdff022a01f0b11c776f0860c3b282f) C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
09:23:00.0312 3872 ACPIEC - ok
09:23:00.0328 3872 adpu160m - ok
09:23:00.0375 3872 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
09:23:00.0390 3872 aec - ok
09:23:00.0437 3872 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
09:23:00.0453 3872 AFD - ok
09:23:00.0515 3872 Aha154x - ok
09:23:00.0531 3872 aic78u2 - ok
09:23:00.0546 3872 aic78xx - ok
09:23:00.0578 3872 AliIde - ok
09:23:00.0593 3872 AmdPPM (033448d435e65c4bd72e70521fd05c76) C:\WINDOWS\system32\DRIVERS\AmdPPM.sys
09:23:00.0593 3872 AmdPPM - ok
09:23:00.0609 3872 amsint - ok
09:23:00.0625 3872 Arp1394 (b5b8a80875c1dededa8b02765642c32f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
09:23:00.0656 3872 Arp1394 - ok
09:23:00.0671 3872 asc - ok
09:23:00.0687 3872 asc3350p - ok
09:23:00.0687 3872 asc3550 - ok
09:23:00.0734 3872 ASNDIS5 (05a56c3156e1b6cc7bbd8e1d54d491f2) C:\WINDOWS\system32\ASNDIS5.SYS
09:23:00.0734 3872 ASNDIS5 - ok
09:23:00.0781 3872 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
09:23:00.0796 3872 AsyncMac - ok
09:23:00.0843 3872 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
09:23:00.0843 3872 atapi - ok
09:23:00.0921 3872 Atdisk - ok
09:23:00.0937 3872 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
09:23:00.0953 3872 Atmarpc - ok
09:23:01.0000 3872 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
09:23:01.0015 3872 audstub - ok
09:23:01.0078 3872 BCM43XX (b89bcf0a25aeb3b47030ac83287f894a) C:\WINDOWS\system32\DRIVERS\bcmwl5.sys
09:23:01.0078 3872 BCM43XX - ok
09:23:01.0156 3872 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
09:23:01.0187 3872 Beep - ok
09:23:01.0234 3872 BlueletAudio (04e84c8049ee93614a2ff6d676d1e247) C:\WINDOWS\system32\DRIVERS\blueletaudio.sys
09:23:01.0265 3872 BlueletAudio - ok
09:23:01.0296 3872 BRGSp50 (ee0f41fa0466189a2c8b9caf7d1cddd5) C:\WINDOWS\system32\Drivers\BRGSp50.sys
09:23:01.0312 3872 BRGSp50 - ok
09:23:01.0343 3872 BT (d1813668a0117ae05bc0b81c874f91d4) C:\WINDOWS\system32\DRIVERS\btnetdrv.sys
09:23:01.0375 3872 BT - ok
09:23:01.0437 3872 Btcsrusb (7304acc25455746912de37d7ded387ed) C:\WINDOWS\system32\Drivers\btcusb.sys
09:23:01.0468 3872 Btcsrusb - ok
09:23:01.0484 3872 BthEnum (b279426e3c0c344893ed78a613a73bde) C:\WINDOWS\system32\DRIVERS\BthEnum.sys
09:23:01.0500 3872 BthEnum - ok
09:23:01.0515 3872 BTHidEnum (161969d2dd1d39cd2f1edbc60c61fa99) C:\WINDOWS\system32\DRIVERS\vbtenum.sys
09:23:01.0546 3872 BTHidEnum - ok
09:23:01.0562 3872 BTHidMgr (a9164c2a39bd917b9f42ae087560ac3d) C:\WINDOWS\system32\Drivers\BTHidMgr.sys
09:23:01.0593 3872 BTHidMgr - ok
09:23:01.0609 3872 BthPan (80602b8746d3738f5886ce3d67ef06b6) C:\WINDOWS\system32\DRIVERS\bthpan.sys
09:23:01.0625 3872 BthPan - ok
09:23:01.0656 3872 BTHPORT (f338662a6c1fc11dd9508f6dff2c06a2) C:\WINDOWS\system32\Drivers\BTHport.sys
09:23:01.0671 3872 BTHPORT - ok
09:23:01.0734 3872 BTHUSB (61364cd71ef63b0f038b7e9df00f1efa) C:\WINDOWS\system32\Drivers\BTHUSB.sys
09:23:01.0765 3872 BTHUSB - ok
09:23:01.0812 3872 BTNetFilter (6b05fdc0cfc3753b520d2d4176cc32d0) C:\WINDOWS\system32\drivers\BTNetFilter.sys
09:23:01.0812 3872 BTNetFilter - ok
09:23:01.0859 3872 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
09:23:01.0875 3872 cbidf2k - ok
09:23:01.0906 3872 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
09:23:01.0921 3872 CCDECODE - ok
09:23:02.0000 3872 cd20xrnt - ok
09:23:02.0015 3872 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
09:23:02.0031 3872 Cdaudio - ok
09:23:02.0062 3872 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
09:23:02.0078 3872 Cdfs - ok
09:23:02.0093 3872 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
