VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

pomoc s "system check"

https://forum.viry.cz:443/viewtopic.php?t=120508

Stránka 1 z 2

pomoc s "system check"

Napsal: 19 bře 2012 17:32
od Tron02
Dobrý deň

po zapnutí OS WIN 7 mi vyskočila program "System Check" ktorý som nestahoval a ani neinštaloval. Odsránit mi sa ho nepodarilo, skušal som ESS5, SpyBot, Ccleaner. (ikony, štart menu nedostupný, čierna pracovná plocha)
Našiel som podobnu tému tam vyžadovaly log z RogueKiller a MBRScan, prikladám:

Vopred ďakujem za pomoc.

RogueKiller V7.3.1 [03/10/2012] by Tigzy
mail: tigzyRK<at>gmail<dot>com
Feedback: http://www.geekstogo.com/forum/files/fi ... guekiller/
Blog: http://tigzyrk.blogspot.com

Operačný systém: Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spustené v : Núdzový režim s prácou v sieti
Užívateľ: Szalai Jan [Práva Správcu]
Mode: Kontrola -- Date: 03/19/2012 17:29:51

¤¤¤ Škodlivé procesy: 0 ¤¤¤

¤¤¤ Záznamy Registrov: 16 ¤¤¤
[HJ] HKLM\[...]\System : ConsentPromptBehaviorAdmin (0) -> FOUND
[HJ] HKLM\[...]\System : EnableLUA (0) -> FOUND
[WallPP] HKCU\[...]\Desktop : Wallpaper () -> FOUND
[HJ] HKCU\[...]\Advanced : Start_ShowRecentDocs (0) -> FOUND
[HJ] HKCU\[...]\Advanced : Start_ShowUser (0) -> FOUND
[HJ] HKCU\[...]\Advanced : Start_ShowMyPics (0) -> FOUND
[HJ] HKCU\[...]\Advanced : Start_ShowMyGames (0) -> FOUND
[HJ] HKCU\[...]\Advanced : Start_ShowMyMusic (0) -> FOUND
[HJ] HKCU\[...]\Advanced : Start_ShowHelp (0) -> FOUND
[HJ] HKCU\[...]\Advanced : Start_ShowPrinters (0) -> FOUND
[HJ] HKCU\[...]\Advanced : Start_ShowSetProgramAccessAndDefaults (0) -> FOUND
[HJ] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> FOUND
[HJ] HKCU\[...]\ClassicStartMenu : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> FOUND
[HJ] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND
[HJ] HKCU\[...]\ClassicStartMenu : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND
[HJ] HKCU\[...]\ClassicStartMenu : {645FF040-5081-101B-9F08-00AA002F954E} (1) -> FOUND

¤¤¤ Zvláštne súbory / Adresáre: ¤¤¤

¤¤¤ Ovládač: [NENAHRATÉ] ¤¤¤

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Súbor HOSTS: ¤¤¤
127.0.0.1 genuine.microsoft.com
127.0.0.1 mpa.one.microsoft.com
127.0.0.1 sls.microsoft.com


¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: ST3250620A ATA Device +++++
--- User ---
[MBR] b3eaa03dfc9a7cf269491e7d7b89b2a6
[BSP] a7c5c8dfee893117247a1a7abd9c9822 : Windows XP MBR Code
Partition table:
0 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 24999 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 51199155 | Size: 209998 Mo
User = LL1 ... OK!
User = LL2 ... OK!

+++++ PhysicalDrive1: SAMSUNG HD252HJ ATA Device +++++
--- User ---
[MBR] c0334b98e95770e68761d967cb6d8337
[BSP] 585cbb9532759894310f1f823646c35a : Windows 7 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 8 | Size: 26500 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 54272064 | Size: 56499 Mo
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 169984056 | Size: 151473 Mo
User = LL1 ... OK!
User = LL2 ... OK!

