Dobrý den,
chtěla bych Vás poprosit o zkontrolování logu. Prijala jsem pochybný mail v němčině a přeposlala ho příteli a jemu poté klekl pc a hlásilo mu to že má zaplatit 100 EURO a pc mu nefungoval. Druhý den zas fungovat začal, ale poškodilo mu to několik souborů na ploše a vymazalo historii prohlížeče. Já žádné problémy asi nemám ale pro jistotu prosím o zkontrolování logu z RSIT. Děkuji.
LOG:
Logfile of random's system information tool 1.09 (written by random/random)
Run by Lucinka at 2012-05-27 13:33:51
Microsoft® Windows Vista™ Home Basic Service Pack 2
System drive C: has 26 GB (39%) free of 68 GB
Total RAM: 2039 MB (50% free)
HijackThis download failed
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
=========Mozilla firefox=========
ProfilePath - C:\Users\Lucinka\AppData\Roaming\Mozilla\Firefox\Profiles\afv3cd5n.default
prefs.js - "browser.startup.homepage" - "www.seznam.cz"
prefs.js - "extensions.enabledItems" - "{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}:6.0.13, {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}:6.0.15, {20a82645-c095-46ed-80e3-08825760534b}:1.2.1, {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20, {AB2CE124-6272-4b12-94A9-7303C7397BD1}:5.0.0.6778, {ABDE892B-13A8-4d1b-88E6-365A6E755758}:14.0.3, {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22, {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23, {82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}:5.5.0.7896, {800b5000-a755-47e1-992b-48a1c1357f07}:1.3.3, {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}:6.0.26, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.22"
prefs.js - "keyword.URL" - "http://search.icq.com/search/afe_result ... r=1.4.7&q="
"{20a82645-c095-46ed-80e3-08825760534b}"=c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"bkmrksync@nokia.com"=C:\Program Files\Nokia\Nokia PC Suite 7\bkmrksync\
"{ABDE892B-13A8-4d1b-88E6-365A6E755758}"=C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
"wrc@avast.com"=C:\Program Files\Alwil Software\Avast5\WebRep\FF
"{97E22097-9A2F-45b1-8DAF-36AD648C7EF4}"=C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.2.202.235 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_11_2_202_235.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\4.0.60831.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nppl3260;version=15.0.4.53]
"Description"=RealPlayer(tm) LiveConnect-Enabled Plug-In
"Path"=c:\program files\real\realplayer\Netscape6\nppl3260.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprjplug;version=15.0.4.53]
"Description"=RealJukebox Netscape Plugin
"Path"=c:\program files\real\realplayer\Netscape6\nprjplug.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprpchromebrowserrecordext;version=15.0.4.53]
"Description"=RealNetworks(tm) RealPlayer Chrome Background Extension Plug-In
"Path"=C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprphtml5videoshim;version=15.0.4.53]
"Description"=RealPlayer(tm) HTML5VideoShim Plug-In
"Path"=C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprpplugin;version=15.0.4.53]
"Description"=RealPlayer Download Plugin
"Path"=c:\program files\real\realplayer\Netscape6\nprpplugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll
C:\Program Files\Mozilla Firefox\extensions\
{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{AB2CE124-6272-4b12-94A9-7303C7397BD1}
C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
C:\Program Files\Mozilla Firefox\plugins\
np-mswmp.dll
npdeployJava1.dll
nppdf32.dll
nppl3260.dll
nppl3260.xpt
npqtplugin.dll
npqtplugin2.dll
npqtplugin3.dll
npqtplugin4.dll
npqtplugin5.dll
npqtplugin6.dll
npqtplugin7.dll
nprjplug.dll
nprpplugin.dll
QuickTimePlugin.class
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt
C:\Program Files\Mozilla Firefox\searchplugins\
google.xml
heureka-cz.xml
jyxo-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml
C:\Users\Lucinka\AppData\Roaming\Mozilla\Firefox\Profiles\afv3cd5n.default\extensions\
{20a82645-c095-46ed-80e3-08825760534b}
{800b5000-a755-47e1-992b-48a1c1357f07}
C:\Users\Lucinka\AppData\Roaming\Mozilla\Firefox\Profiles\afv3cd5n.default\searchplugins\
icqplugin-1.xml
icqplugin-10.xml
icqplugin-2.xml
icqplugin-3.xml
icqplugin-4.xml
icqplugin-5.xml
icqplugin-6.xml
icqplugin-7.xml
icqplugin-8.xml
icqplugin-9.xml
icqplugin.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-03-26 75200]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealPlayer Download and Record Plugin for Internet Explorer - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll [2012-05-21 425680]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll [2012-03-07 1003704]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2012-01-17 3855520]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-08-04 42272]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll [2012-03-07 1003704]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-19 1008184]
"hpWirelessAssistant"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [2007-03-01 472776]
"WAWifiMessage"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe [2007-01-10 317128]
"HP Health Check Scheduler"=C:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe [2007-03-07 50696]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2008-02-11 141848]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2008-02-11 166424]
"Persistence"=C:\Windows\system32\igfxpers.exe [2008-02-11 133656]
"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2009-01-05 413696]
"HP Software Update"=C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [2010-06-09 49208]
""= []
"avast5"=C:\Program Files\Alwil Software\Avast5\avastUI.exe [2012-03-07 4241512]
"LWS"=C:\Program Files\Logitech\LWS\Webcam Software\LWS.exe [2011-03-01 190808]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2011-04-08 254696]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2012-03-27 37296]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-01-02 843712]
"QlbCtrl.exe"=C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [2009-11-11 287800]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2008-03-28 1045800]
"TkBellExe"=c:\program files\real\realplayer\Update\realsched.exe [2012-05-21 296056]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"PC Suite Tray"=C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe [2009-06-25 1414144]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2012-02-29 17148552]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Nike+ Utility.lnk - C:\Program Files\Nike+ Utility\Nike+ Utility.exe
C:\Users\Lucinka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Logitech . Registrace produktu.lnk - C:\Program Files\Logitech\Ereg\eReg.exe
OpenOffice.org 3.2.lnk - C:\Program Files\OpenOffice.org 3\program\quickstart.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2008-02-11 204800]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=67108863
"HonorAutorunSetting"=1
"NoDriveTypeAutoRun"=255
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"BindDirectlyToPropertySetStorage"=0
"NoDriveAutoRun"=67108863
"HonorAutorunSetting"=1
"NoDriveTypeAutoRun"=255
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=lvcodec2.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"VIDC.FFDS"=ff_vfw.dll
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo"=vfwwdm32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
======List of files/folders created in the last 1 month======
2012-05-27 13:33:52 ----D---- C:\Program Files\trend micro
2012-05-27 13:33:51 ----D---- C:\rsit
2012-05-27 12:33:00 ----A---- C:\Windows\system32\drivers\tcpip.sys
2012-05-27 12:32:48 ----A---- C:\Windows\system32\drivers\partmgr.sys
2012-05-27 12:32:43 ----A---- C:\Windows\system32\DWrite.dll
2012-05-27 12:32:43 ----A---- C:\Windows\system32\d3d10_1core.dll
2012-05-27 12:32:42 ----A---- C:\Windows\system32\d3d10warp.dll
2012-05-27 12:32:42 ----A---- C:\Windows\system32\d3d10_1.dll
2012-05-27 12:32:42 ----A---- C:\Windows\system32\d2d1.dll
2012-05-27 12:32:38 ----A---- C:\Windows\system32\ntoskrnl.exe
2012-05-27 12:32:37 ----A---- C:\Windows\system32\win32k.sys
2012-05-27 12:32:37 ----A---- C:\Windows\system32\ntkrnlpa.exe
2012-05-21 11:38:59 ----D---- C:\Program Files\Common Files\xing shared
2012-05-21 11:38:37 ----A---- C:\Windows\system32\rmoc3260.dll
2012-05-21 11:38:17 ----A---- C:\Windows\system32\pndx5032.dll
2012-05-21 11:38:17 ----A---- C:\Windows\system32\pndx5016.dll
2012-05-21 11:38:11 ----A---- C:\Windows\system32\pncrt.dll
2012-05-12 17:37:22 ----D---- C:\Program Files\Common Files\Skype
2012-05-06 14:06:05 ----A---- C:\Windows\system32\wmi.dll
2012-05-06 14:06:05 ----A---- C:\Windows\system32\wintrust.dll
2012-05-06 14:06:05 ----A---- C:\Windows\system32\imagehlp.dll
2012-05-06 14:06:05 ----A---- C:\Windows\system32\drivers\fs_rec.sys
2012-05-06 14:02:31 ----A---- C:\Windows\system32\mshtml.dll
2012-05-06 14:02:30 ----A---- C:\Windows\system32\mshtmled.dll
2012-05-06 14:02:30 ----A---- C:\Windows\system32\ieframe.dll
2012-05-06 14:02:29 ----A---- C:\Windows\system32\wininet.dll
2012-05-06 14:02:29 ----A---- C:\Windows\system32\urlmon.dll
2012-05-06 14:02:29 ----A---- C:\Windows\system32\mstime.dll
2012-05-06 14:02:28 ----A---- C:\Windows\system32\url.dll
2012-05-06 14:02:28 ----A---- C:\Windows\system32\msfeeds.dll
2012-05-06 14:02:28 ----A---- C:\Windows\system32\jsproxy.dll
2012-05-06 14:02:28 ----A---- C:\Windows\system32\ieui.dll
2012-05-06 14:02:28 ----A---- C:\Windows\system32\iertutil.dll
2012-05-06 14:02:28 ----A---- C:\Windows\system32\iepeers.dll
2012-05-06 14:02:27 ----A---- C:\Windows\system32\ieapfltr.dll
2012-05-06 13:48:29 ----D---- C:\ProgramData\Mozilla
2012-05-06 13:48:28 ----D---- C:\Program Files\Mozilla Maintenance Service
======List of files/folders modified in the last 1 month======
2012-05-27 13:33:52 ----RD---- C:\Program Files
2012-05-27 13:33:47 ----D---- C:\Windows\Temp
2012-05-27 13:32:28 ----D---- C:\Users\Lucinka\AppData\Roaming\Skype
2012-05-27 13:25:57 ----D---- C:\Windows\ModemLogs
2012-05-27 13:25:57 ----D---- C:\Windows\Minidump
2012-05-27 13:25:57 ----D---- C:\Windows\inf
2012-05-27 13:25:57 ----D---- C:\Windows\Debug
2012-05-27 13:25:57 ----D---- C:\WINDOWS
2012-05-27 13:21:24 ----D---- C:\Program Files\CCleaner
2012-05-27 13:20:36 ----D---- C:\Windows\Microsoft.NET
2012-05-27 13:20:35 ----RSD---- C:\Windows\assembly
2012-05-27 13:09:02 ----D---- C:\Windows\System32
2012-05-27 13:09:02 ----A---- C:\Windows\system32\PerfStringBackup.INI
2012-05-27 12:58:56 ----D---- C:\Windows\system32\drivers
2012-05-27 12:54:03 ----D---- C:\Windows\winsxs
2012-05-27 12:53:49 ----SHD---- C:\Windows\Installer
2012-05-27 12:49:36 ----A---- C:\Windows\system32\mrt.exe
2012-05-27 12:49:22 ----D---- C:\Windows\system32\catroot
2012-05-27 12:40:57 ----D---- C:\Windows\Prefetch
2012-05-27 12:34:00 ----D---- C:\Windows\system32\XPSViewer
2012-05-27 12:33:46 ----SHD---- C:\System Volume Information
2012-05-27 12:31:46 ----D---- C:\Windows\system32\catroot2
2012-05-27 12:15:12 ----D---- C:\Users\Lucinka\AppData\Roaming\HpUpdate
2012-05-22 12:31:59 ----D---- C:\Users\Lucinka\AppData\Roaming\ICQ
2012-05-21 20:45:19 ----D---- C:\Lucka
2012-05-21 11:39:48 ----D---- C:\Windows\system32\Tasks
2012-05-21 11:39:34 ----D---- C:\Users\Lucinka\AppData\Roaming\Real
2012-05-21 11:39:04 ----D---- C:\ProgramData\Real
2012-05-21 11:39:03 ----D---- C:\Program Files\Real
2012-05-21 11:38:59 ----D---- C:\Program Files\Common Files
2012-05-21 11:38:06 ----A---- C:\Windows\system32\msvcr71.dll
2012-05-21 11:38:06 ----A---- C:\Windows\system32\msvcp71.dll
2012-05-19 17:51:15 ----D---- C:\Users\Lucinka\AppData\Roaming\vlc
2012-05-12 17:37:23 ----RD---- C:\Program Files\Skype
2012-05-12 17:37:11 ----D---- C:\ProgramData\Skype
2012-05-06 14:53:33 ----D---- C:\Program Files\Windows Mail
2012-05-06 14:15:27 ----D---- C:\Windows\system32\migration
2012-05-06 14:15:27 ----D---- C:\Program Files\Internet Explorer
2012-05-06 13:48:29 ----HD---- C:\ProgramData
2012-05-06 13:48:25 ----D---- C:\Program Files\Mozilla Firefox
2012-05-04 22:58:31 ----A---- C:\Windows\system32\FlashPlayerApp.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 Lbd;Lbd; C:\Windows\system32\DRIVERS\Lbd.sys [2010-07-06 64288]
R0 PxHelp20;PxHelp20; C:\Windows\System32\Drivers\PxHelp20.sys [2006-07-24 36528]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2012-03-07 35672]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2012-03-07 612184]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2012-03-07 337880]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2012-03-07 53848]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2012-03-07 20696]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2012-03-07 57688]
R2 mdmxsdk;mdmxsdk; C:\Windows\system32\DRIVERS\mdmxsdk.sys [2006-06-19 12672]
R2 XAudio;XAudio; C:\Windows\system32\DRIVERS\xaudio.sys [2007-07-10 8704]
R3 CnxtHdAudService;Conexant UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\CHDRT32.sys [2008-03-04 188416]
R3 E100B;Intel(R) PRO Network Connection Driver; C:\Windows\system32\DRIVERS\e100b325.sys [2006-10-31 165760]
R3 HBtnKey;HP Hotkey Device; C:\Windows\system32\DRIVERS\cpqbttn.sys [2010-02-25 14904]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\Windows\system32\DRIVERS\HpqKbFiltr.sys [2009-04-29 15872]
R3 HSF_DPV;HSF_DPV; C:\Windows\system32\DRIVERS\HSX_DPV.sys [2007-06-20 984064]
R3 HSXHWAZL;HSXHWAZL; C:\Windows\system32\DRIVERS\HSXHWAZL.sys [2007-06-20 208896]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2008-02-11 2302976]
R3 NETw5v32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit; C:\Windows\system32\DRIVERS\NETw5v32.sys [2008-11-17 3668480]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2008-03-28 199472]
R3 winachsf;winachsf; C:\Windows\system32\DRIVERS\HSX_CNXT.sys [2007-06-20 660480]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2006-11-02 167936]
S3 BCM43XV;Broadcom Extensible 802.11 Network Adapter Driver; C:\Windows\system32\DRIVERS\bcmwl6.sys [2006-11-02 464384]
S3 BthEnum;Služba Bluetooth Enumerator; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-04-11 22528]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2008-01-19 92160]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2011-04-21 508416]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2009-06-17 30208]
S3 drmkaud;Dekodér zvuků DRM jádra společnosti Microsoft; C:\Windows\system32\drivers\drmkaud.sys [2008-01-19 5632]
S3 HdAudAddService;Microsoft UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\CHDART.sys [2007-02-22 159232]
S3 HSFHWAZL;HSFHWAZL; C:\Windows\system32\DRIVERS\VSTAZL3.SYS [2006-11-02 200704]
S3 Huawei;HUAWEI Mobile Connect - USB Smart Card Reader; C:\Windows\system32\DRIVERS\ewdcsc.sys [2009-12-15 23424]
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\Windows\system32\DRIVERS\ewusbmdm.sys [2009-12-15 102912]
S3 hwusbdev;Huawei DataCard USB PNP Device; C:\Windows\system32\DRIVERS\ewusbdev.sys [2009-12-15 101120]
S3 ialm;ialm; C:\Windows\system32\DRIVERS\igdkmd32.sys [2008-02-11 2302976]
S3 lvpopflt;Logitech POP Suppression Filter; C:\Windows\system32\DRIVERS\lvpopflt.sys [2010-05-15 114784]
S3 LVPr2Mon;Logitech LVPr2Mon Driver; C:\Windows\system32\DRIVERS\LVPr2Mon.sys [2010-05-07 25824]
S3 LVRS;Logitech RightSound Filter Driver; C:\Windows\system32\DRIVERS\lvrs.sys [2011-04-01 291424]
S3 LVUVC;Logitech Webcam C160(UVC); C:\Windows\system32\DRIVERS\lvuvc.sys [2011-04-01 4333280]
S3 MSKSSRV;Server proxy služby datových proudů Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-19 8192]
S3 MSPCLOCK;Server proxy hodin datových proudů Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-19 5888]
S3 MSPQM;Server proxy správce kvality datových proudů Microsoft; C:\Windows\system32\drivers\MSPQM.sys [2008-01-19 5504]
S3 MSTEE;Konvertor jímka-jímka typu T datových proudů Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2008-01-19 6016]
S3 NETw3v32;Intel(R) PRO/Wireless 3945ABG Adapter Driver for Windows Vista 32 Bit; C:\Windows\system32\DRIVERS\NETw3v32.sys [2006-11-02 1781760]
S3 NETw4v32;Ovladač adaptéru Intel(R) Wireless WiFi Link pro systém Windows Vista 32 Bit; C:\Windows\system32\DRIVERS\NETw4v32.sys [2007-10-31 2252800]
S3 nmwcd;Nokia USB Phone Parent; C:\Windows\system32\drivers\ccdcmb.sys [2009-02-09 17664]
S3 nmwcdc;Nokia USB Generic; C:\Windows\system32\drivers\ccdcmbo.sys [2009-02-09 22016]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 R300;R300; C:\Windows\system32\DRIVERS\atikmdag.sys [2006-11-02 2028032]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-04-11 148992]
S3 TPM;Čip TPM; C:\Windows\system32\drivers\tpm.sys [2006-11-02 41064]
S3 UDTT2BDA;Twinhan USB2 DVB-T receiver; C:\Windows\System32\Drivers\UDTT2BDA.sys [2004-07-22 36736]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerflt.sys [2009-02-09 7808]
S3 usbaudio;Ovladač zvuků USB (WDM); C:\Windows\system32\drivers\usbaudio.sys [2009-04-11 73216]
S3 usbser;USB Modem Driver; C:\Windows\system32\DRIVERS\usbser.sys [2009-04-11 27648]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltj.sys [2009-02-09 7808]
S3 usbvideo;Zobrazovací zařízení USB (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2008-01-19 134016]
S3 WimFltr;WimFltr; C:\Windows\system32\DRIVERS\wimfltr.sys [2006-11-02 128104]
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2009-10-01 40448]
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-19 83328]
S4 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2006-11-02 82432]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2012-03-07 44768]
R2 BthServ;@%SystemRoot%\System32\bthserv.dll,-101; C:\Windows\system32\svchost.exe [2008-01-19 21504]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2008-01-19 21504]
R2 HP Health Check Service;HP Health Check Service; C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe [2007-03-08 62984]
R2 MSSQL$MSSMLBIZ;SQL Server (MSSMLBIZ); c:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [2006-04-14 28933976]
R2 UMVPFSrv;UMVPFSrv; C:\Program Files\Common Files\logishrd\LVMVFM\UMVPFSrv.exe [2011-04-01 428640]
R2 XAudioService;XAudioService; C:\Windows\system32\DRIVERS\xaudio.exe [2007-07-10 386560]
R3 Com4QLBEx;Com4QLBEx; C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [2010-01-12 227896]
R3 hpqwmiex;hpqwmiex; C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe [2009-04-30 229944]
R3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2009-06-02 637952]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-08-15 135664]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2012-02-29 158856]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-05-04 257696]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-08-15 135664]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2004-10-22 73728]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2012-05-06 129976]
S3 SQLWriter;SQL Server VSS Writer; c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2006-04-14 87840]
S3 stllssvr;stllssvr; c:\Program Files\Common Files\SureThing Shared\stllssvr.exe [2006-11-01 73728]
S3 WPFFontCache_v0400;@c:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe,-100; C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
S4 MSSQLServerADHelper;SQL Server Active Directory Helper; c:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe [2005-10-14 45272]
S4 SQLBrowser;SQL Server Browser; c:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe [2006-04-14 240416]
-----------------EOF-----------------
a ještě se mi zobrazilo nějaké info.txt tak také přikládám pro jistotu:
info.txt logfile of random's system information tool 1.09 2012-05-27 13:33:56
======Uninstall list======
Activation Assistant for the 2007 Microsoft Office suites-->"C:\ProgramData\{623D32E9-0C62-4453-AD44-98B31F52A5E1}\Microsoft Office Activation Assistant.exe" REMOVE=TRUE MODIFY=FALSE
Adobe Flash Player 11 Plugin-->C:\Windows\system32\Macromed\Flash\FlashUtil32_11_2_202_235_Plugin.exe -maintain plugin
Adobe Flash Player ActiveX-->C:\Windows\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Reader 9.5.1 - Czech-->MsiExec.exe /I{AC76BA86-7AD7-1029-7B44-A95000000001}
Apple Software Update-->MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F495BE32033}
Application Installer 4.00.B13-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{70CEFEBA-F757-4DBE-8A21-027C326137CE}\SETUP.EXE" -l0x5
avast! Free Antivirus-->C:\Program Files\Alwil Software\Avast5\aswRunDll.exe "C:\Program Files\Alwil Software\Avast5\Setup\setiface.dll" RunSetup
Balíček ovladače systému Windows - Nokia Modem (06/01/2009 4.1)-->C:\PROGRA~1\DIFX\270581355A767BF1\dpinst.exe /u C:\Windows\System32\DriverStore\FileRepository\nokia_bluetooth.inf_44b2e2d6\nokia_bluetooth.inf
Balíček ovladače systému Windows - Nokia Modem (06/01/2009 7.01.0.3)-->C:\PROGRA~1\DIFX\270581355A767BF1\dpinst.exe /u C:\Windows\System32\DriverStore\FileRepository\nokbtmdm.inf_34a3d799\nokbtmdm.inf
Balíček ovladače systému Windows - Nokia pccsmcfd (08/22/2008 7.0.0.0)-->C:\PROGRA~1\DIFX\B4723E9A0713E5B1\dpinst.exe /u C:\Windows\system32\DRVSTORE\pccsmcfd_A3B3916E5D8138F59EE218321B27B044D3B18294\pccsmcfd.inf
Business Contact Manager pro aplikaci Outlook 2007-->"c:\Program Files\Microsoft Small Business\Business Contact Manager\SetupBootstrap\Setup.exe" /remove {432282b5-d708-431a-9ada-abbbbac3f205}
Business Contact Manager pro aplikaci Outlook 2007-->MsiExec.exe /X{432282b5-d708-431a-9ada-abbbbac3f205}
CameraHelperMsi-->MsiExec.exe /I{15634701-BACE-4449-8B25-1567DA8C9FD3}
CCleaner-->"C:\Program Files\CCleaner\uninst.exe"
Conexant HD Audio-->C:\Program Files\CONEXANT\CNXT_AUDIO_HDA\UIU32a.exe -U -IcV30D5a.INF
erLT-->MsiExec.exe /I{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}
ESU for Microsoft Vista-->MsiExec.exe /X{422081BE-A88C-4E6B-9E56-C35BB864E727}
Google Update Helper-->MsiExec.exe /I{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
HDAUDIO Soft Data Fax Modem with SmartCP-->C:\Program Files\CONEXANT\CNXT_MODEM_HDA_HSF\UIU32m.exe -U -IwqcVenz.inf
Hewlett-Packard Active Check-->MsiExec.exe /X{254C37AA-6B72-4300-84F6-98A82419187E}
Hewlett-Packard Asset Agent-->MsiExec.exe /X{669D4A35-146B-4314-89F1-1AC3D7B88367}
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT=""
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT=""
HP Active Support Library 32 bit components-->MsiExec.exe /I{FAB0C302-CB18-4A7A-BA03-C3DC23101A68}
HP Active Support Library-->C:\Program Files\InstallShield Installation Information\{3AAFBD6A-7F68-4BDC-8280-22DCFACE13EB}\setup.exe -runfromtemp -l0x0409
HP Customer Experience Enhancements-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{AB5E289E-76BF-4251-9F3F-9B763F681AE0}\setup.exe" -l0x9 -removeonly
HP Doc Viewer-->MsiExec.exe /I{082702D5-5DD8-4600-BCE5-48B15174687F}
HP Easy Setup - Core-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F94234DB-FD06-42C3-B88D-6FC4DC9F988C}\setup.exe" -l0x9
HP Easy Setup - Frontend-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{BBE5C83E-4DC5-494F-8A23-3AAE242E94C2}\setup.exe" -l0x9 -removeonly
HP Help and Support-->MsiExec.exe /I{9061CEF2-51F5-42C9-8A70-9ED351C6597A}
HP Notebook Accessories Product Tour-->MsiExec.exe /I{521F72F4-FFE4-4959-AA88-EED06125211F}
HP Quick Launch Buttons-->"C:\Program Files\InstallShield Installation Information\{34D2AB40-150D-475D-AE32-BD23FB5EE355}\setup.exe" -runfromtemp -l0x0405 -removeonly uninst
HP Update-->MsiExec.exe /X{B0069CFA-5BB9-4C03-B1C6-89CE290E5AFE}
HP User Guides 0077-->MsiExec.exe /I{B51C3024-333B-4FB6-B1EC-49ECE2DE6056}
HP Wireless Assistant-->MsiExec.exe /I{D32067CD-7409-4792-BFA0-1469BCD8F0C8}
ICQ7.5-->"C:\Program Files\InstallShield Installation Information\{7578ADEA-D65F-4C89-A249-B1C88B6FFC20}\ICQ7.exe" -runfromtemp -l0x0009 -removeonly
Instalátor programu HP Backup and Recovery Manager -->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{3F9F7336-6DF8-476F-ABF6-C70A17FAF619}\setup.exe" -l0x5 -uninst -removeonly
Intel(R) Graphics Media Accelerator Driver-->C:\Windows\system32\igxpun.exe -uninstall
Intel(R) PRO Network Connections Drivers-->Prounstl.exe
iShutdown 1-->"C:\Program Files\iProjects\iShutdown\unins000.exe"
Java(TM) 6 Update 26-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216011FF}
Java(TM) 6 Update 5-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160050}
Java(TM) SE Runtime Environment 6-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160000}
K-Lite Codec Pack 3.6.5 Standard-->"C:\Program Files\K-Lite Codec Pack\unins000.exe"
Logitech Vid HD-->C:\Program Files\Logitech\Vid HD\uninst.exe
Logitech Webcam Software-->"C:\Program Files\Common Files\LogiShrd\Installer\{D40EB009-0499-459c-A8AF-C9C110766215}\setup.exe" /lang=ENU /guid="{D40EB009-0499-459c-A8AF-C9C110766215}"
LWS Facebook-->MsiExec.exe /I{FF167195-9EE4-46C0-8CD7-FBA3457E88AB}
LWS Gallery-->MsiExec.exe /I{6F76EC3C-34B1-436E-97FB-48C58D7BEDCD}
LWS Help_main-->MsiExec.exe /I{1651216E-E7AD-4250-92A1-FB8ED61391C9}
LWS Launcher-->MsiExec.exe /I{83C8FA3C-F4EA-46C4-8392-D3CE353738D6}
LWS Motion Detection-->MsiExec.exe /I{71E66D3F-A009-44AB-8784-75E2819BA4BA}
LWS Pictures And Video-->MsiExec.exe /I{08610298-29AE-445B-B37D-EFBE05802967}
LWS Twitter-->MsiExec.exe /I{174A3B31-4C43-43DD-866F-73C9DB887B48}
LWS Video Mask Maker-->MsiExec.exe /I{EED027B7-0DB6-404B-8F45-6DFEE34A0441}
LWS VideoEffects-->MsiExec.exe /I{138A4072-9E64-46BD-B5F9-DB2BB395391F}
LWS Webcam Software-->MsiExec.exe /I{8937D274-C281-42E4-8CDB-A0B2DF979189}
LWS WLM Plugin-->MsiExec.exe /I{9DAEA76B-E50F-4272-A595-0124E826553D}
LWS YouTube Plugin-->MsiExec.exe /I{21DF0294-6B9D-4741-AB6F-B2ABFBD2387E}
Microsoft .NET Framework 1.1 Czech Language Pack-->MsiExec.exe /X{5E65E94D-69F2-4850-9E93-6459C53A0F50}
Microsoft .NET Framework 1.1 Security Update (KB2656353)-->"C:\Windows\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\Windows\Microsoft.NET\Framework\v1.1.4322\Updates\M2656353\M2656353Uninstall.msp"
Microsoft .NET Framework 1.1 Security Update (KB2656370)-->"C:\Windows\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\Windows\Microsoft.NET\Framework\v1.1.4322\Updates\M2656370\M2656370Uninstall.msp"
Microsoft .NET Framework 1.1 Security Update (KB979906)-->"C:\Windows\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\Windows\Microsoft.NET\Framework\v1.1.4322\Updates\M979906\M979906Uninstall.msp"
Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 3.5 Language Pack SP1 - csy-->MsiExec.exe /I{DD73CA82-EA82-38AA-863D-9A24A018DC96}
Microsoft .NET Framework 3.5 SP1 – jazyková sada – CSY-->c:\Windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack SP1 - csy\setup.exe
Microsoft .NET Framework 3.5 SP1-->c:\Windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe
Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
Microsoft .NET Framework 4 Client Profile CSY Language Pack-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\ClientLP\Setup.exe /repair /x86 /lcid 1029 /parameterfolder ClientLP
Microsoft .NET Framework 4 Client Profile CSY Language Pack-->MsiExec.exe /X{7036A6F4-5DAD-3908-956D-1752CD7F7E5A}
Microsoft .NET Framework 4 Client Profile-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\Setup.exe /repair /x86 /parameterfolder Client
Microsoft .NET Framework 4 Client Profile-->MsiExec.exe /X{3C3901C5-3455-3E0A-A214-0B093A5070A6}
Microsoft Silverlight-->MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
Microsoft SQL Server 2005 Express Edition (MSSMLBIZ)-->MsiExec.exe /I{2AFFFDD7-ED85-4A90-8C52-5DA9EBDC9B8F}
Microsoft SQL Server 2005-->"c:\Program Files\Microsoft SQL Server\90\Setup Bootstrap\ARPWrapper.exe" /Remove
Microsoft SQL Server Native Client-->MsiExec.exe /I{50A0893D-47D8-48E0-A7E8-44BCD7E4422E}
Microsoft SQL Server Setup Support Files (English)-->MsiExec.exe /X{53F5C3EE-05ED-4830-994B-50B2F0D50FCE}
Microsoft SQL Server VSS Writer-->MsiExec.exe /I{C0D2F614-5CE5-4DCB-8678-E5C9AF7044F8}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022-->MsiExec.exe /X{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148-->MsiExec.exe /X{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
Mozilla Firefox 12.0 (x86 cs)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
Mozilla Maintenance Service-->"C:\Program Files\Mozilla Maintenance Service\uninstall.exe"
MSCU for Microsoft Vista-->MsiExec.exe /X{5BE3CB1F-54CA-4E7B-BCAE-CE7ED108E7B2}
MSVC80_x86-->MsiExec.exe /I{212748BB-0DA5-46DE-82A1-403736DC9F27}
MSXML 4.0 SP2 (KB936181)-->MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF}
MSXML 4.0 SP2 (KB941833)-->MsiExec.exe /I{C523D256-313D-4866-B36A-F3DE528246EF}
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
MSXML 4.0 SP2 (KB973688)-->MsiExec.exe /I{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
Nero 8 Micro-->"C:\Program Files\Nero\unins000.exe"
neroxml-->MsiExec.exe /I{56C049BE-79E9-4502-BEA7-9754A3E60F9B}
Nike+ Utility-->MsiExec.exe /X{309C137D-66B4-491B-9D21-F03892DAFD93}
Nokia Connectivity Cable Driver-->MsiExec.exe /I{52D02A2B-03D2-4E34-A358-DC5D951FD296}
Nokia PC Suite-->C:\ProgramData\Installations\{3D39E775-DDDA-4327-B747-0BDC5F191331}\Nokia_PC_Suite_7_1_30_9_cze_web.exe
Nokia PC Suite-->MsiExec.exe /I{3D39E775-DDDA-4327-B747-0BDC5F191331}
O2-->"C:\Program Files\O2\O2CZ\Uninstall.exe"
OpenOffice.org 3.2-->MsiExec.exe /I{FAB43061-FEFB-46E8-A159-96710395DB5E}
PC Connectivity Solution-->MsiExec.exe /I{0C973594-7DDF-4BD0-84ED-3517F7622037}
QLBCASL-->MsiExec.exe /I{F1D7AC58-554A-4A58-B784-B61558B1449A}
QuickTime-->MsiExec.exe /I{216AB108-2AE1-4130-B3D5-20B2C4C80F8F}
RealNetworks - Microsoft Visual C++ 2008 Runtime-->MsiExec.exe /X{7770E71B-2D43-4800-9CB3-5B6CAAEBEBEA}
RealPlayer-->c:\program files\real\realplayer\Update\r1puninst.exe RealNetworks|RealPlayer|15.0
RealUpgrade 1.1-->MsiExec.exe /I{28C2DED6-325B-4CC7-983A-1777C8F7FBAB}
Roxio Creator Audio-->MsiExec.exe /I{83FFCFC7-88C6-41c6-8752-958A45325C82}
Roxio Creator Basic v9-->MsiExec.exe /I{C8B0680B-CDAE-4809-9F91-387B6DE00F7C}
Roxio Creator Copy-->MsiExec.exe /I{619CDD8A-14B6-43a1-AB6C-0F4EE48CE048}
Roxio Creator Data-->MsiExec.exe /I{0D397393-9B50-4c52-84D5-77E344289F87}
Roxio Creator Tools-->MsiExec.exe /I{0394CDC8-FABD-4ed8-B104-03393876DFDF}
Roxio Express Labeler 3-->MsiExec.exe /I{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2604111)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {94EFE014-E577-310B-B2D5-6973A21D8A90} /qb+ REBOOTPROMPT=""
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2657424)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {F6F5AC31-9833-3E77-AC8E-8E910CAB39AE} /qb+ REBOOTPROMPT=""
Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {2CE2EB39-45C8-32D4-8A99-5529C38F1B99} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {7E97AB83-C1FE-38DE-B848-877E0A4BD81E} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {DB31DEDD-BF95-31E7-A9B7-5480561CEFF3} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {67A5F99B-5EBA-3812-8D2E-BC251490DD3F} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {8DDEFC7E-0C61-3D11-AFC6-5414F2DAFD01} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {4952F442-5C1A-38EB-8C23-B18EFE77E20C} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {9EC88EA8-4ABE-393C-87BD-90EABB1C4C9B} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {16EEC04A-B924-37E0-97CF-422DCEFC1B63} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile CSY Language Pack (KB2518870)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\ClientLP\setup.exe /uninstallpatch {2CE2EB39-45C8-32D4-8A99-5529C38F1B99} /parameterfolder ClientLP
Skype Click to Call-->MsiExec.exe /I{B6CF2967-C81E-40C0-9815-C05774FEF120}
Skype™ 5.8-->MsiExec.exe /X{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}
Sonic Activation Module-->MsiExec.exe /I{35E1EC43-D4FC-4E4A-AAB3-20DDA27E8BB0}
Spelling Dictionaries Support For Adobe Reader 8-->MsiExec.exe /I{AC76BA86-7AD7-5464-3428-800000000003}
Synaptics Pointing Device Driver-->rundll32.exe "C:\Program Files\Synaptics\SynTP\SynISDLL.dll",standAloneUninstall
The Rosetta Stone-->C:\Windows\unvise32.exe C:\Program Files\The Rosetta Stone\TRS Support\uninstal.log
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {B2AE9C82-DC7B-3641-BFC8-87275C4F3607} /qb+ REBOOTPROMPT=""
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {5E9CF3A4-ADB3-3080-A8BF-976A28340758} /parameterfolder Client
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {81EBB9D7-173C-32E3-B477-149C8DE075E4} /parameterfolder Client
Update for Microsoft .NET Framework 4 Client Profile (KB2600217)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {5D9961AC-7C99-36A2-9EF0-34678AED5384} /parameterfolder Client
VCRedistSetup-->MsiExec.exe /I{3921A67A-5AB1-4E48-9444-C71814CF3027}
Vista Default Settings-->MsiExec.exe /I{6ECFCF0E-BFC9-432E-B6C2-5F1C54140215}
Visual C++ 2008 x86 Runtime - (v9.0.30729)-->MsiExec.exe /X{F333A33D-125C-32A2-8DCE-5C5D14231E27}
Visual C++ 2008 x86 Runtime - v9.0.30729.01-->C:\Windows\system32\msiexec.exe /x {F333A33D-125C-32A2-8DCE-5C5D14231E27} /qb+ REBOOTPROMPT=""
VLC media player 1.1.11-->C:\Program Files\VideoLAN\VLC\uninstall.exe
Windows Media Player Firefox Plugin-->MsiExec.exe /I{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}
WinRAR-->C:\Program Files\WinRAR\uninstall.exe
======Security center information======
AV: avast! antivirus 4.8.1229 [VPS 081122-0]
AS: Windows Defender
AS: avast! antivirus 4.8.1229 [VPS 081122-0]
======System event log======
Computer Name: Lucinka-PC
Event Code: 7036
Message: Stav služby Lavasoft Ad-Aware Service byl změněn na: Spuštěno
Record Number: 206557
Source Name: Service Control Manager
Time Written: 20110329222511.000000-000
Event Type: Informace
User:
Computer Name: Lucinka-PC
Event Code: 7036
Message: Stav služby Automatická konfigurace sítě WLAN byl změněn na: Spuštěno
Record Number: 206556
Source Name: Service Control Manager
Time Written: 20110329222511.000000-000
Event Type: Informace
User:
Computer Name: Lucinka-PC
Event Code: 7036
Message: Stav služby Klient DNS byl změněn na: Spuštěno
Record Number: 206555
Source Name: Service Control Manager
Time Written: 20110329222511.000000-000
Event Type: Informace
User:
Computer Name: Lucinka-PC
Event Code: 7036
Message: Stav služby Protokol EAP (Extensible Authentication Protocol) byl změněn na: Spuštěno
Record Number: 206554
Source Name: Service Control Manager
Time Written: 20110329222511.000000-000
Event Type: Informace
User:
Computer Name: Lucinka-PC
Event Code: 7036
Message: Stav služby Klient DHCP byl změněn na: Spuštěno
Record Number: 206553
Source Name: Service Control Manager
Time Written: 20110329222511.000000-000
Event Type: Informace
User:
=====Application event log=====
Computer Name: Lucinka-PC
Event Code: 17162
Message: SQL Server is starting at normal priority base (=7). This is an informational message only. No user action is required.
Record Number: 45716
Source Name: MSSQL$MSSMLBIZ
Time Written: 20100331211026.000000-000
Event Type: Informace
User:
Computer Name: Lucinka-PC
Event Code: 17110
Message: Registry startup parameters:
Record Number: 45715
Source Name: MSSQL$MSSMLBIZ
Time Written: 20100331211026.000000-000
Event Type: Informace
User:
Computer Name: Lucinka-PC
Event Code: 17176
Message: This instance of SQL Server last reported using a process ID of 2016 at 31.3.2010 5:07:07 (local) 31.3.2010 3:07:07 (UTC). This is an informational message only; no user action is required.
Record Number: 45714
Source Name: MSSQL$MSSMLBIZ
Time Written: 20100331211026.000000-000
Event Type: Informace
User:
Computer Name: Lucinka-PC
Event Code: 17111
Message: Logging SQL Server messages in file 'c:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\LOG\ERRORLOG'.
Record Number: 45713
Source Name: MSSQL$MSSMLBIZ
Time Written: 20100331211026.000000-000
Event Type: Informace
User:
Computer Name: Lucinka-PC
Event Code: 17104
Message: Server process ID is 328.
Record Number: 45712
Source Name: MSSQL$MSSMLBIZ
Time Written: 20100331211026.000000-000
Event Type: Informace
User:
=====Security event log=====
Computer Name: Lucinka-PC
Event Code: 4648
Message: Došlo k pokusu o přihlášení pomocí explicitního pověření.
Předmět:
ID zabezpečení: S-1-5-18
Název účtu: LUCINKA-PC$
Doména účtu: WORKGROUP
ID přihlášení: 0x3e7
GUID přihlášení: {00000000-0000-0000-0000-000000000000}
Účet, jehož pověření bylo použito:
Název účtu: SYSTEM
Doména účtu: NT AUTHORITY
GUID přihlášení: {00000000-0000-0000-0000-000000000000}
Cílový server:
Název cílového serveru: localhost
Další informace: localhost
Informace o procesu:
ID procesu: 0x26c
Název procesu: C:\WINDOWS\System32\services.exe
Informace o síti:
Síťová adresa: -
Port: -
Tato událost je generována, pokud se proces pokusí přihlásit k účtu explicitním zadáním pověření tohoto účtu. K tomu nejčastěji dochází v dávkových konfiguracích, například naplánovaných úlohách, nebo při použití příkazu RUNAS.
Record Number: 64817
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20101005045224.190957-000
Event Type: Úspěch auditu
User:
Computer Name: Lucinka-PC
Event Code: 4647
Message: Odhlášení spuštěné uživatelem:
Předmět:
ID zabezpečení: S-1-5-21-1116206244-830157978-162234285-1006
Název účtu: Lucinka
Doména účtu: Lucinka-PC
ID přihlášení: 0x68b9f
Tato událost je generována, pokud je spuštěno odhlášení, ale počet referencí na token není nulový a relaci přihlášení nelze zničit. Není povolena žádná další uživatelem spuštěná akce. Tuto událost lze interpretovat jako událost odhlášení.
Record Number: 64816
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20101005045221.663757-000
Event Type: Úspěch auditu
User:
Computer Name: Lucinka-PC
Event Code: 4905
Message: Došlo k pokusu zrušit registraci zdroje události zabezpečení.
Předmět
ID zabezpečení: S-1-5-18
Název účtu: LUCINKA-PC$
Doména účtu: WORKGROUP
ID přihlášení: 0x3e7
Proces:
ID procesu: 0xf50
Název procesu: C:\WINDOWS\System32\VSSVC.exe
Zdroj události:
Název zdroje: VSSAudit
ID zdroje události: 0x359418
Record Number: 64815
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20101004231944.785757-000
Event Type: Úspěch auditu
User:
Computer Name: Lucinka-PC
Event Code: 4904
Message: Došlo k pokusu zaregistrovat zdroj události zabezpečení.
Předmět :
ID zabezpečení: S-1-5-18
Název účtu: LUCINKA-PC$
Doména účtu: WORKGROUP
ID přihlášení: 0x3e7
Proces:
ID procesu: 0xf50
Název procesu: C:\WINDOWS\System32\VSSVC.exe
Zdroj události:
Název zdroje: VSSAudit
ID zdroje události: 0x359418
Record Number: 64814
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20101004231944.784757-000
Event Type: Úspěch auditu
User:
Computer Name: Lucinka-PC
Event Code: 4672
Message: Novému přihlášení byla přiřazena zvláštní oprávnění.
Předmět:
ID zabezpečení: S-1-5-18
Název účtu: SYSTEM
Doména účtu: NT AUTHORITY
ID přihlášení: 0x3e7
Oprávnění: SeAssignPrimaryTokenPrivilege
SeTcbPrivilege
SeSecurityPrivilege
SeTakeOwnershipPrivilege
SeLoadDriverPrivilege
SeBackupPrivilege
SeRestorePrivilege
SeDebugPrivilege
SeAuditPrivilege
SeSystemEnvironmentPrivilege
SeImpersonatePrivilege
Record Number: 64813
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20101004231856.691757-000
Event Type: Úspěch auditu
User:
======Environment variables======
"ComSpec"=%SystemRoot%\system32\cmd.exe
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"Path"=C:\Program Files\PC Connectivity Solution\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;c:\Program Files\Microsoft SQL Server\90\Tools\binn\;c:\Program Files\Common Files\Roxio Shared\DLLShared\;C:\Program Files\QuickTime\QTSystem\;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
"PROCESSOR_ARCHITECTURE"=x86
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"USERNAME"=SYSTEM
"windir"=%SystemRoot%
"PROCESSOR_LEVEL"=6
"PROCESSOR_IDENTIFIER"=x86 Family 6 Model 14 Stepping 8, GenuineIntel
"PROCESSOR_REVISION"=0e08
"NUMBER_OF_PROCESSORS"=2
"PLATFORM"=BNB
"OnlineServices"=Online Services
"RoxioCentral"=c:\Program Files\Common Files\Roxio Shared\9.0\Roxio Central33\
"CLASSPATH"=.;C:\Program Files\Java\jre6\lib\ext\QTJava.zip
"QTJAVA"=C:\Program Files\Java\jre6\lib\ext\QTJava.zip
"PSModulePath"=%SystemRoot%\system32\WindowsPowerShell\v1.0\Modules\
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím o kontrolu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Prosím o kontrolu
Děkuji za bleskovou reakci. Bohužel poškozené soubory přítel všechny odstranil a co je průvodce problémů to nevím.