09:23:02.0125 3872 Cdrom - ok
09:23:02.0140 3872 Changer - ok
09:23:02.0156 3872 CmBatt (0f6c187d38d98f8df904589a5f94d411) C:\WINDOWS\system32\DRIVERS\CmBatt.sys
09:23:02.0171 3872 CmBatt - ok
09:23:02.0187 3872 CmdIde - ok
09:23:02.0203 3872 Compbatt (6e4c9f21f0fae8940661144f41b13203) C:\WINDOWS\system32\DRIVERS\compbatt.sys
09:23:02.0234 3872 Compbatt - ok
09:23:02.0250 3872 Cpqarray - ok
09:23:02.0265 3872 dac2w2k - ok
09:23:02.0281 3872 dac960nt - ok
09:23:02.0296 3872 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
09:23:02.0328 3872 Disk - ok
09:23:02.0359 3872 dmboot (db5fd2bf5b07dc54bfcb3664ff05bd7c) C:\WINDOWS\system32\drivers\dmboot.sys
09:23:02.0421 3872 dmboot - ok
09:23:02.0515 3872 dmio (fff1720af51171f32f1ead5cf71f2810) C:\WINDOWS\system32\drivers\dmio.sys
09:23:02.0531 3872 dmio - ok
09:23:02.0546 3872 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
09:23:02.0562 3872 dmload - ok
09:23:02.0593 3872 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
09:23:02.0593 3872 DMusic - ok
09:23:02.0625 3872 dpti2o - ok
09:23:02.0640 3872 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
09:23:02.0656 3872 drmkaud - ok
09:23:02.0703 3872 dtsoftbus01 (555e54ac2f601a8821cef58961653991) C:\WINDOWS\system32\DRIVERS\dtsoftbus01.sys
09:23:02.0703 3872 dtsoftbus01 - ok
09:23:02.0734 3872 eamon (d42dd9021acd47683b33adf21bca49aa) C:\WINDOWS\system32\DRIVERS\eamon.sys
09:23:02.0750 3872 eamon - ok
09:23:02.0843 3872 ehdrv (fe7824239d132ad9ebd8645fe1199b30) C:\WINDOWS\system32\DRIVERS\ehdrv.sys
09:23:02.0859 3872 ehdrv - ok
09:23:02.0906 3872 epfw (73411c14a8c6062bb6a510772cf2f38c) C:\WINDOWS\system32\DRIVERS\epfw.sys
09:23:02.0906 3872 epfw - ok
09:23:02.0937 3872 Epfwndis (490329bf80f333e788df9596a752a915) C:\WINDOWS\system32\DRIVERS\Epfwndis.sys
09:23:02.0968 3872 Epfwndis - ok
09:23:03.0000 3872 epfwtdi (bdde7dd8fcdb1de7e879bb320b0605c0) C:\WINDOWS\system32\DRIVERS\epfwtdi.sys
09:23:03.0015 3872 epfwtdi - ok
09:23:03.0046 3872 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
09:23:03.0062 3872 Fastfat - ok
09:23:03.0093 3872 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\drivers\Fdc.sys
09:23:03.0109 3872 Fdc - ok
09:23:03.0187 3872 Fips (ac366695a0796560aa37215ad5762aaf) C:\WINDOWS\system32\drivers\Fips.sys
09:23:03.0218 3872 Fips - ok
09:23:03.0234 3872 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys
09:23:03.0250 3872 Flpydisk - ok
09:23:03.0281 3872 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
09:23:03.0296 3872 FltMgr - ok
09:23:03.0328 3872 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
09:23:03.0343 3872 Fs_Rec - ok
09:23:03.0359 3872 Ftdisk (4e664d8541db4a66b73a24257e322e1f) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
09:23:03.0375 3872 Ftdisk - ok
09:23:03.0390 3872 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
09:23:03.0406 3872 Gpc - ok
09:23:03.0515 3872 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
09:23:03.0515 3872 HDAudBus - ok
09:23:03.0531 3872 hidusb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
09:23:03.0546 3872 hidusb - ok
09:23:03.0578 3872 hpn - ok
09:23:03.0625 3872 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
09:23:03.0625 3872 HTTP - ok
09:23:03.0640 3872 i2omgmt - ok
09:23:03.0656 3872 i2omp - ok
09:23:03.0687 3872 i8042prt (c528e27945367191e7bae364930b6932) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
09:23:03.0703 3872 i8042prt - ok
09:23:03.0796 3872 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
09:23:03.0828 3872 Imapi - ok
09:23:03.0843 3872 ini910u - ok
09:23:04.0015 3872 IntcAzAudAddService (a5d5b8c427f4b67580fb2b511291a89d) C:\WINDOWS\system32\drivers\RtkHDAud.sys
09:23:04.0062 3872 IntcAzAudAddService - ok