+++++ PhysicalDrive2: WDC WD10EARS-00Y5B1 ATA Device +++++
--- User ---
[MBR] 1694c864dc0590af1838a2fd9a6d96c5
[BSP] f02cb92d04e38166f9a326afea6869a3 : MBR Code unknown
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 953867 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Dokončené : << RKreport[2].txt >>
RKreport[1].txt ; RKreport[2].txt



_____________________________________________________________________________



Kód: Vybrat vše

MBRScan v1.1.1

OS             : Windows 7 Service Pack 1 (64 bit)
PROCESSOR      : Intel64 Family 6 Model 15 Stepping 13, GenuineIntel
BOOT           : Safe Boot with network
DATE           : 2012/03/19 (ISO 8601) at 17:29:36
________________________________________________________________________________

Device\Harddisk0\DR0	232.9 Go  [Fixed] ==> XP MBR Code ==> PARTITION TABLE FAKED !!

MBR_MD5   : B3EAA03DFC9A7CF269491E7D7B89B2A6
MBR_SHA1  : ADA6CDFD92980915E3A1CE0FEEB7FC28A9189A45

Device\Harddisk0\Partition1	24.41 Go  	0x07 NTFS / HPFS
Device\Harddisk0\Partition2	205.1 Go  	0x07 NTFS / HPFS
________________________________________________________________________________

Device\Harddisk1\DR1	232.9 Go  [Fixed] ==> 7 MBR Code ==> PARTITION TABLE FAKED !!

MBR_MD5   : C0334B98E95770E68761D967CB6D8337
MBR_SHA1  : FEDECF2140E29C043545E28D8E137420B0F90693

Device\Harddisk1\Partition1	25.88 Go  	0x07 NTFS / HPFS __ BOOTABLE __
Device\Harddisk1\Partition2	55.18 Go  	0x07 NTFS / HPFS
Device\Harddisk1\Partition3	147.9 Go  	0x07 NTFS / HPFS
________________________________________________________________________________

Device\Harddisk2\DR2	931.5 Go  [Fixed] ==> Unknown MBR Code ==> PARTITION TABLE FAKED !!

MBR_MD5   : 1694C864DC0590AF1838A2FD9A6D96C5
MBR_SHA1  : 9ABFBCCAC740858AE6D58BACA6F517A9ABF3E2B3

Device\Harddisk2\Partition1	931.5 Go  	0x07 NTFS / HPFS __ BOOTABLE __
________________________________________________________________________________

############################### Additional scan ################################

DRIVER  : C:\Windows\system32\hal.dll => Invisible on the disk
ADDRESS : 0x03C0C000
SIZE    : 292.0 Ko

DRIVER  : C:\Windows\system32\kdcom.dll => Invisible on the disk
ADDRESS : 0x00BB5000
SIZE    : 40.0 Ko

DRIVER  : C:\Windows\system32\mcupdate_GenuineIntel.dll => Invisible on the disk
ADDRESS : 0x00CE2000
SIZE    : 316.0 Ko

DRIVER  : C:\Windows\system32\CLFS.SYS => Invisible on the disk
ADDRESS : 0x00D45000
SIZE    : 376.0 Ko

DRIVER  : C:\Windows\system32\CI.dll => Invisible on the disk
ADDRESS : 0x00C00000
SIZE    : 768.0 Ko

DRIVER  : C:\Windows\system32\drivers\Wdf01000.sys => Invisible on the disk
ADDRESS : 0x00E88000
SIZE    : 656.0 Ko

DRIVER  : C:\Windows\system32\drivers\WDFLDR.SYS => Invisible on the disk
ADDRESS : 0x00F2C000
SIZE    : 60.0 Ko

DRIVER  : C:\Windows\System32\Drivers\WMILIB.SYS => Invisible on the disk
ADDRESS : 0x011B5000
SIZE    : 36.0 Ko

DRIVER  : C:\Windows\System32\Drivers\SCSIPORT.SYS => Invisible on the disk
ADDRESS : 0x011BE000
SIZE    : 188.0 Ko