Přikládám následující logy:
MbrScan:
Log z MBRCheck:
MBRCheck, version 1.2.3
(c) 2010, AD
Command-line:
Windows Version: Windows Vista Home Basic Edition
Windows Information: Service Pack 2 (build 6002), 32-bit
Base Board Manufacturer: Hewlett-Packard
BIOS Manufacturer: Hewlett-Packard
System Manufacturer: Hewlett-Packard
System Product Name: HP 530 Notebook PC(GU334AA#AKB)
Logical Drives Mask: 0x0000007c
Kernel Drivers (total 158):
0x8324C000 \SystemRoot\system32\ntkrnlpa.exe
0x83219000 \SystemRoot\system32\hal.dll
0x8040E000 \SystemRoot\system32\kdcom.dll
0x80415000 \SystemRoot\system32\mcupdate_GenuineIntel.dll
0x80485000 \SystemRoot\system32\PSHED.dll
0x80496000 \SystemRoot\system32\BOOTVID.dll
0x8049E000 \SystemRoot\system32\CLFS.SYS
0x804DF000 \SystemRoot\system32\CI.dll
0x80608000 \SystemRoot\system32\drivers\Wdf01000.sys
0x80684000 \SystemRoot\system32\drivers\WDFLDR.SYS
0x80691000 \SystemRoot\system32\drivers\acpi.sys
0x806D7000 \SystemRoot\system32\drivers\WMILIB.SYS
0x806E0000 \SystemRoot\system32\drivers\msisadrv.sys
0x806E8000 \SystemRoot\system32\drivers\pci.sys
0x8070F000 \SystemRoot\System32\drivers\partmgr.sys
0x8071F000 \SystemRoot\system32\DRIVERS\compbatt.sys
0x80722000 \SystemRoot\system32\DRIVERS\BATTC.SYS
0x8072C000 \SystemRoot\system32\drivers\volmgr.sys
0x8073B000 \SystemRoot\System32\drivers\volmgrx.sys
0x80785000 \SystemRoot\system32\drivers\intelide.sys
0x8078C000 \SystemRoot\system32\drivers\PCIIDEX.SYS
0x8079A000 \SystemRoot\system32\DRIVERS\pcmcia.sys
0x807C7000 \SystemRoot\System32\drivers\mountmgr.sys
0x807D7000 \SystemRoot\system32\drivers\atapi.sys
0x807DF000 \SystemRoot\system32\drivers\ataport.SYS
0x805BF000 \SystemRoot\system32\drivers\msahci.sys
0x805C9000 \SystemRoot\system32\drivers\fltmgr.sys
0x83C0E000 \SystemRoot\system32\drivers\fileinfo.sys
0x83C1E000 \SystemRoot\system32\DRIVERS\Lbd.sys
0x83C2D000 \SystemRoot\System32\Drivers\PxHelp20.sys
0x83C36000 \SystemRoot\System32\Drivers\ksecdd.sys
0x83CA8000 \SystemRoot\system32\drivers\ndis.sys
0x83DB3000 \SystemRoot\system32\drivers\msrpc.sys
0x83E0D000 \SystemRoot\system32\drivers\NETIO.SYS
0x83E48000 \SystemRoot\System32\drivers\tcpip.sys
0x83F32000 \SystemRoot\System32\drivers\fwpkclnt.sys
0x89002000 \SystemRoot\System32\Drivers\Ntfs.sys
0x89112000 \SystemRoot\system32\drivers\volsnap.sys
0x8914B000 \SystemRoot\System32\Drivers\spldr.sys
0x89153000 \SystemRoot\System32\Drivers\mup.sys
0x89162000 \SystemRoot\System32\drivers\ecache.sys
0x89189000 \SystemRoot\system32\drivers\disk.sys
0x8919A000 \SystemRoot\system32\drivers\CLASSPNP.SYS
0x891BB000 \SystemRoot\system32\drivers\crcdisk.sys
0x891E6000 \SystemRoot\system32\DRIVERS\tunnel.sys
0x891F1000 \SystemRoot\system32\DRIVERS\tunmp.sys
0x83F4D000 \SystemRoot\system32\DRIVERS\intelppm.sys
0x8D00A000 \SystemRoot\system32\DRIVERS\igdkmd32.sys
0x8D6C5000 \SystemRoot\System32\drivers\dxgkrnl.sys
0x8D765000 \SystemRoot\System32\drivers\watchdog.sys
0x8D771000 \SystemRoot\system32\DRIVERS\HDAudBus.sys
0x8D809000 \SystemRoot\system32\DRIVERS\NETw5v32.sys
0x8DB92000 \SystemRoot\system32\DRIVERS\usbuhci.sys
0x8DB9D000 \SystemRoot\system32\DRIVERS\USBPORT.SYS
0x8DBDB000 \SystemRoot\system32\DRIVERS\usbehci.sys
0x83F5C000 \SystemRoot\system32\DRIVERS\e100b325.sys
0x8DBEA000 \SystemRoot\system32\DRIVERS\i8042prt.sys
0x8D800000 \SystemRoot\system32\DRIVERS\HpqKbFiltr.sys
0x83F83000 \SystemRoot\system32\DRIVERS\kbdclass.sys
0x83F8E000 \SystemRoot\system32\DRIVERS\SynTP.sys
0x8DBFD000 \SystemRoot\system32\DRIVERS\USBD.SYS
0x83FBE000 \SystemRoot\system32\DRIVERS\mouclass.sys
0x83FC9000 \SystemRoot\system32\DRIVERS\cdrom.sys
0x8D000000 \SystemRoot\system32\DRIVERS\cpqbttn.sys
0x83FE1000 \SystemRoot\system32\DRIVERS\HIDCLASS.SYS
0x8D003000 \SystemRoot\system32\DRIVERS\HIDPARSE.SYS
0x891FA000 \SystemRoot\system32\DRIVERS\CmBatt.sys
0x83FF1000 \SystemRoot\system32\DRIVERS\wmiacpi.sys
0x8DE07000 \SystemRoot\system32\DRIVERS\msiscsi.sys
0x8DE36000 \SystemRoot\system32\DRIVERS\storport.sys
0x8DE77000 \SystemRoot\system32\DRIVERS\TDI.SYS
0x8DE82000 \SystemRoot\system32\DRIVERS\rasl2tp.sys
0x8DE99000 \SystemRoot\system32\DRIVERS\ndistapi.sys
0x8DEA4000 \SystemRoot\system32\DRIVERS\ndiswan.sys
0x8DEC7000 \SystemRoot\system32\DRIVERS\raspppoe.sys
0x8DED6000 \SystemRoot\system32\DRIVERS\raspptp.sys
0x8DEEA000 \SystemRoot\system32\DRIVERS\rassstp.sys
0x8DEFF000 \SystemRoot\system32\DRIVERS\termdd.sys
0x8DF0F000 \SystemRoot\system32\DRIVERS\swenum.sys
0x8DF11000 \SystemRoot\system32\DRIVERS\ks.sys
0x8DF3B000 \SystemRoot\system32\DRIVERS\mssmbios.sys
0x8DF45000 \SystemRoot\system32\DRIVERS\umbus.sys
0x8DF52000 \SystemRoot\system32\DRIVERS\usbhub.sys
0x8DF87000 \SystemRoot\system32\DRIVERS\kbdhid.sys
0x8DF90000 \SystemRoot\System32\Drivers\NDProxy.SYS
0x8DFA1000 \SystemRoot\system32\drivers\CHDRT32.sys
0x8E003000 \SystemRoot\system32\drivers\portcls.sys
0x8E030000 \SystemRoot\system32\drivers\drmk.sys
0x8E055000 \SystemRoot\system32\DRIVERS\HSXHWAZL.sys
0x8E093000 \SystemRoot\system32\DRIVERS\HSX_DPV.sys
0x8E20F000 \SystemRoot\system32\DRIVERS\HSX_CNXT.sys
0x8E2C4000 \SystemRoot\system32\drivers\modem.sys
0x8E2D1000 \SystemRoot\System32\Drivers\aswSnx.SYS
0x8E36B000 \SystemRoot\System32\Drivers\Fs_Rec.SYS
0x8E374000 \SystemRoot\System32\Drivers\Null.SYS
0x8E37B000 \SystemRoot\System32\Drivers\Beep.SYS
0x8E382000 \SystemRoot\System32\drivers\vga.sys
0x8E38E000 \SystemRoot\System32\drivers\VIDEOPRT.SYS
0x8E3AF000 \SystemRoot\System32\DRIVERS\RDPCDD.sys
0x8E3B7000 \SystemRoot\system32\drivers\rdpencdd.sys
0x8E3BF000 \SystemRoot\System32\Drivers\Msfs.SYS
0x8E3CA000 \SystemRoot\System32\Drivers\Npfs.SYS
0x8E3D8000 \SystemRoot\System32\DRIVERS\rasacd.sys
0x8E3E1000 \SystemRoot\system32\DRIVERS\tdx.sys
0x8E200000 \SystemRoot\System32\Drivers\aswTdi.SYS
0x8E196000 \SystemRoot\system32\DRIVERS\smb.sys
0x8E1AA000 \SystemRoot\system32\drivers\afd.sys
0x8E3F7000 \SystemRoot\System32\Drivers\aswRdr.SYS
0x8E800000 \SystemRoot\System32\DRIVERS\netbt.sys
0x8E832000 \SystemRoot\system32\DRIVERS\pacer.sys
0x8E848000 \SystemRoot\system32\DRIVERS\netbios.sys
0x8E856000 \SystemRoot\system32\DRIVERS\wanarp.sys
0x8E869000 \SystemRoot\system32\DRIVERS\rdbss.sys
0x8E8A5000 \SystemRoot\system32\drivers\nsiproxy.sys
0x8E8AF000 \SystemRoot\System32\Drivers\dfsc.sys
0x8E8C6000 \SystemRoot\System32\Drivers\aswSP.SYS
0x8E917000 \SystemRoot\system32\DRIVERS\cdfs.sys
0x8E92D000 \SystemRoot\System32\Drivers\crashdmp.sys
0x8E93A000 \SystemRoot\System32\Drivers\dump_dumpata.sys
0x8E945000 \SystemRoot\System32\Drivers\dump_msahci.sys
0x97830000 \SystemRoot\System32\win32k.sys
0x8E94F000 \SystemRoot\System32\drivers\Dxapi.sys
0x8E959000 \SystemRoot\system32\DRIVERS\monitor.sys
0x97A50000 \SystemRoot\System32\TSDDD.dll
0x97A70000 \SystemRoot\System32\cdd.dll
0x8E968000 \SystemRoot\system32\drivers\luafv.sys
0x8E983000 \??\C:\Windows\system32\drivers\aswMonFlt.sys
0x8E9B6000 \SystemRoot\System32\Drivers\aswFsBlk.SYS
0xA9407000 \SystemRoot\system32\drivers\spsys.sys
0xA94B7000 \SystemRoot\system32\DRIVERS\lltdio.sys
0xA94C7000 \SystemRoot\system32\DRIVERS\nwifi.sys
0xA94F1000 \SystemRoot\system32\DRIVERS\ndisuio.sys
0xA94FB000 \SystemRoot\system32\DRIVERS\rspndr.sys
0xA950E000 \SystemRoot\system32\drivers\HTTP.sys
0xA957B000 \SystemRoot\System32\DRIVERS\srvnet.sys
0xA9598000 \SystemRoot\system32\DRIVERS\bowser.sys
0xA95B1000 \SystemRoot\System32\drivers\mpsdrv.sys
0xA95C6000 \SystemRoot\system32\drivers\mrxdav.sys
0x8E9C1000 \SystemRoot\system32\DRIVERS\mrxsmb.sys
0xAB406000 \SystemRoot\system32\DRIVERS\mrxsmb10.sys
0xAB43F000 \SystemRoot\system32\DRIVERS\mrxsmb20.sys
0xAB457000 \SystemRoot\System32\DRIVERS\srv2.sys
0xAB47F000 \SystemRoot\System32\DRIVERS\srv.sys
0xAB4CE000 \SystemRoot\system32\DRIVERS\mdmxsdk.sys
0xAB4D2000 \SystemRoot\system32\drivers\peauth.sys
0xAB5B0000 \SystemRoot\System32\Drivers\secdrv.SYS
0xAB5BA000 \SystemRoot\System32\drivers\tcpipreg.sys
0xAB5C6000 \SystemRoot\system32\DRIVERS\xaudio.sys
0xAB5CE000 \SystemRoot\system32\DRIVERS\ewusbdev.sys
0xAB5E7000 \SystemRoot\system32\DRIVERS\usbccgp.sys
0x8E9E0000 \SystemRoot\system32\DRIVERS\ewusbmdm.sys
0xAB400000 \SystemRoot\system32\DRIVERS\ewdcsc.sys
0xA95E7000 \SystemRoot\system32\DRIVERS\SMCLIB.SYS
0x8DFD4000 \SystemRoot\system32\DRIVERS\USBSTOR.SYS
0x8DFE9000 \SystemRoot\system32\DRIVERS\WUDFRd.sys
0x891C4000 \SystemRoot\system32\DRIVERS\WUDFPf.sys
0xA95F2000 \SystemRoot\system32\DRIVERS\asyncmac.sys
0x76E40000 \WINDOWS\System32\ntdll.dll
Processes (total 73):
0 System Idle Process
4 System
440 C:\WINDOWS\System32\smss.exe
540 csrss.exe
584 C:\WINDOWS\System32\wininit.exe
592 csrss.exe
628 C:\WINDOWS\System32\services.exe
640 C:\WINDOWS\System32\lsass.exe
648 C:\WINDOWS\System32\lsm.exe
748 C:\WINDOWS\System32\winlogon.exe
860 C:\WINDOWS\System32\svchost.exe
944 C:\WINDOWS\System32\svchost.exe
980 C:\WINDOWS\System32\svchost.exe
1064 C:\WINDOWS\System32\svchost.exe
1100 C:\WINDOWS\System32\svchost.exe
1112 C:\WINDOWS\System32\svchost.exe
1160 C:\Program Files\Common Files\LogiShrd\LVMVFM\UMVPFSrv.exe
1236 C:\WINDOWS\System32\audiodg.exe
1272 C:\WINDOWS\System32\SLsvc.exe
1312 C:\WINDOWS\System32\svchost.exe
1516 C:\WINDOWS\System32\svchost.exe
1616 C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
1712 C:\WINDOWS\System32\spoolsv.exe
1736 C:\WINDOWS\System32\svchost.exe
1900 C:\WINDOWS\System32\svchost.exe
1948 C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe
280 C:\WINDOWS\System32\svchost.exe
484 C:\WINDOWS\System32\svchost.exe
852 C:\WINDOWS\System32\SearchIndexer.exe
1108 C:\WINDOWS\System32\drivers\XAudio.exe
2304 C:\WINDOWS\System32\dwm.exe
2340 C:\WINDOWS\explorer.exe
2400 C:\WINDOWS\System32\taskeng.exe
2560 C:\Program Files\Windows Defender\MSASCui.exe
2568 C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
2580 C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe
2616 C:\WINDOWS\System32\igfxtray.exe
2628 C:\WINDOWS\System32\hkcmd.exe
2672 C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe
2700 C:\WINDOWS\System32\igfxpers.exe
2820 C:\Program Files\Hp\HP Software Update\hpwuschd2.exe
2852 C:\Program Files\Alwil Software\Avast5\AvastUI.exe
2868 C:\Program Files\Logitech\LWS\Webcam Software\LWS.exe
2876 C:\WINDOWS\System32\igfxsrvc.exe
2884 C:\Program Files\Common Files\Java\Java Update\jusched.exe
2964 C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCtrl.exe
2972 C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
2984 C:\Program Files\Real\RealPlayer\Update\realsched.exe
2992 C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe
3000 C:\Program Files\Skype\Phone\Skype.exe
3008 C:\Program Files\Logitech\LWS\Webcam Software\CameraHelperShell.exe
3116 WmiPrvSE.exe
3204 C:\Program Files\Nike+ Utility\Nike+ Utility.exe
3324 C:\Program Files\Common Files\LogiShrd\LQCVFX\COCIManager.exe
3652 C:\Program Files\OpenOffice.org 3\program\soffice.exe
3704 C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\VolCtrl.exe
3716 C:\WINDOWS\System32\wbem\unsecapp.exe
3776 C:\Program Files\OpenOffice.org 3\program\soffice.bin
3900 C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
3932 C:\Program Files\Hewlett-Packard\Shared\HpqToaster.exe
2276 C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
3396 C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
2752 C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe
1028 C:\Program Files\PC Connectivity Solution\Transports\NclRSSrv.exe
4632 C:\WINDOWS\System32\svchost.exe
4776 C:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Service.exe
4508 WUDFHost.exe
3444 C:\Program Files\O2\O2CZ\EMMSN.exe
3448 C:\Program Files\O2\Nori\Nori.exe
4360 C:\Program Files\Mozilla Firefox\firefox.exe
6108 C:\Program Files\Mozilla Firefox\plugin-container.exe
3880 C:\Users\Lucinka\Desktop\MBRCheck.exe
4972 C:\WINDOWS\System32\conime.exe
\\.\C: --> \\.\PhysicalDrive0 at offset 0x00000000`00007e00 (NTFS)
\\.\D: --> \\.\PhysicalDrive0 at offset 0x00000010`80c00000 (NTFS)
\\.\E: --> \\.\PhysicalDrive0 at offset 0x00000012`3e800000 (NTFS)
PhysicalDrive0 Model Number: HitachiHTS541680J9SA00, Rev: SB2OC7BP
Size Device Name MBR Status
--------------------------------------------
74 GB \\.\PhysicalDrive0 Unknown MBR code
SHA1: EB7CE789D51018A66429CB7718140C51E386BF30
Found non-standard or infected MBR.
Enter 'Y' and hit ENTER for more options, or 'N' to exit:
Done!
LOG ze ZHPdiag:
Rapport de ZHPDiag v1.31.095 par Nicolas Coolman, Update du 24/05/2012
Run by Lucinka at 27.5.2012 14:35:57
Web site : http://www.premiumorange.com/zeb-help-p ... pdiag.html
Web site : http://nicolascoolman.skyrock.com/
State : Your version is update.
---\\ Web Browser
MSIE: Internet Explorer v
GCIE: Google Chrome
---\\ Windows Product Information
~ Langage: Anglais
Windows Vista Home Basic Edition, 32-bit Service Pack 2 (Build 6002)
Windows Server License Manager Script : OK
Windows Automatic Updates : OK
---\\ System Information
~ Processor: x86 Family 6 Model 14 Stepping 8, GenuineIntel
~ Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 2038 MB (42% free)
System Restore: Inconnu (Unknown)
System drive C: has 26 GB (38%) free of 66 GB
---\\ Logged in mode
~ Computer Name: LUCINKA-PC
~ User Name: Lucinka
~ All Users Names: Lucinka, Guest, Administrator,
~ Unselected Option: O45,O61,O62,O65,O66,O80,O82,O89
Logged in as Administrator
---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Users\Lucinka\AppData\Roaming\
~ %Desktop% : C:\Users\Lucinka\Desktop\
~ %Favorites% : C:\Users\Lucinka\Favorites\
~ %LocalAppData% : C:\Users\Lucinka\AppData\Local\
~ %StartMenu% : C:\Users\Lucinka\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\WINDOWS\
~ %System% : C:\WINDOWS\System32\
---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 26 Go of 66 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 1 Go of 7 Go)
E:\ Hard drive, Flash drive, Thumb drive (Free 1 Go of 2 Go)
F:\ CD-ROM drive (Free 0 Go of 4 Go)
G:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
---\\ Security Center & Tools Informations
[HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK
~ Scan Security Center in 00mn 00s
---\\ Search Generic System Files
[MD5.D07D4C3038F3578FFCE1C0237F2A1253] - (.Microsoft Corporation - Průzkumník Windows.) (.11.4.2009 - 7:27:36.) -- C:\WINDOWS\Explorer.exe [2926592]
[MD5.101BA3EA053480BB5D957EF37C06B5ED] - (.Microsoft Corporation - Windows Start-Up Application.) (.19.1.2008 - 8:33:37.) -- C:\WINDOWS\System32\Wininit.exe [96768]
[MD5.07AEE972DE88F8780EA1474DB2CABBE3] - (.Microsoft Corporation - Internet Extensions for Win32.) (.28.2.2012 - 16:26:16.) -- C:\WINDOWS\System32\wininet.dll [834048]
[MD5.898E7C06A350D4A1A64A9EA264D55452] - (.Microsoft Corporation - Windows Logon Application.) (.11.4.2009 - 7:28:13.) -- C:\WINDOWS\System32\Winlogon.exe [314368]
[MD5.3911B972B55FEA0478476B2E777B29FA] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.21.4.2011 - 14:58:27.) -- C:\WINDOWS\system32\Drivers\AFD.sys [273408]
[MD5.1F05B78AB91C9075565A9D8A4B880BC4] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.11.4.2009 - 7:32:26.) -- C:\WINDOWS\system32\Drivers\atapi.sys [19944]
[MD5.7ADD03E75BEB9E6DD102C3081D29840A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.19.1.2008 - 6:28:02.) -- C:\WINDOWS\system32\Drivers\Cdfs.sys [70144]
[MD5.6B4BFFB9BECD728097024276430DB314] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.11.4.2009 - 5:39:17.) -- C:\WINDOWS\system32\Drivers\Cdrom.sys [67072]
[MD5.622C41A07CA7E6DD91770F50D532CB6C] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.14.4.2011 - 15:59:03.) -- C:\WINDOWS\system32\Drivers\DfsC.sys [75264]
[MD5.062452B7FFD68C8C042A6261FE8DFF4A] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.11.4.2009 - 5:42:42.) -- C:\WINDOWS\system32\Drivers\HDAudBus.sys [561152]
[MD5.22D56C8184586B7A1F6FA60BE5F5A2BD] - (.Microsoft Corporation - i8042 Port Driver.) (.19.1.2008 - 6:49:18.) -- C:\WINDOWS\system32\Drivers\i8042prt.sys [54784]
[MD5.8793643A67B42CEC66490B2A0CF92D68] - (.Microsoft Corporation - IP Network Address Translator.) (.19.1.2008 - 6:56:28.) -- C:\WINDOWS\system32\Drivers\IpNat.sys [100864]
[MD5.1E94971C4B446AB2290DEB71D01CF0C2] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.29.4.2011 - 14:24:40.) -- C:\WINDOWS\system32\Drivers\MRxSmb.sys [106496]
[MD5.ECD64230A59CBD93C85F1CD1CAB9F3F6] - (.Microsoft Corporation - MBT Transport driver.) (.11.4.2009 - 5:45:37.) -- C:\WINDOWS\system32\Drivers\netBT.sys [185856]
[MD5.6A4A98CEE84CF9E99564510DDA4BAA47] - (.Společnost Microsoft - NT File System Driver.) (.11.4.2009 - 7:32:49.) -- C:\WINDOWS\system32\Drivers\ntfs.sys [1083880]
[MD5.0FA9B5055484649D63C303FE404E5F4D] - (.Microsoft Corporation - Parallel Port Driver.) (.2.11.2006 - 9:51:30.) -- C:\WINDOWS\system32\Drivers\Parport.sys [79360]
[MD5.A214ADBAF4CB47DD2728859EF31F26B0] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.19.1.2008 - 6:56:34.) -- C:\WINDOWS\system32\Drivers\Rasl2tp.sys [76288]
[MD5.E8BD98D46F2ED77132BA927FCCB47D8B] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.2.11.2006 - 10:03:00.) -- C:\WINDOWS\system32\Drivers\rdpdr.sys [242688]
[MD5.7B75299A4D201D6A6533603D6914AB04] - (.Microsoft Corporation - SMB Transport driver.) (.11.4.2009 - 5:45:22.) -- C:\WINDOWS\system32\Drivers\smb.sys [66560]
[MD5.76B06EB8A01FC8624D699E7045303E54] - (.Microsoft Corporation - TDI Translation Driver.) (.11.4.2009 - 5:45:56.) -- C:\WINDOWS\system32\Drivers\tdx.sys [72192]
[MD5.147281C01FCB1DF9252DE2A10D5E7093] - (.Microsoft Corporation - Volume Shadow Copy Driver.) (.11.4.2009 - 7:32:55.) -- C:\WINDOWS\system32\Drivers\volsnap.sys [226280]
~ Scan Generic Processes in 00mn 00s
---\\ Hidden files state (Hidden/Total)
~ Mes images (My Pictures) : 1/165
~ Mes musiques (My Musics) : 1/2
~ Mes Videos (My Videos) : 1/17
~ Mes Favoris (My Favorites) : 1/49
~ Mes Documents (My Documents) : 1/79
~ Mon Bureau (My Desktop) : 2/398
~ Menu demarrer (Programs) : 1/29
~ Scan Hidden Files in 00mn 00s
---\\ Running Processes
[MD5.0D392EDE3B97E0B3131B2F63EF1DB94E] - (.Microsoft Corporation - Windows Defender User Interface.) -- C:\Program Files\Windows Defender\MSASCui.exe [1008184] [PID.2560]
[MD5.AF849798ECA383184C88ED436CF3EFB2] - (.Hewlett-Packard Development Company, L.P. - HPWAMain Module.) -- C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [472776] [PID.2568]
[MD5.F533507FE318B46629E84DF630A316F8] - (.Hewlett-Packard Development Company, L.P. - Module to process WiFi messages..) -- C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe [317128] [PID.2580]
[MD5.7F7B42B1BA42242116F5B277A063FE2E] - (.Intel Corporation - igfxTray Module.) -- C:\WINDOWS\System32\igfxtray.exe [141848] [PID.2616]
[MD5.5F529FBB095CBC9F14BB1E97A7A6B547] - (.Intel Corporation - hkcmd Module.) -- C:\WINDOWS\System32\hkcmd.exe [166424] [PID.2628]
[MD5.D8A33AF26E4143F7A892009890BB6F64] - (.Intel Corporation - persistence Module.) -- C:\WINDOWS\System32\igfxpers.exe [133656] [PID.2700]
[MD5.D658AB1B55127D18DCFBCAC8CAAEA522] - (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files\Hp\HP Software Update\hpwuschd2.exe [49208] [PID.2820]
[MD5.782FEF655DBF8653C9F2722BEBF7A8A6] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe [4241512] [PID.2852]
[MD5.1B13227DB8271040CEB5128414EE2742] - (.Logitech Inc. - Logitech Webcam Software.) -- C:\Program Files\Logitech\LWS\Webcam Software\LWS.exe [190808] [PID.2868]
[MD5.734006A2DB2404138F2C1A2CB86D32EF] - (.Intel Corporation - igfxsrvc Module.) -- C:\Windows\system32\igfxsrvc.exe [256536] [PID.2876]
[MD5.13E7CFE8E269ED15E7FC9C3EBBCB7E2B] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe [254696] [PID.2884]
[MD5.FE7CE849DB8C3986B2E721C6A3184FAA] - (. Hewlett-Packard Development Company, L.P. - Quick Launch Buttons.) -- C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCtrl.exe [287800] [PID.2964]
[MD5.62B3C9786081ECAAB272A118408D2817] - (.Synaptics, Inc. - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1045800] [PID.2972]
[MD5.8E53B67FA3816E854B07C5DC66E10730] - (.RealNetworks, Inc. - RealNetworks Scheduler.) -- C:\Program Files\Real\RealPlayer\Update\realsched.exe [296056] [PID.2984]
[MD5.762A5BD25FF00D0376959A8611B327AC] - (.Nokia - Nokia Launch Application.) -- C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe [1414144] [PID.2992]
[MD5.3647D444D0A674EA494D43AC78D98D84] - (...) -- C:\Program Files\Logitech\LWS\Webcam Software\CameraHelperShell.exe [203096] [PID.3008]
[MD5.30E70E6546C8CE637CD21ECCB9FAB1ED] - (...) -- C:\Program Files\Nike+ Utility\Nike+ Utility.exe [1228800] [PID.3204]
[MD5.8EA4AAF03CE0D00CB91FCEE88909E2E9] - (...) -- C:\Program Files\Common Files\Logishrd\LQCVFX\COCIManager.exe [687448] [PID.3324]
[MD5.C47FB9CFB0A082702EFE1726A0F8FFC4] - (.OpenOffice.org - OpenOffice.org 3.2.) -- C:\Program Files\OpenOffice.org 3\program\soffice.exe [11318784] [PID.3652]
[MD5.001B2CD2D45BC59575BA0F1A4A997682] - (. Hewlett-Packard Development Company, L.P. - Volume related element.) -- C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\VolCtrl.exe [76856] [PID.3704]
[MD5.0B1B2402970FFCFEB30EBFB00B65D24B] - (.OpenOffice.org - OpenOffice.org 3.2.) -- C:\Program Files\OpenOffice.org 3\program\soffice.bin [11312128] [PID.3776]
[MD5.0DE3C7622EC33126579B1742260F08C2] - (.Unknown owner - HpqToaster Module.) -- C:\Program Files\Hewlett-Packard\Shared\hpqToaster.exe [632888] [PID.3932]
[MD5.8E19A656DE8429B9F3BD8DA73AC5E7E1] - (.Telefónica I+D - Escritorio movistar for CZ.) -- C:\Program Files\O2\O2CZ\EMMSN.exe [4050632] [PID.3444]
[MD5.D379ABFD3E1C454CC7DB0A0BCFA1616E] - (.Telefónica I+D - Nori server.) -- C:\Program Files\O2\Nori\Nori.exe [347272] [PID.3448]
[MD5.4F69AABB5D82AA4EF6DFF7871212ADF6] - (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe [924600] [PID.4360]
[MD5.A7B6857B7503D9CA4F40D17A7EBB67FB] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files\Mozilla Firefox\plugin-container.exe [16824] [PID.6108]
[MD5.CC926B0811C3FA2363C98711410FEF24] - (...) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [4540928] [PID.5228]
~ Scan Processes Running in 00mn 02s
---\\ Mozilla Firefox,Plugins,Start,Search,Extensions (P2,M0,M1,M2,M3)
C:\Users\Lucinka\AppData\Roaming\Mozilla\Firefox\Profiles\afv3cd5n.default\prefs.js
C:\Users\Lucinka\AppData\Roaming\Mozilla\Firefox\Profiles\afv3cd5n.default\user.js
M3 - MFPP: Plugins - [Lucinka] -- C:\Users\Lucinka\AppData\Roaming\Mozilla\Firefox\Profiles\afv3cd5n.default\searchplugins\icqplugin-1.xml
M3 - MFPP: Plugins - [Lucinka] -- C:\Users\Lucinka\AppData\Roaming\Mozilla\Firefox\Profiles\afv3cd5n.default\searchplugins\icqplugin-10.xml
M3 - MFPP: Plugins - [Lucinka] -- C:\Users\Lucinka\AppData\Roaming\Mozilla\Firefox\Profiles\afv3cd5n.default\searchplugins\icqplugin-2.xml
M3 - MFPP: Plugins - [Lucinka] -- C:\Users\Lucinka\AppData\Roaming\Mozilla\Firefox\Profiles\afv3cd5n.default\searchplugins\icqplugin-3.xml
M3 - MFPP: Plugins - [Lucinka] -- C:\Users\Lucinka\AppData\Roaming\Mozilla\Firefox\Profiles\afv3cd5n.default\searchplugins\icqplugin-4.xml
M3 - MFPP: Plugins - [Lucinka] -- C:\Users\Lucinka\AppData\Roaming\Mozilla\Firefox\Profiles\afv3cd5n.default\searchplugins\icqplugin-5.xml
M3 - MFPP: Plugins - [Lucinka] -- C:\Users\Lucinka\AppData\Roaming\Mozilla\Firefox\Profiles\afv3cd5n.default\searchplugins\icqplugin-6.xml
M3 - MFPP: Plugins - [Lucinka] -- C:\Users\Lucinka\AppData\Roaming\Mozilla\Firefox\Profiles\afv3cd5n.default\searchplugins\icqplugin-7.xml
M3 - MFPP: Plugins - [Lucinka] -- C:\Users\Lucinka\AppData\Roaming\Mozilla\Firefox\Profiles\afv3cd5n.default\searchplugins\icqplugin-8.xml
M3 - MFPP: Plugins - [Lucinka] -- C:\Users\Lucinka\AppData\Roaming\Mozilla\Firefox\Profiles\afv3cd5n.default\searchplugins\icqplugin-9.xml
M3 - MFPP: Plugins - [Lucinka] -- C:\Users\Lucinka\AppData\Roaming\Mozilla\Firefox\Profiles\afv3cd5n.default\searchplugins\icqplugin.xml
M3 - MFPP: Plugins - [Lucinka] -- C:\Program Files\Mozilla FireFox\searchplugins\google.xml
M3 - MFPP: Plugins - [Lucinka] -- C:\Program Files\Mozilla FireFox\searchplugins\heureka-cz.xml
M3 - MFPP: Plugins - [Lucinka] -- C:\Program Files\Mozilla FireFox\searchplugins\jyxo-cz.xml
M3 - MFPP: Plugins - [Lucinka] -- C:\Program Files\Mozilla FireFox\searchplugins\seznam-cz.xml
M3 - MFPP: Plugins - [Lucinka] -- C:\Program Files\Mozilla FireFox\searchplugins\slunecnice-cz.xml
M3 - MFPP: Plugins - [Lucinka] -- C:\Program Files\Mozilla FireFox\searchplugins\wikipedia-cz.xml
M0 - MFSP: prefs.js [Lucinka - afv3cd5n.default] www.seznam.cz
M2 - MFEP: prefs.js [Lucinka - afv3cd5n.default\{20a82645-c095-46ed-80e3-08825760534b}] [MicrosoftCG] Microsoft .NET Framework Assistant v1.2.1 (.Microsoft.)
M2 - MFEP: prefs.js [Lucinka - afv3cd5n.default\{800b5000-a755-47e1-992b-48a1c1357f07}] [] ICQ Toolbar v1.2.1 (.Microsoft.)
P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - np-mswmp.) -- C:\Program Files\Mozilla Firefox\Plugins\np-mswmp.dll
P2 - FPN:Firefox Plugin Navigator . (.Sun Microsystems, Inc. - NPRuntime Script Plug-in Library for Java(TM) Deploy.) -- C:\Program Files\Mozilla Firefox\Plugins\npdeployJava1.dll
P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape "9.5.1".) -- C:\Program Files\Mozilla Firefox\Plugins\nppdf32.dll
P2 - FPN:Firefox Plugin Navigator . (.RealNetworks, Inc. - RealPlayer(tm) LiveConnect-Enabled Plug-In.) -- C:\Program Files\Mozilla Firefox\Plugins\nppl3260.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin2.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin3.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin4.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin5.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin6.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin7.dll
P2 - FPN:Firefox Plugin Navigator . (.RealNetworks, Inc. - RealJukebox Netscape Plugin.) -- C:\Program Files\Mozilla Firefox\Plugins\nprjplug.dll
P2 - FPN:Firefox Plugin Navigator . (.RealPlayer - RealPlayer Download Plugin.) -- C:\Program Files\Mozilla Firefox\Plugins\nprpplugin.dll
~ Scan Firefox Browser in 00mn 00s
---\\ Internet Explorer Extensions, Start, Search (R4,R3,R0,R1)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.centrum.cz
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.RealPlayer - RealPlayer Download Plugin.) (No version) -- (.not file.)
R4 - HKCU\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,Enabled = 2
~ Scan IE Browser in 00mn 00s
---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Scan Proxy management in 00mn 00s
---\\ Hosts file redirection (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Scan Hosts File in 00mn 00s
~ Nombre de lignes (Lines number): 0
---\\ Auto loading programs from Registry and folders (O4)
O4 - HKCU\..\Run: [PC Suite Tray] . (.Nokia - Nokia Launch Application.) -- C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe
O4 - HKCU\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe
O4 - HKUS\S-1-5-21-1116206244-830157978-162234285-1006\..\Run: [PC Suite Tray] . (.Nokia - Nokia Launch Application.) -- C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe
O4 - HKUS\S-1-5-21-1116206244-830157978-162234285-1006\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe
~ Scan Application in 00mn 00s
---\\ Other User Links (O4)
O4 - Global Startup: C:\Users\Lucinka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Media Player\wmplayer.exe
O4 - Global Startup: C:\Users\Lucinka\Desktop\Documents.lnk . (...) -- C:\Users\Lucinka\Documents
O4 - Global Startup: C:\Users\Lucinka\Desktop\iShutdown.lnk . (.iProjects.) -- C:\Program Files\iProjects\iShutdown\iShutdown.exe
O4 - Global Startup: C:\Users\Lucinka\Desktop\Nero Burning ROM.lnk . (.Nero AG.) -- C:\Program Files\Nero\Nero Burning ROM\nero.exe
O4 - Global Startup: C:\Users\Lucinka\Desktop\Nike+ Utility – zástupce.lnk . (...) -- C:\Program Files\Nike+ Utility\Nike+ Utility.exe
O4 - Global Startup: C:\Users\Lucinka\Desktop\OpenOffice Writer.lnk . (.OpenOffice.org.) -- C:\Program Files\OpenOffice.org 3\program\swriter.exe
O4 - Global Startup: C:\Users\Lucinka\Desktop\Spider Solitaire.lnk - Orphean Key
O4 - Global Startup: C:\Users\Lucinka\Desktop\Stažené soubory.lnk . (...) -- C:\Users\Lucinka\Downloads
O4 - Global Startup: C:\Users\Lucinka\Desktop\The Rosetta Stone.lnk . (.Macromedia, Inc..) -- C:\Program Files\The Rosetta Stone\The Rosetta Stone\TheRosettaStone.exe
O4 - Global Startup: C:\Users\Lucinka\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk . (.Mozilla Corporation.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O4 - Global Startup: C:\Users\Lucinka\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Media Player\wmplayer.exe
~ Scan Global Startup in 00mn 00s
---\\ Extra items in the IE right-click menu (O8)
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - (.not file.) - C:\Program Files\MICROS~2\Office12\EXCEL.exe
O8 - Extra context menu item: Google Sidewiki... - (.not file.) - C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll
~ Scan IE Menu Contextuel in 00mn 00s
---\\ Windows Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - C:\Program Files\Microsoft Office\Office12\WINWORD.exe (.not file.)
~ Scan Desktop Component in 00mn 00s
---\\ Task Planned Automatically(039)
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
[MD5.2B1FDA9F78EC4B7725722F6450D2B75C] [APT] [HP Health Check] (.Hewlett-Packard.) -- C:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe
[MD5.D412AC27FE3C9F8BC19741DAC0E0329D] [APT] [RealUpgradeLogonTaskS-1-5-21-1116206244-830157978-162234285-1006] (.RealNetworks, Inc..) -- C:\Program Files\Real\RealUpgrade\RealUpgrade.exe
[MD5.D412AC27FE3C9F8BC19741DAC0E0329D] [APT] [RealUpgradeScheduledTaskS-1-5-21-1116206244-830157978-162234285-1006] (.RealNetworks, Inc..) -- C:\Program Files\Real\RealUpgrade\RealUpgrade.exe
[MD5.00000000000000000000000000000000] [APT] [{0B15B0B5-173D-448B-96D9-3F9FC72417BE}] (...) -- c:\program files\mozilla firefox\firefox.exestalled;madedefault (.not file.)
[MD5.4F69AABB5D82AA4EF6DFF7871212ADF6] [APT] [{57CF6D70-ECB6-4CAC-9256-587062EAE306}] (.Mozilla Corporation.) -- c:\program files\mozilla firefox\firefox.exe
[MD5.00000000000000000000000000000000] [APT] [{950575D4-F993-413C-AF97-CCEFCFBD05A8}] (...) -- c:\program files\mozilla firefox\firefox.exeotdefaultbrowser2égoogle-chrome:notoffered;alreadyoffered (.not file.)
[MD5.B6080F3A1CA495190D1583C2202CAA61] [APT] [{959EC315-25EB-4D2C-ACF5-2201D2999C08}] (.Skype Technologies S.A..) -- C:\Program Files\Skype\Phone\Skype.exe
[MD5.7BBDDBD005C9D69B82ED1DDDD1A6C944] [APT] [{C5AA5EE8-E670-4DA4-AC72-4635A3209CC6}] (.InstallShield Software Corporation.) -- C:\Windows\IsUninst.exe
[MD5.00000000000000000000000000000000] [APT] [Seagate 2GH5T1F0 Product Registration (Lucinka)] (...) -- C:\Users\Lucinka\AppData\Roaming\Leadertech\PowerRegister\Seagate 2GH5T1F0 Product Registration.exe (.not file.)