09:23:04.0140 3872 IntelIde - ok
09:23:04.0171 3872 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
09:23:04.0203 3872 Ip6Fw - ok
09:23:04.0234 3872 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
09:23:04.0265 3872 IpFilterDriver - ok
09:23:04.0281 3872 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
09:23:04.0296 3872 IpInIp - ok
09:23:04.0328 3872 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
09:23:04.0343 3872 IpNat - ok
09:23:04.0359 3872 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
09:23:04.0390 3872 IPSec - ok
09:23:04.0390 3872 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
09:23:04.0421 3872 IRENUM - ok
09:23:04.0453 3872 isapnp (cc9f8a2d60aed1a51a3ac34c59b987ae) C:\WINDOWS\system32\DRIVERS\isapnp.sys
09:23:04.0468 3872 isapnp - ok
09:23:04.0562 3872 Kbdclass (1b6162fe7f66b1a71a4b70f941c4aa9b) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
09:23:04.0578 3872 Kbdclass - ok
09:23:04.0609 3872 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
09:23:04.0625 3872 kmixer - ok
09:23:04.0656 3872 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
09:23:04.0671 3872 KSecDD - ok
09:23:04.0687 3872 lbrtfdc - ok
09:23:04.0734 3872 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
09:23:04.0765 3872 mnmdd - ok
09:23:04.0906 3872 Modem (44032b0c6d9954d3fd26438330b99ee7) C:\WINDOWS\system32\drivers\Modem.sys
09:23:04.0906 3872 Modem - ok
09:23:04.0937 3872 Mouclass (4cb582831dbde63ce43b45d771218374) C:\WINDOWS\system32\DRIVERS\mouclass.sys
09:23:04.0953 3872 Mouclass - ok
09:23:05.0000 3872 mouhid (bb269eba740737ab749b214d568b6812) C:\WINDOWS\system32\DRIVERS\mouhid.sys
09:23:05.0015 3872 mouhid - ok
09:23:05.0046 3872 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
09:23:05.0062 3872 MountMgr - ok
09:23:05.0078 3872 mraid35x - ok
09:23:05.0093 3872 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
09:23:05.0140 3872 MRxDAV - ok
09:23:05.0187 3872 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
09:23:05.0218 3872 MRxSmb - ok
09:23:05.0312 3872 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
09:23:05.0328 3872 Msfs - ok
09:23:05.0359 3872 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
09:23:05.0375 3872 MSKSSRV - ok
09:23:05.0390 3872 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
09:23:05.0406 3872 MSPCLOCK - ok
09:23:05.0421 3872 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
09:23:05.0437 3872 MSPQM - ok
09:23:05.0468 3872 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
09:23:05.0468 3872 mssmbios - ok
09:23:05.0484 3872 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
09:23:05.0500 3872 MSTEE - ok
09:23:05.0531 3872 MTsensor (1c0f480b7c6136ddb5fb909995af014a) C:\WINDOWS\system32\DRIVERS\ATKACPI.sys
09:23:05.0531 3872 MTsensor - ok
09:23:05.0562 3872 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
09:23:05.0578 3872 Mup - ok
09:23:05.0671 3872 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
09:23:05.0687 3872 NABTSFEC - ok
09:23:05.0734 3872 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
09:23:05.0734 3872 NDIS - ok
09:23:05.0750 3872 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
09:23:05.0781 3872 NdisIP - ok
09:23:05.0812 3872 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
09:23:05.0828 3872 NdisTapi - ok
09:23:05.0859 3872 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
09:23:05.0875 3872 Ndisuio - ok
09:23:05.0890 3872 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
09:23:05.0906 3872 NdisWan - ok
09:23:05.0953 3872 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
09:23:05.0968 3872 NDProxy - ok
09:23:06.0062 3872 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