DRIVER  : C:\Windows\system32\drivers\ACPI.sys => Invisible on the disk
ADDRESS : 0x01000000
SIZE    : 348.0 Ko

DRIVER  : C:\Windows\system32\drivers\msisadrv.sys => Invisible on the disk
ADDRESS : 0x01057000
SIZE    : 40.0 Ko

DRIVER  : C:\Windows\system32\drivers\vdrvroot.sys => Invisible on the disk
ADDRESS : 0x01061000
SIZE    : 52.0 Ko

DRIVER  : C:\Windows\system32\drivers\pci.sys => Invisible on the disk
ADDRESS : 0x00F3B000
SIZE    : 204.0 Ko

DRIVER  : C:\Windows\System32\drivers\partmgr.sys => Invisible on the disk
ADDRESS : 0x0106E000
SIZE    : 84.0 Ko

DRIVER  : C:\Windows\system32\drivers\volmgr.sys => Invisible on the disk
ADDRESS : 0x00F6E000
SIZE    : 84.0 Ko

DRIVER  : C:\Windows\System32\drivers\volmgrx.sys => Invisible on the disk
ADDRESS : 0x00F83000
SIZE    : 368.0 Ko

DRIVER  : C:\Windows\system32\drivers\pciide.sys => Invisible on the disk
ADDRESS : 0x01083000
SIZE    : 28.0 Ko

DRIVER  : C:\Windows\system32\drivers\PCIIDEX.SYS => Invisible on the disk
ADDRESS : 0x011ED000
SIZE    : 64.0 Ko

DRIVER  : C:\Windows\System32\drivers\mountmgr.sys => Invisible on the disk
ADDRESS : 0x00FDF000
SIZE    : 104.0 Ko

DRIVER  : C:\Windows\system32\drivers\vmbus.sys => Invisible on the disk
ADDRESS : 0x00E00000
SIZE    : 240.0 Ko

DRIVER  : C:\Windows\system32\drivers\winhv.sys => Invisible on the disk
ADDRESS : 0x00E3C000
SIZE    : 80.0 Ko

DRIVER  : C:\Windows\system32\drivers\atapi.sys => Invisible on the disk
ADDRESS : 0x00E50000
SIZE    : 36.0 Ko

DRIVER  : C:\Windows\system32\drivers\ataport.SYS => Invisible on the disk
ADDRESS : 0x00E59000
SIZE    : 168.0 Ko

DRIVER  : C:\Windows\system32\drivers\amdxata.sys => Invisible on the disk
ADDRESS : 0x00CC0000
SIZE    : 44.0 Ko

DRIVER  : C:\Windows\system32\drivers\fltmgr.sys => Invisible on the disk
ADDRESS : 0x00DA3000
SIZE    : 304.0 Ko

DRIVER  : C:\Windows\system32\drivers\fileinfo.sys => Invisible on the disk
ADDRESS : 0x00CCB000
SIZE    : 80.0 Ko

DRIVER  : C:\Windows\System32\Drivers\PxHlpa64.sys => Invisible on the disk
ADDRESS : 0x00DEF000
SIZE    : 52.0 Ko

DRIVER  : C:\Windows\System32\Drivers\Ntfs.sys => Invisible on the disk
ADDRESS : 0x01255000
SIZE    : 1.64 Mo

DRIVER  : C:\Windows\System32\Drivers\msrpc.sys => Invisible on the disk
ADDRESS : 0x01472000
SIZE    : 376.0 Ko

DRIVER  : C:\Windows\System32\Drivers\ksecdd.sys => Invisible on the disk
ADDRESS : 0x014D0000
SIZE    : 108.0 Ko

DRIVER  : C:\Windows\System32\Drivers\cng.sys => Invisible on the disk
ADDRESS : 0x014EB000
SIZE    : 456.0 Ko

DRIVER  : C:\Windows\System32\drivers\pcw.sys => Invisible on the disk
ADDRESS : 0x0155D000
SIZE    : 68.0 Ko