~ Scan Scheduled Task in 00mn 03s
---\\ ActiveSetup Installed Components (O40) (None)
---\\ Contents of the Common Files folders (O43)
O43 - CFD: 5.6.2007 - 4:48:31 - [11,601] ----D C:\Program Files\Activation Assistant for the 2007 Microsoft Office suites
O43 - CFD: 23.1.2012 - 0:42:02 - [151,768] ----D C:\Program Files\Adobe
O43 - CFD: 14.10.2010 - 22:03:33 - [213,034] ----D C:\Program Files\Alwil Software
O43 - CFD: 4.7.2009 - 22:47:53 - [2,118] ----D C:\Program Files\Apple Software Update
O43 - CFD: 27.5.2012 - 13:21:24 - [4,639] ----D C:\Program Files\CCleaner
O43 - CFD: 21.5.2012 - 11:38:59 - [239,803] ----D C:\Program Files\Common Files
O43 - CFD: 24.5.2008 - 3:01:24 - [1,734] ----D C:\Program Files\CONEXANT
O43 - CFD: 9.8.2009 - 20:40:10 - [1,522] ----D C:\Program Files\DIFX
O43 - CFD: 30.7.2011 - 15:25:25 - [13,382] ----D C:\Program Files\GetMore
O43 - CFD: 23.1.2012 - 1:04:37 - [6,087] ----D C:\Program Files\Google
O43 - CFD: 30.7.2011 - 15:25:04 - [15,900] ----D C:\Program Files\Help
O43 - CFD: 23.1.2012 - 10:57:37 - [231,582] ----D C:\Program Files\Hewlett-Packard
O43 - CFD: 15.7.2010 - 0:54:48 - [2,976] ----D C:\Program Files\Hp
O43 - CFD: 12.7.2009 - 23:18:28 - [16,047] ----D C:\Program Files\ICQ6
O43 - CFD: 12.9.2011 - 15:56:58 - [0] ----D C:\Program Files\ICQ6.5
O43 - CFD: 12.9.2011 - 15:56:59 - [1,595] ----D C:\Program Files\ICQ6Toolbar
O43 - CFD: 17.10.2011 - 11:28:02 - [62,031] ----D C:\Program Files\ICQ7.5
O43 - CFD: 27.10.2010 - 0:22:44 - [0,011] ----D C:\Program Files\ICQToolbar
O43 - CFD: 12.9.2011 - 15:56:58 - [38,470] --H-D C:\Program Files\InstallShield Installation Information
O43 - CFD: 6.5.2012 - 14:15:27 - [2,579] ----D C:\Program Files\Internet Explorer
O43 - CFD: 8.2.2008 - 19:45:20 - [1,382] ----D C:\Program Files\iProjects
O43 - CFD: 18.9.2011 - 12:27:05 - [241,332] ----D C:\Program Files\Java
O43 - CFD: 1.1.2008 - 15:00:51 - [19,778] ----D C:\Program Files\K-Lite Codec Pack
O43 - CFD: 14.7.2010 - 19:09:44 - [0] ----D C:\Program Files\Lavasoft
O43 - CFD: 18.9.2011 - 12:31:50 - [125,093] ----D C:\Program Files\Logitech
O43 - CFD: 2.11.2006 - 14:35:51 - [44,740] ----D C:\Program Files\Microsoft Games
O43 - CFD: 25.10.2011 - 22:59:24 - [36,633] ----D C:\Program Files\Microsoft Silverlight
O43 - CFD: 23.1.2012 - 1:07:23 - [28,444] ----D C:\Program Files\Microsoft Small Business
O43 - CFD: 5.6.2007 - 4:45:11 - [36,895] ----D C:\Program Files\Microsoft SQL Server
O43 - CFD: 23.1.2012 - 1:00:51 - [1,062] ----D C:\Program Files\Microsoft.NET
O43 - CFD: 22.8.2010 - 2:11:39 - [19,474] ----D C:\Program Files\Movie Maker
O43 - CFD: 6.5.2012 - 13:48:25 - [42,524] ----D C:\Program Files\Mozilla Firefox
O43 - CFD: 6.5.2012 - 13:48:31 - [0,210] ----D C:\Program Files\Mozilla Maintenance Service
O43 - CFD: 2.11.2006 - 14:35:51 - [0,025] ----D C:\Program Files\MSBuild
O43 - CFD: 13.12.2007 - 4:01:23 - [0] ----D C:\Program Files\MSXML 4.0
O43 - CFD: 8.8.2010 - 19:26:42 - [23,141] ----D C:\Program Files\Nero
O43 - CFD: 22.3.2009 - 23:19:45 - [10,953] ----D C:\Program Files\Nike+ Utility
O43 - CFD: 23.1.2012 - 1:06:37 - [45,730] ----D C:\Program Files\Nokia
O43 - CFD: 14.7.2010 - 20:19:49 - [25,828] ----D C:\Program Files\O2
O43 - CFD: 26.1.2011 - 12:33:50 - [330,154] ----D C:\Program Files\OpenOffice.org 3
O43 - CFD: 9.8.2009 - 20:39:40 - [12,143] ----D C:\Program Files\PC Connectivity Solution
O43 - CFD: 4.7.2009 - 22:51:37 - [73,621] ----D C:\Program Files\QuickTime
O43 - CFD: 21.5.2012 - 11:39:03 - [90,641] ----D C:\Program Files\Real
O43 - CFD: 2.11.2006 - 14:35:51 - [36,783] ----D C:\Program Files\Reference Assemblies
O43 - CFD: 5.6.2007 - 4:52:36 - [15,438] ----D C:\Program Files\Roxio
O43 - CFD: 12.5.2012 - 17:37:23 - [32,858] R---D C:\Program Files\Skype
O43 - CFD: 5.6.2007 - 4:55:14 - [14,049] ----D C:\Program Files\Synaptics
O43 - CFD: 3.12.2011 - 18:55:53 - [46,970] ----D C:\Program Files\The Rosetta Stone
O43 - CFD: 27.5.2012 - 13:33:52 - [0] ----D C:\Program Files\trend micro
O43 - CFD: 2.11.2006 - 14:58:18 - [0] --H-D C:\Program Files\Uninstall Information
O43 - CFD: 1.1.2008 - 15:01:51 - [80,793] ----D C:\Program Files\VideoLAN
O43 - CFD: 12.7.2009 - 22:46:38 - [0,966] ----D C:\Program Files\Windows Calendar
O43 - CFD: 12.7.2009 - 22:46:37 - [2,603] ----D C:\Program Files\Windows Collaboration
O43 - CFD: 12.7.2009 - 22:46:36 - [4,268] ----D C:\Program Files\Windows Defender
O43 - CFD: 6.5.2012 - 14:53:33 - [8,466] ----D C:\Program Files\Windows Mail
O43 - CFD: 14.10.2010 - 21:50:00 - [4,281] ----D C:\Program Files\Windows Media Player
O43 - CFD: 22.1.2007 - 18:32:41 - [7,585] ----D C:\Program Files\Windows NT
O43 - CFD: 12.7.2009 - 22:46:37 - [7,838] ----D C:\Program Files\Windows Photo Gallery
O43 - CFD: 15.7.2010 - 0:12:17 - [0,128] ----D C:\Program Files\Windows Portable Devices
O43 - CFD: 8.6.2011 - 20:34:26 - [6,409] ----D C:\Program Files\Windows Sidebar
O43 - CFD: 11.2.2008 - 22:18:29 - [3,580] ----D C:\Program Files\WinRAR
O43 - CFD: 21.11.2010 - 16:03:52 - [0,021] ----D C:\Program Files\xp-AntiSpy
O43 - CFD: 27.5.2012 - 14:35:05 - [13,541] ----D C:\Program Files\ZHPDiag
O43 - CFD: 23.1.2012 - 0:42:14 - [6,176] ----D C:\Program Files\Common Files\Adobe
O43 - CFD: 29.11.2007 - 20:30:58 - [8,399] ----D C:\Program Files\Common Files\InstallShield
O43 - CFD: 18.9.2011 - 12:30:35 - [37,811] ----D C:\Program Files\Common Files\Java
O43 - CFD: 30.7.2011 - 23:16:36 - [68,493] ----D C:\Program Files\Common Files\LogiShrd
O43 - CFD: 15.7.2011 - 20:51:12 - [4,999] ----D C:\Program Files\Common Files\LWS
O43 - CFD: 23.1.2012 - 1:00:51 - [10,504] ----D C:\Program Files\Common Files\microsoft shared
O43 - CFD: 8.8.2010 - 19:26:02 - [15,094] ----D C:\Program Files\Common Files\Nero
O43 - CFD: 9.8.2009 - 20:42:08 - [6,937] ----D C:\Program Files\Common Files\Nokia
O43 - CFD: 9.8.2009 - 20:42:15 - [0,084] ----D C:\Program Files\Common Files\PCSuite
O43 - CFD: 5.6.2007 - 4:49:52 - [23,814] ----D C:\Program Files\Common Files\Roxio Shared
O43 - CFD: 2.11.2006 - 13:18:33 - [0,003] ----D C:\Program Files\Common Files\Services
O43 - CFD: 12.5.2012 - 17:37:22 - [2,056] ----D C:\Program Files\Common Files\Skype
O43 - CFD: 5.6.2007 - 4:49:58 - [1,031] ----D C:\Program Files\Common Files\Sonic Shared
O43 - CFD: 2.11.2006 - 13:18:33 - [39,198] ----D C:\Program Files\Common Files\SpeechEngines
O43 - CFD: 5.6.2007 - 4:52:48 - [0,573] ----D C:\Program Files\Common Files\SureThing Shared
O43 - CFD: 23.1.2012 - 10:34:38 - [14,296] ----D C:\Program Files\Common Files\System
O43 - CFD: 21.5.2012 - 11:38:59 - [0,336] ----D C:\Program Files\Common Files\xing shared
O43 - CFD: 23.1.2012 - 0:42:13 - [120,833] ----D C:\ProgramData\Adobe
O43 - CFD: 14.10.2010 - 22:02:26 - [5,188] ----D C:\ProgramData\Alwil Software
O43 - CFD: 4.7.2009 - 22:47:50 - [1,987] ----D C:\ProgramData\Apple
O43 - CFD: 4.7.2009 - 22:50:22 - [26,659] ----D C:\ProgramData\Apple Computer
O43 - CFD: 2.11.2006 - 14:59:44 - [0] --H-D C:\ProgramData\Application Data
O43 - CFD: 22.1.2007 - 18:32:41 - [0] --H-D C:\ProgramData\Data aplikací
O43 - CFD: 2.11.2006 - 14:59:44 - [0] --H-D C:\ProgramData\Desktop
O43 - CFD: 2.11.2006 - 14:59:44 - [0] --H-D C:\ProgramData\Documents
O43 - CFD: 22.1.2007 - 18:32:41 - [0] --H-D C:\ProgramData\Dokumenty
O43 - CFD: 2.11.2006 - 14:59:44 - [0] --H-D C:\ProgramData\Favorites
O43 - CFD: 27.10.2010 - 0:02:04 - [0,936] ----D C:\ProgramData\Google
O43 - CFD: 5.6.2007 - 4:37:16 - [0,000] ----D C:\ProgramData\Hewlett-Packard
O43 - CFD: 12.9.2011 - 15:56:58 - [0,371] ----D C:\ProgramData\ICQ
O43 - CFD: 9.8.2009 - 20:33:23 - [314,948] ----D C:\ProgramData\Installations
O43 - CFD: 18.5.2011 - 21:48:52 - [0,000] ----D C:\ProgramData\Lavasoft
O43 - CFD: 15.7.2011 - 20:57:33 - [0,000] ----D C:\ProgramData\LogiShrd
O43 - CFD: 15.7.2011 - 20:51:20 - [20,162] ----D C:\ProgramData\Logitech
O43 - CFD: 25.10.2011 - 22:59:32 - [7,722] -S--D C:\ProgramData\Microsoft
O43 - CFD: 23.1.2012 - 1:01:17 - [0,057] ----D C:\ProgramData\Microsoft Help
O43 - CFD: 6.5.2012 - 13:48:29 - [0,000] ----D C:\ProgramData\Mozilla
O43 - CFD: 22.1.2007 - 18:32:41 - [0] --H-D C:\ProgramData\Nabídka Start
O43 - CFD: 8.8.2010 - 19:25:56 - [0,030] ----D C:\ProgramData\Nero
O43 - CFD: 22.1.2007 - 18:32:41 - [0] --H-D C:\ProgramData\Oblíbené položky
O43 - CFD: 2.8.2009 - 18:41:16 - [0,232] ----D C:\ProgramData\PC Suite
O43 - CFD: 22.1.2007 - 18:32:41 - [0] --H-D C:\ProgramData\Plocha
O43 - CFD: 21.5.2012 - 11:39:04 - [1,906] ----D C:\ProgramData\Real
O43 - CFD: 12.5.2012 - 17:37:11 - [114,226] ----D C:\ProgramData\Skype
O43 - CFD: 5.6.2007 - 4:50:38 - [0] ----D C:\ProgramData\Sonic
O43 - CFD: 2.11.2006 - 14:59:44 - [0] --H-D C:\ProgramData\Start Menu
O43 - CFD: 14.7.2010 - 22:39:32 - [0,000] ----D C:\ProgramData\Sun
O43 - CFD: 2.11.2006 - 14:59:44 - [0] --H-D C:\ProgramData\Templates
O43 - CFD: 5.6.2007 - 4:48:33 - [5,041] ----D C:\ProgramData\{623D32E9-0C62-4453-AD44-98B31F52A5E1}
O43 - CFD: 22.1.2007 - 18:32:41 - [0] --H-D C:\ProgramData\Šablony
O43 - CFD: 22.4.2008 - 9:06:33 - [8,644] ----D C:\Users\Lucinka\AppData\Roaming\Adobe
O43 - CFD: 7.8.2010 - 23:34:28 - [0,000] ----D C:\Users\Lucinka\AppData\Roaming\dvdcss
O43 - CFD: 8.6.2011 - 20:30:13 - [0,021] ----D C:\Users\Lucinka\AppData\Roaming\GHISLER
O43 - CFD: 29.11.2007 - 22:06:38 - [0] ----D C:\Users\Lucinka\AppData\Roaming\Google
O43 - CFD: 29.11.2007 - 20:35:21 - [0] ----D C:\Users\Lucinka\AppData\Roaming\Hewlett-Packard
O43 - CFD: 27.5.2012 - 12:15:12 - [0,005] ----D C:\Users\Lucinka\AppData\Roaming\HpUpdate
O43 - CFD: 22.5.2012 - 12:31:59 - [32,624] ----D C:\Users\Lucinka\AppData\Roaming\ICQ
O43 - CFD: 1.1.2008 - 15:01:02 - [0] ----D C:\Users\Lucinka\AppData\Roaming\ICQ Toolbar
O43 - CFD: 29.11.2007 - 20:38:28 - [0] ----D C:\Users\Lucinka\AppData\Roaming\Identities
O43 - CFD: 29.11.2007 - 20:31:12 - [0] ----D C:\Users\Lucinka\AppData\Roaming\InstallShield
O43 - CFD: 30.3.2008 - 23:57:08 - [0,005] ----D C:\Users\Lucinka\AppData\Roaming\InterVideo
O43 - CFD: 30.12.2010 - 3:45:29 - [0,051] ----D C:\Users\Lucinka\AppData\Roaming\Leadertech
O43 - CFD: 29.11.2007 - 20:35:23 - [0,001] ----D C:\Users\Lucinka\AppData\Roaming\Macromedia
O43 - CFD: 29.11.2007 - 22:15:22 - [0,000] ----D C:\Users\Lucinka\AppData\Roaming\Media Player Classic
O43 - CFD: 15.7.2011 - 20:52:53 - [1,346] -S--D C:\Users\Lucinka\AppData\Roaming\Microsoft
O43 - CFD: 30.12.2008 - 0:07:32 - [44,951] ----D C:\Users\Lucinka\AppData\Roaming\Mozilla
O43 - CFD: 12.12.2007 - 1:43:21 - [0,184] ----D C:\Users\Lucinka\AppData\Roaming\Nero
O43 - CFD: 1.6.2011 - 1:11:14 - [0,510] ----D C:\Users\Lucinka\AppData\Roaming\Nokia
O43 - CFD: 26.1.2011 - 12:43:54 - [2,034] ----D C:\Users\Lucinka\AppData\Roaming\OpenOffice.org
O43 - CFD: 9.8.2009 - 21:09:59 - [12,576] ----D C:\Users\Lucinka\AppData\Roaming\PC Suite
O43 - CFD: 21.5.2012 - 11:39:34 - [54,422] ----D C:\Users\Lucinka\AppData\Roaming\Real
O43 - CFD: 30.1.2008 - 0:56:37 - [0] ----D C:\Users\Lucinka\AppData\Roaming\SampleView
O43 - CFD: 27.5.2012 - 14:32:32 - [10,799] ----D C:\Users\Lucinka\AppData\Roaming\Skype
O43 - CFD: 15.7.2011 - 22:04:25 - [0,021] ----D C:\Users\Lucinka\AppData\Roaming\skypePM
O43 - CFD: 14.7.2010 - 20:38:26 - [0,311] ----D C:\Users\Lucinka\AppData\Roaming\Telefónica Móviles
O43 - CFD: 19.5.2012 - 17:51:15 - [2,732] ----D C:\Users\Lucinka\AppData\Roaming\vlc
O43 - CFD: 11.2.2008 - 22:20:50 - [0] ----D C:\Users\Lucinka\AppData\Roaming\WinRAR
O43 - CFD: 23.1.2012 - 0:41:17 - [0,527] ----D C:\Users\Lucinka\AppData\Local\Adobe
O43 - CFD: 12.12.2007 - 1:46:24 - [0,052] ----D C:\Users\Lucinka\AppData\Local\Ahead
O43 - CFD: 4.7.2009 - 22:47:56 - [0] ----D C:\Users\Lucinka\AppData\Local\Apple
O43 - CFD: 4.7.2009 - 23:41:10 - [0] ----D C:\Users\Lucinka\AppData\Local\Apple Computer
O43 - CFD: 27.10.2010 - 0:51:41 - [0] ----D C:\Users\Lucinka\AppData\Local\Apps
O43 - CFD: 29.11.2007 - 20:30:23 - [0] ----D C:\Users\Lucinka\AppData\Local\Data aplikací
O43 - CFD: 29.11.2007 - 22:01:21 - [0] ----D C:\Users\Lucinka\AppData\Local\GHISLER
O43 - CFD: 23.1.2012 - 1:04:40 - [0] ----D C:\Users\Lucinka\AppData\Local\Google
O43 - CFD: 29.11.2007 - 20:30:23 - [0] ----D C:\Users\Lucinka\AppData\Local\Historie
O43 - CFD: 15.7.2011 - 20:55:35 - [1,575] ----D C:\Users\Lucinka\AppData\Local\LogiShrd
O43 - CFD: 15.11.2010 - 2:35:26 - [42,737] ----D C:\Users\Lucinka\AppData\Local\Microsoft
O43 - CFD: 16.4.2012 - 15:00:36 - [0,424] ----D C:\Users\Lucinka\AppData\Local\Microsoft Games
O43 - CFD: 26.1.2011 - 13:10:08 - [0,091] ----D C:\Users\Lucinka\AppData\Local\Microsoft Help
O43 - CFD: 30.12.2008 - 0:07:30 - [50,870] ----D C:\Users\Lucinka\AppData\Local\Mozilla
O43 - CFD: 22.3.2009 - 23:29:47 - [0] ----D C:\Users\Lucinka\AppData\Local\Nike
O43 - CFD: 23.1.2011 - 13:54:31 - [0] ----D C:\Users\Lucinka\AppData\Local\Sunbelt Software
O43 - CFD: 27.5.2012 - 14:35:10 - [0,939] ----D C:\Users\Lucinka\AppData\Local\Temp
O43 - CFD: 29.11.2007 - 20:30:23 - [0] ----D C:\Users\Lucinka\AppData\Local\Temporary Internet Files
O43 - CFD: 12.12.2007 - 2:29:59 - [1,540] ----D C:\Users\Lucinka\AppData\Local\VirtualStore
O43 - CFD: 2.11.2006 - 14:51:30 - [0,015] R---D C:\Users\Lucinka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 29.11.2007 - 20:38:39 - [0,000] R---D C:\Users\Lucinka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 24.5.2008 - 11:29:47 - [0,002] ----D C:\Users\Lucinka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CCleaner
O43 - CFD: 2.11.2006 - 14:47:50 - [0,001] R---D C:\Users\Lucinka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 15.5.2012 - 20:30:52 - [0,002] R---D C:\Users\Lucinka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 11.2.2008 - 22:18:29 - [0,002] ----D C:\Users\Lucinka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
~ Scan Program Folder in 00mn 27s
---\\ Last modified or created files under Windows and System32 (O44)
O44 - LFC:[MD5.B4EB68502E52EBDC0B2C55EA3445284C] - 21.5.2012 - 10:38:14 ---A- . (.Progressive Networks - No comment.) -- C:\WINDOWS\System32\pncrt.dll [272896]
O44 - LFC:[MD5.33833B3EDA1B07EBD367FA9B38B23E60] - 21.5.2012 - 10:38:17 ---A- . (.RealNetworks, Inc. - 16 bit DirectX helper DLL.) -- C:\WINDOWS\System32\pndx5016.dll [6656]
O44 - LFC:[MD5.B74E422BC81236042529DC8A42A18423] - 21.5.2012 - 10:38:17 ---A- . (.RealNetworks, Inc. - 32 bit DirectX helper DLL.) -- C:\WINDOWS\System32\pndx5032.dll [5632]
O44 - LFC:[MD5.8A34E2FB21F3E420D224B33EC7D01E24] - 21.5.2012 - 10:38:37 ---A- . (.RealNetworks, Inc. - Real Player(tm) ActiveX Control.) -- C:\WINDOWS\System32\rmoc3260.dll [198832]
O44 - LFC:[MD5.01C47C2ECED034EF6F8C1552A97CFF00] - 27.5.2012 - 11:14:27 ---A- . (...) -- C:\WINDOWS\System32\config.nt [2577]
O44 - LFC:[MD5.8A31FCAAB9A5F8E3CA9B80A66B7BC098] - 27.5.2012 - 12:03:32 ---A- . (...) -- C:\WINDOWS\System32\FNTCACHE.DAT [397400]
O44 - LFC:[MD5.9A888826039555D7EC1D0F944F29AC07] - 27.5.2012 - 12:30:48 -S-A- . (...) -- C:\WINDOWS\bootstat.dat [67584]
O44 - LFC:[MD5.6FA4DD8630FE9981D74E0FC384552ADA] - 27.5.2012 - 12:56:21 ---A- . (...) -- C:\WINDOWS\System32\PerfStringBackup.INI [1602846]
O44 - LFC:[MD5.AE11C098833C0C595C79B82CE310ABD7] - 27.5.2012 - 12:56:21 ---A- . (...) -- C:\WINDOWS\System32\perfc005.dat [144824]
O44 - LFC:[MD5.B06A33CEF28CD44708D0FB594CF86144] - 27.5.2012 - 12:56:21 ---A- . (...) -- C:\WINDOWS\System32\perfc009.dat [129784]
O44 - LFC:[MD5.745AB8E0A72095618A5EDD7D21DED159] - 27.5.2012 - 12:56:21 ---A- . (...) -- C:\WINDOWS\System32\perfh005.dat [675668]
O44 - LFC:[MD5.C6DE441E52306EAD9E6753DA68AB38FE] - 27.5.2012 - 12:56:21 ---A- . (...) -- C:\WINDOWS\System32\perfh009.dat [655726]
O44 - LFC:[MD5.983A77A81D251149D36F57CEED6A65E3] - 27.5.2012 - 12:58:00 ---A- . (...) -- C:\WINDOWS\WindowsUpdate.log [2033026]
O44 - LFC:[MD5.6C52B933B9ACE73D134752B8C077EDDF] - 4.5.2012 - 21:58:31 ---A- . (.Adobe Systems Incorporated - Adobe Flash Player Control Panel Applet.) -- C:\WINDOWS\System32\FlashPlayerApp.exe [419488]
O44 - LFC:[MD5.2C9341C5E30174AD972AFFED9A10D5E3] - 4.5.2012 - 21:58:31 ---A- . (.Adobe Systems Incorporated - Adobe Flash Player Control Panel Applet.) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl [70304]
~ Scan Files in 00mn 47s
---\\ Safe Boot Control (O49) (None)
---\\ MountPoints2 Shell Key (MPKS) (O51)
O51 - MPSK:{34ad4036-6aa7-11df-a60a-001b3836714d}\AutoRun\command. (...) -- G:\setupSNK.exe (.not file.)
O51 - MPSK:{8935b008-8f73-11df-bb84-001b3836714d}\AutoRun\command. (...) -- G:\AutoRun.exe (.not file.)
O51 - MPSK:{e64d03c8-a962-11df-bbef-001b3836714d}\AutoRun\command - Orphean Key
~ Scan Keys in 00mn 00s
---\\ ShareTools MSconfig StartupReg (SMSR) (O53) (None)
---\\ System Drivers List (SDL) (O58)
O58 - SDL:[MD5.2EDC5BBAC6C651ECE337BDE8ED97C9FB] - 2.11.2006 - 10:51:38 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\WINDOWS\System32\Drivers\adp94xx.sys [420968]
O58 - SDL:[MD5.8AAD333C876590293F72B315E162BCC7] - 2.11.2006 - 8:09:42 ---A- . (...) -- C:\WINDOWS\System32\ANSI.SYS [9029]
~ Scan Drivers in 00mn 00s
---\\ List all tools cleaner (LATC) (O63)
O63 - Logiciel: RSIT - (.random/random.)
~ Scan ADS in 00mn 00s
---\\ File Associations Shell Spawning (O67)
O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCR\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
~ Scan Keys in 00mn 00s
---\\ Start Menu Internet (SMI) (O68) (None)
---\\ Search Browser Infection (SBI) (O69)
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (@ieframe.dll,-12512) - http://search.live.com
O69 - SBI: SearchScopes [HKCU] {6552C7DD-90A4-4387-B795-F8F96747DE19} [DefaultScope] - (ICQ Search) - http://search.icq.com
O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (Google) - http://www.google.cz
O69 - SBI: SearchScopes [HKCU] {BE9654C9-9D79-42ec-B55A-3CAEB12DBF58} - (ICQ Search) - http://www.icq.com
~ Scan Keys in 00mn 00s
---\\ Search Svchost Services (SSS) (O83) (None)
---\\ Search Particular Root Folder (SPRF) (O84)
[MD5.78CB383575F1A11F40D16736B37C4213] [SPRF][1.12.2007] (...) -- C:\ProgramData\ezsid.dat [32]
[MD5.5FC784580E5D38FAB223C111F7113E10] [SPRF][24.10.2010] (...) -- C:\ProgramData\ezsidmv.dat [56]
[MD5.CB2D120A4B72422A8141192831B1F500] [SPRF][27.5.2012] (...) -- C:\Users\Lucinka\Desktop\MBRCheck.exe [80384]
[MD5.11B9F1E66EE67F0C765C5895A99755DD] [SPRF][23.1.2012] (...) -- C:\Users\Lucinka\Desktop\vlc-1.1.11-win32.exe [21073936]
~ Scan Files in 00mn 00s
---\\ Additionnal Scan (O88)
Database Version : 9170 - (24/05/2012)
Clés trouvées (Keys found) : 1
Valeurs trouvées (Values found) : 0
Dossiers trouvés (Folders found) : 2
Fichiers trouvés (Files found) : 0
[HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{CD95D125-2992-4858-B3EF-5F6FB52FBAD6}] =>Toolbar.Agent
C:\Program Files\ICQ6Toolbar =>Toolbar.Agent
~ Scan Additionnel in 00mn 14s
End of the scan (507 lines in 01mn 47s)(0)
Děkuji.
Přikládám následující logy:
MbrScan:
Kód: Vybrat vše
MBRScan v1.1.1
OS : Windows Vista Service Pack 2 (32 bit)
PROCESSOR : x86 Family 6 Model 14 Stepping 8, GenuineIntel
BOOT : Normal Boot
DATE : 2012/05/27 (ISO 8601) at 14:15:08
________________________________________________________________________________
DISK : Device\Harddisk0\DR0 __Hitachi HTS541680J9SA00 (SB2OC7BP)
BUS_TYPE : (0x03) P-ATA
USE_PIO : NO
MAX_TRANSFER : 128 Kb
ALIGNMENT_MASK : word aligned
________________________________________________________________________________
Device\Harddisk0\DR0 74.53 Go [Fixed] ==> Unknown MBR Code
MBR_MD5 : 817D72CE0A0273D8E9A430008CA4E40C
MBR_SHA1 : AB811274ABDF028D4126CADFFC9A84C34202C9BF
Device\Harddisk0\Partition1 66.01 Go 0x07 NTFS / HPFS __ BOOTABLE __
Device\Harddisk0\Partition2 6.96 Go 0x07 NTFS / HPFS
Device\Harddisk0\Partition3 1.55 Go 0x07 NTFS / HPFS
________________________________________________________________________________
############################### Additional scan ################################
DRIVER : C:\Windows\System32\Drivers\dump_dumpata.sys => Invisible on the disk
ADDRESS : 0x8E93A000
SIZE : 44.0 Ko
DRIVER : C:\Windows\System32\Drivers\dump_msahci.sys => Invisible on the disk
ADDRESS : 0x8E945000
SIZE : 40.0 Ko
SystemStartOptions : /NOEXECUTE=OPTIN
________________________________________________________________________________
_______MBR \Device\Harddisk0\DR0
0x00000000 33 FF 8E D7 BC 00 7A BB A0 07 8E DB 8E C3 BE 00 3..×¼.z»...Û.þ.
0x00000010 02 8B CE FC F3 A4 EA A3 00 A0 07 B9 04 00 8B FD ..Îüó¤ê£...¹...ý
0x00000020 80 3D 80 74 05 83 C7 10 E2 F6 C3 B9 04 00 8B F5 .=.t..Ç.âöù...õ
0x00000030 88 2C 83 C6 10 E2 F9 C6 05 80 C3 60 B4 43 EB 03 .,.Æ.âùÆ..Ã`´Cë.
0x00000040 60 B4 42 1E 16 1F 16 16 66 52 53 16 32 ED 51 6A `´B.....fRS.2íQj
0x00000050 10 B0 00 8B F4 B2 80 CD 13 83 C4 10 1F 61 0F 82 .°..ô².Í..Ä..a..
0x00000060 C1 00 C3 60 AC 0A C0 74 F4 B4 0E BB 07 00 B9 01 Á.Ã`¬.Àtô´.»..¹.
0x00000070 00 CD 10 EB EF BB E0 07 B1 06 E8 C3 FF 66 B8 58 .Í.ëï»à.±.èÃ.f¸X
0x00000080 53 53 3F B9 00 03 BE 00 04 66 03 04 83 C6 04 E2 SS?¹..¾..f...Æ.â
0x00000090 F8 66 3D 21 58 53 53 75 09 80 3E 02 04 03 0F 84 øf=!XSSu..>.....
0x000000A0 63 03 C3 BD BE 01 B8 00 48 B2 80 C7 06 08 10 1A c.ý¾.¸.H².Ç....
0x000000B0 00 66 BE 08 10 00 00 CD 13 72 68 B4 08 CD 13 80 .f¾....Í.rh´.Í..
0x000000C0 E1 3F 66 0F B6 C9 66 89 0E 00 10 FE C6 66 0F B6 á?f.¶Éf....þÆf.¶
0x000000D0 D6 66 89 16 04 10 66 33 D2 B2 02 E8 97 FF 66 8B Öf....f3Ò².è..f.
0x000000E0 16 18 10 66 83 EA 06 E8 8B FF 80 26 38 01 F9 E8 ...f.ê.è...&8.ùè
0x000000F0 29 FF 75 29 E8 34 FF 66 33 D2 BB A0 07 B1 01 E8 ).u)è4.f3Ò»..±.è
0x00000100 39 FF 66 8B 55 08 BB C0 07 E8 34 FF 81 3E FE 03 9.f.U.»À.è4..>þ.
0x00000110 55 AA 75 09 33 D2 B2 80 EA 00 7C 00 00 8B 36 39 Uªu.3Ò².ê.|...69
0x00000120 01 EB 04 8B 36 3B 01 E8 39 FF 8B 36 3D 01 E8 32 .ë..6;.è9..6=.è2
0x00000130 FF B4 00 CD 16 CD 18 03 10 41 01 46 01 4D 01 52 .´.Í.Í...A.F.M.R
0x00000140 01 45 72 72 32 00 0D 0A 45 72 72 31 00 45 72 72 .Err2...Err1.Err
0x00000150 33 00 0D 0A 53 74 69 73 6B 6E 75 74 A1 6D 20 6B 3...Stisknut¡m k
0x00000160 6C A0 76 65 73 79 20 46 31 31 20 73 70 75 73 74 l.vesy F11 spust
0x00000170 74 65 20 6F 62 6E 6F 76 65 6E A1 20 70 6F 20 7A te obnoven¡ po z
0x00000180 A0 76 61 7A 6E 82 20 70 6F 72 75 73 65 20 00 65 .vazn. poruse .e
0x00000190 0D 0A 00 50 72 65 73 73 20 46 31 30 20 66 6F 72 ...Press F10 for
0x000001A0 20 73 79 73 74 65 6D 20 72 65 63 6F 76 65 72 79 system recovery
0x000001B0 20 00 00 00 00 00 37 01 2C 3B AB 9E 00 00 80 01 .....7.,;«.....
0x000001C0 01 00 07 EF FF FF 3F 00 00 00 C1 5F 40 08 00 EF ...ï..?...Á_@..ï
0x000001D0 FF FF 07 EF FF FF 00 60 40 08 00 C0 DE 00 00 EF ...ï...`@..ÀÞ..ï
0x000001E0 FF FF 07 EF FF FF 00 40 1F 09 00 B0 31 00 00 00 ...ï...@...°1...
0x000001F0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 55 AA ..............Uª
__________________________16_BIT_ASM_CODE
0x0000 33ff XOR DI, DI
0x0002 8ed7 MOV SS, DI
0x0004 bc 007a MOV SP, 0x7a00
0x0007 bb a007 MOV BX, 0x7a0
0x000A 8edb MOV DS, BX
0x000C 8ec3 MOV ES, BX
0x000E be 0002 MOV SI, 0x200
0x0011 8bce MOV CX, SI
0x0013 fc CLD
0x0014 f3 a4 REP MOVSB
0x0016 ea a300 a007 JMP FAR 0x7a0:0xa3
0x001B b9 0400 MOV CX, 0x4
0x001E 8bfd MOV DI, BP
0x0020 803d 80 CMP BYTE [DI], 0x80
0x0023 74 05 JZ 0x2a
0x0025 83c7 10 ADD DI, 0x10
0x0028 e2 f6 LOOP 0x20
0x002A c3 RET
0x002B b9 0400 MOV CX, 0x4
0x002E 8bf5 MOV SI, BP
0x0030 882c MOV [SI], CH
0x0032 83c6 10 ADD SI, 0x10
0x0035 e2 f9 LOOP 0x30
0x0037 c605 80 MOV BYTE [DI], 0x80
0x003A c3 RET
0x003B 60 PUSHA
0x003C b4 43 MOV AH, 0x43
0x003E eb 03 JMP 0x43
0x0040 60 PUSHA
0x0041 b4 42 MOV AH, 0x42
0x0043 1e PUSH DS
0x0044 16 PUSH SS
0x0045 1f POP DS
0x0046 16 PUSH SS
0x0047 16 PUSH SS
0x0048 66 52 PUSH EDX
0x004A 53 PUSH BX
0x004B 16 PUSH SS
0x004C 32ed XOR CH, CH
0x004E 51 PUSH CX
0x004F 6a 10 PUSH 0x10
0x0051 b0 00 MOV AL, 0x0
0x0053 8bf4 MOV SI, SP
0x0055 b2 80 MOV DL, 0x80
0x0057 cd 13 INT 0x13
0x0059 83c4 10 ADD SP, 0x10
0x005C 1f POP DS
0x005D 61 POPA
0x005E 0f82 c100 JB 0x123
0x0062 c3 RET
0x0063 60 PUSHA
0x0064 ac LODSB
0x0065 0ac0 OR AL, AL
0x0067 74 f4 JZ 0x5d
0x0069 b4 0e MOV AH, 0xe
0x006B bb 0700 MOV BX, 0x7
0x006E b9 0100 MOV CX, 0x1
0x0071 cd 10 INT 0x10
0x0073 eb ef JMP 0x64
0x0075 bb e007 MOV BX, 0x7e0
0x0078 b1 06 MOV CL, 0x6
0x007A e8 c3ff CALL 0x40
0x007D 66 b8 5853533f MOV EAX, 0x3f535358
0x0083 b9 0003 MOV CX, 0x300
0x0086 be 0004 MOV SI, 0x400
0x0089 66 0304 ADD EAX, [SI]
0x008C 83c6 04 ADD SI, 0x4
0x008F e2 f8 LOOP 0x89
0x0091 66 3d 21585353 CMP EAX, 0x53535821
0x0097 75 09 JNZ 0xa2
0x0099 803e 0204 03 CMP BYTE [0x402], 0x3
0x009E 0f84 6303 JZ 0x405
0x00A2 c3 RET
0x00A3 bd be01 MOV BP, 0x1be
0x00A6 b8 0048 MOV AX, 0x4800
0x00A9 b2 80 MOV DL, 0x80
0x00AB c706 0810 1a00 MOV WORD [0x1008], 0x1a
0x00B1 66 be 08100000 MOV ESI, 0x1008
0x00B7 cd 13 INT 0x13
0x00B9 72 68 JB 0x123
0x00BB b4 08 MOV AH, 0x8
0x00BD cd 13 INT 0x13
0x00BF 80e1 3f AND CL, 0x3f
0x00C2 66 0fb6c9 MOVZX ECX, CL
0x00C6 66 890e 0010 MOV [0x1000], ECX
0x00CB fec6 INC DH
0x00CD 66 0fb6d6 MOVZX EDX, DH
0x00D1 66 8916 0410 MOV [0x1004], EDX
0x00D6 66 33d2 XOR EDX, EDX
0x00D9 b2 02 MOV DL, 0x2
0x00DB e8 97ff CALL 0x75
0x00DE 66 8b16 1810 MOV EDX, [0x1018]
0x00E3 66 83ea 06 SUB EDX, 0x6
0x00E7 e8 8bff CALL 0x75
0x00EA 8026 3801 f9 AND BYTE [0x138], 0xf9
0x00EF e8 29ff CALL 0x1b
0x00F2 75 29 JNZ 0x11d
0x00F4 e8 34ff CALL 0x2b
0x00F7 66 33d2 XOR EDX, EDX
0x00FA bb a007 MOV BX, 0x7a0
0x00FD b1 01 MOV CL, 0x1
0x00FF e8 39ff CALL 0x3b
0x0102 66 8b55 08 MOV EDX, [DI+0x8]
0x0106 bb c007 MOV BX, 0x7c0
0x0109 e8 34ff CALL 0x40
0x010C 813e fe03 55aa CMP WORD [0x3fe], 0xaa55
0x0112 75 09 JNZ 0x11d
0x0114 33d2 XOR DX, DX
0x0116 b2 80 MOV DL, 0x80
0x0118 ea 007c 0000 JMP FAR 0x0:0x7c00
0x011D 8b36 3901 MOV SI, [0x139]
0x0121 eb 04 JMP 0x127
0x0123 8b36 3b01 MOV SI, [0x13b]
0x0127 e8 39ff CALL 0x63
0x012A 8b36 3d01 MOV SI, [0x13d]
0x012E e8 32ff CALL 0x63
0x0131 b4 00 MOV AH, 0x0
0x0133 cd 16 INT 0x16
0x0135 cd 18 INT 0x18
0x0137 0310 ADD DX, [BX+SI]
0x0139 41 INC CX
0x013A 0146 01 ADD [BP+0x1], AX
0x013D 4d DEC BP
0x013E 0152 01 ADD [BP+SI+0x1], DX
0x0141 45 INC BP
0x0142 72 72 JB 0x1b6
0x0144 3200 XOR AL, [BX+SI]
0x0146 0d 0a45 OR AX, 0x450a
0x0149 72 72 JB 0x1bd
0x014B 3100 XOR [BX+SI], AX
0x014D 45 INC BP
0x014E 72 72 JB 0x1c2
0x0150 3300 XOR AX, [BX+SI]
0x0152 0d 0a53 OR AX, 0x530a
0x0155 74 69 JZ 0x1c0
0x0157 73 6b JAE 0x1c4
0x0159 6e OUTSB
0x015A 75 74 JNZ 0x1d0
0x015C a1 6d20 MOV AX, [0x206d]
0x015F 6b6c a0 76 IMUL BP, [SI-0x60], 0x76
0x0163 65 DB 0x65
0x0163 65 73 79 JAE 0x1df
0x0166 2046 31 AND [BP+0x31], AL
0x0169 3120 XOR [BX+SI], SP
0x016B 73 70 JAE 0x1dd
0x016D 75 73 JNZ 0x1e2
0x016F 74 74 JZ 0x1e5
0x0171 65 206f 62 AND GS:[BX+0x62], CH
0x0175 6e OUTSB
0x0176 6f OUTSW
0x0177 76 65 JBE 0x1de
0x0179 6e OUTSB
0x017A a1 2070 MOV AX, [0x7020]
0x017D 6f OUTSW
0x017E 207a a0 AND [BP+SI-0x60], BH
0x0181 76 61 JBE 0x1e4
0x0183 7a 6e JP 0x1f3
0x0185 8220 70 AND BYTE [BX+SI], 0x70
0x0188 6f OUTSW
0x0189 72 75 JB 0x200
0x018B 73 65 JAE 0x1f2
0x018D 2000 AND [BX+SI], AL
0x018F 65 DB 0x65
0x018F 65 0d 0a00 OR AX, 0xa
0x0193 50 PUSH AX
0x0194 72 65 JB 0x1fb
0x0196 73 73 JAE 0x20b
0x0198 2046 31 AND [BP+0x31], AL
0x019B 3020 XOR [BX+SI], AH
0x019D 66 6f OUTSD
0x019F 72 20 JB 0x1c1
0x01A1 73 79 JAE 0x21c
0x01A3 73 74 JAE 0x219
0x01A5 65 6d INS WORD GS:[DI], DX
0x01A7 2072 65 AND [BP+SI+0x65], DH
0x01AA 636f 76 ARPL [BX+0x76], BP
0x01AD 65 DB 0x65
0x01AD 65 72 79 JB 0x229
0x01B0 2000 AND [BX+SI], AL
0x01B2 0000 ADD [BX+SI], AL
0x01B4 0000 ADD [BX+SI], AL
0x01B6 37 AAA
0x01B7 012c ADD [SI], BP
0x01B9 3bab 9e00 CMP BP, [BP+DI+0x9e]
0x01BD 0080 0101 ADD [BX+SI+0x101], AL
0x01C1 0007 ADD [BX], AL
0x01C3 ef OUT DX, AX
0x01C4 ff DB 0xff
0x01C5 ff DB 0xff
0x01C6 3f AAS
0x01C7 0000 ADD [BX+SI], AL
0x01C9 00c1 ADD CL, AL
0x01CB 5f POP DI
0x01CC 40 INC AX
0x01CD 0800 OR [BX+SI], AL
0x01CF ef OUT DX, AX
0x01D0 ff DB 0xff
0x01D1 ff07 INC WORD [BX]
0x01D3 ef OUT DX, AX
0x01D4 ff DB 0xff
0x01D5 ff00 INC WORD [BX+SI]
0x01D7 60 PUSHA
0x01D8 40 INC AX
0x01D9 0800 OR [BX+SI], AL
0x01DB c0de 00 RCR DH, 0x0
0x01DE 00ef ADD BH, CH
0x01E0 ff DB 0xff
0x01E1 ff07 INC WORD [BX]
0x01E3 ef OUT DX, AX
0x01E4 ff DB 0xff
0x01E5 ff00 INC WORD [BX+SI]
0x01E7 40 INC AX
0x01E8 1f POP DS
0x01E9 0900 OR [BX+SI], AX
0x01EB b0 31 MOV AL, 0x31
0x01ED 0000 ADD [BX+SI], AL
0x01EF 0000 ADD [BX+SI], AL
0x01F1 0000 ADD [BX+SI], AL
0x01F3 0000 ADD [BX+SI], AL
0x01F5 0000 ADD [BX+SI], AL
0x01F7 0000 ADD [BX+SI], AL
0x01F9 0000 ADD [BX+SI], AL
0x01FB 0000 ADD [BX+SI], AL
0x01FD 0055 aa ADD [DI-0x56], DL
Log z MBRCheck:
MBRCheck, version 1.2.3
(c) 2010, AD
Command-line:
Windows Version: Windows Vista Home Basic Edition
Windows Information: Service Pack 2 (build 6002), 32-bit
Base Board Manufacturer: Hewlett-Packard
BIOS Manufacturer: Hewlett-Packard
System Manufacturer: Hewlett-Packard
System Product Name: HP 530 Notebook PC(GU334AA#AKB)
Logical Drives Mask: 0x0000007c
Kernel Drivers (total 158):
0x8324C000 \SystemRoot\system32\ntkrnlpa.exe
0x83219000 \SystemRoot\system32\hal.dll
0x8040E000 \SystemRoot\system32\kdcom.dll
0x80415000 \SystemRoot\system32\mcupdate_GenuineIntel.dll
0x80485000 \SystemRoot\system32\PSHED.dll
0x80496000 \SystemRoot\system32\BOOTVID.dll
0x8049E000 \SystemRoot\system32\CLFS.SYS
0x804DF000 \SystemRoot\system32\CI.dll
0x80608000 \SystemRoot\system32\drivers\Wdf01000.sys
0x80684000 \SystemRoot\system32\drivers\WDFLDR.SYS
0x80691000 \SystemRoot\system32\drivers\acpi.sys
0x806D7000 \SystemRoot\system32\drivers\WMILIB.SYS
0x806E0000 \SystemRoot\system32\drivers\msisadrv.sys
0x806E8000 \SystemRoot\system32\drivers\pci.sys
0x8070F000 \SystemRoot\System32\drivers\partmgr.sys
0x8071F000 \SystemRoot\system32\DRIVERS\compbatt.sys
0x80722000 \SystemRoot\system32\DRIVERS\BATTC.SYS
0x8072C000 \SystemRoot\system32\drivers\volmgr.sys
0x8073B000 \SystemRoot\System32\drivers\volmgrx.sys
0x80785000 \SystemRoot\system32\drivers\intelide.sys
0x8078C000 \SystemRoot\system32\drivers\PCIIDEX.SYS
0x8079A000 \SystemRoot\system32\DRIVERS\pcmcia.sys
0x807C7000 \SystemRoot\System32\drivers\mountmgr.sys
0x807D7000 \SystemRoot\system32\drivers\atapi.sys
0x807DF000 \SystemRoot\system32\drivers\ataport.SYS
0x805BF000 \SystemRoot\system32\drivers\msahci.sys
0x805C9000 \SystemRoot\system32\drivers\fltmgr.sys
0x83C0E000 \SystemRoot\system32\drivers\fileinfo.sys
0x83C1E000 \SystemRoot\system32\DRIVERS\Lbd.sys
0x83C2D000 \SystemRoot\System32\Drivers\PxHelp20.sys
0x83C36000 \SystemRoot\System32\Drivers\ksecdd.sys
0x83CA8000 \SystemRoot\system32\drivers\ndis.sys
0x83DB3000 \SystemRoot\system32\drivers\msrpc.sys
0x83E0D000 \SystemRoot\system32\drivers\NETIO.SYS
0x83E48000 \SystemRoot\System32\drivers\tcpip.sys
0x83F32000 \SystemRoot\System32\drivers\fwpkclnt.sys
0x89002000 \SystemRoot\System32\Drivers\Ntfs.sys
0x89112000 \SystemRoot\system32\drivers\volsnap.sys
0x8914B000 \SystemRoot\System32\Drivers\spldr.sys
0x89153000 \SystemRoot\System32\Drivers\mup.sys
0x89162000 \SystemRoot\System32\drivers\ecache.sys
0x89189000 \SystemRoot\system32\drivers\disk.sys
0x8919A000 \SystemRoot\system32\drivers\CLASSPNP.SYS
0x891BB000 \SystemRoot\system32\drivers\crcdisk.sys
0x891E6000 \SystemRoot\system32\DRIVERS\tunnel.sys
0x891F1000 \SystemRoot\system32\DRIVERS\tunmp.sys
0x83F4D000 \SystemRoot\system32\DRIVERS\intelppm.sys
0x8D00A000 \SystemRoot\system32\DRIVERS\igdkmd32.sys
0x8D6C5000 \SystemRoot\System32\drivers\dxgkrnl.sys
0x8D765000 \SystemRoot\System32\drivers\watchdog.sys
0x8D771000 \SystemRoot\system32\DRIVERS\HDAudBus.sys
0x8D809000 \SystemRoot\system32\DRIVERS\NETw5v32.sys
0x8DB92000 \SystemRoot\system32\DRIVERS\usbuhci.sys
0x8DB9D000 \SystemRoot\system32\DRIVERS\USBPORT.SYS
0x8DBDB000 \SystemRoot\system32\DRIVERS\usbehci.sys
0x83F5C000 \SystemRoot\system32\DRIVERS\e100b325.sys
0x8DBEA000 \SystemRoot\system32\DRIVERS\i8042prt.sys
0x8D800000 \SystemRoot\system32\DRIVERS\HpqKbFiltr.sys
0x83F83000 \SystemRoot\system32\DRIVERS\kbdclass.sys
0x83F8E000 \SystemRoot\system32\DRIVERS\SynTP.sys
0x8DBFD000 \SystemRoot\system32\DRIVERS\USBD.SYS
0x83FBE000 \SystemRoot\system32\DRIVERS\mouclass.sys
0x83FC9000 \SystemRoot\system32\DRIVERS\cdrom.sys
0x8D000000 \SystemRoot\system32\DRIVERS\cpqbttn.sys
0x83FE1000 \SystemRoot\system32\DRIVERS\HIDCLASS.SYS
0x8D003000 \SystemRoot\system32\DRIVERS\HIDPARSE.SYS
0x891FA000 \SystemRoot\system32\DRIVERS\CmBatt.sys
0x83FF1000 \SystemRoot\system32\DRIVERS\wmiacpi.sys
0x8DE07000 \SystemRoot\system32\DRIVERS\msiscsi.sys
0x8DE36000 \SystemRoot\system32\DRIVERS\storport.sys
0x8DE77000 \SystemRoot\system32\DRIVERS\TDI.SYS
0x8DE82000 \SystemRoot\system32\DRIVERS\rasl2tp.sys
0x8DE99000 \SystemRoot\system32\DRIVERS\ndistapi.sys
0x8DEA4000 \SystemRoot\system32\DRIVERS\ndiswan.sys
0x8DEC7000 \SystemRoot\system32\DRIVERS\raspppoe.sys
0x8DED6000 \SystemRoot\system32\DRIVERS\raspptp.sys
0x8DEEA000 \SystemRoot\system32\DRIVERS\rassstp.sys
0x8DEFF000 \SystemRoot\system32\DRIVERS\termdd.sys
0x8DF0F000 \SystemRoot\system32\DRIVERS\swenum.sys
0x8DF11000 \SystemRoot\system32\DRIVERS\ks.sys
0x8DF3B000 \SystemRoot\system32\DRIVERS\mssmbios.sys
0x8DF45000 \SystemRoot\system32\DRIVERS\umbus.sys
0x8DF52000 \SystemRoot\system32\DRIVERS\usbhub.sys
0x8DF87000 \SystemRoot\system32\DRIVERS\kbdhid.sys
0x8DF90000 \SystemRoot\System32\Drivers\NDProxy.SYS
0x8DFA1000 \SystemRoot\system32\drivers\CHDRT32.sys
0x8E003000 \SystemRoot\system32\drivers\portcls.sys
0x8E030000 \SystemRoot\system32\drivers\drmk.sys
0x8E055000 \SystemRoot\system32\DRIVERS\HSXHWAZL.sys
0x8E093000 \SystemRoot\system32\DRIVERS\HSX_DPV.sys
0x8E20F000 \SystemRoot\system32\DRIVERS\HSX_CNXT.sys
0x8E2C4000 \SystemRoot\system32\drivers\modem.sys
0x8E2D1000 \SystemRoot\System32\Drivers\aswSnx.SYS
0x8E36B000 \SystemRoot\System32\Drivers\Fs_Rec.SYS
0x8E374000 \SystemRoot\System32\Drivers\Null.SYS
0x8E37B000 \SystemRoot\System32\Drivers\Beep.SYS
0x8E382000 \SystemRoot\System32\drivers\vga.sys
0x8E38E000 \SystemRoot\System32\drivers\VIDEOPRT.SYS
0x8E3AF000 \SystemRoot\System32\DRIVERS\RDPCDD.sys
0x8E3B7000 \SystemRoot\system32\drivers\rdpencdd.sys
0x8E3BF000 \SystemRoot\System32\Drivers\Msfs.SYS
0x8E3CA000 \SystemRoot\System32\Drivers\Npfs.SYS
0x8E3D8000 \SystemRoot\System32\DRIVERS\rasacd.sys
0x8E3E1000 \SystemRoot\system32\DRIVERS\tdx.sys
0x8E200000 \SystemRoot\System32\Drivers\aswTdi.SYS
0x8E196000 \SystemRoot\system32\DRIVERS\smb.sys
0x8E1AA000 \SystemRoot\system32\drivers\afd.sys
0x8E3F7000 \SystemRoot\System32\Drivers\aswRdr.SYS
0x8E800000 \SystemRoot\System32\DRIVERS\netbt.sys
0x8E832000 \SystemRoot\system32\DRIVERS\pacer.sys
0x8E848000 \SystemRoot\system32\DRIVERS\netbios.sys
0x8E856000 \SystemRoot\system32\DRIVERS\wanarp.sys
0x8E869000 \SystemRoot\system32\DRIVERS\rdbss.sys
0x8E8A5000 \SystemRoot\system32\drivers\nsiproxy.sys
0x8E8AF000 \SystemRoot\System32\Drivers\dfsc.sys
0x8E8C6000 \SystemRoot\System32\Drivers\aswSP.SYS
0x8E917000 \SystemRoot\system32\DRIVERS\cdfs.sys
0x8E92D000 \SystemRoot\System32\Drivers\crashdmp.sys
0x8E93A000 \SystemRoot\System32\Drivers\dump_dumpata.sys
0x8E945000 \SystemRoot\System32\Drivers\dump_msahci.sys
0x97830000 \SystemRoot\System32\win32k.sys
0x8E94F000 \SystemRoot\System32\drivers\Dxapi.sys
0x8E959000 \SystemRoot\system32\DRIVERS\monitor.sys
0x97A50000 \SystemRoot\System32\TSDDD.dll
0x97A70000 \SystemRoot\System32\cdd.dll
0x8E968000 \SystemRoot\system32\drivers\luafv.sys
0x8E983000 \??\C:\Windows\system32\drivers\aswMonFlt.sys
0x8E9B6000 \SystemRoot\System32\Drivers\aswFsBlk.SYS
0xA9407000 \SystemRoot\system32\drivers\spsys.sys
0xA94B7000 \SystemRoot\system32\DRIVERS\lltdio.sys
0xA94C7000 \SystemRoot\system32\DRIVERS\nwifi.sys
0xA94F1000 \SystemRoot\system32\DRIVERS\ndisuio.sys
0xA94FB000 \SystemRoot\system32\DRIVERS\rspndr.sys
0xA950E000 \SystemRoot\system32\drivers\HTTP.sys
0xA957B000 \SystemRoot\System32\DRIVERS\srvnet.sys
0xA9598000 \SystemRoot\system32\DRIVERS\bowser.sys
0xA95B1000 \SystemRoot\System32\drivers\mpsdrv.sys
0xA95C6000 \SystemRoot\system32\drivers\mrxdav.sys
0x8E9C1000 \SystemRoot\system32\DRIVERS\mrxsmb.sys
0xAB406000 \SystemRoot\system32\DRIVERS\mrxsmb10.sys
0xAB43F000 \SystemRoot\system32\DRIVERS\mrxsmb20.sys
0xAB457000 \SystemRoot\System32\DRIVERS\srv2.sys
0xAB47F000 \SystemRoot\System32\DRIVERS\srv.sys
0xAB4CE000 \SystemRoot\system32\DRIVERS\mdmxsdk.sys
0xAB4D2000 \SystemRoot\system32\drivers\peauth.sys
0xAB5B0000 \SystemRoot\System32\Drivers\secdrv.SYS
0xAB5BA000 \SystemRoot\System32\drivers\tcpipreg.sys
0xAB5C6000 \SystemRoot\system32\DRIVERS\xaudio.sys
0xAB5CE000 \SystemRoot\system32\DRIVERS\ewusbdev.sys
0xAB5E7000 \SystemRoot\system32\DRIVERS\usbccgp.sys
0x8E9E0000 \SystemRoot\system32\DRIVERS\ewusbmdm.sys
0xAB400000 \SystemRoot\system32\DRIVERS\ewdcsc.sys
0xA95E7000 \SystemRoot\system32\DRIVERS\SMCLIB.SYS
0x8DFD4000 \SystemRoot\system32\DRIVERS\USBSTOR.SYS
0x8DFE9000 \SystemRoot\system32\DRIVERS\WUDFRd.sys
0x891C4000 \SystemRoot\system32\DRIVERS\WUDFPf.sys
0xA95F2000 \SystemRoot\system32\DRIVERS\asyncmac.sys
0x76E40000 \WINDOWS\System32\ntdll.dll
Processes (total 73):
0 System Idle Process
4 System
440 C:\WINDOWS\System32\smss.exe
540 csrss.exe
584 C:\WINDOWS\System32\wininit.exe
592 csrss.exe
628 C:\WINDOWS\System32\services.exe
640 C:\WINDOWS\System32\lsass.exe
648 C:\WINDOWS\System32\lsm.exe
748 C:\WINDOWS\System32\winlogon.exe
860 C:\WINDOWS\System32\svchost.exe
944 C:\WINDOWS\System32\svchost.exe
980 C:\WINDOWS\System32\svchost.exe
1064 C:\WINDOWS\System32\svchost.exe
1100 C:\WINDOWS\System32\svchost.exe
1112 C:\WINDOWS\System32\svchost.exe
1160 C:\Program Files\Common Files\LogiShrd\LVMVFM\UMVPFSrv.exe
1236 C:\WINDOWS\System32\audiodg.exe
1272 C:\WINDOWS\System32\SLsvc.exe
1312 C:\WINDOWS\System32\svchost.exe
1516 C:\WINDOWS\System32\svchost.exe
1616 C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
1712 C:\WINDOWS\System32\spoolsv.exe
1736 C:\WINDOWS\System32\svchost.exe
1900 C:\WINDOWS\System32\svchost.exe
1948 C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe
280 C:\WINDOWS\System32\svchost.exe
484 C:\WINDOWS\System32\svchost.exe
852 C:\WINDOWS\System32\SearchIndexer.exe
1108 C:\WINDOWS\System32\drivers\XAudio.exe
2304 C:\WINDOWS\System32\dwm.exe
2340 C:\WINDOWS\explorer.exe
2400 C:\WINDOWS\System32\taskeng.exe
2560 C:\Program Files\Windows Defender\MSASCui.exe
2568 C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
2580 C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe
2616 C:\WINDOWS\System32\igfxtray.exe
2628 C:\WINDOWS\System32\hkcmd.exe
2672 C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe
2700 C:\WINDOWS\System32\igfxpers.exe
2820 C:\Program Files\Hp\HP Software Update\hpwuschd2.exe
2852 C:\Program Files\Alwil Software\Avast5\AvastUI.exe
2868 C:\Program Files\Logitech\LWS\Webcam Software\LWS.exe
2876 C:\WINDOWS\System32\igfxsrvc.exe
2884 C:\Program Files\Common Files\Java\Java Update\jusched.exe
2964 C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCtrl.exe
2972 C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
2984 C:\Program Files\Real\RealPlayer\Update\realsched.exe
2992 C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe
3000 C:\Program Files\Skype\Phone\Skype.exe
3008 C:\Program Files\Logitech\LWS\Webcam Software\CameraHelperShell.exe
3116 WmiPrvSE.exe
3204 C:\Program Files\Nike+ Utility\Nike+ Utility.exe
3324 C:\Program Files\Common Files\LogiShrd\LQCVFX\COCIManager.exe
3652 C:\Program Files\OpenOffice.org 3\program\soffice.exe
3704 C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\VolCtrl.exe
3716 C:\WINDOWS\System32\wbem\unsecapp.exe
3776 C:\Program Files\OpenOffice.org 3\program\soffice.bin
3900 C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
3932 C:\Program Files\Hewlett-Packard\Shared\HpqToaster.exe
2276 C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
3396 C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
2752 C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe
1028 C:\Program Files\PC Connectivity Solution\Transports\NclRSSrv.exe
4632 C:\WINDOWS\System32\svchost.exe
4776 C:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Service.exe
4508 WUDFHost.exe
3444 C:\Program Files\O2\O2CZ\EMMSN.exe
3448 C:\Program Files\O2\Nori\Nori.exe
4360 C:\Program Files\Mozilla Firefox\firefox.exe
6108 C:\Program Files\Mozilla Firefox\plugin-container.exe
3880 C:\Users\Lucinka\Desktop\MBRCheck.exe
4972 C:\WINDOWS\System32\conime.exe
\\.\C: --> \\.\PhysicalDrive0 at offset 0x00000000`00007e00 (NTFS)
\\.\D: --> \\.\PhysicalDrive0 at offset 0x00000010`80c00000 (NTFS)
\\.\E: --> \\.\PhysicalDrive0 at offset 0x00000012`3e800000 (NTFS)
PhysicalDrive0 Model Number: HitachiHTS541680J9SA00, Rev: SB2OC7BP
Size Device Name MBR Status
--------------------------------------------
74 GB \\.\PhysicalDrive0 Unknown MBR code
SHA1: EB7CE789D51018A66429CB7718140C51E386BF30
Found non-standard or infected MBR.