09:23:06.0078 3872 NetBIOS - ok
09:23:06.0109 3872 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
09:23:06.0125 3872 NetBT - ok
09:23:06.0171 3872 NIC1394 (e9e47cfb2d461fa0fc75b7a74c6383ea) C:\WINDOWS\system32\DRIVERS\nic1394.sys
09:23:06.0171 3872 NIC1394 - ok
09:23:06.0203 3872 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
09:23:06.0218 3872 Npfs - ok
09:23:06.0250 3872 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
09:23:06.0296 3872 Ntfs - ok
09:23:06.0390 3872 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
09:23:06.0406 3872 Null - ok
09:23:06.0562 3872 nv (b79e623da3614cef319b03696e821ba9) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
09:23:06.0671 3872 nv - ok
09:23:06.0781 3872 nvsmu (e0f76fab86fec98778047d0c7c39cbb9) C:\WINDOWS\system32\DRIVERS\nvsmu.sys
09:23:06.0781 3872 nvsmu - ok
09:23:06.0843 3872 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
09:23:06.0859 3872 NwlnkFlt - ok
09:23:06.0875 3872 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
09:23:06.0906 3872 NwlnkFwd - ok
09:23:06.0921 3872 ohci1394 (ca33832df41afb202ee7aeb05145922f) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
09:23:06.0937 3872 ohci1394 - ok
09:23:06.0968 3872 Parport (46f8db73b4a53e543f8e371dc7c75bae) C:\WINDOWS\system32\drivers\Parport.sys
09:23:06.0984 3872 Parport - ok
09:23:07.0062 3872 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
09:23:07.0093 3872 PartMgr - ok
09:23:07.0125 3872 ParVdm (1fae19d0457176318bba4a8795656ebc) C:\WINDOWS\system32\drivers\ParVdm.sys
09:23:07.0140 3872 ParVdm - ok
09:23:07.0171 3872 PCI (6ce351d149cb4befc702951e471e1730) C:\WINDOWS\system32\DRIVERS\pci.sys
09:23:07.0187 3872 PCI - ok
09:23:07.0203 3872 PCIDump - ok
09:23:07.0218 3872 PCIIde (2da4ec85e0ea7a45c6b2a05820492d5a) C:\WINDOWS\system32\DRIVERS\pciide.sys
09:23:07.0234 3872 PCIIde - ok
09:23:07.0250 3872 Pcmcia (4fc31e6c19a5ce5198b1abff94cae758) C:\WINDOWS\system32\DRIVERS\pcmcia.sys
09:23:07.0281 3872 Pcmcia - ok
09:23:07.0296 3872 PDCOMP - ok
09:23:07.0312 3872 PDFRAME - ok
09:23:07.0328 3872 PDRELI - ok
09:23:07.0343 3872 PDRFRAME - ok
09:23:07.0359 3872 perc2 - ok
09:23:07.0375 3872 perc2hib - ok
09:23:07.0406 3872 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
09:23:07.0421 3872 PptpMiniport - ok
09:23:07.0453 3872 Processor (7eb15dce4ec3a0220bd796a15c18186e) C:\WINDOWS\system32\DRIVERS\processr.sys
09:23:07.0468 3872 Processor - ok
09:23:07.0546 3872 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
09:23:07.0578 3872 PSched - ok
09:23:07.0593 3872 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
09:23:07.0609 3872 Ptilink - ok
09:23:07.0640 3872 PxHelp20 (153d02480a0a2f45785522e814c634b6) C:\WINDOWS\system32\Drivers\PxHelp20.sys
09:23:07.0656 3872 PxHelp20 - ok
09:23:07.0671 3872 ql1080 - ok
09:23:07.0687 3872 Ql10wnt - ok
09:23:07.0703 3872 ql12160 - ok
09:23:07.0718 3872 ql1240 - ok
09:23:07.0718 3872 ql1280 - ok
09:23:07.0750 3872 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
09:23:07.0781 3872 RasAcd - ok
09:23:07.0812 3872 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
09:23:07.0828 3872 Rasl2tp - ok
09:23:07.0843 3872 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
09:23:07.0859 3872 RasPppoe - ok
09:23:07.0890 3872 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
09:23:07.0906 3872 Raspti - ok
09:23:07.0984 3872 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
09:23:08.0046 3872 Rdbss - ok
09:23:08.0062 3872 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
09:23:08.0078 3872 RDPCDD - ok
09:23:08.0109 3872 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
09:23:08.0125 3872 rdpdr - ok