DRIVER  : C:\Windows\System32\Drivers\Fs_Rec.sys => Invisible on the disk
ADDRESS : 0x0156E000
SIZE    : 40.0 Ko

DRIVER  : C:\Windows\system32\drivers\ndis.sys => Invisible on the disk
ADDRESS : 0x01617000
SIZE    : 972.0 Ko

DRIVER  : C:\Windows\system32\drivers\NETIO.SYS => Invisible on the disk
ADDRESS : 0x0170A000
SIZE    : 384.0 Ko

DRIVER  : C:\Windows\System32\Drivers\ksecpkg.sys => Invisible on the disk
ADDRESS : 0x0176A000
SIZE    : 172.0 Ko

DRIVER  : C:\Windows\System32\drivers\tcpip.sys => Invisible on the disk
ADDRESS : 0x0184F000
SIZE    : 2.02 Mo

DRIVER  : C:\Windows\System32\drivers\fwpkclnt.sys => Invisible on the disk
ADDRESS : 0x01A53000
SIZE    : 296.0 Ko

DRIVER  : C:\Windows\system32\drivers\vmstorfl.sys => Invisible on the disk
ADDRESS : 0x01AB2000
SIZE    : 64.0 Ko

DRIVER  : C:\Windows\system32\drivers\volsnap.sys => Invisible on the disk
ADDRESS : 0x01AC2000
SIZE    : 304.0 Ko

DRIVER  : C:\Windows\System32\drivers\rdyboost.sys => Invisible on the disk
ADDRESS : 0x01B16000
SIZE    : 232.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\NBVol.sys => Invisible on the disk
ADDRESS : 0x01B50000
SIZE    : 88.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\NBVolUp.sys => Invisible on the disk
ADDRESS : 0x01B66000
SIZE    : 36.0 Ko

DRIVER  : C:\Windows\System32\Drivers\mup.sys => Invisible on the disk
ADDRESS : 0x01B6F000
SIZE    : 72.0 Ko

DRIVER  : C:\Windows\System32\drivers\hwpolicy.sys => Invisible on the disk
ADDRESS : 0x01B81000
SIZE    : 36.0 Ko

DRIVER  : C:\Windows\System32\DRIVERS\fvevol.sys => Invisible on the disk
ADDRESS : 0x01B8A000
SIZE    : 232.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\disk.sys => Invisible on the disk
ADDRESS : 0x01BC4000
SIZE    : 88.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\CLASSPNP.SYS => Invisible on the disk
ADDRESS : 0x01800000
SIZE    : 192.0 Ko

DRIVER  : C:\Windows\System32\Drivers\Null.SYS => Invisible on the disk
ADDRESS : 0x01BED000
SIZE    : 36.0 Ko

DRIVER  : C:\Windows\System32\Drivers\Beep.SYS => Invisible on the disk
ADDRESS : 0x01BF6000
SIZE    : 28.0 Ko

DRIVER  : C:\Windows\System32\drivers\vga.sys => Invisible on the disk
ADDRESS : 0x017BC000
SIZE    : 56.0 Ko

DRIVER  : C:\Windows\System32\drivers\VIDEOPRT.SYS => Invisible on the disk
ADDRESS : 0x017CA000
SIZE    : 148.0 Ko

DRIVER  : C:\Windows\System32\drivers\watchdog.sys => Invisible on the disk
ADDRESS : 0x017EF000
SIZE    : 64.0 Ko

DRIVER  : C:\Windows\system32\drivers\rdpencdd.sys => Invisible on the disk
ADDRESS : 0x01AA6000
SIZE    : 36.0 Ko

DRIVER  : C:\Windows\System32\Drivers\Msfs.SYS => Invisible on the disk
ADDRESS : 0x01600000
SIZE    : 44.0 Ko

DRIVER  : C:\Windows\System32\Drivers\Npfs.SYS => Invisible on the disk
ADDRESS : 0x01795000
SIZE    : 68.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\tdx.sys => Invisible on the disk
ADDRESS : 0x01578000
SIZE    : 136.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\TDI.SYS => Invisible on the disk
ADDRESS : 0x017A6000
SIZE    : 52.0 Ko