Enter 'Y' and hit ENTER for more options, or 'N' to exit:
Done!
LOG ze ZHPdiag:
Rapport de ZHPDiag v1.31.095 par Nicolas Coolman, Update du 24/05/2012
Run by Lucinka at 27.5.2012 14:35:57
Web site : http://www.premiumorange.com/zeb-help-p ... pdiag.html
Web site : http://nicolascoolman.skyrock.com/
State : Your version is update.
---\\ Web Browser
MSIE: Internet Explorer v
GCIE: Google Chrome
---\\ Windows Product Information
~ Langage: Anglais
Windows Vista Home Basic Edition, 32-bit Service Pack 2 (Build 6002)
Windows Server License Manager Script : OK
Windows Automatic Updates : OK
---\\ System Information
~ Processor: x86 Family 6 Model 14 Stepping 8, GenuineIntel
~ Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 2038 MB (42% free)
System Restore: Inconnu (Unknown)
System drive C: has 26 GB (38%) free of 66 GB
---\\ Logged in mode
~ Computer Name: LUCINKA-PC
~ User Name: Lucinka
~ All Users Names: Lucinka, Guest, Administrator,
~ Unselected Option: O45,O61,O62,O65,O66,O80,O82,O89
Logged in as Administrator
---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Users\Lucinka\AppData\Roaming\
~ %Desktop% : C:\Users\Lucinka\Desktop\
~ %Favorites% : C:\Users\Lucinka\Favorites\
~ %LocalAppData% : C:\Users\Lucinka\AppData\Local\
~ %StartMenu% : C:\Users\Lucinka\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\WINDOWS\
~ %System% : C:\WINDOWS\System32\
---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 26 Go of 66 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 1 Go of 7 Go)
E:\ Hard drive, Flash drive, Thumb drive (Free 1 Go of 2 Go)
F:\ CD-ROM drive (Free 0 Go of 4 Go)
G:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
---\\ Security Center & Tools Informations
[HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK
~ Scan Security Center in 00mn 00s
---\\ Search Generic System Files
[MD5.D07D4C3038F3578FFCE1C0237F2A1253] - (.Microsoft Corporation - Průzkumník Windows.) (.11.4.2009 - 7:27:36.) -- C:\WINDOWS\Explorer.exe [2926592]
[MD5.101BA3EA053480BB5D957EF37C06B5ED] - (.Microsoft Corporation - Windows Start-Up Application.) (.19.1.2008 - 8:33:37.) -- C:\WINDOWS\System32\Wininit.exe [96768]
[MD5.07AEE972DE88F8780EA1474DB2CABBE3] - (.Microsoft Corporation - Internet Extensions for Win32.) (.28.2.2012 - 16:26:16.) -- C:\WINDOWS\System32\wininet.dll [834048]
[MD5.898E7C06A350D4A1A64A9EA264D55452] - (.Microsoft Corporation - Windows Logon Application.) (.11.4.2009 - 7:28:13.) -- C:\WINDOWS\System32\Winlogon.exe [314368]
[MD5.3911B972B55FEA0478476B2E777B29FA] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.21.4.2011 - 14:58:27.) -- C:\WINDOWS\system32\Drivers\AFD.sys [273408]
[MD5.1F05B78AB91C9075565A9D8A4B880BC4] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.11.4.2009 - 7:32:26.) -- C:\WINDOWS\system32\Drivers\atapi.sys [19944]
[MD5.7ADD03E75BEB9E6DD102C3081D29840A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.19.1.2008 - 6:28:02.) -- C:\WINDOWS\system32\Drivers\Cdfs.sys [70144]
[MD5.6B4BFFB9BECD728097024276430DB314] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.11.4.2009 - 5:39:17.) -- C:\WINDOWS\system32\Drivers\Cdrom.sys [67072]
[MD5.622C41A07CA7E6DD91770F50D532CB6C] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.14.4.2011 - 15:59:03.) -- C:\WINDOWS\system32\Drivers\DfsC.sys [75264]
[MD5.062452B7FFD68C8C042A6261FE8DFF4A] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.11.4.2009 - 5:42:42.) -- C:\WINDOWS\system32\Drivers\HDAudBus.sys [561152]
[MD5.22D56C8184586B7A1F6FA60BE5F5A2BD] - (.Microsoft Corporation - i8042 Port Driver.) (.19.1.2008 - 6:49:18.) -- C:\WINDOWS\system32\Drivers\i8042prt.sys [54784]
[MD5.8793643A67B42CEC66490B2A0CF92D68] - (.Microsoft Corporation - IP Network Address Translator.) (.19.1.2008 - 6:56:28.) -- C:\WINDOWS\system32\Drivers\IpNat.sys [100864]
[MD5.1E94971C4B446AB2290DEB71D01CF0C2] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.29.4.2011 - 14:24:40.) -- C:\WINDOWS\system32\Drivers\MRxSmb.sys [106496]
[MD5.ECD64230A59CBD93C85F1CD1CAB9F3F6] - (.Microsoft Corporation - MBT Transport driver.) (.11.4.2009 - 5:45:37.) -- C:\WINDOWS\system32\Drivers\netBT.sys [185856]
[MD5.6A4A98CEE84CF9E99564510DDA4BAA47] - (.Společnost Microsoft - NT File System Driver.) (.11.4.2009 - 7:32:49.) -- C:\WINDOWS\system32\Drivers\ntfs.sys [1083880]
[MD5.0FA9B5055484649D63C303FE404E5F4D] - (.Microsoft Corporation - Parallel Port Driver.) (.2.11.2006 - 9:51:30.) -- C:\WINDOWS\system32\Drivers\Parport.sys [79360]
[MD5.A214ADBAF4CB47DD2728859EF31F26B0] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.19.1.2008 - 6:56:34.) -- C:\WINDOWS\system32\Drivers\Rasl2tp.sys [76288]
[MD5.E8BD98D46F2ED77132BA927FCCB47D8B] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.2.11.2006 - 10:03:00.) -- C:\WINDOWS\system32\Drivers\rdpdr.sys [242688]
[MD5.7B75299A4D201D6A6533603D6914AB04] - (.Microsoft Corporation - SMB Transport driver.) (.11.4.2009 - 5:45:22.) -- C:\WINDOWS\system32\Drivers\smb.sys [66560]
[MD5.76B06EB8A01FC8624D699E7045303E54] - (.Microsoft Corporation - TDI Translation Driver.) (.11.4.2009 - 5:45:56.) -- C:\WINDOWS\system32\Drivers\tdx.sys [72192]
[MD5.147281C01FCB1DF9252DE2A10D5E7093] - (.Microsoft Corporation - Volume Shadow Copy Driver.) (.11.4.2009 - 7:32:55.) -- C:\WINDOWS\system32\Drivers\volsnap.sys [226280]
~ Scan Generic Processes in 00mn 00s
---\\ Hidden files state (Hidden/Total)
~ Mes images (My Pictures) : 1/165
~ Mes musiques (My Musics) : 1/2
~ Mes Videos (My Videos) : 1/17
~ Mes Favoris (My Favorites) : 1/49
~ Mes Documents (My Documents) : 1/79
~ Mon Bureau (My Desktop) : 2/398
~ Menu demarrer (Programs) : 1/29
~ Scan Hidden Files in 00mn 00s
---\\ Running Processes
[MD5.0D392EDE3B97E0B3131B2F63EF1DB94E] - (.Microsoft Corporation - Windows Defender User Interface.) -- C:\Program Files\Windows Defender\MSASCui.exe [1008184] [PID.2560]
[MD5.AF849798ECA383184C88ED436CF3EFB2] - (.Hewlett-Packard Development Company, L.P. - HPWAMain Module.) -- C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [472776] [PID.2568]
[MD5.F533507FE318B46629E84DF630A316F8] - (.Hewlett-Packard Development Company, L.P. - Module to process WiFi messages..) -- C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe [317128] [PID.2580]
[MD5.7F7B42B1BA42242116F5B277A063FE2E] - (.Intel Corporation - igfxTray Module.) -- C:\WINDOWS\System32\igfxtray.exe [141848] [PID.2616]
[MD5.5F529FBB095CBC9F14BB1E97A7A6B547] - (.Intel Corporation - hkcmd Module.) -- C:\WINDOWS\System32\hkcmd.exe [166424] [PID.2628]
[MD5.D8A33AF26E4143F7A892009890BB6F64] - (.Intel Corporation - persistence Module.) -- C:\WINDOWS\System32\igfxpers.exe [133656] [PID.2700]
[MD5.D658AB1B55127D18DCFBCAC8CAAEA522] - (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files\Hp\HP Software Update\hpwuschd2.exe [49208] [PID.2820]
[MD5.782FEF655DBF8653C9F2722BEBF7A8A6] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe [4241512] [PID.2852]
[MD5.1B13227DB8271040CEB5128414EE2742] - (.Logitech Inc. - Logitech Webcam Software.) -- C:\Program Files\Logitech\LWS\Webcam Software\LWS.exe [190808] [PID.2868]
[MD5.734006A2DB2404138F2C1A2CB86D32EF] - (.Intel Corporation - igfxsrvc Module.) -- C:\Windows\system32\igfxsrvc.exe [256536] [PID.2876]
[MD5.13E7CFE8E269ED15E7FC9C3EBBCB7E2B] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe [254696] [PID.2884]
[MD5.FE7CE849DB8C3986B2E721C6A3184FAA] - (. Hewlett-Packard Development Company, L.P. - Quick Launch Buttons.) -- C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCtrl.exe [287800] [PID.2964]
[MD5.62B3C9786081ECAAB272A118408D2817] - (.Synaptics, Inc. - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1045800] [PID.2972]
[MD5.8E53B67FA3816E854B07C5DC66E10730] - (.RealNetworks, Inc. - RealNetworks Scheduler.) -- C:\Program Files\Real\RealPlayer\Update\realsched.exe [296056] [PID.2984]
[MD5.762A5BD25FF00D0376959A8611B327AC] - (.Nokia - Nokia Launch Application.) -- C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe [1414144] [PID.2992]
[MD5.3647D444D0A674EA494D43AC78D98D84] - (...) -- C:\Program Files\Logitech\LWS\Webcam Software\CameraHelperShell.exe [203096] [PID.3008]
[MD5.30E70E6546C8CE637CD21ECCB9FAB1ED] - (...) -- C:\Program Files\Nike+ Utility\Nike+ Utility.exe [1228800] [PID.3204]
[MD5.8EA4AAF03CE0D00CB91FCEE88909E2E9] - (...) -- C:\Program Files\Common Files\Logishrd\LQCVFX\COCIManager.exe [687448] [PID.3324]
[MD5.C47FB9CFB0A082702EFE1726A0F8FFC4] - (.OpenOffice.org - OpenOffice.org 3.2.) -- C:\Program Files\OpenOffice.org 3\program\soffice.exe [11318784] [PID.3652]
[MD5.001B2CD2D45BC59575BA0F1A4A997682] - (. Hewlett-Packard Development Company, L.P. - Volume related element.) -- C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\VolCtrl.exe [76856] [PID.3704]
[MD5.0B1B2402970FFCFEB30EBFB00B65D24B] - (.OpenOffice.org - OpenOffice.org 3.2.) -- C:\Program Files\OpenOffice.org 3\program\soffice.bin [11312128] [PID.3776]
[MD5.0DE3C7622EC33126579B1742260F08C2] - (.Unknown owner - HpqToaster Module.) -- C:\Program Files\Hewlett-Packard\Shared\hpqToaster.exe [632888] [PID.3932]
[MD5.8E19A656DE8429B9F3BD8DA73AC5E7E1] - (.Telefónica I+D - Escritorio movistar for CZ.) -- C:\Program Files\O2\O2CZ\EMMSN.exe [4050632] [PID.3444]
[MD5.D379ABFD3E1C454CC7DB0A0BCFA1616E] - (.Telefónica I+D - Nori server.) -- C:\Program Files\O2\Nori\Nori.exe [347272] [PID.3448]
[MD5.4F69AABB5D82AA4EF6DFF7871212ADF6] - (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe [924600] [PID.4360]
[MD5.A7B6857B7503D9CA4F40D17A7EBB67FB] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files\Mozilla Firefox\plugin-container.exe [16824] [PID.6108]
[MD5.CC926B0811C3FA2363C98711410FEF24] - (...) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [4540928] [PID.5228]
~ Scan Processes Running in 00mn 02s
---\\ Mozilla Firefox,Plugins,Start,Search,Extensions (P2,M0,M1,M2,M3)
C:\Users\Lucinka\AppData\Roaming\Mozilla\Firefox\Profiles\afv3cd5n.default\prefs.js
C:\Users\Lucinka\AppData\Roaming\Mozilla\Firefox\Profiles\afv3cd5n.default\user.js
M3 - MFPP: Plugins - [Lucinka] -- C:\Users\Lucinka\AppData\Roaming\Mozilla\Firefox\Profiles\afv3cd5n.default\searchplugins\icqplugin-1.xml
M3 - MFPP: Plugins - [Lucinka] -- C:\Users\Lucinka\AppData\Roaming\Mozilla\Firefox\Profiles\afv3cd5n.default\searchplugins\icqplugin-10.xml
M3 - MFPP: Plugins - [Lucinka] -- C:\Users\Lucinka\AppData\Roaming\Mozilla\Firefox\Profiles\afv3cd5n.default\searchplugins\icqplugin-2.xml
M3 - MFPP: Plugins - [Lucinka] -- C:\Users\Lucinka\AppData\Roaming\Mozilla\Firefox\Profiles\afv3cd5n.default\searchplugins\icqplugin-3.xml
M3 - MFPP: Plugins - [Lucinka] -- C:\Users\Lucinka\AppData\Roaming\Mozilla\Firefox\Profiles\afv3cd5n.default\searchplugins\icqplugin-4.xml
M3 - MFPP: Plugins - [Lucinka] -- C:\Users\Lucinka\AppData\Roaming\Mozilla\Firefox\Profiles\afv3cd5n.default\searchplugins\icqplugin-5.xml
M3 - MFPP: Plugins - [Lucinka] -- C:\Users\Lucinka\AppData\Roaming\Mozilla\Firefox\Profiles\afv3cd5n.default\searchplugins\icqplugin-6.xml
M3 - MFPP: Plugins - [Lucinka] -- C:\Users\Lucinka\AppData\Roaming\Mozilla\Firefox\Profiles\afv3cd5n.default\searchplugins\icqplugin-7.xml
M3 - MFPP: Plugins - [Lucinka] -- C:\Users\Lucinka\AppData\Roaming\Mozilla\Firefox\Profiles\afv3cd5n.default\searchplugins\icqplugin-8.xml
M3 - MFPP: Plugins - [Lucinka] -- C:\Users\Lucinka\AppData\Roaming\Mozilla\Firefox\Profiles\afv3cd5n.default\searchplugins\icqplugin-9.xml
M3 - MFPP: Plugins - [Lucinka] -- C:\Users\Lucinka\AppData\Roaming\Mozilla\Firefox\Profiles\afv3cd5n.default\searchplugins\icqplugin.xml
M3 - MFPP: Plugins - [Lucinka] -- C:\Program Files\Mozilla FireFox\searchplugins\google.xml
M3 - MFPP: Plugins - [Lucinka] -- C:\Program Files\Mozilla FireFox\searchplugins\heureka-cz.xml
M3 - MFPP: Plugins - [Lucinka] -- C:\Program Files\Mozilla FireFox\searchplugins\jyxo-cz.xml
M3 - MFPP: Plugins - [Lucinka] -- C:\Program Files\Mozilla FireFox\searchplugins\seznam-cz.xml
M3 - MFPP: Plugins - [Lucinka] -- C:\Program Files\Mozilla FireFox\searchplugins\slunecnice-cz.xml
M3 - MFPP: Plugins - [Lucinka] -- C:\Program Files\Mozilla FireFox\searchplugins\wikipedia-cz.xml
M0 - MFSP: prefs.js [Lucinka - afv3cd5n.default] www.seznam.cz
M2 - MFEP: prefs.js [Lucinka - afv3cd5n.default\{20a82645-c095-46ed-80e3-08825760534b}] [MicrosoftCG] Microsoft .NET Framework Assistant v1.2.1 (.Microsoft.)
M2 - MFEP: prefs.js [Lucinka - afv3cd5n.default\{800b5000-a755-47e1-992b-48a1c1357f07}] [] ICQ Toolbar v1.2.1 (.Microsoft.)
P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - np-mswmp.) -- C:\Program Files\Mozilla Firefox\Plugins\np-mswmp.dll
P2 - FPN:Firefox Plugin Navigator . (.Sun Microsystems, Inc. - NPRuntime Script Plug-in Library for Java(TM) Deploy.) -- C:\Program Files\Mozilla Firefox\Plugins\npdeployJava1.dll
P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape "9.5.1".) -- C:\Program Files\Mozilla Firefox\Plugins\nppdf32.dll
P2 - FPN:Firefox Plugin Navigator . (.RealNetworks, Inc. - RealPlayer(tm) LiveConnect-Enabled Plug-In.) -- C:\Program Files\Mozilla Firefox\Plugins\nppl3260.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin2.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin3.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin4.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin5.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin6.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin7.dll
P2 - FPN:Firefox Plugin Navigator . (.RealNetworks, Inc. - RealJukebox Netscape Plugin.) -- C:\Program Files\Mozilla Firefox\Plugins\nprjplug.dll
P2 - FPN:Firefox Plugin Navigator . (.RealPlayer - RealPlayer Download Plugin.) -- C:\Program Files\Mozilla Firefox\Plugins\nprpplugin.dll
~ Scan Firefox Browser in 00mn 00s
---\\ Internet Explorer Extensions, Start, Search (R4,R3,R0,R1)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.centrum.cz
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.RealPlayer - RealPlayer Download Plugin.) (No version) -- (.not file.)
R4 - HKCU\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,Enabled = 2
~ Scan IE Browser in 00mn 00s
---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Scan Proxy management in 00mn 00s
---\\ Hosts file redirection (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Scan Hosts File in 00mn 00s
~ Nombre de lignes (Lines number): 0
---\\ Auto loading programs from Registry and folders (O4)
O4 - HKCU\..\Run: [PC Suite Tray] . (.Nokia - Nokia Launch Application.) -- C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe
O4 - HKCU\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe
O4 - HKUS\S-1-5-21-1116206244-830157978-162234285-1006\..\Run: [PC Suite Tray] . (.Nokia - Nokia Launch Application.) -- C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe
O4 - HKUS\S-1-5-21-1116206244-830157978-162234285-1006\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe
~ Scan Application in 00mn 00s
---\\ Other User Links (O4)
O4 - Global Startup: C:\Users\Lucinka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Media Player\wmplayer.exe
O4 - Global Startup: C:\Users\Lucinka\Desktop\Documents.lnk . (...) -- C:\Users\Lucinka\Documents
O4 - Global Startup: C:\Users\Lucinka\Desktop\iShutdown.lnk . (.iProjects.) -- C:\Program Files\iProjects\iShutdown\iShutdown.exe
O4 - Global Startup: C:\Users\Lucinka\Desktop\Nero Burning ROM.lnk . (.Nero AG.) -- C:\Program Files\Nero\Nero Burning ROM\nero.exe
O4 - Global Startup: C:\Users\Lucinka\Desktop\Nike+ Utility – zástupce.lnk . (...) -- C:\Program Files\Nike+ Utility\Nike+ Utility.exe
O4 - Global Startup: C:\Users\Lucinka\Desktop\OpenOffice Writer.lnk . (.OpenOffice.org.) -- C:\Program Files\OpenOffice.org 3\program\swriter.exe
O4 - Global Startup: C:\Users\Lucinka\Desktop\Spider Solitaire.lnk - Orphean Key
O4 - Global Startup: C:\Users\Lucinka\Desktop\Stažené soubory.lnk . (...) -- C:\Users\Lucinka\Downloads
O4 - Global Startup: C:\Users\Lucinka\Desktop\The Rosetta Stone.lnk . (.Macromedia, Inc..) -- C:\Program Files\The Rosetta Stone\The Rosetta Stone\TheRosettaStone.exe
O4 - Global Startup: C:\Users\Lucinka\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk . (.Mozilla Corporation.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O4 - Global Startup: C:\Users\Lucinka\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Media Player\wmplayer.exe
~ Scan Global Startup in 00mn 00s
---\\ Extra items in the IE right-click menu (O8)
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - (.not file.) - C:\Program Files\MICROS~2\Office12\EXCEL.exe
O8 - Extra context menu item: Google Sidewiki... - (.not file.) - C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll
~ Scan IE Menu Contextuel in 00mn 00s
---\\ Windows Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - C:\Program Files\Microsoft Office\Office12\WINWORD.exe (.not file.)
~ Scan Desktop Component in 00mn 00s
---\\ Task Planned Automatically(039)
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
[MD5.2B1FDA9F78EC4B7725722F6450D2B75C] [APT] [HP Health Check] (.Hewlett-Packard.) -- C:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe
[MD5.D412AC27FE3C9F8BC19741DAC0E0329D] [APT] [RealUpgradeLogonTaskS-1-5-21-1116206244-830157978-162234285-1006] (.RealNetworks, Inc..) -- C:\Program Files\Real\RealUpgrade\RealUpgrade.exe
[MD5.D412AC27FE3C9F8BC19741DAC0E0329D] [APT] [RealUpgradeScheduledTaskS-1-5-21-1116206244-830157978-162234285-1006] (.RealNetworks, Inc..) -- C:\Program Files\Real\RealUpgrade\RealUpgrade.exe
[MD5.00000000000000000000000000000000] [APT] [{0B15B0B5-173D-448B-96D9-3F9FC72417BE}] (...) -- c:\program files\mozilla firefox\firefox.exestalled;madedefault (.not file.)
[MD5.4F69AABB5D82AA4EF6DFF7871212ADF6] [APT] [{57CF6D70-ECB6-4CAC-9256-587062EAE306}] (.Mozilla Corporation.) -- c:\program files\mozilla firefox\firefox.exe
[MD5.00000000000000000000000000000000] [APT] [{950575D4-F993-413C-AF97-CCEFCFBD05A8}] (...) -- c:\program files\mozilla firefox\firefox.exeotdefaultbrowser2égoogle-chrome:notoffered;alreadyoffered (.not file.)
[MD5.B6080F3A1CA495190D1583C2202CAA61] [APT] [{959EC315-25EB-4D2C-ACF5-2201D2999C08}] (.Skype Technologies S.A..) -- C:\Program Files\Skype\Phone\Skype.exe
[MD5.7BBDDBD005C9D69B82ED1DDDD1A6C944] [APT] [{C5AA5EE8-E670-4DA4-AC72-4635A3209CC6}] (.InstallShield Software Corporation.) -- C:\Windows\IsUninst.exe
[MD5.00000000000000000000000000000000] [APT] [Seagate 2GH5T1F0 Product Registration (Lucinka)] (...) -- C:\Users\Lucinka\AppData\Roaming\Leadertech\PowerRegister\Seagate 2GH5T1F0 Product Registration.exe (.not file.)
~ Scan Scheduled Task in 00mn 03s
---\\ ActiveSetup Installed Components (O40) (None)
---\\ Contents of the Common Files folders (O43)
O43 - CFD: 5.6.2007 - 4:48:31 - [11,601] ----D C:\Program Files\Activation Assistant for the 2007 Microsoft Office suites
O43 - CFD: 23.1.2012 - 0:42:02 - [151,768] ----D C:\Program Files\Adobe
O43 - CFD: 14.10.2010 - 22:03:33 - [213,034] ----D C:\Program Files\Alwil Software
O43 - CFD: 4.7.2009 - 22:47:53 - [2,118] ----D C:\Program Files\Apple Software Update
O43 - CFD: 27.5.2012 - 13:21:24 - [4,639] ----D C:\Program Files\CCleaner
O43 - CFD: 21.5.2012 - 11:38:59 - [239,803] ----D C:\Program Files\Common Files
O43 - CFD: 24.5.2008 - 3:01:24 - [1,734] ----D C:\Program Files\CONEXANT
O43 - CFD: 9.8.2009 - 20:40:10 - [1,522] ----D C:\Program Files\DIFX
O43 - CFD: 30.7.2011 - 15:25:25 - [13,382] ----D C:\Program Files\GetMore
O43 - CFD: 23.1.2012 - 1:04:37 - [6,087] ----D C:\Program Files\Google
O43 - CFD: 30.7.2011 - 15:25:04 - [15,900] ----D C:\Program Files\Help
O43 - CFD: 23.1.2012 - 10:57:37 - [231,582] ----D C:\Program Files\Hewlett-Packard
O43 - CFD: 15.7.2010 - 0:54:48 - [2,976] ----D C:\Program Files\Hp
O43 - CFD: 12.7.2009 - 23:18:28 - [16,047] ----D C:\Program Files\ICQ6
O43 - CFD: 12.9.2011 - 15:56:58 - [0] ----D C:\Program Files\ICQ6.5
O43 - CFD: 12.9.2011 - 15:56:59 - [1,595] ----D C:\Program Files\ICQ6Toolbar
O43 - CFD: 17.10.2011 - 11:28:02 - [62,031] ----D C:\Program Files\ICQ7.5
O43 - CFD: 27.10.2010 - 0:22:44 - [0,011] ----D C:\Program Files\ICQToolbar
O43 - CFD: 12.9.2011 - 15:56:58 - [38,470] --H-D C:\Program Files\InstallShield Installation Information
O43 - CFD: 6.5.2012 - 14:15:27 - [2,579] ----D C:\Program Files\Internet Explorer
O43 - CFD: 8.2.2008 - 19:45:20 - [1,382] ----D C:\Program Files\iProjects
O43 - CFD: 18.9.2011 - 12:27:05 - [241,332] ----D C:\Program Files\Java
O43 - CFD: 1.1.2008 - 15:00:51 - [19,778] ----D C:\Program Files\K-Lite Codec Pack
O43 - CFD: 14.7.2010 - 19:09:44 - [0] ----D C:\Program Files\Lavasoft
O43 - CFD: 18.9.2011 - 12:31:50 - [125,093] ----D C:\Program Files\Logitech
O43 - CFD: 2.11.2006 - 14:35:51 - [44,740] ----D C:\Program Files\Microsoft Games
O43 - CFD: 25.10.2011 - 22:59:24 - [36,633] ----D C:\Program Files\Microsoft Silverlight
O43 - CFD: 23.1.2012 - 1:07:23 - [28,444] ----D C:\Program Files\Microsoft Small Business
O43 - CFD: 5.6.2007 - 4:45:11 - [36,895] ----D C:\Program Files\Microsoft SQL Server
O43 - CFD: 23.1.2012 - 1:00:51 - [1,062] ----D C:\Program Files\Microsoft.NET
O43 - CFD: 22.8.2010 - 2:11:39 - [19,474] ----D C:\Program Files\Movie Maker
O43 - CFD: 6.5.2012 - 13:48:25 - [42,524] ----D C:\Program Files\Mozilla Firefox
O43 - CFD: 6.5.2012 - 13:48:31 - [0,210] ----D C:\Program Files\Mozilla Maintenance Service
O43 - CFD: 2.11.2006 - 14:35:51 - [0,025] ----D C:\Program Files\MSBuild
O43 - CFD: 13.12.2007 - 4:01:23 - [0] ----D C:\Program Files\MSXML 4.0
O43 - CFD: 8.8.2010 - 19:26:42 - [23,141] ----D C:\Program Files\Nero
O43 - CFD: 22.3.2009 - 23:19:45 - [10,953] ----D C:\Program Files\Nike+ Utility
O43 - CFD: 23.1.2012 - 1:06:37 - [45,730] ----D C:\Program Files\Nokia
O43 - CFD: 14.7.2010 - 20:19:49 - [25,828] ----D C:\Program Files\O2
O43 - CFD: 26.1.2011 - 12:33:50 - [330,154] ----D C:\Program Files\OpenOffice.org 3
O43 - CFD: 9.8.2009 - 20:39:40 - [12,143] ----D C:\Program Files\PC Connectivity Solution
O43 - CFD: 4.7.2009 - 22:51:37 - [73,621] ----D C:\Program Files\QuickTime
O43 - CFD: 21.5.2012 - 11:39:03 - [90,641] ----D C:\Program Files\Real
O43 - CFD: 2.11.2006 - 14:35:51 - [36,783] ----D C:\Program Files\Reference Assemblies
O43 - CFD: 5.6.2007 - 4:52:36 - [15,438] ----D C:\Program Files\Roxio
O43 - CFD: 12.5.2012 - 17:37:23 - [32,858] R---D C:\Program Files\Skype
O43 - CFD: 5.6.2007 - 4:55:14 - [14,049] ----D C:\Program Files\Synaptics
O43 - CFD: 3.12.2011 - 18:55:53 - [46,970] ----D C:\Program Files\The Rosetta Stone
O43 - CFD: 27.5.2012 - 13:33:52 - [0] ----D C:\Program Files\trend micro
O43 - CFD: 2.11.2006 - 14:58:18 - [0] --H-D C:\Program Files\Uninstall Information
O43 - CFD: 1.1.2008 - 15:01:51 - [80,793] ----D C:\Program Files\VideoLAN
O43 - CFD: 12.7.2009 - 22:46:38 - [0,966] ----D C:\Program Files\Windows Calendar
O43 - CFD: 12.7.2009 - 22:46:37 - [2,603] ----D C:\Program Files\Windows Collaboration
O43 - CFD: 12.7.2009 - 22:46:36 - [4,268] ----D C:\Program Files\Windows Defender
O43 - CFD: 6.5.2012 - 14:53:33 - [8,466] ----D C:\Program Files\Windows Mail
O43 - CFD: 14.10.2010 - 21:50:00 - [4,281] ----D C:\Program Files\Windows Media Player
O43 - CFD: 22.1.2007 - 18:32:41 - [7,585] ----D C:\Program Files\Windows NT
O43 - CFD: 12.7.2009 - 22:46:37 - [7,838] ----D C:\Program Files\Windows Photo Gallery
O43 - CFD: 15.7.2010 - 0:12:17 - [0,128] ----D C:\Program Files\Windows Portable Devices
O43 - CFD: 8.6.2011 - 20:34:26 - [6,409] ----D C:\Program Files\Windows Sidebar
O43 - CFD: 11.2.2008 - 22:18:29 - [3,580] ----D C:\Program Files\WinRAR
O43 - CFD: 21.11.2010 - 16:03:52 - [0,021] ----D C:\Program Files\xp-AntiSpy
O43 - CFD: 27.5.2012 - 14:35:05 - [13,541] ----D C:\Program Files\ZHPDiag
O43 - CFD: 23.1.2012 - 0:42:14 - [6,176] ----D C:\Program Files\Common Files\Adobe
O43 - CFD: 29.11.2007 - 20:30:58 - [8,399] ----D C:\Program Files\Common Files\InstallShield
O43 - CFD: 18.9.2011 - 12:30:35 - [37,811] ----D C:\Program Files\Common Files\Java
O43 - CFD: 30.7.2011 - 23:16:36 - [68,493] ----D C:\Program Files\Common Files\LogiShrd
O43 - CFD: 15.7.2011 - 20:51:12 - [4,999] ----D C:\Program Files\Common Files\LWS
O43 - CFD: 23.1.2012 - 1:00:51 - [10,504] ----D C:\Program Files\Common Files\microsoft shared
O43 - CFD: 8.8.2010 - 19:26:02 - [15,094] ----D C:\Program Files\Common Files\Nero
O43 - CFD: 9.8.2009 - 20:42:08 - [6,937] ----D C:\Program Files\Common Files\Nokia
O43 - CFD: 9.8.2009 - 20:42:15 - [0,084] ----D C:\Program Files\Common Files\PCSuite
O43 - CFD: 5.6.2007 - 4:49:52 - [23,814] ----D C:\Program Files\Common Files\Roxio Shared
O43 - CFD: 2.11.2006 - 13:18:33 - [0,003] ----D C:\Program Files\Common Files\Services
O43 - CFD: 12.5.2012 - 17:37:22 - [2,056] ----D C:\Program Files\Common Files\Skype
O43 - CFD: 5.6.2007 - 4:49:58 - [1,031] ----D C:\Program Files\Common Files\Sonic Shared
O43 - CFD: 2.11.2006 - 13:18:33 - [39,198] ----D C:\Program Files\Common Files\SpeechEngines
O43 - CFD: 5.6.2007 - 4:52:48 - [0,573] ----D C:\Program Files\Common Files\SureThing Shared
O43 - CFD: 23.1.2012 - 10:34:38 - [14,296] ----D C:\Program Files\Common Files\System
O43 - CFD: 21.5.2012 - 11:38:59 - [0,336] ----D C:\Program Files\Common Files\xing shared
O43 - CFD: 23.1.2012 - 0:42:13 - [120,833] ----D C:\ProgramData\Adobe
O43 - CFD: 14.10.2010 - 22:02:26 - [5,188] ----D C:\ProgramData\Alwil Software
O43 - CFD: 4.7.2009 - 22:47:50 - [1,987] ----D C:\ProgramData\Apple
O43 - CFD: 4.7.2009 - 22:50:22 - [26,659] ----D C:\ProgramData\Apple Computer
O43 - CFD: 2.11.2006 - 14:59:44 - [0] --H-D C:\ProgramData\Application Data
O43 - CFD: 22.1.2007 - 18:32:41 - [0] --H-D C:\ProgramData\Data aplikací
O43 - CFD: 2.11.2006 - 14:59:44 - [0] --H-D C:\ProgramData\Desktop
O43 - CFD: 2.11.2006 - 14:59:44 - [0] --H-D C:\ProgramData\Documents
O43 - CFD: 22.1.2007 - 18:32:41 - [0] --H-D C:\ProgramData\Dokumenty
O43 - CFD: 2.11.2006 - 14:59:44 - [0] --H-D C:\ProgramData\Favorites
O43 - CFD: 27.10.2010 - 0:02:04 - [0,936] ----D C:\ProgramData\Google
O43 - CFD: 5.6.2007 - 4:37:16 - [0,000] ----D C:\ProgramData\Hewlett-Packard
O43 - CFD: 12.9.2011 - 15:56:58 - [0,371] ----D C:\ProgramData\ICQ
O43 - CFD: 9.8.2009 - 20:33:23 - [314,948] ----D C:\ProgramData\Installations
O43 - CFD: 18.5.2011 - 21:48:52 - [0,000] ----D C:\ProgramData\Lavasoft
O43 - CFD: 15.7.2011 - 20:57:33 - [0,000] ----D C:\ProgramData\LogiShrd
O43 - CFD: 15.7.2011 - 20:51:20 - [20,162] ----D C:\ProgramData\Logitech
O43 - CFD: 25.10.2011 - 22:59:32 - [7,722] -S--D C:\ProgramData\Microsoft
O43 - CFD: 23.1.2012 - 1:01:17 - [0,057] ----D C:\ProgramData\Microsoft Help
O43 - CFD: 6.5.2012 - 13:48:29 - [0,000] ----D C:\ProgramData\Mozilla
O43 - CFD: 22.1.2007 - 18:32:41 - [0] --H-D C:\ProgramData\Nabídka Start
O43 - CFD: 8.8.2010 - 19:25:56 - [0,030] ----D C:\ProgramData\Nero
O43 - CFD: 22.1.2007 - 18:32:41 - [0] --H-D C:\ProgramData\Oblíbené položky
O43 - CFD: 2.8.2009 - 18:41:16 - [0,232] ----D C:\ProgramData\PC Suite
O43 - CFD: 22.1.2007 - 18:32:41 - [0] --H-D C:\ProgramData\Plocha
O43 - CFD: 21.5.2012 - 11:39:04 - [1,906] ----D C:\ProgramData\Real
O43 - CFD: 12.5.2012 - 17:37:11 - [114,226] ----D C:\ProgramData\Skype
O43 - CFD: 5.6.2007 - 4:50:38 - [0] ----D C:\ProgramData\Sonic
O43 - CFD: 2.11.2006 - 14:59:44 - [0] --H-D C:\ProgramData\Start Menu
O43 - CFD: 14.7.2010 - 22:39:32 - [0,000] ----D C:\ProgramData\Sun
O43 - CFD: 2.11.2006 - 14:59:44 - [0] --H-D C:\ProgramData\Templates
O43 - CFD: 5.6.2007 - 4:48:33 - [5,041] ----D C:\ProgramData\{623D32E9-0C62-4453-AD44-98B31F52A5E1}
O43 - CFD: 22.1.2007 - 18:32:41 - [0] --H-D C:\ProgramData\Šablony
O43 - CFD: 22.4.2008 - 9:06:33 - [8,644] ----D C:\Users\Lucinka\AppData\Roaming\Adobe
O43 - CFD: 7.8.2010 - 23:34:28 - [0,000] ----D C:\Users\Lucinka\AppData\Roaming\dvdcss
O43 - CFD: 8.6.2011 - 20:30:13 - [0,021] ----D C:\Users\Lucinka\AppData\Roaming\GHISLER
O43 - CFD: 29.11.2007 - 22:06:38 - [0] ----D C:\Users\Lucinka\AppData\Roaming\Google
O43 - CFD: 29.11.2007 - 20:35:21 - [0] ----D C:\Users\Lucinka\AppData\Roaming\Hewlett-Packard
O43 - CFD: 27.5.2012 - 12:15:12 - [0,005] ----D C:\Users\Lucinka\AppData\Roaming\HpUpdate
O43 - CFD: 22.5.2012 - 12:31:59 - [32,624] ----D C:\Users\Lucinka\AppData\Roaming\ICQ
O43 - CFD: 1.1.2008 - 15:01:02 - [0] ----D C:\Users\Lucinka\AppData\Roaming\ICQ Toolbar
O43 - CFD: 29.11.2007 - 20:38:28 - [0] ----D C:\Users\Lucinka\AppData\Roaming\Identities
O43 - CFD: 29.11.2007 - 20:31:12 - [0] ----D C:\Users\Lucinka\AppData\Roaming\InstallShield
O43 - CFD: 30.3.2008 - 23:57:08 - [0,005] ----D C:\Users\Lucinka\AppData\Roaming\InterVideo
O43 - CFD: 30.12.2010 - 3:45:29 - [0,051] ----D C:\Users\Lucinka\AppData\Roaming\Leadertech
O43 - CFD: 29.11.2007 - 20:35:23 - [0,001] ----D C:\Users\Lucinka\AppData\Roaming\Macromedia
O43 - CFD: 29.11.2007 - 22:15:22 - [0,000] ----D C:\Users\Lucinka\AppData\Roaming\Media Player Classic
O43 - CFD: 15.7.2011 - 20:52:53 - [1,346] -S--D C:\Users\Lucinka\AppData\Roaming\Microsoft
O43 - CFD: 30.12.2008 - 0:07:32 - [44,951] ----D C:\Users\Lucinka\AppData\Roaming\Mozilla
O43 - CFD: 12.12.2007 - 1:43:21 - [0,184] ----D C:\Users\Lucinka\AppData\Roaming\Nero
O43 - CFD: 1.6.2011 - 1:11:14 - [0,510] ----D C:\Users\Lucinka\AppData\Roaming\Nokia
O43 - CFD: 26.1.2011 - 12:43:54 - [2,034] ----D C:\Users\Lucinka\AppData\Roaming\OpenOffice.org
O43 - CFD: 9.8.2009 - 21:09:59 - [12,576] ----D C:\Users\Lucinka\AppData\Roaming\PC Suite
O43 - CFD: 21.5.2012 - 11:39:34 - [54,422] ----D C:\Users\Lucinka\AppData\Roaming\Real
O43 - CFD: 30.1.2008 - 0:56:37 - [0] ----D C:\Users\Lucinka\AppData\Roaming\SampleView
O43 - CFD: 27.5.2012 - 14:32:32 - [10,799] ----D C:\Users\Lucinka\AppData\Roaming\Skype
O43 - CFD: 15.7.2011 - 22:04:25 - [0,021] ----D C:\Users\Lucinka\AppData\Roaming\skypePM
O43 - CFD: 14.7.2010 - 20:38:26 - [0,311] ----D C:\Users\Lucinka\AppData\Roaming\Telefónica Móviles
O43 - CFD: 19.5.2012 - 17:51:15 - [2,732] ----D C:\Users\Lucinka\AppData\Roaming\vlc
O43 - CFD: 11.2.2008 - 22:20:50 - [0] ----D C:\Users\Lucinka\AppData\Roaming\WinRAR
O43 - CFD: 23.1.2012 - 0:41:17 - [0,527] ----D C:\Users\Lucinka\AppData\Local\Adobe
O43 - CFD: 12.12.2007 - 1:46:24 - [0,052] ----D C:\Users\Lucinka\AppData\Local\Ahead
O43 - CFD: 4.7.2009 - 22:47:56 - [0] ----D C:\Users\Lucinka\AppData\Local\Apple
O43 - CFD: 4.7.2009 - 23:41:10 - [0] ----D C:\Users\Lucinka\AppData\Local\Apple Computer
O43 - CFD: 27.10.2010 - 0:51:41 - [0] ----D C:\Users\Lucinka\AppData\Local\Apps
O43 - CFD: 29.11.2007 - 20:30:23 - [0] ----D C:\Users\Lucinka\AppData\Local\Data aplikací
O43 - CFD: 29.11.2007 - 22:01:21 - [0] ----D C:\Users\Lucinka\AppData\Local\GHISLER
O43 - CFD: 23.1.2012 - 1:04:40 - [0] ----D C:\Users\Lucinka\AppData\Local\Google
O43 - CFD: 29.11.2007 - 20:30:23 - [0] ----D C:\Users\Lucinka\AppData\Local\Historie
O43 - CFD: 15.7.2011 - 20:55:35 - [1,575] ----D C:\Users\Lucinka\AppData\Local\LogiShrd
O43 - CFD: 15.11.2010 - 2:35:26 - [42,737] ----D C:\Users\Lucinka\AppData\Local\Microsoft
O43 - CFD: 16.4.2012 - 15:00:36 - [0,424] ----D C:\Users\Lucinka\AppData\Local\Microsoft Games
O43 - CFD: 26.1.2011 - 13:10:08 - [0,091] ----D C:\Users\Lucinka\AppData\Local\Microsoft Help
O43 - CFD: 30.12.2008 - 0:07:30 - [50,870] ----D C:\Users\Lucinka\AppData\Local\Mozilla
O43 - CFD: 22.3.2009 - 23:29:47 - [0] ----D C:\Users\Lucinka\AppData\Local\Nike
O43 - CFD: 23.1.2011 - 13:54:31 - [0] ----D C:\Users\Lucinka\AppData\Local\Sunbelt Software
O43 - CFD: 27.5.2012 - 14:35:10 - [0,939] ----D C:\Users\Lucinka\AppData\Local\Temp
O43 - CFD: 29.11.2007 - 20:30:23 - [0] ----D C:\Users\Lucinka\AppData\Local\Temporary Internet Files
O43 - CFD: 12.12.2007 - 2:29:59 - [1,540] ----D C:\Users\Lucinka\AppData\Local\VirtualStore
O43 - CFD: 2.11.2006 - 14:51:30 - [0,015] R---D C:\Users\Lucinka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 29.11.2007 - 20:38:39 - [0,000] R---D C:\Users\Lucinka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 24.5.2008 - 11:29:47 - [0,002] ----D C:\Users\Lucinka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CCleaner
O43 - CFD: 2.11.2006 - 14:47:50 - [0,001] R---D C:\Users\Lucinka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 15.5.2012 - 20:30:52 - [0,002] R---D C:\Users\Lucinka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 11.2.2008 - 22:18:29 - [0,002] ----D C:\Users\Lucinka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
~ Scan Program Folder in 00mn 27s
---\\ Last modified or created files under Windows and System32 (O44)
O44 - LFC:[MD5.B4EB68502E52EBDC0B2C55EA3445284C] - 21.5.2012 - 10:38:14 ---A- . (.Progressive Networks - No comment.) -- C:\WINDOWS\System32\pncrt.dll [272896]
O44 - LFC:[MD5.33833B3EDA1B07EBD367FA9B38B23E60] - 21.5.2012 - 10:38:17 ---A- . (.RealNetworks, Inc. - 16 bit DirectX helper DLL.) -- C:\WINDOWS\System32\pndx5016.dll [6656]
O44 - LFC:[MD5.B74E422BC81236042529DC8A42A18423] - 21.5.2012 - 10:38:17 ---A- . (.RealNetworks, Inc. - 32 bit DirectX helper DLL.) -- C:\WINDOWS\System32\pndx5032.dll [5632]
O44 - LFC:[MD5.8A34E2FB21F3E420D224B33EC7D01E24] - 21.5.2012 - 10:38:37 ---A- . (.RealNetworks, Inc. - Real Player(tm) ActiveX Control.) -- C:\WINDOWS\System32\rmoc3260.dll [198832]
O44 - LFC:[MD5.01C47C2ECED034EF6F8C1552A97CFF00] - 27.5.2012 - 11:14:27 ---A- . (...) -- C:\WINDOWS\System32\config.nt [2577]
O44 - LFC:[MD5.8A31FCAAB9A5F8E3CA9B80A66B7BC098] - 27.5.2012 - 12:03:32 ---A- . (...) -- C:\WINDOWS\System32\FNTCACHE.DAT [397400]
O44 - LFC:[MD5.9A888826039555D7EC1D0F944F29AC07] - 27.5.2012 - 12:30:48 -S-A- . (...) -- C:\WINDOWS\bootstat.dat [67584]
O44 - LFC:[MD5.6FA4DD8630FE9981D74E0FC384552ADA] - 27.5.2012 - 12:56:21 ---A- . (...) -- C:\WINDOWS\System32\PerfStringBackup.INI [1602846]
O44 - LFC:[MD5.AE11C098833C0C595C79B82CE310ABD7] - 27.5.2012 - 12:56:21 ---A- . (...) -- C:\WINDOWS\System32\perfc005.dat [144824]
O44 - LFC:[MD5.B06A33CEF28CD44708D0FB594CF86144] - 27.5.2012 - 12:56:21 ---A- . (...) -- C:\WINDOWS\System32\perfc009.dat [129784]
O44 - LFC:[MD5.745AB8E0A72095618A5EDD7D21DED159] - 27.5.2012 - 12:56:21 ---A- . (...) -- C:\WINDOWS\System32\perfh005.dat [675668]
O44 - LFC:[MD5.C6DE441E52306EAD9E6753DA68AB38FE] - 27.5.2012 - 12:56:21 ---A- . (...) -- C:\WINDOWS\System32\perfh009.dat [655726]
O44 - LFC:[MD5.983A77A81D251149D36F57CEED6A65E3] - 27.5.2012 - 12:58:00 ---A- . (...) -- C:\WINDOWS\WindowsUpdate.log [2033026]
O44 - LFC:[MD5.6C52B933B9ACE73D134752B8C077EDDF] - 4.5.2012 - 21:58:31 ---A- . (.Adobe Systems Incorporated - Adobe Flash Player Control Panel Applet.) -- C:\WINDOWS\System32\FlashPlayerApp.exe [419488]
O44 - LFC:[MD5.2C9341C5E30174AD972AFFED9A10D5E3] - 4.5.2012 - 21:58:31 ---A- . (.Adobe Systems Incorporated - Adobe Flash Player Control Panel Applet.) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl [70304]
~ Scan Files in 00mn 47s
---\\ Safe Boot Control (O49) (None)
---\\ MountPoints2 Shell Key (MPKS) (O51)
O51 - MPSK:{34ad4036-6aa7-11df-a60a-001b3836714d}\AutoRun\command. (...) -- G:\setupSNK.exe (.not file.)