09:23:08.0171 3872 RDPWD (fc105dd312ed64eb66bff111e8ec6eac) C:\WINDOWS\system32\drivers\RDPWD.sys
09:23:08.0203 3872 RDPWD - ok
09:23:08.0218 3872 redbook (611bfd220305be3a85ae876ea47d4aa5) C:\WINDOWS\system32\DRIVERS\redbook.sys
09:23:08.0250 3872 redbook - ok
09:23:08.0281 3872 RFCOMM (851c30df2807fcfa21e4c681a7d6440e) C:\WINDOWS\system32\DRIVERS\rfcomm.sys
09:23:08.0312 3872 RFCOMM - ok
09:23:08.0343 3872 rimsptsk (1bdba2d2d402415a78a4ba766dfe0f7b) C:\WINDOWS\system32\DRIVERS\rimsptsk.sys
09:23:08.0375 3872 rimsptsk - ok
09:23:08.0468 3872 risdptsk (ace2ce73d7b04eac48fb80482e05e770) C:\WINDOWS\system32\DRIVERS\risdptsk.sys
09:23:08.0484 3872 risdptsk - ok
09:23:08.0515 3872 ROOTMODEM (d8b0b4ade32574b2d9c5cc34dc0dbbe7) C:\WINDOWS\system32\Drivers\RootMdm.sys
09:23:08.0531 3872 ROOTMODEM - ok
09:23:08.0578 3872 RTL8023xp (c6d34a1874cd2b212dc3e788091c64b4) C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys
09:23:08.0578 3872 RTL8023xp - ok
09:23:08.0593 3872 RTLE8023xp (c6d34a1874cd2b212dc3e788091c64b4) C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys
09:23:08.0593 3872 RTLE8023xp - ok
09:23:08.0625 3872 sdbus (8d04819a3ce51b9eb47e5689b44d43c4) C:\WINDOWS\system32\DRIVERS\sdbus.sys
09:23:08.0687 3872 sdbus - ok
09:23:08.0703 3872 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
09:23:08.0718 3872 Secdrv - ok
09:23:08.0796 3872 Ser2pl (b4664c1ee39a5b7fc112f4077f8d21a5) C:\WINDOWS\system32\DRIVERS\ser2pl.sys
09:23:08.0796 3872 Ser2pl - ok
09:23:08.0875 3872 Serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
09:23:08.0890 3872 Serenum - ok
09:23:08.0921 3872 Serial (b842729337c9b921615c40d3c1a1af96) C:\WINDOWS\system32\drivers\Serial.sys
09:23:08.0953 3872 Serial - ok
09:23:08.0984 3872 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
09:23:09.0015 3872 Sfloppy - ok
09:23:09.0031 3872 Simbad - ok
09:23:09.0062 3872 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
09:23:09.0078 3872 SLIP - ok
09:23:09.0140 3872 smserial (ce2e9d6b8c26c38779581cff1f14b65b) C:\WINDOWS\system32\DRIVERS\smserial.sys
09:23:09.0171 3872 smserial - ok
09:23:09.0250 3872 Sparrow - ok
09:23:09.0281 3872 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
09:23:09.0296 3872 splitter - ok
09:23:09.0375 3872 sptd (614deea4bdcec3fd5a07bdc705723ad7) C:\WINDOWS\System32\Drivers\sptd.sys
09:23:09.0375 3872 Suspicious file (NoAccess): C:\WINDOWS\System32\Drivers\sptd.sys. md5: 614deea4bdcec3fd5a07bdc705723ad7
09:23:09.0375 3872 sptd ( LockedFile.Multi.Generic ) - warning
09:23:09.0375 3872 sptd - detected LockedFile.Multi.Generic (1)
09:23:09.0453 3872 sr (94610c8653635e4459316a0050d55ce7) C:\WINDOWS\system32\DRIVERS\sr.sys
09:23:09.0468 3872 sr - ok
09:23:09.0500 3872 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
09:23:09.0531 3872 Srv - ok
09:23:09.0562 3872 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
09:23:09.0578 3872 streamip - ok
09:23:09.0609 3872 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
09:23:09.0625 3872 swenum - ok
09:23:09.0640 3872 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
09:23:09.0687 3872 swmidi - ok
09:23:09.0703 3872 symc810 - ok
09:23:09.0718 3872 symc8xx - ok
09:23:09.0734 3872 sym_hi - ok
09:23:09.0750 3872 sym_u3 - ok
09:23:09.0812 3872 SynMini (431a1871e820b1b354c46953cfac470c) C:\WINDOWS\system32\Drivers\SynMini.sys
09:23:09.0828 3872 SynMini - ok
09:23:09.0921 3872 SynScan (5c139675c92f9254b0ac08fc53840321) C:\WINDOWS\system32\Drivers\SynScan.sys
09:23:09.0921 3872 SynScan - ok
09:23:09.0984 3872 SynTP (9c29e8e9c1c48e9c8bc38f031df4720f) C:\WINDOWS\system32\DRIVERS\SynTP.sys
09:23:10.0000 3872 SynTP - ok
09:23:10.0015 3872 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
09:23:10.0031 3872 sysaudio - ok