DRIVER  : C:\Windows\system32\drivers\afd.sys => Invisible on the disk
ADDRESS : 0x0108A000
SIZE    : 548.0 Ko

DRIVER  : C:\Windows\System32\DRIVERS\netbt.sys => Invisible on the disk
ADDRESS : 0x0159A000
SIZE    : 276.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\wfplwf.sys => Invisible on the disk
ADDRESS : 0x017B3000
SIZE    : 36.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\pacer.sys => Invisible on the disk
ADDRESS : 0x01400000
SIZE    : 152.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\vwififlt.sys => Invisible on the disk
ADDRESS : 0x01426000
SIZE    : 88.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\EpfwLWF.sys => Invisible on the disk
ADDRESS : 0x0143C000
SIZE    : 52.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\netbios.sys => Invisible on the disk
ADDRESS : 0x01449000
SIZE    : 60.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\rdbss.sys => Invisible on the disk
ADDRESS : 0x01200000
SIZE    : 324.0 Ko

DRIVER  : C:\Windows\system32\drivers\nsiproxy.sys => Invisible on the disk
ADDRESS : 0x0160B000
SIZE    : 48.0 Ko

DRIVER  : C:\Windows\system32\drivers\csc.sys => Invisible on the disk
ADDRESS : 0x01113000
SIZE    : 524.0 Ko

DRIVER  : C:\Windows\System32\Drivers\dfsc.sys => Invisible on the disk
ADDRESS : 0x015DF000
SIZE    : 120.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\tunnel.sys => Invisible on the disk
ADDRESS : 0x0268B000
SIZE    : 152.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\usbuhci.sys => Invisible on the disk
ADDRESS : 0x026B1000
SIZE    : 52.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\USBPORT.SYS => Invisible on the disk
ADDRESS : 0x026BE000
SIZE    : 344.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\usbehci.sys => Invisible on the disk
ADDRESS : 0x02714000
SIZE    : 68.0 Ko

DRIVER  : C:\Windows\system32\drivers\HDAudBus.sys => Invisible on the disk
ADDRESS : 0x02725000
SIZE    : 144.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\l160x64.sys => Invisible on the disk
ADDRESS : 0x02749000
SIZE    : 80.0 Ko

DRIVER  : C:\Windows\system32\drivers\1394ohci.sys => Invisible on the disk
ADDRESS : 0x0275D000
SIZE    : 248.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\fdc.sys => Invisible on the disk
ADDRESS : 0x0279B000
SIZE    : 52.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\ASACPI.sys => Invisible on the disk
ADDRESS : 0x027A8000
SIZE    : 32.0 Ko

DRIVER  : C:\Windows\system32\drivers\i8042prt.sys => Invisible on the disk
ADDRESS : 0x027B0000
SIZE    : 120.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\kbdclass.sys => Invisible on the disk
ADDRESS : 0x027CE000
SIZE    : 60.0 Ko

DRIVER  : C:\Windows\system32\drivers\cdrom.sys => Invisible on the disk
ADDRESS : 0x02600000
SIZE    : 168.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\blbdrive.sys => Invisible on the disk
ADDRESS : 0x0262A000
SIZE    : 68.0 Ko

DRIVER  : C:\Windows\system32\drivers\CompositeBus.sys => Invisible on the disk
ADDRESS : 0x0263B000
SIZE    : 64.0 Ko