O51 - MPSK:{8935b008-8f73-11df-bb84-001b3836714d}\AutoRun\command. (...) -- G:\AutoRun.exe (.not file.)
O51 - MPSK:{e64d03c8-a962-11df-bbef-001b3836714d}\AutoRun\command - Orphean Key
~ Scan Keys in 00mn 00s
---\\ ShareTools MSconfig StartupReg (SMSR) (O53) (None)
---\\ System Drivers List (SDL) (O58)
O58 - SDL:[MD5.2EDC5BBAC6C651ECE337BDE8ED97C9FB] - 2.11.2006 - 10:51:38 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\WINDOWS\System32\Drivers\adp94xx.sys [420968]
O58 - SDL:[MD5.8AAD333C876590293F72B315E162BCC7] - 2.11.2006 - 8:09:42 ---A- . (...) -- C:\WINDOWS\System32\ANSI.SYS [9029]
~ Scan Drivers in 00mn 00s
---\\ List all tools cleaner (LATC) (O63)
O63 - Logiciel: RSIT - (.random/random.)
~ Scan ADS in 00mn 00s
---\\ File Associations Shell Spawning (O67)
O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCR\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
~ Scan Keys in 00mn 00s
---\\ Start Menu Internet (SMI) (O68) (None)
---\\ Search Browser Infection (SBI) (O69)
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (@ieframe.dll,-12512) - http://search.live.com
O69 - SBI: SearchScopes [HKCU] {6552C7DD-90A4-4387-B795-F8F96747DE19} [DefaultScope] - (ICQ Search) - http://search.icq.com
O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (Google) - http://www.google.cz
O69 - SBI: SearchScopes [HKCU] {BE9654C9-9D79-42ec-B55A-3CAEB12DBF58} - (ICQ Search) - http://www.icq.com
~ Scan Keys in 00mn 00s
---\\ Search Svchost Services (SSS) (O83) (None)
---\\ Search Particular Root Folder (SPRF) (O84)
[MD5.78CB383575F1A11F40D16736B37C4213] [SPRF][1.12.2007] (...) -- C:\ProgramData\ezsid.dat [32]
[MD5.5FC784580E5D38FAB223C111F7113E10] [SPRF][24.10.2010] (...) -- C:\ProgramData\ezsidmv.dat [56]
[MD5.CB2D120A4B72422A8141192831B1F500] [SPRF][27.5.2012] (...) -- C:\Users\Lucinka\Desktop\MBRCheck.exe [80384]
[MD5.11B9F1E66EE67F0C765C5895A99755DD] [SPRF][23.1.2012] (...) -- C:\Users\Lucinka\Desktop\vlc-1.1.11-win32.exe [21073936]
~ Scan Files in 00mn 00s
---\\ Additionnal Scan (O88)
Database Version : 9170 - (24/05/2012)
Clés trouvées (Keys found) : 1
Valeurs trouvées (Values found) : 0
Dossiers trouvés (Folders found) : 2
Fichiers trouvés (Files found) : 0
[HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{CD95D125-2992-4858-B3EF-5F6FB52FBAD6}] =>Toolbar.Agent
C:\Program Files\ICQ6Toolbar =>Toolbar.Agent
~ Scan Additionnel in 00mn 14s
End of the scan (507 lines in 01mn 47s)(0)
Děkuji.
Re: Prosím o kontrolu
Omlouvám se ale nějak jsem nepochopila jak vytvořit ten bat soubor. Otevřela jsem si poznamkovy blok, do nej nakopirovala MBRCheck -s 0 -d test0.dat a pote dala ulozit jako soubor.bat (kodovani ANSI). Nis ce po spusteni jako administrator nestalo. Jak mámtento soubor tedy vytvořit?
Re: Prosím o kontrolu
Udělla jsem zbývající.
LOG (po restartu):
MBRCheck, version 1.2.3
(c) 2010, AD
Command-line:
Windows Version: Windows Vista Home Basic Edition
Windows Information: Service Pack 2 (build 6002), 32-bit
Base Board Manufacturer: Hewlett-Packard
BIOS Manufacturer: Hewlett-Packard
System Manufacturer: Hewlett-Packard
System Product Name: HP 530 Notebook PC(GU334AA#AKB)
Logical Drives Mask: 0x0000003c
Kernel Drivers (total 149):
0x8324D000 \SystemRoot\system32\ntkrnlpa.exe
0x8321A000 \SystemRoot\system32\hal.dll
0x8040C000 \SystemRoot\system32\kdcom.dll
0x80413000 \SystemRoot\system32\mcupdate_GenuineIntel.dll
0x80483000 \SystemRoot\system32\PSHED.dll
0x80494000 \SystemRoot\system32\BOOTVID.dll
0x8049C000 \SystemRoot\system32\CLFS.SYS
0x804DD000 \SystemRoot\system32\CI.dll
0x80600000 \SystemRoot\system32\drivers\Wdf01000.sys
0x8067C000 \SystemRoot\system32\drivers\WDFLDR.SYS
0x80689000 \SystemRoot\system32\drivers\acpi.sys
0x806CF000 \SystemRoot\system32\drivers\WMILIB.SYS
0x806D8000 \SystemRoot\system32\drivers\msisadrv.sys
0x806E0000 \SystemRoot\system32\drivers\pci.sys
0x80707000 \SystemRoot\System32\drivers\partmgr.sys
0x80717000 \SystemRoot\system32\DRIVERS\compbatt.sys
0x8071A000 \SystemRoot\system32\DRIVERS\BATTC.SYS
0x80724000 \SystemRoot\system32\drivers\volmgr.sys
0x80733000 \SystemRoot\System32\drivers\volmgrx.sys
0x8077D000 \SystemRoot\system32\drivers\intelide.sys
0x80784000 \SystemRoot\system32\drivers\PCIIDEX.SYS
0x80792000 \SystemRoot\system32\DRIVERS\pcmcia.sys
0x807BF000 \SystemRoot\System32\drivers\mountmgr.sys
0x807CF000 \SystemRoot\system32\drivers\atapi.sys
0x807D7000 \SystemRoot\system32\drivers\ataport.SYS
0x807F5000 \SystemRoot\system32\drivers\msahci.sys
0x805BD000 \SystemRoot\system32\drivers\fltmgr.sys
0x805EF000 \SystemRoot\system32\drivers\fileinfo.sys
0x83C08000 \SystemRoot\system32\DRIVERS\Lbd.sys
0x83C17000 \SystemRoot\System32\Drivers\PxHelp20.sys
0x83C20000 \SystemRoot\System32\Drivers\ksecdd.sys
0x83C92000 \SystemRoot\system32\drivers\ndis.sys
0x83D9D000 \SystemRoot\system32\drivers\msrpc.sys
0x83E0D000 \SystemRoot\system32\drivers\NETIO.SYS
0x83E48000 \SystemRoot\System32\drivers\tcpip.sys
0x83F32000 \SystemRoot\System32\drivers\fwpkclnt.sys
0x89008000 \SystemRoot\System32\Drivers\Ntfs.sys
0x89118000 \SystemRoot\system32\drivers\volsnap.sys
0x89151000 \SystemRoot\System32\Drivers\spldr.sys
0x89159000 \SystemRoot\System32\Drivers\mup.sys
0x89168000 \SystemRoot\System32\drivers\ecache.sys
0x8918F000 \SystemRoot\system32\drivers\disk.sys
0x891A0000 \SystemRoot\system32\drivers\CLASSPNP.SYS
0x891C1000 \SystemRoot\system32\drivers\crcdisk.sys
0x891EC000 \SystemRoot\system32\DRIVERS\tunnel.sys
0x891F7000 \SystemRoot\system32\DRIVERS\tunmp.sys
0x83F4D000 \SystemRoot\system32\DRIVERS\intelppm.sys
0x8CE05000 \SystemRoot\system32\DRIVERS\igdkmd32.sys
0x8D4C0000 \SystemRoot\System32\drivers\dxgkrnl.sys
0x8D560000 \SystemRoot\System32\drivers\watchdog.sys
0x8D56C000 \SystemRoot\system32\DRIVERS\HDAudBus.sys
0x8D60A000 \SystemRoot\system32\DRIVERS\NETw5v32.sys
0x8D993000 \SystemRoot\system32\DRIVERS\usbuhci.sys
0x8D99E000 \SystemRoot\system32\DRIVERS\USBPORT.SYS
0x8D9DC000 \SystemRoot\system32\DRIVERS\usbehci.sys
0x83F5C000 \SystemRoot\system32\DRIVERS\e100b325.sys
0x8D9EB000 \SystemRoot\system32\DRIVERS\i8042prt.sys
0x8D600000 \SystemRoot\system32\DRIVERS\HpqKbFiltr.sys
0x83F83000 \SystemRoot\system32\DRIVERS\kbdclass.sys
0x83F8E000 \SystemRoot\system32\DRIVERS\SynTP.sys
0x8D9FE000 \SystemRoot\system32\DRIVERS\USBD.SYS
0x83FBE000 \SystemRoot\system32\DRIVERS\mouclass.sys
0x83FC9000 \SystemRoot\system32\DRIVERS\cdrom.sys
0x8D5F9000 \SystemRoot\system32\DRIVERS\cpqbttn.sys
0x83FE1000 \SystemRoot\system32\DRIVERS\HIDCLASS.SYS
0x89000000 \SystemRoot\system32\DRIVERS\HIDPARSE.SYS
0x8D5FC000 \SystemRoot\system32\DRIVERS\CmBatt.sys
0x83FF1000 \SystemRoot\system32\DRIVERS\wmiacpi.sys
0x83DC8000 \SystemRoot\system32\DRIVERS\msiscsi.sys
0x8DC09000 \SystemRoot\system32\DRIVERS\storport.sys
0x8DC4A000 \SystemRoot\system32\DRIVERS\TDI.SYS
0x8DC55000 \SystemRoot\system32\DRIVERS\rasl2tp.sys
0x8DC6C000 \SystemRoot\system32\DRIVERS\ndistapi.sys
0x8DC77000 \SystemRoot\system32\DRIVERS\ndiswan.sys
0x8DC9A000 \SystemRoot\system32\DRIVERS\raspppoe.sys
0x8DCA9000 \SystemRoot\system32\DRIVERS\raspptp.sys
0x8DCBD000 \SystemRoot\system32\DRIVERS\rassstp.sys
0x8DCD2000 \SystemRoot\system32\DRIVERS\termdd.sys
0x8DCE2000 \SystemRoot\system32\DRIVERS\swenum.sys
0x8DCE4000 \SystemRoot\system32\DRIVERS\ks.sys
0x8DD0E000 \SystemRoot\system32\DRIVERS\mssmbios.sys
0x8DD18000 \SystemRoot\system32\DRIVERS\umbus.sys
0x8DD25000 \SystemRoot\system32\DRIVERS\usbhub.sys
0x8DD5A000 \SystemRoot\system32\DRIVERS\kbdhid.sys
0x8DD63000 \SystemRoot\System32\Drivers\NDProxy.SYS
0x8DD74000 \SystemRoot\system32\drivers\CHDRT32.sys
0x8DDA7000 \SystemRoot\system32\drivers\portcls.sys
0x8DDD4000 \SystemRoot\system32\drivers\drmk.sys
0x8E00D000 \SystemRoot\system32\DRIVERS\HSXHWAZL.sys
0x8E04B000 \SystemRoot\system32\DRIVERS\HSX_DPV.sys
0x8E209000 \SystemRoot\system32\DRIVERS\HSX_CNXT.sys
0x8E2BE000 \SystemRoot\system32\drivers\modem.sys
0x8E2CB000 \SystemRoot\System32\Drivers\aswSnx.SYS
0x8E365000 \SystemRoot\System32\Drivers\Fs_Rec.SYS
0x8E36E000 \SystemRoot\System32\Drivers\Null.SYS
0x8E375000 \SystemRoot\System32\Drivers\Beep.SYS
0x8E37C000 \SystemRoot\System32\drivers\vga.sys
0x8E388000 \SystemRoot\System32\drivers\VIDEOPRT.SYS
0x8E3A9000 \SystemRoot\System32\DRIVERS\RDPCDD.sys
0x8E3B1000 \SystemRoot\system32\drivers\rdpencdd.sys
0x8E3B9000 \SystemRoot\System32\Drivers\Msfs.SYS
0x8E3C4000 \SystemRoot\System32\Drivers\Npfs.SYS
0x8E3D2000 \SystemRoot\System32\DRIVERS\rasacd.sys
0x8E3DB000 \SystemRoot\system32\DRIVERS\tdx.sys
0x8E3F1000 \SystemRoot\System32\Drivers\aswTdi.SYS
0x8E14E000 \SystemRoot\system32\DRIVERS\smb.sys
0x8E162000 \SystemRoot\system32\drivers\afd.sys
0x8E200000 \SystemRoot\System32\Drivers\aswRdr.SYS
0x8E1AA000 \SystemRoot\System32\DRIVERS\netbt.sys
0x8E1DC000 \SystemRoot\system32\DRIVERS\pacer.sys
0x8E1F2000 \SystemRoot\system32\DRIVERS\netbios.sys
0x8E80D000 \SystemRoot\system32\DRIVERS\wanarp.sys
0x8E820000 \SystemRoot\system32\DRIVERS\rdbss.sys
0x8E85C000 \SystemRoot\system32\drivers\nsiproxy.sys
0x8E866000 \SystemRoot\System32\Drivers\dfsc.sys
0x8E87D000 \SystemRoot\System32\Drivers\aswSP.SYS
0x8E8CE000 \SystemRoot\system32\DRIVERS\cdfs.sys
0x8E8E4000 \SystemRoot\System32\Drivers\crashdmp.sys
0x8E8F1000 \SystemRoot\System32\Drivers\dump_dumpata.sys
0x8E8FC000 \SystemRoot\System32\Drivers\dump_msahci.sys
0x97AF0000 \SystemRoot\System32\win32k.sys
0x8E906000 \SystemRoot\System32\drivers\Dxapi.sys
0x8E910000 \SystemRoot\system32\DRIVERS\monitor.sys
0x97D10000 \SystemRoot\System32\TSDDD.dll
0x97D30000 \SystemRoot\System32\cdd.dll
0x8E91F000 \SystemRoot\system32\drivers\luafv.sys
0x8E93A000 \??\C:\Windows\system32\drivers\aswMonFlt.sys
0x8E96D000 \SystemRoot\System32\Drivers\aswFsBlk.SYS
0xA9800000 \SystemRoot\system32\drivers\spsys.sys
0xA98B0000 \SystemRoot\system32\DRIVERS\lltdio.sys
0xA98C0000 \SystemRoot\system32\DRIVERS\nwifi.sys
0xA98EA000 \SystemRoot\system32\DRIVERS\ndisuio.sys
0xA98F4000 \SystemRoot\system32\DRIVERS\rspndr.sys
0xA9907000 \SystemRoot\system32\drivers\HTTP.sys
0xA9974000 \SystemRoot\System32\DRIVERS\srvnet.sys
0xA9991000 \SystemRoot\system32\DRIVERS\bowser.sys
0xA99AA000 \SystemRoot\System32\drivers\mpsdrv.sys
0xA99BF000 \SystemRoot\system32\drivers\mrxdav.sys
0xA99E0000 \SystemRoot\system32\DRIVERS\mrxsmb.sys
0x8E978000 \SystemRoot\system32\DRIVERS\mrxsmb10.sys
0x8E9B1000 \SystemRoot\system32\DRIVERS\mrxsmb20.sys
0x8E9C9000 \SystemRoot\System32\DRIVERS\srv2.sys
0xAB007000 \SystemRoot\System32\DRIVERS\srv.sys
0xAB056000 \SystemRoot\system32\DRIVERS\mdmxsdk.sys
0xAB05A000 \SystemRoot\system32\drivers\peauth.sys
0xAB138000 \SystemRoot\System32\Drivers\secdrv.SYS
0xAB142000 \SystemRoot\System32\drivers\tcpipreg.sys
0xAB14E000 \SystemRoot\system32\DRIVERS\xaudio.sys
0x77D70000 \WINDOWS\System32\ntdll.dll
Processes (total 69):
0 System Idle Process
4 System
440 C:\WINDOWS\System32\smss.exe
572 csrss.exe
616 C:\WINDOWS\System32\wininit.exe
628 csrss.exe
660 C:\WINDOWS\System32\services.exe
672 C:\WINDOWS\System32\lsass.exe
684 C:\WINDOWS\System32\lsm.exe
760 C:\WINDOWS\System32\winlogon.exe
884 C:\WINDOWS\System32\svchost.exe
964 C:\WINDOWS\System32\svchost.exe
1028 C:\WINDOWS\System32\svchost.exe
1104 C:\WINDOWS\System32\svchost.exe
1180 C:\WINDOWS\System32\svchost.exe
1192 C:\WINDOWS\System32\svchost.exe
1248 C:\Program Files\Common Files\LogiShrd\LVMVFM\UMVPFSrv.exe
1284 C:\WINDOWS\System32\audiodg.exe
1316 C:\WINDOWS\System32\SLsvc.exe
1344 C:\WINDOWS\System32\svchost.exe
1540 C:\WINDOWS\System32\svchost.exe
1652 C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
1776 C:\WINDOWS\System32\spoolsv.exe
1800 C:\WINDOWS\System32\svchost.exe
1968 C:\WINDOWS\System32\svchost.exe
2012 C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe
1424 C:\WINDOWS\System32\svchost.exe
2052 C:\WINDOWS\System32\svchost.exe
2112 C:\WINDOWS\System32\SearchIndexer.exe
2264 C:\WINDOWS\System32\drivers\XAudio.exe
2712 C:\WINDOWS\System32\dwm.exe
2736 C:\WINDOWS\explorer.exe
2852 C:\WINDOWS\System32\taskeng.exe
2872 C:\WINDOWS\System32\mobsync.exe
2916 C:\Program Files\Windows Defender\MSASCui.exe
2924 C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
3052 C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe
3276 C:\WINDOWS\System32\igfxtray.exe
3320 C:\WINDOWS\System32\hkcmd.exe
3392 C:\WINDOWS\System32\igfxpers.exe
3440 C:\Program Files\Hp\HP Software Update\hpwuschd2.exe
3452 C:\Program Files\Alwil Software\Avast5\AvastUI.exe
3536 C:\Program Files\Logitech\LWS\Webcam Software\LWS.exe
3544 C:\WINDOWS\System32\igfxsrvc.exe
3572 C:\Program Files\Common Files\Java\Java Update\jusched.exe
3644 C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCtrl.exe
3664 C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
3688 C:\Program Files\Real\RealPlayer\Update\realsched.exe
3708 C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe
3716 C:\Program Files\Skype\Phone\Skype.exe
3728 C:\Program Files\Nike+ Utility\Nike+ Utility.exe
4016 C:\WINDOWS\System32\wbem\unsecapp.exe
4040 WmiPrvSE.exe
4052 C:\Program Files\OpenOffice.org 3\program\soffice.exe
4072 C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe
1484 C:\Program Files\Hewlett-Packard\Shared\HpqToaster.exe
2960 C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\VolCtrl.exe
1112 C:\Program Files\Logitech\LWS\Webcam Software\CameraHelperShell.exe
1164 C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
3004 C:\Program Files\Common Files\LogiShrd\LQCVFX\COCIManager.exe
2884 C:\WINDOWS\System32\svchost.exe
3980 C:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Service.exe
2368 C:\Program Files\OpenOffice.org 3\program\soffice.bin
3272 C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
3872 C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe
3620 C:\Program Files\PC Connectivity Solution\Transports\NclRSSrv.exe
456 C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
4200 C:\Users\Lucinka\Desktop\MBRCheck.exe
4220 C:\WINDOWS\System32\conime.exe
\\.\C: --> \\.\PhysicalDrive0 at offset 0x00000000`00007e00 (NTFS)
\\.\D: --> \\.\PhysicalDrive0 at offset 0x00000010`80c00000 (NTFS)
\\.\E: --> \\.\PhysicalDrive0 at offset 0x00000012`3e800000 (NTFS)
PhysicalDrive0 Model Number: HitachiHTS541680J9SA00, Rev: SB2OC7BP
Size Device Name MBR Status
--------------------------------------------
74 GB \\.\PhysicalDrive0 Unknown MBR code
SHA1: EB7CE789D51018A66429CB7718140C51E386BF30
Found non-standard or infected MBR.
Enter 'Y' and hit ENTER for more options, or 'N' to exit:
Done!
LOG (po restartu):
MBRCheck, version 1.2.3
(c) 2010, AD
Command-line:
Windows Version: Windows Vista Home Basic Edition
Windows Information: Service Pack 2 (build 6002), 32-bit
Base Board Manufacturer: Hewlett-Packard
BIOS Manufacturer: Hewlett-Packard
System Manufacturer: Hewlett-Packard
System Product Name: HP 530 Notebook PC(GU334AA#AKB)
Logical Drives Mask: 0x0000003c
Kernel Drivers (total 149):
0x8324D000 \SystemRoot\system32\ntkrnlpa.exe
0x8321A000 \SystemRoot\system32\hal.dll
0x8040C000 \SystemRoot\system32\kdcom.dll
0x80413000 \SystemRoot\system32\mcupdate_GenuineIntel.dll
0x80483000 \SystemRoot\system32\PSHED.dll
0x80494000 \SystemRoot\system32\BOOTVID.dll
0x8049C000 \SystemRoot\system32\CLFS.SYS
0x804DD000 \SystemRoot\system32\CI.dll
0x80600000 \SystemRoot\system32\drivers\Wdf01000.sys
0x8067C000 \SystemRoot\system32\drivers\WDFLDR.SYS
0x80689000 \SystemRoot\system32\drivers\acpi.sys
0x806CF000 \SystemRoot\system32\drivers\WMILIB.SYS
0x806D8000 \SystemRoot\system32\drivers\msisadrv.sys
0x806E0000 \SystemRoot\system32\drivers\pci.sys
0x80707000 \SystemRoot\System32\drivers\partmgr.sys
0x80717000 \SystemRoot\system32\DRIVERS\compbatt.sys
0x8071A000 \SystemRoot\system32\DRIVERS\BATTC.SYS
0x80724000 \SystemRoot\system32\drivers\volmgr.sys
0x80733000 \SystemRoot\System32\drivers\volmgrx.sys
0x8077D000 \SystemRoot\system32\drivers\intelide.sys
0x80784000 \SystemRoot\system32\drivers\PCIIDEX.SYS
0x80792000 \SystemRoot\system32\DRIVERS\pcmcia.sys
0x807BF000 \SystemRoot\System32\drivers\mountmgr.sys
0x807CF000 \SystemRoot\system32\drivers\atapi.sys
0x807D7000 \SystemRoot\system32\drivers\ataport.SYS
0x807F5000 \SystemRoot\system32\drivers\msahci.sys
0x805BD000 \SystemRoot\system32\drivers\fltmgr.sys
0x805EF000 \SystemRoot\system32\drivers\fileinfo.sys
0x83C08000 \SystemRoot\system32\DRIVERS\Lbd.sys
0x83C17000 \SystemRoot\System32\Drivers\PxHelp20.sys
0x83C20000 \SystemRoot\System32\Drivers\ksecdd.sys
0x83C92000 \SystemRoot\system32\drivers\ndis.sys
0x83D9D000 \SystemRoot\system32\drivers\msrpc.sys
0x83E0D000 \SystemRoot\system32\drivers\NETIO.SYS
0x83E48000 \SystemRoot\System32\drivers\tcpip.sys
0x83F32000 \SystemRoot\System32\drivers\fwpkclnt.sys
0x89008000 \SystemRoot\System32\Drivers\Ntfs.sys
0x89118000 \SystemRoot\system32\drivers\volsnap.sys
0x89151000 \SystemRoot\System32\Drivers\spldr.sys
0x89159000 \SystemRoot\System32\Drivers\mup.sys
0x89168000 \SystemRoot\System32\drivers\ecache.sys
0x8918F000 \SystemRoot\system32\drivers\disk.sys
0x891A0000 \SystemRoot\system32\drivers\CLASSPNP.SYS
0x891C1000 \SystemRoot\system32\drivers\crcdisk.sys
0x891EC000 \SystemRoot\system32\DRIVERS\tunnel.sys
0x891F7000 \SystemRoot\system32\DRIVERS\tunmp.sys
0x83F4D000 \SystemRoot\system32\DRIVERS\intelppm.sys
0x8CE05000 \SystemRoot\system32\DRIVERS\igdkmd32.sys
0x8D4C0000 \SystemRoot\System32\drivers\dxgkrnl.sys
0x8D560000 \SystemRoot\System32\drivers\watchdog.sys
0x8D56C000 \SystemRoot\system32\DRIVERS\HDAudBus.sys
0x8D60A000 \SystemRoot\system32\DRIVERS\NETw5v32.sys
0x8D993000 \SystemRoot\system32\DRIVERS\usbuhci.sys
0x8D99E000 \SystemRoot\system32\DRIVERS\USBPORT.SYS
0x8D9DC000 \SystemRoot\system32\DRIVERS\usbehci.sys
0x83F5C000 \SystemRoot\system32\DRIVERS\e100b325.sys
0x8D9EB000 \SystemRoot\system32\DRIVERS\i8042prt.sys
0x8D600000 \SystemRoot\system32\DRIVERS\HpqKbFiltr.sys
0x83F83000 \SystemRoot\system32\DRIVERS\kbdclass.sys
0x83F8E000 \SystemRoot\system32\DRIVERS\SynTP.sys
0x8D9FE000 \SystemRoot\system32\DRIVERS\USBD.SYS
0x83FBE000 \SystemRoot\system32\DRIVERS\mouclass.sys
0x83FC9000 \SystemRoot\system32\DRIVERS\cdrom.sys
0x8D5F9000 \SystemRoot\system32\DRIVERS\cpqbttn.sys
0x83FE1000 \SystemRoot\system32\DRIVERS\HIDCLASS.SYS
0x89000000 \SystemRoot\system32\DRIVERS\HIDPARSE.SYS
0x8D5FC000 \SystemRoot\system32\DRIVERS\CmBatt.sys
0x83FF1000 \SystemRoot\system32\DRIVERS\wmiacpi.sys
0x83DC8000 \SystemRoot\system32\DRIVERS\msiscsi.sys
0x8DC09000 \SystemRoot\system32\DRIVERS\storport.sys
0x8DC4A000 \SystemRoot\system32\DRIVERS\TDI.SYS
0x8DC55000 \SystemRoot\system32\DRIVERS\rasl2tp.sys
0x8DC6C000 \SystemRoot\system32\DRIVERS\ndistapi.sys
0x8DC77000 \SystemRoot\system32\DRIVERS\ndiswan.sys
0x8DC9A000 \SystemRoot\system32\DRIVERS\raspppoe.sys
0x8DCA9000 \SystemRoot\system32\DRIVERS\raspptp.sys
0x8DCBD000 \SystemRoot\system32\DRIVERS\rassstp.sys
0x8DCD2000 \SystemRoot\system32\DRIVERS\termdd.sys
0x8DCE2000 \SystemRoot\system32\DRIVERS\swenum.sys
0x8DCE4000 \SystemRoot\system32\DRIVERS\ks.sys
0x8DD0E000 \SystemRoot\system32\DRIVERS\mssmbios.sys
0x8DD18000 \SystemRoot\system32\DRIVERS\umbus.sys
0x8DD25000 \SystemRoot\system32\DRIVERS\usbhub.sys
0x8DD5A000 \SystemRoot\system32\DRIVERS\kbdhid.sys
0x8DD63000 \SystemRoot\System32\Drivers\NDProxy.SYS
0x8DD74000 \SystemRoot\system32\drivers\CHDRT32.sys
0x8DDA7000 \SystemRoot\system32\drivers\portcls.sys
0x8DDD4000 \SystemRoot\system32\drivers\drmk.sys
0x8E00D000 \SystemRoot\system32\DRIVERS\HSXHWAZL.sys
0x8E04B000 \SystemRoot\system32\DRIVERS\HSX_DPV.sys
0x8E209000 \SystemRoot\system32\DRIVERS\HSX_CNXT.sys
0x8E2BE000 \SystemRoot\system32\drivers\modem.sys
0x8E2CB000 \SystemRoot\System32\Drivers\aswSnx.SYS
0x8E365000 \SystemRoot\System32\Drivers\Fs_Rec.SYS
0x8E36E000 \SystemRoot\System32\Drivers\Null.SYS
0x8E375000 \SystemRoot\System32\Drivers\Beep.SYS
0x8E37C000 \SystemRoot\System32\drivers\vga.sys
0x8E388000 \SystemRoot\System32\drivers\VIDEOPRT.SYS
0x8E3A9000 \SystemRoot\System32\DRIVERS\RDPCDD.sys
0x8E3B1000 \SystemRoot\system32\drivers\rdpencdd.sys
0x8E3B9000 \SystemRoot\System32\Drivers\Msfs.SYS
0x8E3C4000 \SystemRoot\System32\Drivers\Npfs.SYS
0x8E3D2000 \SystemRoot\System32\DRIVERS\rasacd.sys
0x8E3DB000 \SystemRoot\system32\DRIVERS\tdx.sys
0x8E3F1000 \SystemRoot\System32\Drivers\aswTdi.SYS
0x8E14E000 \SystemRoot\system32\DRIVERS\smb.sys
0x8E162000 \SystemRoot\system32\drivers\afd.sys
0x8E200000 \SystemRoot\System32\Drivers\aswRdr.SYS
0x8E1AA000 \SystemRoot\System32\DRIVERS\netbt.sys
0x8E1DC000 \SystemRoot\system32\DRIVERS\pacer.sys
0x8E1F2000 \SystemRoot\system32\DRIVERS\netbios.sys
0x8E80D000 \SystemRoot\system32\DRIVERS\wanarp.sys
0x8E820000 \SystemRoot\system32\DRIVERS\rdbss.sys
0x8E85C000 \SystemRoot\system32\drivers\nsiproxy.sys
0x8E866000 \SystemRoot\System32\Drivers\dfsc.sys
0x8E87D000 \SystemRoot\System32\Drivers\aswSP.SYS
0x8E8CE000 \SystemRoot\system32\DRIVERS\cdfs.sys
0x8E8E4000 \SystemRoot\System32\Drivers\crashdmp.sys
0x8E8F1000 \SystemRoot\System32\Drivers\dump_dumpata.sys
0x8E8FC000 \SystemRoot\System32\Drivers\dump_msahci.sys
0x97AF0000 \SystemRoot\System32\win32k.sys
0x8E906000 \SystemRoot\System32\drivers\Dxapi.sys
0x8E910000 \SystemRoot\system32\DRIVERS\monitor.sys
0x97D10000 \SystemRoot\System32\TSDDD.dll
0x97D30000 \SystemRoot\System32\cdd.dll
0x8E91F000 \SystemRoot\system32\drivers\luafv.sys
0x8E93A000 \??\C:\Windows\system32\drivers\aswMonFlt.sys
0x8E96D000 \SystemRoot\System32\Drivers\aswFsBlk.SYS
0xA9800000 \SystemRoot\system32\drivers\spsys.sys
0xA98B0000 \SystemRoot\system32\DRIVERS\lltdio.sys
0xA98C0000 \SystemRoot\system32\DRIVERS\nwifi.sys
0xA98EA000 \SystemRoot\system32\DRIVERS\ndisuio.sys
0xA98F4000 \SystemRoot\system32\DRIVERS\rspndr.sys
0xA9907000 \SystemRoot\system32\drivers\HTTP.sys
0xA9974000 \SystemRoot\System32\DRIVERS\srvnet.sys
0xA9991000 \SystemRoot\system32\DRIVERS\bowser.sys
0xA99AA000 \SystemRoot\System32\drivers\mpsdrv.sys
0xA99BF000 \SystemRoot\system32\drivers\mrxdav.sys
0xA99E0000 \SystemRoot\system32\DRIVERS\mrxsmb.sys
0x8E978000 \SystemRoot\system32\DRIVERS\mrxsmb10.sys
0x8E9B1000 \SystemRoot\system32\DRIVERS\mrxsmb20.sys
0x8E9C9000 \SystemRoot\System32\DRIVERS\srv2.sys
0xAB007000 \SystemRoot\System32\DRIVERS\srv.sys
0xAB056000 \SystemRoot\system32\DRIVERS\mdmxsdk.sys
0xAB05A000 \SystemRoot\system32\drivers\peauth.sys
0xAB138000 \SystemRoot\System32\Drivers\secdrv.SYS
0xAB142000 \SystemRoot\System32\drivers\tcpipreg.sys
0xAB14E000 \SystemRoot\system32\DRIVERS\xaudio.sys
0x77D70000 \WINDOWS\System32\ntdll.dll
Processes (total 69):
0 System Idle Process
4 System
440 C:\WINDOWS\System32\smss.exe
572 csrss.exe
616 C:\WINDOWS\System32\wininit.exe
628 csrss.exe
660 C:\WINDOWS\System32\services.exe
672 C:\WINDOWS\System32\lsass.exe
684 C:\WINDOWS\System32\lsm.exe
760 C:\WINDOWS\System32\winlogon.exe
884 C:\WINDOWS\System32\svchost.exe
964 C:\WINDOWS\System32\svchost.exe
1028 C:\WINDOWS\System32\svchost.exe
1104 C:\WINDOWS\System32\svchost.exe
1180 C:\WINDOWS\System32\svchost.exe
1192 C:\WINDOWS\System32\svchost.exe
1248 C:\Program Files\Common Files\LogiShrd\LVMVFM\UMVPFSrv.exe
1284 C:\WINDOWS\System32\audiodg.exe
1316 C:\WINDOWS\System32\SLsvc.exe
1344 C:\WINDOWS\System32\svchost.exe
1540 C:\WINDOWS\System32\svchost.exe
1652 C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
1776 C:\WINDOWS\System32\spoolsv.exe
1800 C:\WINDOWS\System32\svchost.exe
1968 C:\WINDOWS\System32\svchost.exe
2012 C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe
1424 C:\WINDOWS\System32\svchost.exe
2052 C:\WINDOWS\System32\svchost.exe
2112 C:\WINDOWS\System32\SearchIndexer.exe
2264 C:\WINDOWS\System32\drivers\XAudio.exe
2712 C:\WINDOWS\System32\dwm.exe
2736 C:\WINDOWS\explorer.exe
2852 C:\WINDOWS\System32\taskeng.exe
2872 C:\WINDOWS\System32\mobsync.exe
2916 C:\Program Files\Windows Defender\MSASCui.exe
2924 C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
3052 C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe
3276 C:\WINDOWS\System32\igfxtray.exe
3320 C:\WINDOWS\System32\hkcmd.exe
3392 C:\WINDOWS\System32\igfxpers.exe
3440 C:\Program Files\Hp\HP Software Update\hpwuschd2.exe
3452 C:\Program Files\Alwil Software\Avast5\AvastUI.exe
3536 C:\Program Files\Logitech\LWS\Webcam Software\LWS.exe
3544 C:\WINDOWS\System32\igfxsrvc.exe
3572 C:\Program Files\Common Files\Java\Java Update\jusched.exe
3644 C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCtrl.exe
3664 C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
3688 C:\Program Files\Real\RealPlayer\Update\realsched.exe
3708 C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe
3716 C:\Program Files\Skype\Phone\Skype.exe
3728 C:\Program Files\Nike+ Utility\Nike+ Utility.exe
4016 C:\WINDOWS\System32\wbem\unsecapp.exe
4040 WmiPrvSE.exe
4052 C:\Program Files\OpenOffice.org 3\program\soffice.exe
4072 C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe
1484 C:\Program Files\Hewlett-Packard\Shared\HpqToaster.exe
2960 C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\VolCtrl.exe
1112 C:\Program Files\Logitech\LWS\Webcam Software\CameraHelperShell.exe
1164 C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
3004 C:\Program Files\Common Files\LogiShrd\LQCVFX\COCIManager.exe
2884 C:\WINDOWS\System32\svchost.exe
3980 C:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Service.exe
2368 C:\Program Files\OpenOffice.org 3\program\soffice.bin
3272 C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
3872 C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe
3620 C:\Program Files\PC Connectivity Solution\Transports\NclRSSrv.exe
456 C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
4200 C:\Users\Lucinka\Desktop\MBRCheck.exe
4220 C:\WINDOWS\System32\conime.exe
\\.\C: --> \\.\PhysicalDrive0 at offset 0x00000000`00007e00 (NTFS)
\\.\D: --> \\.\PhysicalDrive0 at offset 0x00000010`80c00000 (NTFS)
\\.\E: --> \\.\PhysicalDrive0 at offset 0x00000012`3e800000 (NTFS)
PhysicalDrive0 Model Number: HitachiHTS541680J9SA00, Rev: SB2OC7BP
Size Device Name MBR Status
--------------------------------------------
74 GB \\.\PhysicalDrive0 Unknown MBR code
SHA1: EB7CE789D51018A66429CB7718140C51E386BF30
Found non-standard or infected MBR.