09:23:10.0093 3872 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
09:23:10.0109 3872 Tcpip - ok
09:23:10.0203 3872 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
09:23:10.0218 3872 TDPIPE - ok
09:23:10.0250 3872 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
09:23:10.0265 3872 TDTCP - ok
09:23:10.0296 3872 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
09:23:10.0359 3872 TermDD - ok
09:23:10.0375 3872 TosIde - ok
09:23:10.0421 3872 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
09:23:10.0437 3872 Udfs - ok
09:23:10.0453 3872 ultra - ok
09:23:10.0484 3872 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
09:23:10.0531 3872 Update - ok
09:23:10.0578 3872 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
09:23:10.0593 3872 usbccgp - ok
09:23:10.0703 3872 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
09:23:10.0718 3872 usbehci - ok
09:23:10.0750 3872 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
09:23:10.0765 3872 usbhub - ok
09:23:10.0781 3872 usbohci (0daecce65366ea32b162f85f07c6753b) C:\WINDOWS\system32\DRIVERS\usbohci.sys
09:23:10.0812 3872 usbohci - ok
09:23:10.0843 3872 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
09:23:10.0875 3872 usbprint - ok
09:23:10.0906 3872 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
09:23:10.0921 3872 usbscan - ok
09:23:10.0984 3872 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
09:23:11.0000 3872 USBSTOR - ok
09:23:11.0046 3872 VComm (9ebee4a060c5364a31aeaa04eac2af1e) C:\WINDOWS\system32\DRIVERS\VComm.sys
09:23:11.0062 3872 VComm - ok
09:23:11.0109 3872 VcommMgr (630bbdbf5490f8f57abe650da63661a0) C:\WINDOWS\system32\Drivers\VcommMgr.sys
09:23:11.0125 3872 VcommMgr - ok
09:23:11.0187 3872 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
09:23:11.0218 3872 VgaSave - ok
09:23:11.0265 3872 ViaIde - ok
09:23:11.0296 3872 VolSnap (28a4b296b47782173c346e376cb374d1) C:\WINDOWS\system32\drivers\VolSnap.sys
09:23:11.0343 3872 VolSnap - ok
09:23:11.0359 3872 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
09:23:11.0390 3872 Wanarp - ok
09:23:11.0406 3872 WDICA - ok
09:23:11.0421 3872 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
09:23:11.0453 3872 wdmaud - ok
09:23:11.0546 3872 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
09:23:11.0562 3872 WSTCODEC - ok
09:23:11.0656 3872 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
09:23:11.0687 3872 WudfPf - ok
09:23:11.0703 3872 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
09:23:11.0703 3872 WudfRd - ok
09:23:11.0796 3872 ZD1211BU(ZyDAS) (154fe6a5a608cd725266877901e883c2) C:\WINDOWS\system32\DRIVERS\zd1211Bu.sys
09:23:11.0828 3872 ZD1211BU(ZyDAS) - ok
09:23:11.0921 3872 ZDPSp50 (00ae175b903d45ed4a62384d3315dc2a) C:\WINDOWS\system32\Drivers\ZDPSp50.sys
09:23:11.0937 3872 ZDPSp50 - ok
09:23:11.0953 3872 MBR (0x1B8) (413fc2a0c716421b3158746d63736515) \Device\Harddisk0\DR0
09:23:12.0140 3872 \Device\Harddisk0\DR0 - ok
09:23:12.0140 3872 Boot (0x1200) (f1d3ea89d25f479beae8272d9db3aba9) \Device\Harddisk0\DR0\Partition0
09:23:12.0140 3872 \Device\Harddisk0\DR0\Partition0 - ok
09:23:12.0171 3872 Boot (0x1200) (82febe797644fd094b5c0c493090f0fa) \Device\Harddisk0\DR0\Partition1
09:23:12.0171 3872 \Device\Harddisk0\DR0\Partition1 - ok
09:23:12.0171 3872 ============================================================
09:23:12.0171 3872 Scan finished
09:23:12.0171 3872 ============================================================
09:23:12.0187 3864 Detected object count: 1
09:23:12.0187 3864 Actual detected object count: 1
09:23:45.0359 3864 sptd ( LockedFile.Multi.Generic ) - skipped by user
09:23:45.0359 3864 sptd ( LockedFile.Multi.Generic ) - User select action: Skip