Enter 'Y' and hit ENTER for more options, or 'N' to exit:
Done!
Re: Prosím o kontrolu
Vkládám další log :
18:02:28.0249 3236 TDSS rootkit removing tool 2.7.37.0 May 23 2012 08:15:30
18:02:29.0837 3236 ============================================================
18:02:29.0837 3236 Current date / time: 2012/05/27 18:02:29.0837
18:02:29.0837 3236 SystemInfo:
18:02:29.0837 3236
18:02:29.0837 3236 OS Version: 6.0.6002 ServicePack: 2.0
18:02:29.0837 3236 Product type: Workstation
18:02:29.0838 3236 ComputerName: LUCINKA-PC
18:02:29.0838 3236 UserName: Lucinka
18:02:29.0838 3236 Windows directory: C:\Windows
18:02:29.0838 3236 System windows directory: C:\Windows
18:02:29.0838 3236 Processor architecture: Intel x86
18:02:29.0838 3236 Number of processors: 2
18:02:29.0838 3236 Page size: 0x1000
18:02:29.0838 3236 Boot type: Normal boot
18:02:29.0838 3236 ============================================================
18:02:31.0594 3236 Drive \Device\Harddisk0\DR0 - Size: 0x12A1F16000 (74.53 Gb), SectorSize: 0x200, Cylinders: 0x2861, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000050
18:02:31.0611 3236 ============================================================
18:02:31.0611 3236 \Device\Harddisk0\DR0:
18:02:31.0611 3236 MBR partitions:
18:02:31.0611 3236 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x8405FC1
18:02:31.0611 3236 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x8406000, BlocksNum 0xDEC000
18:02:31.0611 3236 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x91F4000, BlocksNum 0x31B000
18:02:31.0611 3236 ============================================================
18:02:31.0650 3236 C: <-> \Device\Harddisk0\DR0\Partition0
18:02:31.0716 3236 D: <-> \Device\Harddisk0\DR0\Partition1
18:02:31.0753 3236 E: <-> \Device\Harddisk0\DR0\Partition2
18:02:31.0755 3236 ============================================================
18:02:31.0755 3236 Initialize success
18:02:31.0755 3236 ============================================================
18:03:30.0710 4624 ============================================================
18:03:30.0710 4624 Scan started
18:03:30.0710 4624 Mode: Manual; SigCheck; TDLFS;
18:03:30.0710 4624 ============================================================
18:03:31.0168 4624 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
18:03:31.0345 4624 ACPI - ok
18:03:31.0475 4624 AdobeFlashPlayerUpdateSvc (76d5a3d2a50402a0b9b6ed13c4371e79) C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
18:03:31.0500 4624 AdobeFlashPlayerUpdateSvc - ok
18:03:31.0601 4624 adp94xx (2edc5bbac6c651ece337bde8ed97c9fb) C:\Windows\system32\drivers\adp94xx.sys
18:03:31.0637 4624 adp94xx - ok
18:03:31.0690 4624 adpahci (b84088ca3cdca97da44a984c6ce1ccad) C:\Windows\system32\drivers\adpahci.sys
18:03:31.0717 4624 adpahci - ok
18:03:31.0756 4624 adpu160m (7880c67bccc27c86fd05aa2afb5ea469) C:\Windows\system32\drivers\adpu160m.sys
18:03:31.0776 4624 adpu160m - ok
18:03:31.0809 4624 adpu320 (9ae713f8e30efc2abccd84904333df4d) C:\Windows\system32\drivers\adpu320.sys
18:03:31.0832 4624 adpu320 - ok
18:03:31.0903 4624 AeLookupSvc (9d1fda9e086ba64e3c93c9de32461bcf) C:\Windows\System32\aelupsvc.dll
18:03:31.0992 4624 AeLookupSvc - ok
18:03:32.0088 4624 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
18:03:32.0134 4624 AFD - ok
18:03:32.0212 4624 agp440 (ef23439cdd587f64c2c1b8825cead7d8) C:\Windows\system32\drivers\agp440.sys
18:03:32.0232 4624 agp440 - ok
18:03:32.0286 4624 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
18:03:32.0306 4624 aic78xx - ok
18:03:32.0346 4624 ALG (a1545b731579895d8cc44fc0481c1192) C:\Windows\System32\alg.exe
18:03:32.0424 4624 ALG - ok
18:03:32.0451 4624 aliide (90395b64600ebb4552e26e178c94b2e4) C:\Windows\system32\drivers\aliide.sys
18:03:32.0470 4624 aliide - ok
18:03:32.0492 4624 amdagp (2b13e304c9dfdfa5eb582f6a149fa2c7) C:\Windows\system32\drivers\amdagp.sys
18:03:32.0512 4624 amdagp - ok
18:03:32.0529 4624 amdide (0577df1d323fe75a739c787893d300ea) C:\Windows\system32\drivers\amdide.sys
18:03:32.0546 4624 amdide - ok
18:03:32.0614 4624 AmdK7 (dc487885bcef9f28eece6fac0e5ddfc5) C:\Windows\system32\drivers\amdk7.sys
18:03:32.0717 4624 AmdK7 - ok
18:03:32.0743 4624 AmdK8 (0ca0071da4315b00fc1328ca86b425da) C:\Windows\system32\DRIVERS\amdk8.sys
18:03:32.0844 4624 AmdK8 - ok
18:03:32.0923 4624 Appinfo (c6d704c7f0434dc791aac37cac4b6e14) C:\Windows\System32\appinfo.dll
18:03:32.0963 4624 Appinfo - ok
18:03:33.0016 4624 arc (5f673180268bb1fdb69c99b6619fe379) C:\Windows\system32\drivers\arc.sys
18:03:33.0036 4624 arc - ok
18:03:33.0089 4624 arcsas (957f7540b5e7f602e44648c7de5a1c05) C:\Windows\system32\drivers\arcsas.sys
18:03:33.0109 4624 arcsas - ok
18:03:33.0173 4624 aswFsBlk (0ae43c6c411254049279c2ee55630f95) C:\Windows\system32\drivers\aswFsBlk.sys
18:03:33.0223 4624 aswFsBlk - ok
18:03:33.0290 4624 aswMonFlt (6693141560b1615d8dccf0d8eb00087e) C:\Windows\system32\drivers\aswMonFlt.sys
18:03:33.0308 4624 aswMonFlt - ok
18:03:33.0344 4624 aswRdr (da12626fd9a67f4e917e2f2fbe1e1764) C:\Windows\system32\drivers\aswRdr.sys
18:03:33.0361 4624 aswRdr - ok
18:03:33.0481 4624 aswSnx (dcb199b967375753b5019ec15f008f53) C:\Windows\system32\drivers\aswSnx.sys
18:03:33.0554 4624 aswSnx - ok
18:03:33.0658 4624 aswSP (b32873e5a1443c0a1e322266e203bf10) C:\Windows\system32\drivers\aswSP.sys
18:03:33.0715 4624 aswSP - ok
18:03:33.0762 4624 aswTdi (6ff544175a9180c5d88534d3d9c9a9f7) C:\Windows\system32\drivers\aswTdi.sys
18:03:33.0780 4624 aswTdi - ok
18:03:33.0847 4624 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
18:03:33.0900 4624 AsyncMac - ok
18:03:33.0925 4624 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys
18:03:33.0945 4624 atapi - ok
18:03:34.0035 4624 AudioEndpointBuilder (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
18:03:34.0083 4624 AudioEndpointBuilder - ok
18:03:34.0089 4624 Audiosrv (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
18:03:34.0124 4624 Audiosrv - ok
18:03:34.0197 4624 avast! Antivirus (4041d31508a2a084dfb42c595854090f) C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
18:03:34.0217 4624 avast! Antivirus - ok
18:03:34.0299 4624 b57nd60x (8e287eb3a52fd30c999482c576f4a61b) C:\Windows\system32\DRIVERS\b57nd60x.sys
18:03:34.0380 4624 b57nd60x - ok
18:03:34.0507 4624 BCM43XV (cf6a67c90951e3e763d2135dede44b85) C:\Windows\system32\DRIVERS\bcmwl6.sys
18:03:34.0605 4624 BCM43XV - ok
18:03:34.0662 4624 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
18:03:34.0717 4624 Beep - ok
18:03:34.0810 4624 BFE (c789af0f724fda5852fb9a7d3a432381) C:\Windows\System32\bfe.dll
18:03:34.0872 4624 BFE - ok
18:03:35.0027 4624 BITS (93952506c6d67330367f7e7934b6a02f) C:\Windows\System32\qmgr.dll
18:03:35.0100 4624 BITS - ok
18:03:35.0105 4624 blbdrive - ok
18:03:35.0164 4624 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
18:03:35.0200 4624 bowser - ok
18:03:35.0252 4624 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
18:03:35.0300 4624 BrFiltLo - ok
18:03:35.0326 4624 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
18:03:35.0388 4624 BrFiltUp - ok
18:03:35.0436 4624 Browser (a3629a0c4226f9e9c72faaeebc3ad33c) C:\Windows\System32\browser.dll
18:03:35.0512 4624 Browser - ok
18:03:35.0575 4624 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
18:03:35.0664 4624 Brserid - ok
18:03:35.0700 4624 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
18:03:35.0781 4624 BrSerWdm - ok
18:03:35.0792 4624 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
18:03:35.0878 4624 BrUsbMdm - ok
18:03:35.0899 4624 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
18:03:35.0972 4624 BrUsbSer - ok
18:03:36.0031 4624 BthEnum (6d39c954799b63ba866910234cf7d726) C:\Windows\system32\DRIVERS\BthEnum.sys
18:03:36.0071 4624 BthEnum - ok
18:03:36.0135 4624 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
18:03:36.0216 4624 BTHMODEM - ok
18:03:36.0244 4624 BthPan (5904efa25f829bf84ea6fb045134a1d8) C:\Windows\system32\DRIVERS\bthpan.sys
18:03:36.0301 4624 BthPan - ok
18:03:36.0413 4624 BTHPORT (611ff3f2f095c8d4a6d4cfd9dcc09793) C:\Windows\system32\Drivers\BTHport.sys
18:03:36.0467 4624 BTHPORT - ok
18:03:36.0501 4624 BthServ (a4c8377fa4a994e07075107dbe2e3dce) C:\Windows\System32\bthserv.dll
18:03:36.0537 4624 BthServ - ok
18:03:36.0582 4624 BTHUSB (d330803eab2a15caec7f011f1d4cb30e) C:\Windows\system32\Drivers\BTHUSB.sys
18:03:36.0622 4624 BTHUSB - ok
18:03:36.0688 4624 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
18:03:36.0747 4624 cdfs - ok
18:03:36.0808 4624 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
18:03:36.0866 4624 cdrom - ok
18:03:36.0937 4624 CertPropSvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
18:03:37.0003 4624 CertPropSvc - ok
18:03:37.0043 4624 circlass (da8e0afc7baa226c538ef53ac2f90897) C:\Windows\system32\drivers\circlass.sys
18:03:37.0132 4624 circlass - ok
18:03:37.0182 4624 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
18:03:37.0210 4624 CLFS - ok
18:03:37.0300 4624 clr_optimization_v2.0.50727_32 (8ee772032e2fe80a924f3b8dd5082194) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:03:37.0320 4624 clr_optimization_v2.0.50727_32 - ok
18:03:37.0394 4624 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:03:37.0415 4624 clr_optimization_v4.0.30319_32 - ok
18:03:37.0487 4624 CmBatt (99afc3795b58cc478fbbbcdc658fcb56) C:\Windows\system32\DRIVERS\CmBatt.sys
18:03:37.0544 4624 CmBatt - ok
18:03:37.0577 4624 cmdide (45201046c776ffdaf3fc8a0029c581c8) C:\Windows\system32\drivers\cmdide.sys
18:03:37.0595 4624 cmdide - ok
18:03:37.0681 4624 CnxtHdAudService (b6e7991e3d6146c04c85cd31af22a381) C:\Windows\system32\drivers\CHDRT32.sys
18:03:37.0706 4624 CnxtHdAudService - ok
18:03:37.0830 4624 Com4QLBEx (c7a0e61d5714ac20de52d4f66ec773b8) C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
18:03:37.0852 4624 Com4QLBEx - ok
18:03:37.0907 4624 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\DRIVERS\compbatt.sys
18:03:37.0926 4624 Compbatt - ok
18:03:37.0930 4624 COMSysApp - ok
18:03:37.0948 4624 crcdisk (2a213ae086bbec5e937553c7d9a2b22c) C:\Windows\system32\drivers\crcdisk.sys
18:03:37.0966 4624 crcdisk - ok
18:03:37.0988 4624 Crusoe (22a7f883508176489f559ee745b5bf5d) C:\Windows\system32\drivers\crusoe.sys
18:03:38.0065 4624 Crusoe - ok
18:03:38.0135 4624 CryptSvc (fb27772beaf8e1d28ccd825c09da939b) C:\Windows\system32\cryptsvc.dll
18:03:38.0214 4624 CryptSvc - ok
18:03:38.0326 4624 DcomLaunch (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
18:03:38.0379 4624 DcomLaunch - ok
18:03:38.0446 4624 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
18:03:38.0492 4624 DfsC - ok
18:03:38.0757 4624 DFSR (2cc3dcfb533a1035b13dcab6160ab38b) C:\Windows\system32\DFSR.exe
18:03:38.0934 4624 DFSR - ok
18:03:39.0169 4624 Dhcp (9028559c132146fb75eb7acf384b086a) C:\Windows\System32\dhcpcsvc.dll
18:03:39.0206 4624 Dhcp - ok
18:03:39.0293 4624 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
18:03:39.0314 4624 disk - ok
18:03:39.0391 4624 Dnscache (57d762f6f5974af0da2be88a3349baaa) C:\Windows\System32\dnsrslvr.dll
18:03:39.0430 4624 Dnscache - ok
18:03:39.0486 4624 dot3svc (324fd74686b1ef5e7c19a8af49e748f6) C:\Windows\System32\dot3svc.dll
18:03:39.0539 4624 dot3svc - ok
18:03:39.0624 4624 DPS (a622e888f8aa2f6b49e9bc466f0e5def) C:\Windows\system32\dps.dll
18:03:39.0679 4624 DPS - ok
18:03:39.0747 4624 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
18:03:39.0778 4624 drmkaud - ok
18:03:39.0900 4624 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
18:03:39.0945 4624 DXGKrnl - ok
18:03:39.0996 4624 E100B (5c940a174dfb2c42b9f6ba6edc2baa0b) C:\Windows\system32\DRIVERS\e100b325.sys
18:03:40.0016 4624 E100B - ok
18:03:40.0064 4624 E1G60 (f88fb26547fd2ce6d0a5af2985892c48) C:\Windows\system32\DRIVERS\E1G60I32.sys
18:03:40.0147 4624 E1G60 - ok
18:03:40.0239 4624 EapHost (c0b95e40d85cd807d614e264248a45b9) C:\Windows\System32\eapsvc.dll
18:03:40.0272 4624 EapHost - ok
18:03:40.0344 4624 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
18:03:40.0369 4624 Ecache - ok
18:03:40.0442 4624 elxstor (e8f3f21a71720c84bcf423b80028359f) C:\Windows\system32\drivers\elxstor.sys
18:03:40.0469 4624 elxstor - ok
18:03:40.0568 4624 EMDMgmt (4e6b23dfc917ea39306b529b773950f4) C:\Windows\system32\emdmgmt.dll
18:03:40.0609 4624 EMDMgmt - ok
18:03:40.0693 4624 EventSystem (67058c46504bc12d821f38cf99b7b28f) C:\Windows\system32\es.dll
18:03:40.0752 4624 EventSystem - ok
18:03:40.0834 4624 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
18:03:40.0859 4624 exfat - ok
18:03:40.0905 4624 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
18:03:40.0948 4624 fastfat - ok
18:03:40.0984 4624 fdc (63bdada84951b9c03e641800e176898a) C:\Windows\system32\DRIVERS\fdc.sys
18:03:41.0063 4624 fdc - ok
18:03:41.0094 4624 fdPHost (6629b5f0e98151f4afdd87567ea32ba3) C:\Windows\system32\fdPHost.dll
18:03:41.0151 4624 fdPHost - ok
18:03:41.0186 4624 FDResPub (89ed56dce8e47af40892778a5bd31fd2) C:\Windows\system32\fdrespub.dll
18:03:41.0272 4624 FDResPub - ok
18:03:41.0315 4624 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
18:03:41.0335 4624 FileInfo - ok
18:03:41.0365 4624 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
18:03:41.0419 4624 Filetrace - ok
18:03:41.0448 4624 flpydisk (6603957eff5ec62d25075ea8ac27de68) C:\Windows\system32\DRIVERS\flpydisk.sys
18:03:41.0526 4624 flpydisk - ok
18:03:41.0582 4624 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
18:03:41.0608 4624 FltMgr - ok
18:03:41.0789 4624 FontCache (8ce364388c8eca59b14b539179276d44) C:\Windows\system32\FntCache.dll
18:03:41.0848 4624 FontCache - ok
18:03:41.0959 4624 FontCache3.0.0.0 (c7fbdd1ed42f82bfa35167a5c9803ea3) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
18:03:41.0978 4624 FontCache3.0.0.0 - ok
18:03:42.0021 4624 Fs_Rec (b972a66758577e0bfd1de0f91aaa27b5) C:\Windows\system32\drivers\Fs_Rec.sys
18:03:42.0057 4624 Fs_Rec - ok
18:03:42.0100 4624 gagp30kx (4e1cd0a45c50a8882616cae5bf82f3c5) C:\Windows\system32\drivers\gagp30kx.sys
18:03:42.0120 4624 gagp30kx - ok
18:03:42.0202 4624 gpsvc (cd5d0aeee35dfd4e986a5aa1500a6e66) C:\Windows\System32\gpsvc.dll
18:03:42.0253 4624 gpsvc - ok
18:03:42.0394 4624 gupdate (8f0de4fef8201e306f9938b0905ac96a) C:\Program Files\Google\Update\GoogleUpdate.exe
18:03:42.0413 4624 gupdate - ok
18:03:42.0443 4624 gupdatem (8f0de4fef8201e306f9938b0905ac96a) C:\Program Files\Google\Update\GoogleUpdate.exe
18:03:42.0460 4624 gupdatem - ok
18:03:42.0509 4624 HBtnKey (93aee3434935fc2f805fefd8dc5ed1b4) C:\Windows\system32\DRIVERS\cpqbttn.sys
18:03:42.0526 4624 HBtnKey - ok
18:03:42.0603 4624 HdAudAddService (07eee11d6e2b78122e17db3878b4c687) C:\Windows\system32\drivers\CHDART.sys
18:03:42.0635 4624 HdAudAddService - ok
18:03:42.0717 4624 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
18:03:42.0785 4624 HDAudBus - ok
18:03:42.0835 4624 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
18:03:42.0938 4624 HidBth - ok
18:03:42.0957 4624 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
18:03:43.0038 4624 HidIr - ok
18:03:43.0075 4624 hidserv (84067081f3318162797385e11a8f0582) C:\Windows\system32\hidserv.dll
18:03:43.0111 4624 hidserv - ok
18:03:43.0140 4624 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
18:03:43.0182 4624 HidUsb - ok
18:03:43.0220 4624 hkmsvc (d8ad255b37da92434c26e4876db7d418) C:\Windows\system32\kmsvc.dll
18:03:43.0284 4624 hkmsvc - ok
18:03:43.0388 4624 HP Health Check Service (8fda52d97a23c2bfc938b86bebae4c2c) C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
18:03:43.0404 4624 HP Health Check Service - ok
18:03:43.0443 4624 HpCISSs (df353b401001246853763c4b7aaa6f50) C:\Windows\system32\drivers\hpcisss.sys
18:03:43.0461 4624 HpCISSs - ok
18:03:43.0485 4624 HpqKbFiltr (1210960ff8928950d2a786895b0c424a) C:\Windows\system32\DRIVERS\HpqKbFiltr.sys
18:03:43.0515 4624 HpqKbFiltr - ok
18:03:43.0573 4624 hpqwmiex (fdf273a845f1ffcceadf363aaf47582f) C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
18:03:43.0595 4624 hpqwmiex - ok
18:03:43.0677 4624 HSFHWAZL (46d67209550973257601a533e2ac5785) C:\Windows\system32\DRIVERS\VSTAZL3.SYS
18:03:43.0735 4624 HSFHWAZL - ok
18:03:43.0871 4624 HSF_DPV (1882827f41dee51c70e24c567c35bfb5) C:\Windows\system32\DRIVERS\HSX_DPV.sys
18:03:43.0974 4624 HSF_DPV - ok
18:03:44.0041 4624 HSXHWAZL (a44ddf3ba83e4664bf4de9220097578c) C:\Windows\system32\DRIVERS\HSXHWAZL.sys
18:03:44.0064 4624 HSXHWAZL - ok
18:03:44.0151 4624 HTTP (0eeeca26c8d4bde2a4664db058a81937) C:\Windows\system32\drivers\HTTP.sys
18:03:44.0205 4624 HTTP - ok
18:03:44.0275 4624 Huawei (c1258adcbe6e51a3c06c234d2bdb81b5) C:\Windows\system32\DRIVERS\ewdcsc.sys
18:03:44.0293 4624 Huawei - ok
18:03:44.0416 4624 hwdatacard (0515065a3c7e8869dd01253e987c5bd1) C:\Windows\system32\DRIVERS\ewusbmdm.sys
18:03:44.0458 4624 hwdatacard - ok
18:03:44.0511 4624 hwusbdev (a259d3619aa23d4562581067f85e2006) C:\Windows\system32\DRIVERS\ewusbdev.sys
18:03:44.0539 4624 hwusbdev - ok
18:03:44.0609 4624 i2omp (324c2152ff2c61abae92d09f3cca4d63) C:\Windows\system32\drivers\i2omp.sys
18:03:44.0627 4624 i2omp - ok
18:03:44.0701 4624 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
18:03:44.0732 4624 i8042prt - ok
18:03:45.0020 4624 ialm (9378d57e2b96c0a185d844770ad49948) C:\Windows\system32\DRIVERS\igdkmd32.sys
18:03:45.0196 4624 ialm - ok
18:03:45.0427 4624 iaStorV (c957bf4b5d80b46c5017bf0101e6c906) C:\Windows\system32\drivers\iastorv.sys
18:03:45.0452 4624 iaStorV - ok
18:03:45.0554 4624 IDriverT (6f95324909b502e2651442c1548ab12f) C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
18:03:45.0598 4624 IDriverT ( UnsignedFile.Multi.Generic ) - warning
18:03:45.0598 4624 IDriverT - detected UnsignedFile.Multi.Generic (1)
18:03:45.0771 4624 idsvc (98477b08e61945f974ed9fdc4cb6bdab) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
18:03:45.0842 4624 idsvc - ok
18:03:46.0260 4624 igfx (9378d57e2b96c0a185d844770ad49948) C:\Windows\system32\DRIVERS\igdkmd32.sys
18:03:46.0333 4624 igfx - ok
18:03:46.0510 4624 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
18:03:46.0528 4624 iirsp - ok
18:03:46.0614 4624 IKEEXT (9908d8a397b76cd8d31d0d383c5773c9) C:\Windows\System32\ikeext.dll
18:03:46.0677 4624 IKEEXT - ok
18:03:46.0738 4624 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys
18:03:46.0758 4624 intelide - ok
18:03:46.0822 4624 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
18:03:46.0873 4624 intelppm - ok
18:03:46.0922 4624 IPBusEnum (9ac218c6e6105477484c6fdbe7d409a4) C:\Windows\system32\ipbusenum.dll
18:03:46.0994 4624 IPBusEnum - ok
18:03:47.0027 4624 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
18:03:47.0087 4624 IpFilterDriver - ok
18:03:47.0141 4624 iphlpsvc (1998bd97f950680bb55f55a7244679c2) C:\Windows\System32\iphlpsvc.dll
18:03:47.0184 4624 iphlpsvc - ok
18:03:47.0192 4624 IpInIp - ok
18:03:47.0234 4624 IPMIDRV (40f34f8aba2a015d780e4b09138b6c17) C:\Windows\system32\drivers\ipmidrv.sys
18:03:47.0324 4624 IPMIDRV - ok
18:03:47.0367 4624 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
18:03:47.0420 4624 IPNAT - ok
18:03:47.0447 4624 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
18:03:47.0501 4624 IRENUM - ok
18:03:47.0527 4624 isapnp (350fca7e73cf65bcef43fae1e4e91293) C:\Windows\system32\drivers\isapnp.sys
18:03:47.0546 4624 isapnp - ok
18:03:47.0630 4624 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
18:03:47.0655 4624 iScsiPrt - ok
18:03:47.0678 4624 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
18:03:47.0697 4624 iteatapi - ok
18:03:47.0731 4624 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
18:03:47.0750 4624 iteraid - ok
18:03:47.0787 4624 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
18:03:47.0807 4624 kbdclass - ok
18:03:47.0857 4624 kbdhid (ede59ec70e25c24581add1fbec7325f7) C:\Windows\system32\DRIVERS\kbdhid.sys
18:03:47.0899 4624 kbdhid - ok
18:03:47.0949 4624 KeyIso (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
18:03:47.0982 4624 KeyIso - ok
18:03:48.0038 4624 KSecDD (2b2f1638466e8cb091400c9019cc730e) C:\Windows\system32\Drivers\ksecdd.sys
18:03:48.0074 4624 KSecDD - ok
18:03:48.0174 4624 KtmRm (8078f8f8f7a79e2e6b494523a828c585) C:\Windows\system32\msdtckrm.dll
18:03:48.0253 4624 KtmRm - ok
18:03:48.0294 4624 LanmanServer (1bf5eebfd518dd7298434d8c862f825d) C:\Windows\system32\srvsvc.dll
18:03:48.0333 4624 LanmanServer - ok
18:03:48.0404 4624 LanmanWorkstation (1db69705b695b987082c8baec0c6b34f) C:\Windows\System32\wkssvc.dll
18:03:48.0434 4624 LanmanWorkstation - ok
18:03:48.0468 4624 Lbd (b7c19ec8b0dd7efa58ad41ffeb8b8cda) C:\Windows\system32\DRIVERS\Lbd.sys
18:03:48.0486 4624 Lbd - ok
18:03:48.0524 4624 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
18:03:48.0583 4624 lltdio - ok
18:03:48.0632 4624 lltdsvc (2d5a428872f1442631d0959a34abff63) C:\Windows\System32\lltdsvc.dll
18:03:48.0677 4624 lltdsvc - ok
18:03:48.0720 4624 lmhosts (35d40113e4a5b961b6ce5c5857702518) C:\Windows\System32\lmhsvc.dll
18:03:48.0803 4624 lmhosts - ok
18:03:48.0855 4624 LSI_FC (a2262fb9f28935e862b4db46438c80d2) C:\Windows\system32\drivers\lsi_fc.sys
18:03:48.0875 4624 LSI_FC - ok
18:03:48.0902 4624 LSI_SAS (30d73327d390f72a62f32c103daf1d6d) C:\Windows\system32\drivers\lsi_sas.sys
18:03:48.0923 4624 LSI_SAS - ok
18:03:48.0950 4624 LSI_SCSI (e1e36fefd45849a95f1ab81de0159fe3) C:\Windows\system32\drivers\lsi_scsi.sys
18:03:48.0970 4624 LSI_SCSI - ok
18:03:49.0014 4624 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
18:03:49.0065 4624 luafv - ok
18:03:49.0157 4624 lvpopflt (af280405c10f0d20f37670b7432e5c2f) C:\Windows\system32\DRIVERS\lvpopflt.sys
18:03:49.0176 4624 lvpopflt - ok
18:03:49.0237 4624 LVPr2Mon (8be71d7edb8c7494913722059f760dd0) C:\Windows\system32\DRIVERS\LVPr2Mon.sys
18:03:49.0252 4624 LVPr2Mon - ok
18:03:49.0328 4624 LVRS (b6e1ccd6572984adcae68439afd07011) C:\Windows\system32\DRIVERS\lvrs.sys
18:03:49.0352 4624 LVRS - ok
18:03:49.0818 4624 LVUVC (6c42815dd57e397f0cd988304b5eb4b3) C:\Windows\system32\DRIVERS\lvuvc.sys
18:03:50.0088 4624 LVUVC - ok
18:03:50.0946 4624 mdmxsdk (0cea2d0d3fa284b85ed5b68365114f76) C:\Windows\system32\DRIVERS\mdmxsdk.sys
18:03:50.0991 4624 mdmxsdk - ok
18:03:51.0027 4624 megasas (d153b14fc6598eae8422a2037553adce) C:\Windows\system32\drivers\megasas.sys
18:03:51.0046 4624 megasas - ok
18:03:51.0086 4624 MMCSS (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
18:03:51.0141 4624 MMCSS - ok
18:03:51.0166 4624 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
18:03:51.0205 4624 Modem - ok
18:03:51.0259 4624 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
18:03:51.0314 4624 monitor - ok
18:03:51.0349 4624 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
18:03:51.0369 4624 mouclass - ok
18:03:51.0401 4624 mouhid (a3a6dff7e9e757db3df51a833bc28885) C:\Windows\system32\drivers\mouhid.sys
18:03:51.0467 4624 mouhid - ok
18:03:51.0499 4624 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
18:03:51.0520 4624 MountMgr - ok
18:03:51.0633 4624 MozillaMaintenance (96aa8ba23142cc8e2b30f3cae0c80254) C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
18:03:51.0656 4624 MozillaMaintenance - ok
18:03:51.0716 4624 mpio (583a41f26278d9e0ea548163d6139397) C:\Windows\system32\drivers\mpio.sys
18:03:51.0736 4624 mpio - ok
18:03:51.0768 4624 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
18:03:51.0812 4624 mpsdrv - ok
18:03:51.0957 4624 MpsSvc (5de62c6e9108f14f6794060a9bdecaec) C:\Windows\system32\mpssvc.dll
18:03:52.0023 4624 MpsSvc - ok
18:03:52.0251 4624 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
18:03:52.0269 4624 Mraid35x - ok
18:03:52.0312 4624 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
18:03:52.0372 4624 MRxDAV - ok
18:03:52.0414 4624 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
18:03:52.0437 4624 mrxsmb - ok
18:03:52.0475 4624 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
18:03:52.0523 4624 mrxsmb10 - ok
18:03:52.0551 4624 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
18:03:52.0587 4624 mrxsmb20 - ok
18:03:52.0654 4624 msahci (5457dcfa7c0da43522f4d9d4049c1472) C:\Windows\system32\drivers\msahci.sys
18:03:52.0676 4624 msahci - ok
18:03:52.0710 4624 msdsm (3fc82a2ae4cc149165a94699183d3028) C:\Windows\system32\drivers\msdsm.sys
18:03:52.0732 4624 msdsm - ok
18:03:52.0788 4624 MSDTC (fd7520cc3a80c5fc8c48852bb24c6ded) C:\Windows\System32\msdtc.exe
18:03:52.0859 4624 MSDTC - ok
18:03:52.0901 4624 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
18:03:52.0941 4624 Msfs - ok
18:03:53.0007 4624 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
18:03:53.0025 4624 msisadrv - ok
18:03:53.0069 4624 MSiSCSI (85466c0757a23d9a9aecdc0755203cb2) C:\Windows\system32\iscsiexe.dll
18:03:53.0112 4624 MSiSCSI - ok
18:03:53.0117 4624 msiserver - ok
18:03:53.0153 4624 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
18:03:53.0205 4624 MSKSSRV - ok
18:03:53.0222 4624 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
18:03:53.0261 4624 MSPCLOCK - ok
18:03:53.0279 4624 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
18:03:53.0331 4624 MSPQM - ok
18:03:53.0374 4624 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
18:03:53.0399 4624 MsRPC - ok
18:03:53.0421 4624 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
18:03:53.0440 4624 mssmbios - ok
18:03:53.0495 4624 MSSQL$MSSMLBIZ - ok
18:03:53.0520 4624 MSSQLServerADHelper (adaf062116b4e6d96e44d26486a87af6) c:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe
18:03:53.0538 4624 MSSQLServerADHelper - ok
18:03:53.0581 4624 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
18:03:53.0634 4624 MSTEE - ok
18:03:53.0663 4624 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
18:03:53.0684 4624 Mup - ok
18:03:53.0744 4624 napagent (e4eaf0c5c1b41b5c83386cf212ca9584) C:\Windows\system32\qagentRT.dll
18:03:53.0788 4624 napagent - ok
18:03:53.0842 4624 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
18:03:53.0888 4624 NativeWifiP - ok
18:03:53.0992 4624 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
18:03:54.0062 4624 NDIS - ok
18:03:54.0115 4624 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
18:03:54.0175 4624 NdisTapi - ok
18:03:54.0210 4624 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
18:03:54.0264 4624 Ndisuio - ok
18:03:54.0318 4624 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
18:03:54.0364 4624 NdisWan - ok
18:03:54.0399 4624 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
18:03:54.0430 4624 NDProxy - ok
18:03:54.0448 4624 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
18:03:54.0487 4624 NetBIOS - ok
18:03:54.0530 4624 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
18:03:54.0576 4624 netbt - ok
18:03:54.0628 4624 Netlogon (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
18:03:54.0649 4624 Netlogon - ok
18:03:54.0709 4624 Netman (c8052711daecc48b982434c5116ca401) C:\Windows\System32\netman.dll
18:03:54.0775 4624 Netman - ok
18:03:54.0839 4624 netprofm (2ef3bbe22e5a5acd1428ee387a0d0172) C:\Windows\System32\netprofm.dll
18:03:54.0886 4624 netprofm - ok
18:03:54.0973 4624 NetTcpPortSharing (d6c4e4a39a36029ac0813d476fbd0248) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
18:03:55.0000 4624 NetTcpPortSharing - ok
18:03:55.0243 4624 NETw3v32 (a15f219208843a5a210c8cb391384453) C:\Windows\system32\DRIVERS\NETw3v32.sys
18:03:55.0393 4624 NETw3v32 - ok
18:03:55.0801 4624 NETw4v32 (38d720e0c8b0ecb9a019980265679798) C:\Windows\system32\DRIVERS\NETw4v32.sys
18:03:55.0920 4624 NETw4v32 - ok
18:03:56.0575 4624 NETw5v32 (8de67bd902095a13329fd82c85a1fa09) C:\Windows\system32\DRIVERS\NETw5v32.sys
18:03:56.0764 4624 NETw5v32 - ok
18:03:56.0942 4624 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
18:03:56.0965 4624 nfrd960 - ok
18:03:57.0016 4624 NlaSvc (2997b15415f9bbe05b5a4c1c85e0c6a2) C:\Windows\System32\nlasvc.dll
18:03:57.0078 4624 NlaSvc - ok
18:03:57.0145 4624 nmwcd (4a8a2aa0706b659175169decf198e9d7) C:\Windows\system32\drivers\ccdcmb.sys
18:03:57.0209 4624 nmwcd - ok
18:03:57.0282 4624 nmwcdc (fd3e61831095ac62e6840d986b5a2016) C:\Windows\system32\drivers\ccdcmbo.sys
18:03:57.0321 4624 nmwcdc - ok
18:03:57.0357 4624 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
18:03:57.0412 4624 Npfs - ok
18:03:57.0444 4624 nsi (8bb86f0c7eea2bded6fe095d0b4ca9bd) C:\Windows\system32\nsisvc.dll
18:03:57.0487 4624 nsi - ok
18:03:57.0501 4624 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
18:03:57.0566 4624 nsiproxy - ok
18:03:57.0711 4624 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
18:03:57.0777 4624 Ntfs - ok
18:03:57.0836 4624 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
18:03:57.0916 4624 ntrigdigi - ok
18:03:57.0939 4624 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
18:03:57.0998 4624 Null - ok
18:03:58.0023 4624 nvraid (e69e946f80c1c31c53003bfbf50cbb7c) C:\Windows\system32\drivers\nvraid.sys
18:03:58.0043 4624 nvraid - ok
18:03:58.0067 4624 nvstor (9e0ba19a28c498a6d323d065db76dffc) C:\Windows\system32\drivers\nvstor.sys
18:03:58.0086 4624 nvstor - ok
18:03:58.0109 4624 nv_agp (07c186427eb8fcc3d8d7927187f260f7) C:\Windows\system32\drivers\nv_agp.sys
18:03:58.0130 4624 nv_agp - ok
18:03:58.0136 4624 NwlnkFlt - ok
18:03:58.0144 4624 NwlnkFwd - ok
18:03:58.0219 4624 ohci1394 (be32da025a0be1878f0ee8d6d9386cd5) C:\Windows\system32\DRIVERS\ohci1394.sys
18:03:58.0308 4624 ohci1394 - ok
18:03:58.0403 4624 p2pimsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
18:03:58.0511 4624 p2pimsvc - ok
18:03:58.0522 4624 p2psvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
18:03:58.0608 4624 p2psvc - ok
18:03:58.0673 4624 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\DRIVERS\parport.sys
18:03:58.0741 4624 Parport - ok
18:03:58.0793 4624 partmgr (b9c2b89f08670e159f7181891e449cd9) C:\Windows\system32\drivers\partmgr.sys
18:03:58.0815 4624 partmgr - ok
18:03:58.0838 4624 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\DRIVERS\parvdm.sys
18:03:58.0916 4624 Parvdm - ok
18:03:58.0950 4624 PcaSvc (c6276ad11f4bb49b58aa1ed88537f14a) C:\Windows\System32\pcasvc.dll
18:03:58.0977 4624 PcaSvc - ok
18:03:59.0045 4624 pccsmcfd (fd2041e9ba03db7764b2248f02475079) C:\Windows\system32\DRIVERS\pccsmcfd.sys
18:03:59.0071 4624 pccsmcfd - ok
18:03:59.0113 4624 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
18:03:59.0139 4624 pci - ok
18:03:59.0167 4624 pciide (3b1901e401473e03eb8c874271e50c26) C:\Windows\system32\drivers\pciide.sys
18:03:59.0185 4624 pciide - ok
18:03:59.0248 4624 pcmcia (3bb2244f343b610c29c98035504c9b75) C:\Windows\system32\DRIVERS\pcmcia.sys
18:03:59.0274 4624 pcmcia - ok
18:03:59.0411 4624 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
18:03:59.0558 4624 PEAUTH - ok
18:03:59.0751 4624 pla (b1689df169143f57053f795390c99db3) C:\Windows\system32\pla.dll
18:03:59.0904 4624 pla - ok
18:04:00.0118 4624 PlugPlay (c5e7f8a996ec0a82d508fd9064a5569e) C:\Windows\system32\umpnpmgr.dll
18:04:00.0161 4624 PlugPlay - ok
18:04:00.0259 4624 PNRPAutoReg (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
18:04:00.0326 4624 PNRPAutoReg - ok
18:04:00.0337 4624 PNRPsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
18:04:00.0379 4624 PNRPsvc - ok
18:04:00.0448 4624 PolicyAgent (d0494460421a03cd5225cca0059aa146) C:\Windows\System32\ipsecsvc.dll
18:04:00.0565 4624 PolicyAgent - ok
18:04:00.0665 4624 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
18:04:00.0722 4624 PptpMiniport - ok
18:04:00.0756 4624 Processor (0e3cef5d28b40cf273281d620c50700a) C:\Windows\system32\drivers\processr.sys
18:04:00.0842 4624 Processor - ok
18:04:00.0884 4624 ProfSvc (0508faa222d28835310b7bfca7a77346) C:\Windows\system32\profsvc.dll
18:04:00.0923 4624 ProfSvc - ok
18:04:00.0973 4624 ProtectedStorage (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
18:04:00.0998 4624 ProtectedStorage - ok
18:04:01.0043 4624 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
18:04:01.0084 4624 PSched - ok
18:04:01.0104 4624 PxHelp20 (feffcfdc528764a04c8ed63d5fa6e711) C:\Windows\system32\Drivers\PxHelp20.sys
18:04:01.0112 4624 PxHelp20 ( UnsignedFile.Multi.Generic ) - warning
18:04:01.0112 4624 PxHelp20 - detected UnsignedFile.Multi.Generic (1)
18:04:01.0264 4624 ql2300 (ccdac889326317792480c0a67156a1ec) C:\Windows\system32\drivers\ql2300.sys
18:04:01.0319 4624 ql2300 - ok
18:04:01.0369 4624 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
18:04:01.0390 4624 ql40xx - ok
18:04:01.0456 4624 QWAVE (e9ecae663f47e6cb43962d18ab18890f) C:\Windows\system32\qwave.dll
18:04:01.0501 4624 QWAVE - ok
18:04:01.0533 4624 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
18:04:01.0572 4624 QWAVEdrv - ok
18:04:01.0810 4624 R300 (e642b131fb74caf4bb8a014f31113142) C:\Windows\system32\DRIVERS\atikmdag.sys
18:04:01.0948 4624 R300 - ok
18:04:02.0129 4624 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
18:04:02.0183 4624 RasAcd - ok
18:04:02.0226 4624 RasAuto (f6a452eb4ceadbb51c9e0ee6b3ecef0f) C:\Windows\System32\rasauto.dll
18:04:02.0289 4624 RasAuto - ok
18:04:02.0357 4624 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
18:04:02.0423 4624 Rasl2tp - ok
18:04:02.0490 4624 RasMan (75d47445d70ca6f9f894b032fbc64fcf) C:\Windows\System32\rasmans.dll
18:04:02.0547 4624 RasMan - ok
18:04:02.0578 4624 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
18:04:02.0609 4624 RasPppoe - ok
18:04:02.0635 4624 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
18:04:02.0657 4624 RasSstp - ok
18:04:02.0703 4624 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
18:04:02.0754 4624 rdbss - ok
18:04:02.0787 4624 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
18:04:02.0846 4624 RDPCDD - ok
18:04:02.0898 4624 rdpdr (e8bd98d46f2ed77132ba927fccb47d8b) C:\Windows\system32\drivers\rdpdr.sys
18:04:02.0989 4624 rdpdr - ok
18:04:03.0000 4624 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
18:04:03.0056 4624 RDPENCDD - ok
18:04:03.0114 4624 RDPWD (79c6df8477250f5c54f7c5ae1d6b814e) C:\Windows\system32\drivers\RDPWD.sys
18:04:03.0159 4624 RDPWD - ok
18:04:03.0228 4624 RemoteAccess (bcdd6b4804d06b1f7ebf29e53a57ece9) C:\Windows\System32\mprdim.dll
18:04:03.0288 4624 RemoteAccess - ok
18:04:03.0326 4624 RemoteRegistry (9e6894ea18daff37b63e1005f83ae4ab) C:\Windows\system32\regsvc.dll
18:04:03.0379 4624 RemoteRegistry - ok
18:04:03.0434 4624 RFCOMM (6482707f9f4da0ecbab43b2e0398a101) C:\Windows\system32\DRIVERS\rfcomm.sys
18:04:03.0487 4624 RFCOMM - ok
18:04:03.0518 4624 RpcLocator (5123f83cbc4349d065534eeb6bbdc42b) C:\Windows\system32\locator.exe
18:04:03.0540 4624 RpcLocator - ok
18:04:03.0628 4624 RpcSs (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
18:04:03.0673 4624 RpcSs - ok
18:04:03.0706 4624 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
18:04:03.0747 4624 rspndr - ok
18:04:03.0806 4624 SamSs (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
18:04:03.0829 4624 SamSs - ok
18:04:03.0875 4624 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
18:04:03.0895 4624 sbp2port - ok
18:04:03.0936 4624 SCardSvr (77b7a11a0c3d78d3386398fbbea1b632) C:\Windows\System32\SCardSvr.dll
18:04:03.0973 4624 SCardSvr - ok
18:04:04.0072 4624 Schedule (1a58069db21d05eb2ab58ee5753ebe8d) C:\Windows\system32\schedsvc.dll
18:04:04.0120 4624 Schedule - ok
18:04:04.0150 4624 SCPolicySvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
18:04:04.0180 4624 SCPolicySvc - ok
18:04:04.0228 4624 sdbus (4339a2585708c7d9b0c0ce5aad3dd6ff) C:\Windows\system32\DRIVERS\sdbus.sys
18:04:04.0315 4624 sdbus - ok
18:04:04.0359 4624 SDRSVC (716313d9f6b0529d03f726d5aaf6f191) C:\Windows\System32\SDRSVC.dll
18:04:04.0389 4624 SDRSVC - ok
18:04:04.0400 4624 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
18:04:04.0477 4624 secdrv - ok
18:04:04.0513 4624 seclogon (fd5199d4d8a521005e4b5ee7fe00fa9b) C:\Windows\system32\seclogon.dll