[chodnik74]

Děkuji,
ESET jsi přeinstaloval?

[xstation]

ESET jsem přeinstaloval a od té doby mi to zatim nezamrzlo.

Akorát se mi jednou objevila ta modrá obrazovka (to se mi už dlouho nestalo, takže určitý pokrok tady je) a vytvořilo to soubor v minidump:

http://leteckaposta.cz/992234519

Dále se mi dnes ráno stalo to, že po aktualizaci windows mi naběhla plocha ale bez ikon a musel jsem to vrátit (obnovení systému) do stavu před aktualizací - ale tohle jen tak pro info.

[chodnik74]

Pokud jste se vracel k datumu, kdy ESET nebyl přeinstalovaný, tak ho znova přeinstalujte..

Minidump ukazuje, že jádro nestačilo zachytit zachycení, které vygenerovalo. Potřebuji otestovat paměti RAM


Stáhněte si program Goldmemory

• stáhne se vám soubor ISO,který vypalte na CD jako obraz disku
  -pokud nemáte na to program či nevíte jak,stáhněte si Ashampoo Burning Studio free (v menu zvolte Vytvořit/Vypálit obrazy disku)
• Vložte vypálené CD do mechaniky
• V biosu nastavte bootování CD
• Spustí se test,který nechte doběhnout alespoň 2 krát do konce
• Objevili se v průběhu testu chyby?

[xstation]

Ten ESET jsem přeinstaloval až po tom obnovení systému.

Goldmemory žádné chyby neobjevil.

Ale zatím je to dobré, tak uvidíme.

[chodnik74]

test goldmemory by jsme měl nechat několikrát po sobě běžet, v řádech hodin Uvidíme, jak se bude chovat pc dále