18:04:04.0556 4624 seclogon - ok
18:04:04.0575 4624 SENS (a9bbab5759771e523f55563d6cbe140f) C:\Windows\System32\sens.dll
18:04:04.0650 4624 SENS - ok
18:04:04.0697 4624 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys
18:04:04.0763 4624 Serenum - ok
18:04:04.0800 4624 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
18:04:04.0870 4624 Serial - ok
18:04:04.0916 4624 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
18:04:04.0955 4624 sermouse - ok
18:04:05.0105 4624 ServiceLayer (58d5bfdf3adf49fe9cabd78cc61d92f6) C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
18:04:05.0153 4624 ServiceLayer ( UnsignedFile.Multi.Generic ) - warning
18:04:05.0153 4624 ServiceLayer - detected UnsignedFile.Multi.Generic (1)
18:04:05.0206 4624 SessionEnv (d2193326f729b163125610dbf3e17d57) C:\Windows\system32\sessenv.dll
18:04:05.0267 4624 SessionEnv - ok
18:04:05.0298 4624 sffdisk (103b79418da647736ee95645f305f68a) C:\Windows\system32\drivers\sffdisk.sys
18:04:05.0380 4624 sffdisk - ok
18:04:05.0392 4624 sffp_mmc (8fd08a310645fe872eeec6e08c6bf3ee) C:\Windows\system32\drivers\sffp_mmc.sys
18:04:05.0458 4624 sffp_mmc - ok
18:04:05.0480 4624 sffp_sd (9cfa05fcfcb7124e69cfc812b72f9614) C:\Windows\system32\drivers\sffp_sd.sys
18:04:05.0555 4624 sffp_sd - ok
18:04:05.0578 4624 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
18:04:05.0644 4624 sfloppy - ok
18:04:05.0695 4624 SharedAccess (e1499bd0ff76b1b2fbbf1af339d91165) C:\Windows\System32\ipnathlp.dll
18:04:05.0756 4624 SharedAccess - ok
18:04:05.0814 4624 ShellHWDetection (c7230fbee14437716701c15be02c27b8) C:\Windows\System32\shsvcs.dll
18:04:05.0860 4624 ShellHWDetection - ok
18:04:05.0896 4624 sisagp (d2a595d6eebeeaf4334f8e50efbc9931) C:\Windows\system32\drivers\sisagp.sys
18:04:05.0916 4624 sisagp - ok
18:04:05.0946 4624 SiSRaid2 (cedd6f4e7d84e9f98b34b3fe988373aa) C:\Windows\system32\drivers\sisraid2.sys
18:04:05.0965 4624 SiSRaid2 - ok
18:04:05.0997 4624 SiSRaid4 (df843c528c4f69d12ce41ce462e973a7) C:\Windows\system32\drivers\sisraid4.sys
18:04:06.0017 4624 SiSRaid4 - ok
18:04:06.0144 4624 SkypeUpdate (6128e98eaaed364ed1a32708d2fd22cb) C:\Program Files\Skype\Updater\Updater.exe
18:04:06.0164 4624 SkypeUpdate - ok
18:04:06.0544 4624 slsvc (862bb4cbc05d80c5b45be430e5ef872f) C:\Windows\system32\SLsvc.exe
18:04:06.0824 4624 slsvc - ok
18:04:07.0039 4624 SLUINotify (6edc422215cd78aa8a9cde6b30abbd35) C:\Windows\system32\SLUINotify.dll
18:04:07.0103 4624 SLUINotify - ok
18:04:07.0167 4624 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
18:04:07.0199 4624 Smb - ok
18:04:07.0233 4624 SNMPTRAP (2a146a055b4401c16ee62d18b8e2a032) C:\Windows\System32\snmptrap.exe
18:04:07.0257 4624 SNMPTRAP - ok
18:04:07.0336 4624 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
18:04:07.0356 4624 spldr - ok
18:04:07.0396 4624 Spooler (8554097e5136c3bf9f69fe578a1b35f4) C:\Windows\System32\spoolsv.exe
18:04:07.0431 4624 Spooler - ok
18:04:07.0516 4624 SQLBrowser (5673e79bbb62a4c35b10d821ff1b4aca) c:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
18:04:07.0539 4624 SQLBrowser - ok
18:04:07.0577 4624 SQLWriter (9263c8898732e2b890f7e954e7729ab7) c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
18:04:07.0595 4624 SQLWriter - ok
18:04:07.0666 4624 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
18:04:07.0724 4624 srv - ok
18:04:07.0769 4624 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
18:04:07.0827 4624 srv2 - ok
18:04:07.0847 4624 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
18:04:07.0885 4624 srvnet - ok
18:04:07.0938 4624 SSDPSRV (03d50b37234967433a5ea5ba72bc0b62) C:\Windows\System32\ssdpsrv.dll
18:04:07.0985 4624 SSDPSRV - ok
18:04:08.0074 4624 SstpSvc (6f1a32e7b7b30f004d9a20afadb14944) C:\Windows\system32\sstpsvc.dll
18:04:08.0129 4624 SstpSvc - ok
18:04:08.0216 4624 stisvc (5de7d67e49b88f5f07f3e53c4b92a352) C:\Windows\System32\wiaservc.dll
18:04:08.0271 4624 stisvc - ok
18:04:08.0406 4624 stllssvr (b254b1434208f280edf3785613dcc41b) c:\Program Files\Common Files\SureThing Shared\stllssvr.exe
18:04:08.0416 4624 stllssvr ( UnsignedFile.Multi.Generic ) - warning
18:04:08.0416 4624 stllssvr - detected UnsignedFile.Multi.Generic (1)
18:04:08.0457 4624 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
18:04:08.0476 4624 swenum - ok
18:04:08.0533 4624 swprv (f21fd248040681cca1fb6c9a03aaa93d) C:\Windows\System32\swprv.dll
18:04:08.0578 4624 swprv - ok
18:04:08.0614 4624 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
18:04:08.0633 4624 Symc8xx - ok
18:04:08.0661 4624 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
18:04:08.0680 4624 Sym_hi - ok
18:04:08.0706 4624 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
18:04:08.0725 4624 Sym_u3 - ok
18:04:08.0801 4624 SynTP (f5d926807bd9bc0af68f9376144de425) C:\Windows\system32\DRIVERS\SynTP.sys
18:04:08.0823 4624 SynTP - ok
18:04:08.0906 4624 SysMain (9a51b04e9886aa4ee90093586b0ba88d) C:\Windows\system32\sysmain.dll
18:04:08.0959 4624 SysMain - ok
18:04:09.0004 4624 TabletInputService (2dca225eae15f42c0933e998ee0231c3) C:\Windows\System32\TabSvc.dll
18:04:09.0059 4624 TabletInputService - ok
18:04:09.0112 4624 TapiSrv (d7673e4b38ce21ee54c59eeeb65e2483) C:\Windows\System32\tapisrv.dll
18:04:09.0168 4624 TapiSrv - ok
18:04:09.0196 4624 TBS (cb05822cd9cc6c688168e113c603dbe7) C:\Windows\System32\tbssvc.dll
18:04:09.0240 4624 TBS - ok
18:04:09.0349 4624 Tcpip (27d470dabc77bc60d0a3b0e4deb6cb91) C:\Windows\system32\drivers\tcpip.sys
18:04:09.0406 4624 Tcpip - ok
18:04:09.0423 4624 Tcpip6 (27d470dabc77bc60d0a3b0e4deb6cb91) C:\Windows\system32\DRIVERS\tcpip.sys
18:04:09.0471 4624 Tcpip6 - ok
18:04:09.0505 4624 tcpipreg (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers\tcpipreg.sys
18:04:09.0526 4624 tcpipreg - ok
18:04:09.0554 4624 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
18:04:09.0594 4624 TDPIPE - ok
18:04:09.0609 4624 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
18:04:09.0649 4624 TDTCP - ok
18:04:09.0691 4624 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
18:04:09.0742 4624 tdx - ok
18:04:09.0791 4624 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
18:04:09.0812 4624 TermDD - ok
18:04:09.0894 4624 TermService (bb95da09bef6e7a131bff3ba5032090d) C:\Windows\System32\termsrv.dll
18:04:09.0954 4624 TermService - ok
18:04:10.0013 4624 Themes (c7230fbee14437716701c15be02c27b8) C:\Windows\system32\shsvcs.dll
18:04:10.0041 4624 Themes - ok
18:04:10.0076 4624 THREADORDER (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
18:04:10.0117 4624 THREADORDER - ok
18:04:10.0181 4624 TPM (6d9ad3534a9cf7e4b86c6eae8bc335f6) C:\Windows\system32\drivers\tpm.sys
18:04:10.0200 4624 TPM - ok
18:04:10.0231 4624 TrkWks (ec74e77d0eb004bd3a809b5f8fb8c2ce) C:\Windows\System32\trkwks.dll
18:04:10.0294 4624 TrkWks - ok
18:04:10.0348 4624 TrustedInstaller (97d9d6a04e3ad9b6c626b9931db78dba) C:\Windows\servicing\TrustedInstaller.exe
18:04:10.0378 4624 TrustedInstaller - ok
18:04:10.0418 4624 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
18:04:10.0458 4624 tssecsrv - ok
18:04:10.0527 4624 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
18:04:10.0558 4624 tunmp - ok
18:04:10.0576 4624 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
18:04:10.0618 4624 tunnel - ok
18:04:10.0659 4624 uagp35 (c3ade15414120033a36c0f293d4a4121) C:\Windows\system32\drivers\uagp35.sys
18:04:10.0679 4624 uagp35 - ok
18:04:10.0741 4624 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
18:04:10.0797 4624 udfs - ok
18:04:10.0865 4624 UDTT2BDA (af0998baeb9c0143ac2f58c7d9926965) C:\Windows\system32\Drivers\UDTT2BDA.sys
18:04:10.0908 4624 UDTT2BDA - ok
18:04:10.0942 4624 UI0Detect (ecef404f62863755951e09c802c94ad5) C:\Windows\system32\UI0Detect.exe
18:04:10.0987 4624 UI0Detect - ok
18:04:11.0008 4624 uliagpkx (75e6890ebfce0841d3291b02e7a8bdb0) C:\Windows\system32\drivers\uliagpkx.sys
18:04:11.0030 4624 uliagpkx - ok
18:04:11.0077 4624 uliahci (3cd4ea35a6221b85dcc25daa46313f8d) C:\Windows\system32\drivers\uliahci.sys
18:04:11.0106 4624 uliahci - ok
18:04:11.0157 4624 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
18:04:11.0178 4624 UlSata - ok
18:04:11.0210 4624 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
18:04:11.0231 4624 ulsata2 - ok
18:04:11.0261 4624 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
18:04:11.0312 4624 umbus - ok
18:04:11.0460 4624 UMVPFSrv (8b802b483cbde06f62dbc04dc7afaf8e) C:\Program Files\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
18:04:11.0491 4624 UMVPFSrv - ok
18:04:11.0571 4624 upnphost (68308183f4ae0be7bf8ecd07cb297999) C:\Windows\System32\upnphost.dll
18:04:11.0641 4624 upnphost - ok
18:04:11.0676 4624 upperdev (587e643a4e2ffd9a00f114b057ceb773) C:\Windows\system32\DRIVERS\usbser_lowerflt.sys
18:04:11.0738 4624 upperdev - ok
18:04:11.0790 4624 usbaudio (32db9517628ff0d070682aab61e688f0) C:\Windows\system32\drivers\usbaudio.sys
18:04:11.0833 4624 usbaudio - ok
18:04:11.0874 4624 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
18:04:11.0922 4624 usbccgp - ok
18:04:11.0972 4624 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
18:04:12.0063 4624 usbcir - ok
18:04:12.0128 4624 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
18:04:12.0159 4624 usbehci - ok
18:04:12.0209 4624 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
18:04:12.0258 4624 usbhub - ok
18:04:12.0285 4624 usbohci (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\DRIVERS\usbohci.sys
18:04:12.0352 4624 usbohci - ok
18:04:12.0391 4624 usbprint (b51e52acf758be00ef3a58ea452fe360) C:\Windows\system32\drivers\usbprint.sys
18:04:12.0481 4624 usbprint - ok
18:04:12.0545 4624 usbser (d575246188f63de0accf6eac5fb59e6a) C:\Windows\system32\DRIVERS\usbser.sys
18:04:12.0576 4624 usbser - ok
18:04:12.0618 4624 UsbserFilt (fca6a196d47cb972a0e4adc0db9cd17c) C:\Windows\system32\DRIVERS\usbser_lowerfltj.sys
18:04:12.0664 4624 UsbserFilt - ok
18:04:12.0701 4624 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
18:04:12.0732 4624 USBSTOR - ok
18:04:12.0772 4624 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
18:04:12.0803 4624 usbuhci - ok
18:04:12.0880 4624 usbvideo (e67998e8f14cb0627a769f6530bcb352) C:\Windows\system32\Drivers\usbvideo.sys
18:04:12.0923 4624 usbvideo - ok
18:04:12.0958 4624 UxSms (1509e705f3ac1d474c92454a5c2dd81f) C:\Windows\System32\uxsms.dll
18:04:12.0994 4624 UxSms - ok
18:04:13.0056 4624 vds (cd88d1b7776dc17a119049742ec07eb4) C:\Windows\System32\vds.exe
18:04:13.0107 4624 vds - ok
18:04:13.0152 4624 vga (7d92be0028ecdedec74617009084b5ef) C:\Windows\system32\DRIVERS\vgapnp.sys
18:04:13.0219 4624 vga - ok
18:04:13.0261 4624 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
18:04:13.0300 4624 VgaSave - ok
18:04:13.0329 4624 viaagp (045d9961e591cf0674a920b6ba3ba5cb) C:\Windows\system32\drivers\viaagp.sys
18:04:13.0349 4624 viaagp - ok
18:04:13.0378 4624 ViaC7 (56a4de5f02f2e88182b0981119b4dd98) C:\Windows\system32\drivers\viac7.sys
18:04:13.0460 4624 ViaC7 - ok
18:04:13.0484 4624 viaide (fd2e3175fcada350c7ab4521dca187ec) C:\Windows\system32\drivers\viaide.sys
18:04:13.0502 4624 viaide - ok
18:04:13.0540 4624 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
18:04:13.0561 4624 volmgr - ok
18:04:13.0628 4624 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
18:04:13.0658 4624 volmgrx - ok
18:04:13.0712 4624 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
18:04:13.0739 4624 volsnap - ok
18:04:13.0792 4624 vsmraid (d984439746d42b30fc65a4c3546c6829) C:\Windows\system32\drivers\vsmraid.sys
18:04:13.0814 4624 vsmraid - ok
18:04:13.0958 4624 VSS (db3d19f850c6eb32bdcb9bc0836acddb) C:\Windows\system32\vssvc.exe
18:04:14.0199 4624 VSS - ok
18:04:14.0266 4624 W32Time (96ea68b9eb310a69c25ebb0282b2b9de) C:\Windows\system32\w32time.dll
18:04:14.0328 4624 W32Time - ok
18:04:14.0396 4624 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
18:04:14.0472 4624 WacomPen - ok
18:04:14.0508 4624 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
18:04:14.0541 4624 Wanarp - ok
18:04:14.0545 4624 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
18:04:14.0577 4624 Wanarpv6 - ok
18:04:14.0636 4624 wcncsvc (a3cd60fd826381b49f03832590e069af) C:\Windows\System32\wcncsvc.dll
18:04:14.0677 4624 wcncsvc - ok
18:04:14.0715 4624 WcsPlugInService (11bcb7afcdd7aadacb5746f544d3a9c7) C:\Windows\System32\WcsPlugInService.dll
18:04:14.0751 4624 WcsPlugInService - ok
18:04:14.0784 4624 Wd (afc5ad65b991c1e205cf25cfdbf7a6f4) C:\Windows\system32\drivers\wd.sys
18:04:14.0802 4624 Wd - ok
18:04:14.0885 4624 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
18:04:14.0957 4624 Wdf01000 - ok
18:04:15.0003 4624 WdiServiceHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
18:04:15.0051 4624 WdiServiceHost - ok
18:04:15.0063 4624 WdiSystemHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
18:04:15.0109 4624 WdiSystemHost - ok
18:04:15.0161 4624 WebClient (04c37d8107320312fbae09926103d5e2) C:\Windows\System32\webclnt.dll
18:04:15.0209 4624 WebClient - ok
18:04:15.0279 4624 Wecsvc (ae3736e7e8892241c23e4ebbb7453b60) C:\Windows\system32\wecsvc.dll
18:04:15.0309 4624 Wecsvc - ok
18:04:15.0342 4624 wercplsupport (670ff720071ed741206d69bd995ea453) C:\Windows\System32\wercplsupport.dll
18:04:15.0394 4624 wercplsupport - ok
18:04:15.0446 4624 WerSvc (32b88481d3b326da6deb07b1d03481e7) C:\Windows\System32\WerSvc.dll
18:04:15.0485 4624 WerSvc - ok
18:04:15.0581 4624 WimFltr (f9ad3a5e3fd7e0bdb18b8202b0fdd4e4) C:\Windows\system32\DRIVERS\wimfltr.sys
18:04:15.0603 4624 WimFltr - ok
18:04:15.0705 4624 winachsf (e096ffb754f1e45ae1bddac1275ae2c5) C:\Windows\system32\DRIVERS\HSX_CNXT.sys
18:04:15.0816 4624 winachsf - ok
18:04:15.0943 4624 WinDefend (4575aa12561c5648483403541d0d7f2b) C:\Program Files\Windows Defender\mpsvc.dll
18:04:15.0971 4624 WinDefend - ok
18:04:15.0981 4624 WinHttpAutoProxySvc - ok
18:04:16.0065 4624 Winmgmt (6b2a1d0e80110e3d04e6863c6e62fd8a) C:\Windows\system32\wbem\WMIsvc.dll
18:04:16.0100 4624 Winmgmt - ok
18:04:16.0280 4624 WinRM (7cfe68bdc065e55aa5e8421607037511) C:\Windows\system32\WsmSvc.dll
18:04:16.0372 4624 WinRM - ok
18:04:16.0497 4624 Wlansvc (c008405e4feeb069e30da1d823910234) C:\Windows\System32\wlansvc.dll
18:04:16.0541 4624 Wlansvc - ok
18:04:16.0599 4624 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\DRIVERS\wmiacpi.sys
18:04:16.0629 4624 WmiAcpi - ok
18:04:16.0705 4624 wmiApSrv (43be3875207dcb62a85c8c49970b66cc) C:\Windows\system32\wbem\WmiApSrv.exe
18:04:16.0739 4624 wmiApSrv - ok
18:04:16.0881 4624 WMPNetworkSvc (3978704576a121a9204f8cc49a301a9b) C:\Program Files\Windows Media Player\wmpnetwk.exe
18:04:16.0934 4624 WMPNetworkSvc - ok
18:04:16.0987 4624 WPCSvc (cfc5a04558f5070cee3e3a7809f3ff52) C:\Windows\System32\wpcsvc.dll
18:04:17.0018 4624 WPCSvc - ok
18:04:17.0052 4624 WPDBusEnum (801fbdb89d472b3c467eb112a0fc9246) C:\Windows\system32\wpdbusenum.dll
18:04:17.0093 4624 WPDBusEnum - ok
18:04:17.0159 4624 WpdUsb (de9d36f91a4df3d911626643debf11ea) C:\Windows\system32\DRIVERS\wpdusb.sys
18:04:17.0181 4624 WpdUsb - ok
18:04:17.0358 4624 WPFFontCache_v0400 (dcf3e3edf5109ee8bc02fe6e1f045795) C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
18:04:17.0407 4624 WPFFontCache_v0400 - ok
18:04:17.0437 4624 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
18:04:17.0502 4624 ws2ifsl - ok
18:04:17.0535 4624 wscsvc (1ca6c40261ddc0425987980d0cd2aaab) C:\Windows\System32\wscsvc.dll
18:04:17.0564 4624 wscsvc - ok
18:04:17.0570 4624 WSearch - ok
18:04:17.0835 4624 wuauserv (6298277b73c77fa99106b271a7525163) C:\Windows\system32\wuaueng.dll
18:04:17.0951 4624 wuauserv - ok
18:04:18.0171 4624 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
18:04:18.0223 4624 WUDFRd - ok
18:04:18.0257 4624 wudfsvc (575a4190d989f64732119e4114045a4f) C:\Windows\System32\WUDFSvc.dll
18:04:18.0314 4624 wudfsvc - ok
18:04:18.0338 4624 XAudio (19e7c173b6242ad7521e537ae54768bf) C:\Windows\system32\DRIVERS\xaudio.sys
18:04:18.0355 4624 XAudio - ok
18:04:18.0424 4624 XAudioService (cda0bc78672b50c43649ff34e1fd0ff8) C:\Windows\system32\DRIVERS\xaudio.exe
18:04:18.0532 4624 XAudioService - ok
18:04:18.0592 4624 MBR (0x1B8) (15981f96ec482d8940c57118f9792f8c) \Device\Harddisk0\DR0
18:04:19.0276 4624 \Device\Harddisk0\DR0 - ok
18:04:19.0285 4624 Boot (0x1200) (612fb821cab46049e9d2196f8c38587f) \Device\Harddisk0\DR0\Partition0
18:04:19.0288 4624 \Device\Harddisk0\DR0\Partition0 - ok
18:04:19.0311 4624 Boot (0x1200) (47c65b431c458a93aa7aac0395bba361) \Device\Harddisk0\DR0\Partition1
18:04:19.0314 4624 \Device\Harddisk0\DR0\Partition1 - ok
18:04:19.0329 4624 Boot (0x1200) (d4c9d8101577cc7540e4f81fe29e4668) \Device\Harddisk0\DR0\Partition2
18:04:19.0331 4624 \Device\Harddisk0\DR0\Partition2 - ok
18:04:19.0332 4624 ============================================================
18:04:19.0332 4624 Scan finished
18:04:19.0332 4624 ============================================================
18:04:19.0353 4048 Detected object count: 4
18:04:19.0353 4048 Actual detected object count: 4
18:04:36.0559 4048 IDriverT ( UnsignedFile.Multi.Generic ) - skipped by user
18:04:36.0560 4048 IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Skip
18:04:36.0563 4048 PxHelp20 ( UnsignedFile.Multi.Generic ) - skipped by user
18:04:36.0564 4048 PxHelp20 ( UnsignedFile.Multi.Generic ) - User select action: Skip
18:04:36.0566 4048 ServiceLayer ( UnsignedFile.Multi.Generic ) - skipped by user
18:04:36.0566 4048 ServiceLayer ( UnsignedFile.Multi.Generic ) - User select action: Skip
18:04:36.0569 4048 stllssvr ( UnsignedFile.Multi.Generic ) - skipped by user
18:04:36.0569 4048 stllssvr ( UnsignedFile.Multi.Generic ) - User select action: Skip
18:04:44.0422 4528 Deinitialize success
Děkuji za Vaší snahu.
18:02:28.0249 3236 TDSS rootkit removing tool 2.7.37.0 May 23 2012 08:15:30
18:02:29.0837 3236 ============================================================
18:02:29.0837 3236 Current date / time: 2012/05/27 18:02:29.0837
18:02:29.0837 3236 SystemInfo:
18:02:29.0837 3236
18:02:29.0837 3236 OS Version: 6.0.6002 ServicePack: 2.0
18:02:29.0837 3236 Product type: Workstation
18:02:29.0838 3236 ComputerName: LUCINKA-PC
18:02:29.0838 3236 UserName: Lucinka
18:02:29.0838 3236 Windows directory: C:\Windows
18:02:29.0838 3236 System windows directory: C:\Windows
18:02:29.0838 3236 Processor architecture: Intel x86
18:02:29.0838 3236 Number of processors: 2
18:02:29.0838 3236 Page size: 0x1000
18:02:29.0838 3236 Boot type: Normal boot
18:02:29.0838 3236 ============================================================
18:02:31.0594 3236 Drive \Device\Harddisk0\DR0 - Size: 0x12A1F16000 (74.53 Gb), SectorSize: 0x200, Cylinders: 0x2861, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000050
18:02:31.0611 3236 ============================================================
18:02:31.0611 3236 \Device\Harddisk0\DR0:
18:02:31.0611 3236 MBR partitions:
18:02:31.0611 3236 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x8405FC1
18:02:31.0611 3236 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x8406000, BlocksNum 0xDEC000
18:02:31.0611 3236 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x91F4000, BlocksNum 0x31B000
18:02:31.0611 3236 ============================================================
18:02:31.0650 3236 C: <-> \Device\Harddisk0\DR0\Partition0
18:02:31.0716 3236 D: <-> \Device\Harddisk0\DR0\Partition1
18:02:31.0753 3236 E: <-> \Device\Harddisk0\DR0\Partition2
18:02:31.0755 3236 ============================================================
18:02:31.0755 3236 Initialize success
18:02:31.0755 3236 ============================================================
18:03:30.0710 4624 ============================================================
18:03:30.0710 4624 Scan started
18:03:30.0710 4624 Mode: Manual; SigCheck; TDLFS;
18:03:30.0710 4624 ============================================================
18:03:31.0168 4624 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
18:03:31.0345 4624 ACPI - ok
18:03:31.0475 4624 AdobeFlashPlayerUpdateSvc (76d5a3d2a50402a0b9b6ed13c4371e79) C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
18:03:31.0500 4624 AdobeFlashPlayerUpdateSvc - ok
18:03:31.0601 4624 adp94xx (2edc5bbac6c651ece337bde8ed97c9fb) C:\Windows\system32\drivers\adp94xx.sys
18:03:31.0637 4624 adp94xx - ok
18:03:31.0690 4624 adpahci (b84088ca3cdca97da44a984c6ce1ccad) C:\Windows\system32\drivers\adpahci.sys
18:03:31.0717 4624 adpahci - ok
18:03:31.0756 4624 adpu160m (7880c67bccc27c86fd05aa2afb5ea469) C:\Windows\system32\drivers\adpu160m.sys
18:03:31.0776 4624 adpu160m - ok
18:03:31.0809 4624 adpu320 (9ae713f8e30efc2abccd84904333df4d) C:\Windows\system32\drivers\adpu320.sys
18:03:31.0832 4624 adpu320 - ok
18:03:31.0903 4624 AeLookupSvc (9d1fda9e086ba64e3c93c9de32461bcf) C:\Windows\System32\aelupsvc.dll
18:03:31.0992 4624 AeLookupSvc - ok
18:03:32.0088 4624 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
18:03:32.0134 4624 AFD - ok
18:03:32.0212 4624 agp440 (ef23439cdd587f64c2c1b8825cead7d8) C:\Windows\system32\drivers\agp440.sys
18:03:32.0232 4624 agp440 - ok
18:03:32.0286 4624 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
18:03:32.0306 4624 aic78xx - ok
18:03:32.0346 4624 ALG (a1545b731579895d8cc44fc0481c1192) C:\Windows\System32\alg.exe
18:03:32.0424 4624 ALG - ok
18:03:32.0451 4624 aliide (90395b64600ebb4552e26e178c94b2e4) C:\Windows\system32\drivers\aliide.sys
18:03:32.0470 4624 aliide - ok
18:03:32.0492 4624 amdagp (2b13e304c9dfdfa5eb582f6a149fa2c7) C:\Windows\system32\drivers\amdagp.sys
18:03:32.0512 4624 amdagp - ok
18:03:32.0529 4624 amdide (0577df1d323fe75a739c787893d300ea) C:\Windows\system32\drivers\amdide.sys
18:03:32.0546 4624 amdide - ok
18:03:32.0614 4624 AmdK7 (dc487885bcef9f28eece6fac0e5ddfc5) C:\Windows\system32\drivers\amdk7.sys
18:03:32.0717 4624 AmdK7 - ok
18:03:32.0743 4624 AmdK8 (0ca0071da4315b00fc1328ca86b425da) C:\Windows\system32\DRIVERS\amdk8.sys
18:03:32.0844 4624 AmdK8 - ok
18:03:32.0923 4624 Appinfo (c6d704c7f0434dc791aac37cac4b6e14) C:\Windows\System32\appinfo.dll
18:03:32.0963 4624 Appinfo - ok
18:03:33.0016 4624 arc (5f673180268bb1fdb69c99b6619fe379) C:\Windows\system32\drivers\arc.sys
18:03:33.0036 4624 arc - ok
18:03:33.0089 4624 arcsas (957f7540b5e7f602e44648c7de5a1c05) C:\Windows\system32\drivers\arcsas.sys
18:03:33.0109 4624 arcsas - ok
18:03:33.0173 4624 aswFsBlk (0ae43c6c411254049279c2ee55630f95) C:\Windows\system32\drivers\aswFsBlk.sys
18:03:33.0223 4624 aswFsBlk - ok
18:03:33.0290 4624 aswMonFlt (6693141560b1615d8dccf0d8eb00087e) C:\Windows\system32\drivers\aswMonFlt.sys
18:03:33.0308 4624 aswMonFlt - ok
18:03:33.0344 4624 aswRdr (da12626fd9a67f4e917e2f2fbe1e1764) C:\Windows\system32\drivers\aswRdr.sys
18:03:33.0361 4624 aswRdr - ok
18:03:33.0481 4624 aswSnx (dcb199b967375753b5019ec15f008f53) C:\Windows\system32\drivers\aswSnx.sys
18:03:33.0554 4624 aswSnx - ok
18:03:33.0658 4624 aswSP (b32873e5a1443c0a1e322266e203bf10) C:\Windows\system32\drivers\aswSP.sys
18:03:33.0715 4624 aswSP - ok
18:03:33.0762 4624 aswTdi (6ff544175a9180c5d88534d3d9c9a9f7) C:\Windows\system32\drivers\aswTdi.sys
18:03:33.0780 4624 aswTdi - ok
18:03:33.0847 4624 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
18:03:33.0900 4624 AsyncMac - ok
18:03:33.0925 4624 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys
18:03:33.0945 4624 atapi - ok
18:03:34.0035 4624 AudioEndpointBuilder (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
18:03:34.0083 4624 AudioEndpointBuilder - ok
18:03:34.0089 4624 Audiosrv (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
18:03:34.0124 4624 Audiosrv - ok
18:03:34.0197 4624 avast! Antivirus (4041d31508a2a084dfb42c595854090f) C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
18:03:34.0217 4624 avast! Antivirus - ok
18:03:34.0299 4624 b57nd60x (8e287eb3a52fd30c999482c576f4a61b) C:\Windows\system32\DRIVERS\b57nd60x.sys
18:03:34.0380 4624 b57nd60x - ok
18:03:34.0507 4624 BCM43XV (cf6a67c90951e3e763d2135dede44b85) C:\Windows\system32\DRIVERS\bcmwl6.sys
18:03:34.0605 4624 BCM43XV - ok
18:03:34.0662 4624 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
18:03:34.0717 4624 Beep - ok
18:03:34.0810 4624 BFE (c789af0f724fda5852fb9a7d3a432381) C:\Windows\System32\bfe.dll
18:03:34.0872 4624 BFE - ok
18:03:35.0027 4624 BITS (93952506c6d67330367f7e7934b6a02f) C:\Windows\System32\qmgr.dll
18:03:35.0100 4624 BITS - ok
18:03:35.0105 4624 blbdrive - ok
18:03:35.0164 4624 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
18:03:35.0200 4624 bowser - ok
18:03:35.0252 4624 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
18:03:35.0300 4624 BrFiltLo - ok
18:03:35.0326 4624 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
18:03:35.0388 4624 BrFiltUp - ok
18:03:35.0436 4624 Browser (a3629a0c4226f9e9c72faaeebc3ad33c) C:\Windows\System32\browser.dll
18:03:35.0512 4624 Browser - ok
18:03:35.0575 4624 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
18:03:35.0664 4624 Brserid - ok
18:03:35.0700 4624 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
18:03:35.0781 4624 BrSerWdm - ok
18:03:35.0792 4624 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
18:03:35.0878 4624 BrUsbMdm - ok
18:03:35.0899 4624 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
18:03:35.0972 4624 BrUsbSer - ok
18:03:36.0031 4624 BthEnum (6d39c954799b63ba866910234cf7d726) C:\Windows\system32\DRIVERS\BthEnum.sys
18:03:36.0071 4624 BthEnum - ok
18:03:36.0135 4624 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
18:03:36.0216 4624 BTHMODEM - ok
18:03:36.0244 4624 BthPan (5904efa25f829bf84ea6fb045134a1d8) C:\Windows\system32\DRIVERS\bthpan.sys
18:03:36.0301 4624 BthPan - ok
18:03:36.0413 4624 BTHPORT (611ff3f2f095c8d4a6d4cfd9dcc09793) C:\Windows\system32\Drivers\BTHport.sys
18:03:36.0467 4624 BTHPORT - ok
18:03:36.0501 4624 BthServ (a4c8377fa4a994e07075107dbe2e3dce) C:\Windows\System32\bthserv.dll
18:03:36.0537 4624 BthServ - ok
18:03:36.0582 4624 BTHUSB (d330803eab2a15caec7f011f1d4cb30e) C:\Windows\system32\Drivers\BTHUSB.sys
18:03:36.0622 4624 BTHUSB - ok
18:03:36.0688 4624 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
18:03:36.0747 4624 cdfs - ok
18:03:36.0808 4624 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
18:03:36.0866 4624 cdrom - ok
18:03:36.0937 4624 CertPropSvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
18:03:37.0003 4624 CertPropSvc - ok
18:03:37.0043 4624 circlass (da8e0afc7baa226c538ef53ac2f90897) C:\Windows\system32\drivers\circlass.sys
18:03:37.0132 4624 circlass - ok
18:03:37.0182 4624 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
18:03:37.0210 4624 CLFS - ok
18:03:37.0300 4624 clr_optimization_v2.0.50727_32 (8ee772032e2fe80a924f3b8dd5082194) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:03:37.0320 4624 clr_optimization_v2.0.50727_32 - ok
18:03:37.0394 4624 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:03:37.0415 4624 clr_optimization_v4.0.30319_32 - ok
18:03:37.0487 4624 CmBatt (99afc3795b58cc478fbbbcdc658fcb56) C:\Windows\system32\DRIVERS\CmBatt.sys
18:03:37.0544 4624 CmBatt - ok
18:03:37.0577 4624 cmdide (45201046c776ffdaf3fc8a0029c581c8) C:\Windows\system32\drivers\cmdide.sys
18:03:37.0595 4624 cmdide - ok
18:03:37.0681 4624 CnxtHdAudService (b6e7991e3d6146c04c85cd31af22a381) C:\Windows\system32\drivers\CHDRT32.sys
18:03:37.0706 4624 CnxtHdAudService - ok
18:03:37.0830 4624 Com4QLBEx (c7a0e61d5714ac20de52d4f66ec773b8) C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
18:03:37.0852 4624 Com4QLBEx - ok
18:03:37.0907 4624 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\DRIVERS\compbatt.sys
18:03:37.0926 4624 Compbatt - ok
18:03:37.0930 4624 COMSysApp - ok
18:03:37.0948 4624 crcdisk (2a213ae086bbec5e937553c7d9a2b22c) C:\Windows\system32\drivers\crcdisk.sys
18:03:37.0966 4624 crcdisk - ok
18:03:37.0988 4624 Crusoe (22a7f883508176489f559ee745b5bf5d) C:\Windows\system32\drivers\crusoe.sys
18:03:38.0065 4624 Crusoe - ok
18:03:38.0135 4624 CryptSvc (fb27772beaf8e1d28ccd825c09da939b) C:\Windows\system32\cryptsvc.dll
18:03:38.0214 4624 CryptSvc - ok
18:03:38.0326 4624 DcomLaunch (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
18:03:38.0379 4624 DcomLaunch - ok
18:03:38.0446 4624 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
18:03:38.0492 4624 DfsC - ok
18:03:38.0757 4624 DFSR (2cc3dcfb533a1035b13dcab6160ab38b) C:\Windows\system32\DFSR.exe
18:03:38.0934 4624 DFSR - ok
18:03:39.0169 4624 Dhcp (9028559c132146fb75eb7acf384b086a) C:\Windows\System32\dhcpcsvc.dll
18:03:39.0206 4624 Dhcp - ok
18:03:39.0293 4624 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
18:03:39.0314 4624 disk - ok
18:03:39.0391 4624 Dnscache (57d762f6f5974af0da2be88a3349baaa) C:\Windows\System32\dnsrslvr.dll
18:03:39.0430 4624 Dnscache - ok
18:03:39.0486 4624 dot3svc (324fd74686b1ef5e7c19a8af49e748f6) C:\Windows\System32\dot3svc.dll
18:03:39.0539 4624 dot3svc - ok
18:03:39.0624 4624 DPS (a622e888f8aa2f6b49e9bc466f0e5def) C:\Windows\system32\dps.dll
18:03:39.0679 4624 DPS - ok
18:03:39.0747 4624 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
18:03:39.0778 4624 drmkaud - ok
18:03:39.0900 4624 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
18:03:39.0945 4624 DXGKrnl - ok
18:03:39.0996 4624 E100B (5c940a174dfb2c42b9f6ba6edc2baa0b) C:\Windows\system32\DRIVERS\e100b325.sys
18:03:40.0016 4624 E100B - ok
18:03:40.0064 4624 E1G60 (f88fb26547fd2ce6d0a5af2985892c48) C:\Windows\system32\DRIVERS\E1G60I32.sys
18:03:40.0147 4624 E1G60 - ok
18:03:40.0239 4624 EapHost (c0b95e40d85cd807d614e264248a45b9) C:\Windows\System32\eapsvc.dll
18:03:40.0272 4624 EapHost - ok
18:03:40.0344 4624 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
18:03:40.0369 4624 Ecache - ok
18:03:40.0442 4624 elxstor (e8f3f21a71720c84bcf423b80028359f) C:\Windows\system32\drivers\elxstor.sys
18:03:40.0469 4624 elxstor - ok
18:03:40.0568 4624 EMDMgmt (4e6b23dfc917ea39306b529b773950f4) C:\Windows\system32\emdmgmt.dll
18:03:40.0609 4624 EMDMgmt - ok
18:03:40.0693 4624 EventSystem (67058c46504bc12d821f38cf99b7b28f) C:\Windows\system32\es.dll
18:03:40.0752 4624 EventSystem - ok
18:03:40.0834 4624 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
18:03:40.0859 4624 exfat - ok
18:03:40.0905 4624 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
18:03:40.0948 4624 fastfat - ok
18:03:40.0984 4624 fdc (63bdada84951b9c03e641800e176898a) C:\Windows\system32\DRIVERS\fdc.sys
18:03:41.0063 4624 fdc - ok
18:03:41.0094 4624 fdPHost (6629b5f0e98151f4afdd87567ea32ba3) C:\Windows\system32\fdPHost.dll
18:03:41.0151 4624 fdPHost - ok
18:03:41.0186 4624 FDResPub (89ed56dce8e47af40892778a5bd31fd2) C:\Windows\system32\fdrespub.dll
18:03:41.0272 4624 FDResPub - ok
18:03:41.0315 4624 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
18:03:41.0335 4624 FileInfo - ok
18:03:41.0365 4624 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
18:03:41.0419 4624 Filetrace - ok
18:03:41.0448 4624 flpydisk (6603957eff5ec62d25075ea8ac27de68) C:\Windows\system32\DRIVERS\flpydisk.sys
18:03:41.0526 4624 flpydisk - ok
18:03:41.0582 4624 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
18:03:41.0608 4624 FltMgr - ok
18:03:41.0789 4624 FontCache (8ce364388c8eca59b14b539179276d44) C:\Windows\system32\FntCache.dll
18:03:41.0848 4624 FontCache - ok
18:03:41.0959 4624 FontCache3.0.0.0 (c7fbdd1ed42f82bfa35167a5c9803ea3) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
18:03:41.0978 4624 FontCache3.0.0.0 - ok
18:03:42.0021 4624 Fs_Rec (b972a66758577e0bfd1de0f91aaa27b5) C:\Windows\system32\drivers\Fs_Rec.sys
18:03:42.0057 4624 Fs_Rec - ok
18:03:42.0100 4624 gagp30kx (4e1cd0a45c50a8882616cae5bf82f3c5) C:\Windows\system32\drivers\gagp30kx.sys
18:03:42.0120 4624 gagp30kx - ok
18:03:42.0202 4624 gpsvc (cd5d0aeee35dfd4e986a5aa1500a6e66) C:\Windows\System32\gpsvc.dll
18:03:42.0253 4624 gpsvc - ok
18:03:42.0394 4624 gupdate (8f0de4fef8201e306f9938b0905ac96a) C:\Program Files\Google\Update\GoogleUpdate.exe
18:03:42.0413 4624 gupdate - ok
18:03:42.0443 4624 gupdatem (8f0de4fef8201e306f9938b0905ac96a) C:\Program Files\Google\Update\GoogleUpdate.exe
18:03:42.0460 4624 gupdatem - ok
18:03:42.0509 4624 HBtnKey (93aee3434935fc2f805fefd8dc5ed1b4) C:\Windows\system32\DRIVERS\cpqbttn.sys
18:03:42.0526 4624 HBtnKey - ok
18:03:42.0603 4624 HdAudAddService (07eee11d6e2b78122e17db3878b4c687) C:\Windows\system32\drivers\CHDART.sys
18:03:42.0635 4624 HdAudAddService - ok
18:03:42.0717 4624 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
18:03:42.0785 4624 HDAudBus - ok
18:03:42.0835 4624 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
18:03:42.0938 4624 HidBth - ok
18:03:42.0957 4624 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
18:03:43.0038 4624 HidIr - ok
18:03:43.0075 4624 hidserv (84067081f3318162797385e11a8f0582) C:\Windows\system32\hidserv.dll
18:03:43.0111 4624 hidserv - ok
18:03:43.0140 4624 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
18:03:43.0182 4624 HidUsb - ok
18:03:43.0220 4624 hkmsvc (d8ad255b37da92434c26e4876db7d418) C:\Windows\system32\kmsvc.dll
18:03:43.0284 4624 hkmsvc - ok
18:03:43.0388 4624 HP Health Check Service (8fda52d97a23c2bfc938b86bebae4c2c) C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
18:03:43.0404 4624 HP Health Check Service - ok
18:03:43.0443 4624 HpCISSs (df353b401001246853763c4b7aaa6f50) C:\Windows\system32\drivers\hpcisss.sys
18:03:43.0461 4624 HpCISSs - ok
18:03:43.0485 4624 HpqKbFiltr (1210960ff8928950d2a786895b0c424a) C:\Windows\system32\DRIVERS\HpqKbFiltr.sys
18:03:43.0515 4624 HpqKbFiltr - ok
18:03:43.0573 4624 hpqwmiex (fdf273a845f1ffcceadf363aaf47582f) C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
18:03:43.0595 4624 hpqwmiex - ok
18:03:43.0677 4624 HSFHWAZL (46d67209550973257601a533e2ac5785) C:\Windows\system32\DRIVERS\VSTAZL3.SYS
18:03:43.0735 4624 HSFHWAZL - ok
18:03:43.0871 4624 HSF_DPV (1882827f41dee51c70e24c567c35bfb5) C:\Windows\system32\DRIVERS\HSX_DPV.sys
18:03:43.0974 4624 HSF_DPV - ok
18:03:44.0041 4624 HSXHWAZL (a44ddf3ba83e4664bf4de9220097578c) C:\Windows\system32\DRIVERS\HSXHWAZL.sys
18:03:44.0064 4624 HSXHWAZL - ok
18:03:44.0151 4624 HTTP (0eeeca26c8d4bde2a4664db058a81937) C:\Windows\system32\drivers\HTTP.sys
18:03:44.0205 4624 HTTP - ok
18:03:44.0275 4624 Huawei (c1258adcbe6e51a3c06c234d2bdb81b5) C:\Windows\system32\DRIVERS\ewdcsc.sys
18:03:44.0293 4624 Huawei - ok
18:03:44.0416 4624 hwdatacard (0515065a3c7e8869dd01253e987c5bd1) C:\Windows\system32\DRIVERS\ewusbmdm.sys
18:03:44.0458 4624 hwdatacard - ok
18:03:44.0511 4624 hwusbdev (a259d3619aa23d4562581067f85e2006) C:\Windows\system32\DRIVERS\ewusbdev.sys
18:03:44.0539 4624 hwusbdev - ok
18:03:44.0609 4624 i2omp (324c2152ff2c61abae92d09f3cca4d63) C:\Windows\system32\drivers\i2omp.sys
18:03:44.0627 4624 i2omp - ok
18:03:44.0701 4624 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
18:03:44.0732 4624 i8042prt - ok
18:03:45.0020 4624 ialm (9378d57e2b96c0a185d844770ad49948) C:\Windows\system32\DRIVERS\igdkmd32.sys
18:03:45.0196 4624 ialm - ok
18:03:45.0427 4624 iaStorV (c957bf4b5d80b46c5017bf0101e6c906) C:\Windows\system32\drivers\iastorv.sys
18:03:45.0452 4624 iaStorV - ok
18:03:45.0554 4624 IDriverT (6f95324909b502e2651442c1548ab12f) C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
18:03:45.0598 4624 IDriverT ( UnsignedFile.Multi.Generic ) - warning
18:03:45.0598 4624 IDriverT - detected UnsignedFile.Multi.Generic (1)
18:03:45.0771 4624 idsvc (98477b08e61945f974ed9fdc4cb6bdab) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
18:03:45.0842 4624 idsvc - ok
18:03:46.0260 4624 igfx (9378d57e2b96c0a185d844770ad49948) C:\Windows\system32\DRIVERS\igdkmd32.sys
18:03:46.0333 4624 igfx - ok
18:03:46.0510 4624 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
18:03:46.0528 4624 iirsp - ok
18:03:46.0614 4624 IKEEXT (9908d8a397b76cd8d31d0d383c5773c9) C:\Windows\System32\ikeext.dll
18:03:46.0677 4624 IKEEXT - ok
18:03:46.0738 4624 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys
18:03:46.0758 4624 intelide - ok
18:03:46.0822 4624 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
18:03:46.0873 4624 intelppm - ok
18:03:46.0922 4624 IPBusEnum (9ac218c6e6105477484c6fdbe7d409a4) C:\Windows\system32\ipbusenum.dll
18:03:46.0994 4624 IPBusEnum - ok
18:03:47.0027 4624 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
18:03:47.0087 4624 IpFilterDriver - ok
18:03:47.0141 4624 iphlpsvc (1998bd97f950680bb55f55a7244679c2) C:\Windows\System32\iphlpsvc.dll
18:03:47.0184 4624 iphlpsvc - ok
18:03:47.0192 4624 IpInIp - ok
18:03:47.0234 4624 IPMIDRV (40f34f8aba2a015d780e4b09138b6c17) C:\Windows\system32\drivers\ipmidrv.sys
18:03:47.0324 4624 IPMIDRV - ok
18:03:47.0367 4624 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
18:03:47.0420 4624 IPNAT - ok
18:03:47.0447 4624 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
18:03:47.0501 4624 IRENUM - ok
18:03:47.0527 4624 isapnp (350fca7e73cf65bcef43fae1e4e91293) C:\Windows\system32\drivers\isapnp.sys
18:03:47.0546 4624 isapnp - ok
18:03:47.0630 4624 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
18:03:47.0655 4624 iScsiPrt - ok
18:03:47.0678 4624 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
18:03:47.0697 4624 iteatapi - ok
18:03:47.0731 4624 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
18:03:47.0750 4624 iteraid - ok
18:03:47.0787 4624 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
18:03:47.0807 4624 kbdclass - ok
18:03:47.0857 4624 kbdhid (ede59ec70e25c24581add1fbec7325f7) C:\Windows\system32\DRIVERS\kbdhid.sys
18:03:47.0899 4624 kbdhid - ok
18:03:47.0949 4624 KeyIso (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
18:03:47.0982 4624 KeyIso - ok
18:03:48.0038 4624 KSecDD (2b2f1638466e8cb091400c9019cc730e) C:\Windows\system32\Drivers\ksecdd.sys
18:03:48.0074 4624 KSecDD - ok
18:03:48.0174 4624 KtmRm (8078f8f8f7a79e2e6b494523a828c585) C:\Windows\system32\msdtckrm.dll
18:03:48.0253 4624 KtmRm - ok
18:03:48.0294 4624 LanmanServer (1bf5eebfd518dd7298434d8c862f825d) C:\Windows\system32\srvsvc.dll
18:03:48.0333 4624 LanmanServer - ok
18:03:48.0404 4624 LanmanWorkstation (1db69705b695b987082c8baec0c6b34f) C:\Windows\System32\wkssvc.dll
18:03:48.0434 4624 LanmanWorkstation - ok
18:03:48.0468 4624 Lbd (b7c19ec8b0dd7efa58ad41ffeb8b8cda) C:\Windows\system32\DRIVERS\Lbd.sys
18:03:48.0486 4624 Lbd - ok
18:03:48.0524 4624 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
18:03:48.0583 4624 lltdio - ok
18:03:48.0632 4624 lltdsvc (2d5a428872f1442631d0959a34abff63) C:\Windows\System32\lltdsvc.dll
18:03:48.0677 4624 lltdsvc - ok
18:03:48.0720 4624 lmhosts (35d40113e4a5b961b6ce5c5857702518) C:\Windows\System32\lmhsvc.dll
18:03:48.0803 4624 lmhosts - ok
18:03:48.0855 4624 LSI_FC (a2262fb9f28935e862b4db46438c80d2) C:\Windows\system32\drivers\lsi_fc.sys
18:03:48.0875 4624 LSI_FC - ok
18:03:48.0902 4624 LSI_SAS (30d73327d390f72a62f32c103daf1d6d) C:\Windows\system32\drivers\lsi_sas.sys
18:03:48.0923 4624 LSI_SAS - ok
18:03:48.0950 4624 LSI_SCSI (e1e36fefd45849a95f1ab81de0159fe3) C:\Windows\system32\drivers\lsi_scsi.sys
18:03:48.0970 4624 LSI_SCSI - ok
18:03:49.0014 4624 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
18:03:49.0065 4624 luafv - ok
18:03:49.0157 4624 lvpopflt (af280405c10f0d20f37670b7432e5c2f) C:\Windows\system32\DRIVERS\lvpopflt.sys
18:03:49.0176 4624 lvpopflt - ok
18:03:49.0237 4624 LVPr2Mon (8be71d7edb8c7494913722059f760dd0) C:\Windows\system32\DRIVERS\LVPr2Mon.sys
18:03:49.0252 4624 LVPr2Mon - ok
18:03:49.0328 4624 LVRS (b6e1ccd6572984adcae68439afd07011) C:\Windows\system32\DRIVERS\lvrs.sys
18:03:49.0352 4624 LVRS - ok
18:03:49.0818 4624 LVUVC (6c42815dd57e397f0cd988304b5eb4b3) C:\Windows\system32\DRIVERS\lvuvc.sys
18:03:50.0088 4624 LVUVC - ok
18:03:50.0946 4624 mdmxsdk (0cea2d0d3fa284b85ed5b68365114f76) C:\Windows\system32\DRIVERS\mdmxsdk.sys
18:03:50.0991 4624 mdmxsdk - ok
18:03:51.0027 4624 megasas (d153b14fc6598eae8422a2037553adce) C:\Windows\system32\drivers\megasas.sys
18:03:51.0046 4624 megasas - ok
18:03:51.0086 4624 MMCSS (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
18:03:51.0141 4624 MMCSS - ok
18:03:51.0166 4624 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
18:03:51.0205 4624 Modem - ok
18:03:51.0259 4624 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
18:03:51.0314 4624 monitor - ok
18:03:51.0349 4624 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
18:03:51.0369 4624 mouclass - ok
18:03:51.0401 4624 mouhid (a3a6dff7e9e757db3df51a833bc28885) C:\Windows\system32\drivers\mouhid.sys
18:03:51.0467 4624 mouhid - ok
18:03:51.0499 4624 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
18:03:51.0520 4624 MountMgr - ok
18:03:51.0633 4624 MozillaMaintenance (96aa8ba23142cc8e2b30f3cae0c80254) C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
18:03:51.0656 4624 MozillaMaintenance - ok
18:03:51.0716 4624 mpio (583a41f26278d9e0ea548163d6139397) C:\Windows\system32\drivers\mpio.sys
18:03:51.0736 4624 mpio - ok
18:03:51.0768 4624 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
18:03:51.0812 4624 mpsdrv - ok
18:03:51.0957 4624 MpsSvc (5de62c6e9108f14f6794060a9bdecaec) C:\Windows\system32\mpssvc.dll
18:03:52.0023 4624 MpsSvc - ok
18:03:52.0251 4624 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
18:03:52.0269 4624 Mraid35x - ok
18:03:52.0312 4624 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
18:03:52.0372 4624 MRxDAV - ok
18:03:52.0414 4624 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
18:03:52.0437 4624 mrxsmb - ok
18:03:52.0475 4624 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
18:03:52.0523 4624 mrxsmb10 - ok
18:03:52.0551 4624 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
18:03:52.0587 4624 mrxsmb20 - ok
18:03:52.0654 4624 msahci (5457dcfa7c0da43522f4d9d4049c1472) C:\Windows\system32\drivers\msahci.sys
18:03:52.0676 4624 msahci - ok
18:03:52.0710 4624 msdsm (3fc82a2ae4cc149165a94699183d3028) C:\Windows\system32\drivers\msdsm.sys
18:03:52.0732 4624 msdsm - ok
18:03:52.0788 4624 MSDTC (fd7520cc3a80c5fc8c48852bb24c6ded) C:\Windows\System32\msdtc.exe
18:03:52.0859 4624 MSDTC - ok
18:03:52.0901 4624 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
18:03:52.0941 4624 Msfs - ok
18:03:53.0007 4624 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
18:03:53.0025 4624 msisadrv - ok
18:03:53.0069 4624 MSiSCSI (85466c0757a23d9a9aecdc0755203cb2) C:\Windows\system32\iscsiexe.dll
18:03:53.0112 4624 MSiSCSI - ok
18:03:53.0117 4624 msiserver - ok
18:03:53.0153 4624 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
18:03:53.0205 4624 MSKSSRV - ok
18:03:53.0222 4624 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
18:03:53.0261 4624 MSPCLOCK - ok
18:03:53.0279 4624 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
18:03:53.0331 4624 MSPQM - ok
18:03:53.0374 4624 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
18:03:53.0399 4624 MsRPC - ok
18:03:53.0421 4624 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
18:03:53.0440 4624 mssmbios - ok
18:03:53.0495 4624 MSSQL$MSSMLBIZ - ok
18:03:53.0520 4624 MSSQLServerADHelper (adaf062116b4e6d96e44d26486a87af6) c:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe
18:03:53.0538 4624 MSSQLServerADHelper - ok
18:03:53.0581 4624 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
18:03:53.0634 4624 MSTEE - ok
18:03:53.0663 4624 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
18:03:53.0684 4624 Mup - ok
18:03:53.0744 4624 napagent (e4eaf0c5c1b41b5c83386cf212ca9584) C:\Windows\system32\qagentRT.dll
18:03:53.0788 4624 napagent - ok
18:03:53.0842 4624 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
18:03:53.0888 4624 NativeWifiP - ok
18:03:53.0992 4624 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
18:03:54.0062 4624 NDIS - ok
18:03:54.0115 4624 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
18:03:54.0175 4624 NdisTapi - ok
18:03:54.0210 4624 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
18:03:54.0264 4624 Ndisuio - ok
18:03:54.0318 4624 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
18:03:54.0364 4624 NdisWan - ok
18:03:54.0399 4624 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
18:03:54.0430 4624 NDProxy - ok
18:03:54.0448 4624 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
18:03:54.0487 4624 NetBIOS - ok
18:03:54.0530 4624 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
18:03:54.0576 4624 netbt - ok
18:03:54.0628 4624 Netlogon (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
18:03:54.0649 4624 Netlogon - ok
18:03:54.0709 4624 Netman (c8052711daecc48b982434c5116ca401) C:\Windows\System32\netman.dll
18:03:54.0775 4624 Netman - ok
18:03:54.0839 4624 netprofm (2ef3bbe22e5a5acd1428ee387a0d0172) C:\Windows\System32\netprofm.dll
18:03:54.0886 4624 netprofm - ok
18:03:54.0973 4624 NetTcpPortSharing (d6c4e4a39a36029ac0813d476fbd0248) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
18:03:55.0000 4624 NetTcpPortSharing - ok
18:03:55.0243 4624 NETw3v32 (a15f219208843a5a210c8cb391384453) C:\Windows\system32\DRIVERS\NETw3v32.sys
18:03:55.0393 4624 NETw3v32 - ok
18:03:55.0801 4624 NETw4v32 (38d720e0c8b0ecb9a019980265679798) C:\Windows\system32\DRIVERS\NETw4v32.sys
18:03:55.0920 4624 NETw4v32 - ok
18:03:56.0575 4624 NETw5v32 (8de67bd902095a13329fd82c85a1fa09) C:\Windows\system32\DRIVERS\NETw5v32.sys
18:03:56.0764 4624 NETw5v32 - ok
18:03:56.0942 4624 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
18:03:56.0965 4624 nfrd960 - ok
18:03:57.0016 4624 NlaSvc (2997b15415f9bbe05b5a4c1c85e0c6a2) C:\Windows\System32\nlasvc.dll
18:03:57.0078 4624 NlaSvc - ok
18:03:57.0145 4624 nmwcd (4a8a2aa0706b659175169decf198e9d7) C:\Windows\system32\drivers\ccdcmb.sys
18:03:57.0209 4624 nmwcd - ok
18:03:57.0282 4624 nmwcdc (fd3e61831095ac62e6840d986b5a2016) C:\Windows\system32\drivers\ccdcmbo.sys
18:03:57.0321 4624 nmwcdc - ok
18:03:57.0357 4624 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
18:03:57.0412 4624 Npfs - ok
18:03:57.0444 4624 nsi (8bb86f0c7eea2bded6fe095d0b4ca9bd) C:\Windows\system32\nsisvc.dll
18:03:57.0487 4624 nsi - ok
18:03:57.0501 4624 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
18:03:57.0566 4624 nsiproxy - ok
18:03:57.0711 4624 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
18:03:57.0777 4624 Ntfs - ok
18:03:57.0836 4624 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
18:03:57.0916 4624 ntrigdigi - ok
18:03:57.0939 4624 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
18:03:57.0998 4624 Null - ok
18:03:58.0023 4624 nvraid (e69e946f80c1c31c53003bfbf50cbb7c) C:\Windows\system32\drivers\nvraid.sys
18:03:58.0043 4624 nvraid - ok
18:03:58.0067 4624 nvstor (9e0ba19a28c498a6d323d065db76dffc) C:\Windows\system32\drivers\nvstor.sys
18:03:58.0086 4624 nvstor - ok
18:03:58.0109 4624 nv_agp (07c186427eb8fcc3d8d7927187f260f7) C:\Windows\system32\drivers\nv_agp.sys
18:03:58.0130 4624 nv_agp - ok
18:03:58.0136 4624 NwlnkFlt - ok
18:03:58.0144 4624 NwlnkFwd - ok
18:03:58.0219 4624 ohci1394 (be32da025a0be1878f0ee8d6d9386cd5) C:\Windows\system32\DRIVERS\ohci1394.sys
18:03:58.0308 4624 ohci1394 - ok
18:03:58.0403 4624 p2pimsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
18:03:58.0511 4624 p2pimsvc - ok
18:03:58.0522 4624 p2psvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
18:03:58.0608 4624 p2psvc - ok
18:03:58.0673 4624 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\DRIVERS\parport.sys
18:03:58.0741 4624 Parport - ok
18:03:58.0793 4624 partmgr (b9c2b89f08670e159f7181891e449cd9) C:\Windows\system32\drivers\partmgr.sys
18:03:58.0815 4624 partmgr - ok
18:03:58.0838 4624 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\DRIVERS\parvdm.sys
18:03:58.0916 4624 Parvdm - ok
18:03:58.0950 4624 PcaSvc (c6276ad11f4bb49b58aa1ed88537f14a) C:\Windows\System32\pcasvc.dll
18:03:58.0977 4624 PcaSvc - ok
18:03:59.0045 4624 pccsmcfd (fd2041e9ba03db7764b2248f02475079) C:\Windows\system32\DRIVERS\pccsmcfd.sys
18:03:59.0071 4624 pccsmcfd - ok
18:03:59.0113 4624 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
18:03:59.0139 4624 pci - ok
18:03:59.0167 4624 pciide (3b1901e401473e03eb8c874271e50c26) C:\Windows\system32\drivers\pciide.sys
18:03:59.0185 4624 pciide - ok
18:03:59.0248 4624 pcmcia (3bb2244f343b610c29c98035504c9b75) C:\Windows\system32\DRIVERS\pcmcia.sys
18:03:59.0274 4624 pcmcia - ok
18:03:59.0411 4624 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
18:03:59.0558 4624 PEAUTH - ok
18:03:59.0751 4624 pla (b1689df169143f57053f795390c99db3) C:\Windows\system32\pla.dll
18:03:59.0904 4624 pla - ok
18:04:00.0118 4624 PlugPlay (c5e7f8a996ec0a82d508fd9064a5569e) C:\Windows\system32\umpnpmgr.dll
18:04:00.0161 4624 PlugPlay - ok
18:04:00.0259 4624 PNRPAutoReg (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
18:04:00.0326 4624 PNRPAutoReg - ok
18:04:00.0337 4624 PNRPsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
18:04:00.0379 4624 PNRPsvc - ok
18:04:00.0448 4624 PolicyAgent (d0494460421a03cd5225cca0059aa146) C:\Windows\System32\ipsecsvc.dll
18:04:00.0565 4624 PolicyAgent - ok
18:04:00.0665 4624 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
18:04:00.0722 4624 PptpMiniport - ok
18:04:00.0756 4624 Processor (0e3cef5d28b40cf273281d620c50700a) C:\Windows\system32\drivers\processr.sys
18:04:00.0842 4624 Processor - ok
18:04:00.0884 4624 ProfSvc (0508faa222d28835310b7bfca7a77346) C:\Windows\system32\profsvc.dll
18:04:00.0923 4624 ProfSvc - ok
18:04:00.0973 4624 ProtectedStorage (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
18:04:00.0998 4624 ProtectedStorage - ok
18:04:01.0043 4624 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
18:04:01.0084 4624 PSched - ok
18:04:01.0104 4624 PxHelp20 (feffcfdc528764a04c8ed63d5fa6e711) C:\Windows\system32\Drivers\PxHelp20.sys
18:04:01.0112 4624 PxHelp20 ( UnsignedFile.Multi.Generic ) - warning
18:04:01.0112 4624 PxHelp20 - detected UnsignedFile.Multi.Generic (1)
18:04:01.0264 4624 ql2300 (ccdac889326317792480c0a67156a1ec) C:\Windows\system32\drivers\ql2300.sys
18:04:01.0319 4624 ql2300 - ok
18:04:01.0369 4624 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
18:04:01.0390 4624 ql40xx - ok
18:04:01.0456 4624 QWAVE (e9ecae663f47e6cb43962d18ab18890f) C:\Windows\system32\qwave.dll
18:04:01.0501 4624 QWAVE - ok
18:04:01.0533 4624 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
18:04:01.0572 4624 QWAVEdrv - ok
18:04:01.0810 4624 R300 (e642b131fb74caf4bb8a014f31113142) C:\Windows\system32\DRIVERS\atikmdag.sys
18:04:01.0948 4624 R300 - ok
18:04:02.0129 4624 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
18:04:02.0183 4624 RasAcd - ok
18:04:02.0226 4624 RasAuto (f6a452eb4ceadbb51c9e0ee6b3ecef0f) C:\Windows\System32\rasauto.dll
18:04:02.0289 4624 RasAuto - ok
18:04:02.0357 4624 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
18:04:02.0423 4624 Rasl2tp - ok
18:04:02.0490 4624 RasMan (75d47445d70ca6f9f894b032fbc64fcf) C:\Windows\System32\rasmans.dll
18:04:02.0547 4624 RasMan - ok
18:04:02.0578 4624 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
18:04:02.0609 4624 RasPppoe - ok
18:04:02.0635 4624 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
18:04:02.0657 4624 RasSstp - ok
18:04:02.0703 4624 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
18:04:02.0754 4624 rdbss - ok
18:04:02.0787 4624 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
18:04:02.0846 4624 RDPCDD - ok
18:04:02.0898 4624 rdpdr (e8bd98d46f2ed77132ba927fccb47d8b) C:\Windows\system32\drivers\rdpdr.sys
18:04:02.0989 4624 rdpdr - ok
18:04:03.0000 4624 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
18:04:03.0056 4624 RDPENCDD - ok
18:04:03.0114 4624 RDPWD (79c6df8477250f5c54f7c5ae1d6b814e) C:\Windows\system32\drivers\RDPWD.sys
18:04:03.0159 4624 RDPWD - ok
18:04:03.0228 4624 RemoteAccess (bcdd6b4804d06b1f7ebf29e53a57ece9) C:\Windows\System32\mprdim.dll
18:04:03.0288 4624 RemoteAccess - ok
18:04:03.0326 4624 RemoteRegistry (9e6894ea18daff37b63e1005f83ae4ab) C:\Windows\system32\regsvc.dll
18:04:03.0379 4624 RemoteRegistry - ok
18:04:03.0434 4624 RFCOMM (6482707f9f4da0ecbab43b2e0398a101) C:\Windows\system32\DRIVERS\rfcomm.sys
18:04:03.0487 4624 RFCOMM - ok
18:04:03.0518 4624 RpcLocator (5123f83cbc4349d065534eeb6bbdc42b) C:\Windows\system32\locator.exe
18:04:03.0540 4624 RpcLocator - ok
18:04:03.0628 4624 RpcSs (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
18:04:03.0673 4624 RpcSs - ok
18:04:03.0706 4624 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
18:04:03.0747 4624 rspndr - ok
18:04:03.0806 4624 SamSs (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
18:04:03.0829 4624 SamSs - ok
18:04:03.0875 4624 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
18:04:03.0895 4624 sbp2port - ok
18:04:03.0936 4624 SCardSvr (77b7a11a0c3d78d3386398fbbea1b632) C:\Windows\System32\SCardSvr.dll
18:04:03.0973 4624 SCardSvr - ok
18:04:04.0072 4624 Schedule (1a58069db21d05eb2ab58ee5753ebe8d) C:\Windows\system32\schedsvc.dll
18:04:04.0120 4624 Schedule - ok
18:04:04.0150 4624 SCPolicySvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
18:04:04.0180 4624 SCPolicySvc - ok
18:04:04.0228 4624 sdbus (4339a2585708c7d9b0c0ce5aad3dd6ff) C:\Windows\system32\DRIVERS\sdbus.sys
18:04:04.0315 4624 sdbus - ok
18:04:04.0359 4624 SDRSVC (716313d9f6b0529d03f726d5aaf6f191) C:\Windows\System32\SDRSVC.dll
18:04:04.0389 4624 SDRSVC - ok
18:04:04.0400 4624 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
18:04:04.0477 4624 secdrv - ok
18:04:04.0513 4624 seclogon (fd5199d4d8a521005e4b5ee7fe00fa9b) C:\Windows\system32\seclogon.dll
18:04:04.0556 4624 seclogon - ok
18:04:04.0575 4624 SENS (a9bbab5759771e523f55563d6cbe140f) C:\Windows\System32\sens.dll
18:04:04.0650 4624 SENS - ok
18:04:04.0697 4624 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys
18:04:04.0763 4624 Serenum - ok
18:04:04.0800 4624 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
18:04:04.0870 4624 Serial - ok
18:04:04.0916 4624 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
18:04:04.0955 4624 sermouse - ok
18:04:05.0105 4624 ServiceLayer (58d5bfdf3adf49fe9cabd78cc61d92f6) C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
18:04:05.0153 4624 ServiceLayer ( UnsignedFile.Multi.Generic ) - warning
18:04:05.0153 4624 ServiceLayer - detected UnsignedFile.Multi.Generic (1)
18:04:05.0206 4624 SessionEnv (d2193326f729b163125610dbf3e17d57) C:\Windows\system32\sessenv.dll
18:04:05.0267 4624 SessionEnv - ok
18:04:05.0298 4624 sffdisk (103b79418da647736ee95645f305f68a) C:\Windows\system32\drivers\sffdisk.sys
18:04:05.0380 4624 sffdisk - ok
18:04:05.0392 4624 sffp_mmc (8fd08a310645fe872eeec6e08c6bf3ee) C:\Windows\system32\drivers\sffp_mmc.sys
18:04:05.0458 4624 sffp_mmc - ok
18:04:05.0480 4624 sffp_sd (9cfa05fcfcb7124e69cfc812b72f9614) C:\Windows\system32\drivers\sffp_sd.sys
18:04:05.0555 4624 sffp_sd - ok
18:04:05.0578 4624 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
18:04:05.0644 4624 sfloppy - ok
18:04:05.0695 4624 SharedAccess (e1499bd0ff76b1b2fbbf1af339d91165) C:\Windows\System32\ipnathlp.dll
18:04:05.0756 4624 SharedAccess - ok
18:04:05.0814 4624 ShellHWDetection (c7230fbee14437716701c15be02c27b8) C:\Windows\System32\shsvcs.dll
18:04:05.0860 4624 ShellHWDetection - ok
18:04:05.0896 4624 sisagp (d2a595d6eebeeaf4334f8e50efbc9931) C:\Windows\system32\drivers\sisagp.sys
18:04:05.0916 4624 sisagp - ok
18:04:05.0946 4624 SiSRaid2 (cedd6f4e7d84e9f98b34b3fe988373aa) C:\Windows\system32\drivers\sisraid2.sys
18:04:05.0965 4624 SiSRaid2 - ok
18:04:05.0997 4624 SiSRaid4 (df843c528c4f69d12ce41ce462e973a7) C:\Windows\system32\drivers\sisraid4.sys
18:04:06.0017 4624 SiSRaid4 - ok
18:04:06.0144 4624 SkypeUpdate (6128e98eaaed364ed1a32708d2fd22cb) C:\Program Files\Skype\Updater\Updater.exe
18:04:06.0164 4624 SkypeUpdate - ok
18:04:06.0544 4624 slsvc (862bb4cbc05d80c5b45be430e5ef872f) C:\Windows\system32\SLsvc.exe
18:04:06.0824 4624 slsvc - ok
18:04:07.0039 4624 SLUINotify (6edc422215cd78aa8a9cde6b30abbd35) C:\Windows\system32\SLUINotify.dll
18:04:07.0103 4624 SLUINotify - ok
18:04:07.0167 4624 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
18:04:07.0199 4624 Smb - ok
18:04:07.0233 4624 SNMPTRAP (2a146a055b4401c16ee62d18b8e2a032) C:\Windows\System32\snmptrap.exe
18:04:07.0257 4624 SNMPTRAP - ok
18:04:07.0336 4624 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
18:04:07.0356 4624 spldr - ok
18:04:07.0396 4624 Spooler (8554097e5136c3bf9f69fe578a1b35f4) C:\Windows\System32\spoolsv.exe
18:04:07.0431 4624 Spooler - ok
18:04:07.0516 4624 SQLBrowser (5673e79bbb62a4c35b10d821ff1b4aca) c:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
18:04:07.0539 4624 SQLBrowser - ok
18:04:07.0577 4624 SQLWriter (9263c8898732e2b890f7e954e7729ab7) c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
18:04:07.0595 4624 SQLWriter - ok
18:04:07.0666 4624 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
18:04:07.0724 4624 srv - ok
18:04:07.0769 4624 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
18:04:07.0827 4624 srv2 - ok
18:04:07.0847 4624 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
18:04:07.0885 4624 srvnet - ok
18:04:07.0938 4624 SSDPSRV (03d50b37234967433a5ea5ba72bc0b62) C:\Windows\System32\ssdpsrv.dll
18:04:07.0985 4624 SSDPSRV - ok
18:04:08.0074 4624 SstpSvc (6f1a32e7b7b30f004d9a20afadb14944) C:\Windows\system32\sstpsvc.dll
18:04:08.0129 4624 SstpSvc - ok
18:04:08.0216 4624 stisvc (5de7d67e49b88f5f07f3e53c4b92a352) C:\Windows\System32\wiaservc.dll
18:04:08.0271 4624 stisvc - ok
18:04:08.0406 4624 stllssvr (b254b1434208f280edf3785613dcc41b) c:\Program Files\Common Files\SureThing Shared\stllssvr.exe
18:04:08.0416 4624 stllssvr ( UnsignedFile.Multi.Generic ) - warning
18:04:08.0416 4624 stllssvr - detected UnsignedFile.Multi.Generic (1)
18:04:08.0457 4624 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
18:04:08.0476 4624 swenum - ok
18:04:08.0533 4624 swprv (f21fd248040681cca1fb6c9a03aaa93d) C:\Windows\System32\swprv.dll
18:04:08.0578 4624 swprv - ok
18:04:08.0614 4624 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
18:04:08.0633 4624 Symc8xx - ok
18:04:08.0661 4624 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
18:04:08.0680 4624 Sym_hi - ok
18:04:08.0706 4624 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
18:04:08.0725 4624 Sym_u3 - ok
18:04:08.0801 4624 SynTP (f5d926807bd9bc0af68f9376144de425) C:\Windows\system32\DRIVERS\SynTP.sys
18:04:08.0823 4624 SynTP - ok
18:04:08.0906 4624 SysMain (9a51b04e9886aa4ee90093586b0ba88d) C:\Windows\system32\sysmain.dll
18:04:08.0959 4624 SysMain - ok
18:04:09.0004 4624 TabletInputService (2dca225eae15f42c0933e998ee0231c3) C:\Windows\System32\TabSvc.dll
18:04:09.0059 4624 TabletInputService - ok
18:04:09.0112 4624 TapiSrv (d7673e4b38ce21ee54c59eeeb65e2483) C:\Windows\System32\tapisrv.dll
18:04:09.0168 4624 TapiSrv - ok
18:04:09.0196 4624 TBS (cb05822cd9cc6c688168e113c603dbe7) C:\Windows\System32\tbssvc.dll
18:04:09.0240 4624 TBS - ok
18:04:09.0349 4624 Tcpip (27d470dabc77bc60d0a3b0e4deb6cb91) C:\Windows\system32\drivers\tcpip.sys
18:04:09.0406 4624 Tcpip - ok
18:04:09.0423 4624 Tcpip6 (27d470dabc77bc60d0a3b0e4deb6cb91) C:\Windows\system32\DRIVERS\tcpip.sys
18:04:09.0471 4624 Tcpip6 - ok
18:04:09.0505 4624 tcpipreg (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers\tcpipreg.sys
18:04:09.0526 4624 tcpipreg - ok
18:04:09.0554 4624 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
18:04:09.0594 4624 TDPIPE - ok
18:04:09.0609 4624 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
18:04:09.0649 4624 TDTCP - ok
18:04:09.0691 4624 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
18:04:09.0742 4624 tdx - ok
18:04:09.0791 4624 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
18:04:09.0812 4624 TermDD - ok
18:04:09.0894 4624 TermService (bb95da09bef6e7a131bff3ba5032090d) C:\Windows\System32\termsrv.dll
18:04:09.0954 4624 TermService - ok
18:04:10.0013 4624 Themes (c7230fbee14437716701c15be02c27b8) C:\Windows\system32\shsvcs.dll
18:04:10.0041 4624 Themes - ok
18:04:10.0076 4624 THREADORDER (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
18:04:10.0117 4624 THREADORDER - ok
18:04:10.0181 4624 TPM (6d9ad3534a9cf7e4b86c6eae8bc335f6) C:\Windows\system32\drivers\tpm.sys
18:04:10.0200 4624 TPM - ok
18:04:10.0231 4624 TrkWks (ec74e77d0eb004bd3a809b5f8fb8c2ce) C:\Windows\System32\trkwks.dll
18:04:10.0294 4624 TrkWks - ok
18:04:10.0348 4624 TrustedInstaller (97d9d6a04e3ad9b6c626b9931db78dba) C:\Windows\servicing\TrustedInstaller.exe
18:04:10.0378 4624 TrustedInstaller - ok
18:04:10.0418 4624 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
18:04:10.0458 4624 tssecsrv - ok
18:04:10.0527 4624 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
18:04:10.0558 4624 tunmp - ok
18:04:10.0576 4624 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
18:04:10.0618 4624 tunnel - ok
18:04:10.0659 4624 uagp35 (c3ade15414120033a36c0f293d4a4121) C:\Windows\system32\drivers\uagp35.sys
18:04:10.0679 4624 uagp35 - ok
18:04:10.0741 4624 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
18:04:10.0797 4624 udfs - ok
18:04:10.0865 4624 UDTT2BDA (af0998baeb9c0143ac2f58c7d9926965) C:\Windows\system32\Drivers\UDTT2BDA.sys
18:04:10.0908 4624 UDTT2BDA - ok
18:04:10.0942 4624 UI0Detect (ecef404f62863755951e09c802c94ad5) C:\Windows\system32\UI0Detect.exe
18:04:10.0987 4624 UI0Detect - ok
18:04:11.0008 4624 uliagpkx (75e6890ebfce0841d3291b02e7a8bdb0) C:\Windows\system32\drivers\uliagpkx.sys
18:04:11.0030 4624 uliagpkx - ok
18:04:11.0077 4624 uliahci (3cd4ea35a6221b85dcc25daa46313f8d) C:\Windows\system32\drivers\uliahci.sys
18:04:11.0106 4624 uliahci - ok
18:04:11.0157 4624 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
18:04:11.0178 4624 UlSata - ok
18:04:11.0210 4624 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
18:04:11.0231 4624 ulsata2 - ok
18:04:11.0261 4624 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
18:04:11.0312 4624 umbus - ok
18:04:11.0460 4624 UMVPFSrv (8b802b483cbde06f62dbc04dc7afaf8e) C:\Program Files\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
18:04:11.0491 4624 UMVPFSrv - ok
18:04:11.0571 4624 upnphost (68308183f4ae0be7bf8ecd07cb297999) C:\Windows\System32\upnphost.dll
18:04:11.0641 4624 upnphost - ok
18:04:11.0676 4624 upperdev (587e643a4e2ffd9a00f114b057ceb773) C:\Windows\system32\DRIVERS\usbser_lowerflt.sys
18:04:11.0738 4624 upperdev - ok
18:04:11.0790 4624 usbaudio (32db9517628ff0d070682aab61e688f0) C:\Windows\system32\drivers\usbaudio.sys
18:04:11.0833 4624 usbaudio - ok
18:04:11.0874 4624 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
18:04:11.0922 4624 usbccgp - ok
18:04:11.0972 4624 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
18:04:12.0063 4624 usbcir - ok
18:04:12.0128 4624 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
18:04:12.0159 4624 usbehci - ok
18:04:12.0209 4624 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
18:04:12.0258 4624 usbhub - ok
18:04:12.0285 4624 usbohci (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\DRIVERS\usbohci.sys
18:04:12.0352 4624 usbohci - ok
18:04:12.0391 4624 usbprint (b51e52acf758be00ef3a58ea452fe360) C:\Windows\system32\drivers\usbprint.sys
18:04:12.0481 4624 usbprint - ok
18:04:12.0545 4624 usbser (d575246188f63de0accf6eac5fb59e6a) C:\Windows\system32\DRIVERS\usbser.sys
18:04:12.0576 4624 usbser - ok
18:04:12.0618 4624 UsbserFilt (fca6a196d47cb972a0e4adc0db9cd17c) C:\Windows\system32\DRIVERS\usbser_lowerfltj.sys
18:04:12.0664 4624 UsbserFilt - ok
18:04:12.0701 4624 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
18:04:12.0732 4624 USBSTOR - ok
18:04:12.0772 4624 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
18:04:12.0803 4624 usbuhci - ok
18:04:12.0880 4624 usbvideo (e67998e8f14cb0627a769f6530bcb352) C:\Windows\system32\Drivers\usbvideo.sys
18:04:12.0923 4624 usbvideo - ok
18:04:12.0958 4624 UxSms (1509e705f3ac1d474c92454a5c2dd81f) C:\Windows\System32\uxsms.dll
18:04:12.0994 4624 UxSms - ok
18:04:13.0056 4624 vds (cd88d1b7776dc17a119049742ec07eb4) C:\Windows\System32\vds.exe
18:04:13.0107 4624 vds - ok
18:04:13.0152 4624 vga (7d92be0028ecdedec74617009084b5ef) C:\Windows\system32\DRIVERS\vgapnp.sys
18:04:13.0219 4624 vga - ok
18:04:13.0261 4624 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
18:04:13.0300 4624 VgaSave - ok
18:04:13.0329 4624 viaagp (045d9961e591cf0674a920b6ba3ba5cb) C:\Windows\system32\drivers\viaagp.sys
18:04:13.0349 4624 viaagp - ok
18:04:13.0378 4624 ViaC7 (56a4de5f02f2e88182b0981119b4dd98) C:\Windows\system32\drivers\viac7.sys
18:04:13.0460 4624 ViaC7 - ok
18:04:13.0484 4624 viaide (fd2e3175fcada350c7ab4521dca187ec) C:\Windows\system32\drivers\viaide.sys
18:04:13.0502 4624 viaide - ok
18:04:13.0540 4624 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
18:04:13.0561 4624 volmgr - ok
18:04:13.0628 4624 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
18:04:13.0658 4624 volmgrx - ok
18:04:13.0712 4624 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
18:04:13.0739 4624 volsnap - ok
18:04:13.0792 4624 vsmraid (d984439746d42b30fc65a4c3546c6829) C:\Windows\system32\drivers\vsmraid.sys
18:04:13.0814 4624 vsmraid - ok
18:04:13.0958 4624 VSS (db3d19f850c6eb32bdcb9bc0836acddb) C:\Windows\system32\vssvc.exe
18:04:14.0199 4624 VSS - ok
18:04:14.0266 4624 W32Time (96ea68b9eb310a69c25ebb0282b2b9de) C:\Windows\system32\w32time.dll
18:04:14.0328 4624 W32Time - ok
18:04:14.0396 4624 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
18:04:14.0472 4624 WacomPen - ok
18:04:14.0508 4624 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
18:04:14.0541 4624 Wanarp - ok
18:04:14.0545 4624 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
18:04:14.0577 4624 Wanarpv6 - ok
18:04:14.0636 4624 wcncsvc (a3cd60fd826381b49f03832590e069af) C:\Windows\System32\wcncsvc.dll
18:04:14.0677 4624 wcncsvc - ok
18:04:14.0715 4624 WcsPlugInService (11bcb7afcdd7aadacb5746f544d3a9c7) C:\Windows\System32\WcsPlugInService.dll
18:04:14.0751 4624 WcsPlugInService - ok
18:04:14.0784 4624 Wd (afc5ad65b991c1e205cf25cfdbf7a6f4) C:\Windows\system32\drivers\wd.sys
18:04:14.0802 4624 Wd - ok
18:04:14.0885 4624 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
18:04:14.0957 4624 Wdf01000 - ok
18:04:15.0003 4624 WdiServiceHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
18:04:15.0051 4624 WdiServiceHost - ok
18:04:15.0063 4624 WdiSystemHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
18:04:15.0109 4624 WdiSystemHost - ok
18:04:15.0161 4624 WebClient (04c37d8107320312fbae09926103d5e2) C:\Windows\System32\webclnt.dll
18:04:15.0209 4624 WebClient - ok
18:04:15.0279 4624 Wecsvc (ae3736e7e8892241c23e4ebbb7453b60) C:\Windows\system32\wecsvc.dll
18:04:15.0309 4624 Wecsvc - ok
18:04:15.0342 4624 wercplsupport (670ff720071ed741206d69bd995ea453) C:\Windows\System32\wercplsupport.dll
18:04:15.0394 4624 wercplsupport - ok
18:04:15.0446 4624 WerSvc (32b88481d3b326da6deb07b1d03481e7) C:\Windows\System32\WerSvc.dll
18:04:15.0485 4624 WerSvc - ok
18:04:15.0581 4624 WimFltr (f9ad3a5e3fd7e0bdb18b8202b0fdd4e4) C:\Windows\system32\DRIVERS\wimfltr.sys
18:04:15.0603 4624 WimFltr - ok
18:04:15.0705 4624 winachsf (e096ffb754f1e45ae1bddac1275ae2c5) C:\Windows\system32\DRIVERS\HSX_CNXT.sys
18:04:15.0816 4624 winachsf - ok
18:04:15.0943 4624 WinDefend (4575aa12561c5648483403541d0d7f2b) C:\Program Files\Windows Defender\mpsvc.dll
18:04:15.0971 4624 WinDefend - ok
18:04:15.0981 4624 WinHttpAutoProxySvc - ok
18:04:16.0065 4624 Winmgmt (6b2a1d0e80110e3d04e6863c6e62fd8a) C:\Windows\system32\wbem\WMIsvc.dll
18:04:16.0100 4624 Winmgmt - ok
18:04:16.0280 4624 WinRM (7cfe68bdc065e55aa5e8421607037511) C:\Windows\system32\WsmSvc.dll
18:04:16.0372 4624 WinRM - ok
18:04:16.0497 4624 Wlansvc (c008405e4feeb069e30da1d823910234) C:\Windows\System32\wlansvc.dll
18:04:16.0541 4624 Wlansvc - ok
18:04:16.0599 4624 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\DRIVERS\wmiacpi.sys
18:04:16.0629 4624 WmiAcpi - ok
18:04:16.0705 4624 wmiApSrv (43be3875207dcb62a85c8c49970b66cc) C:\Windows\system32\wbem\WmiApSrv.exe
18:04:16.0739 4624 wmiApSrv - ok
18:04:16.0881 4624 WMPNetworkSvc (3978704576a121a9204f8cc49a301a9b) C:\Program Files\Windows Media Player\wmpnetwk.exe
18:04:16.0934 4624 WMPNetworkSvc - ok
18:04:16.0987 4624 WPCSvc (cfc5a04558f5070cee3e3a7809f3ff52) C:\Windows\System32\wpcsvc.dll
18:04:17.0018 4624 WPCSvc - ok
18:04:17.0052 4624 WPDBusEnum (801fbdb89d472b3c467eb112a0fc9246) C:\Windows\system32\wpdbusenum.dll
18:04:17.0093 4624 WPDBusEnum - ok
18:04:17.0159 4624 WpdUsb (de9d36f91a4df3d911626643debf11ea) C:\Windows\system32\DRIVERS\wpdusb.sys
18:04:17.0181 4624 WpdUsb - ok
18:04:17.0358 4624 WPFFontCache_v0400 (dcf3e3edf5109ee8bc02fe6e1f045795) C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
18:04:17.0407 4624 WPFFontCache_v0400 - ok
18:04:17.0437 4624 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
18:04:17.0502 4624 ws2ifsl - ok
18:04:17.0535 4624 wscsvc (1ca6c40261ddc0425987980d0cd2aaab) C:\Windows\System32\wscsvc.dll
18:04:17.0564 4624 wscsvc - ok
18:04:17.0570 4624 WSearch - ok
18:04:17.0835 4624 wuauserv (6298277b73c77fa99106b271a7525163) C:\Windows\system32\wuaueng.dll
18:04:17.0951 4624 wuauserv - ok
18:04:18.0171 4624 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
18:04:18.0223 4624 WUDFRd - ok
18:04:18.0257 4624 wudfsvc (575a4190d989f64732119e4114045a4f) C:\Windows\System32\WUDFSvc.dll
18:04:18.0314 4624 wudfsvc - ok
18:04:18.0338 4624 XAudio (19e7c173b6242ad7521e537ae54768bf) C:\Windows\system32\DRIVERS\xaudio.sys
18:04:18.0355 4624 XAudio - ok
18:04:18.0424 4624 XAudioService (cda0bc78672b50c43649ff34e1fd0ff8) C:\Windows\system32\DRIVERS\xaudio.exe
18:04:18.0532 4624 XAudioService - ok
18:04:18.0592 4624 MBR (0x1B8) (15981f96ec482d8940c57118f9792f8c) \Device\Harddisk0\DR0
18:04:19.0276 4624 \Device\Harddisk0\DR0 - ok
18:04:19.0285 4624 Boot (0x1200) (612fb821cab46049e9d2196f8c38587f) \Device\Harddisk0\DR0\Partition0
18:04:19.0288 4624 \Device\Harddisk0\DR0\Partition0 - ok
18:04:19.0311 4624 Boot (0x1200) (47c65b431c458a93aa7aac0395bba361) \Device\Harddisk0\DR0\Partition1
18:04:19.0314 4624 \Device\Harddisk0\DR0\Partition1 - ok
18:04:19.0329 4624 Boot (0x1200) (d4c9d8101577cc7540e4f81fe29e4668) \Device\Harddisk0\DR0\Partition2
18:04:19.0331 4624 \Device\Harddisk0\DR0\Partition2 - ok
18:04:19.0332 4624 ============================================================
18:04:19.0332 4624 Scan finished
18:04:19.0332 4624 ============================================================
18:04:19.0353 4048 Detected object count: 4
18:04:19.0353 4048 Actual detected object count: 4
18:04:36.0559 4048 IDriverT ( UnsignedFile.Multi.Generic ) - skipped by user
18:04:36.0560 4048 IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Skip
18:04:36.0563 4048 PxHelp20 ( UnsignedFile.Multi.Generic ) - skipped by user
18:04:36.0564 4048 PxHelp20 ( UnsignedFile.Multi.Generic ) - User select action: Skip
18:04:36.0566 4048 ServiceLayer ( UnsignedFile.Multi.Generic ) - skipped by user
18:04:36.0566 4048 ServiceLayer ( UnsignedFile.Multi.Generic ) - User select action: Skip
18:04:36.0569 4048 stllssvr ( UnsignedFile.Multi.Generic ) - skipped by user
18:04:36.0569 4048 stllssvr ( UnsignedFile.Multi.Generic ) - User select action: Skip
18:04:44.0422 4528 Deinitialize success
Děkuji za Vaší snahu.
Re: Prosím o kontrolu
Děkuji Vám. Kdyby jste se neozval tak napíšu.
Přeji hezký večer.
Přeji hezký večer.
Re: Prosím o kontrolu
Dobrý večer,
Bohužel jsem se k tomu dostala až teď. Zde přikládám zazipovaný soubor s jednotlivými soubory.
Děkuji.
Bohužel jsem se k tomu dostala až teď. Zde přikládám zazipovaný soubor s jednotlivými soubory.
Děkuji.
- Přílohy
-
- ziskej.rar
- (141.72 KiB) Staženo 41 x
Přispějete na provoz fóra?