DRIVER  : C:\Windows\system32\drivers\mssmbios.sys => Invisible on the disk
ADDRESS : 0x0264B000
SIZE    : 44.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\AgileVpn.sys => Invisible on the disk
ADDRESS : 0x02656000
SIZE    : 88.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\rasl2tp.sys => Invisible on the disk
ADDRESS : 0x030DC000
SIZE    : 144.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\ndistapi.sys => Invisible on the disk
ADDRESS : 0x03100000
SIZE    : 48.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\ndiswan.sys => Invisible on the disk
ADDRESS : 0x0310C000
SIZE    : 188.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\raspppoe.sys => Invisible on the disk
ADDRESS : 0x0313B000
SIZE    : 108.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\raspptp.sys => Invisible on the disk
ADDRESS : 0x03156000
SIZE    : 132.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\rassstp.sys => Invisible on the disk
ADDRESS : 0x03177000
SIZE    : 104.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\rdpbus.sys => Invisible on the disk
ADDRESS : 0x03191000
SIZE    : 44.0 Ko

DRIVER  : C:\Windows\system32\drivers\termdd.sys => Invisible on the disk
ADDRESS : 0x0319C000
SIZE    : 80.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\mouclass.sys => Invisible on the disk
ADDRESS : 0x031B0000
SIZE    : 60.0 Ko

DRIVER  : C:\Windows\system32\drivers\swenum.sys => Invisible on the disk
ADDRESS : 0x031BF000
SIZE    : 8.0 Ko

DRIVER  : C:\Windows\system32\drivers\ks.sys => Invisible on the disk
ADDRESS : 0x03000000
SIZE    : 268.0 Ko

DRIVER  : C:\Windows\system32\drivers\umbus.sys => Invisible on the disk
ADDRESS : 0x03043000
SIZE    : 72.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\usbhub.sys => Invisible on the disk
ADDRESS : 0x03055000
SIZE    : 360.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\flpydisk.sys => Invisible on the disk
ADDRESS : 0x030AF000
SIZE    : 44.0 Ko

DRIVER  : C:\Windows\System32\Drivers\NDProxy.SYS => Invisible on the disk
ADDRESS : 0x030BA000
SIZE    : 84.0 Ko

DRIVER  : C:\Windows\System32\win32k.sys => Invisible on the disk
ADDRESS : 0x00080000
SIZE    : 3.08 Mo

DRIVER  : C:\Windows\System32\drivers\Dxapi.sys => Invisible on the disk
ADDRESS : 0x030CF000
SIZE    : 48.0 Ko

DRIVER  : C:\Windows\System32\Drivers\crashdmp.sys => Invisible on the disk
ADDRESS : 0x031C1000
SIZE    : 56.0 Ko

DRIVER  : C:\Windows\System32\Drivers\dump_dumpata.sys => Invisible on the disk
ADDRESS : 0x031CF000
SIZE    : 48.0 Ko

DRIVER  : C:\Windows\System32\Drivers\dump_atapi.sys => Invisible on the disk
ADDRESS : 0x031DB000
SIZE    : 36.0 Ko

DRIVER  : C:\Windows\System32\Drivers\dump_dumpfve.sys => Invisible on the disk
ADDRESS : 0x031E4000
SIZE    : 76.0 Ko

DRIVER  : C:\Windows\System32\drivers\dxg.sys => Invisible on the disk
ADDRESS : 0x00440000
SIZE    : 120.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\usbccgp.sys => Invisible on the disk
ADDRESS : 0x0266C000
SIZE    : 116.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\USBD.SYS => Invisible on the disk
ADDRESS : 0x031F7000
SIZE    : 8.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\hidusb.sys => Invisible on the disk
ADDRESS : 0x027DD000
SIZE    : 56.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\HIDCLASS.SYS => Invisible on the disk
ADDRESS : 0x01830000
SIZE    : 100.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\HIDPARSE.SYS => Invisible on the disk
ADDRESS : 0x027EB000
SIZE    : 36.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\kbdhid.sys => Invisible on the disk
ADDRESS : 0x01BDA000
SIZE    : 56.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\mouhid.sys => Invisible on the disk
ADDRESS : 0x01458000
SIZE    : 52.0 Ko

DRIVER  : C:\Windows\System32\TSDDD.dll => Invisible on the disk
ADDRESS : 0x00750000
SIZE    : 40.0 Ko

DRIVER  : C:\Windows\System32\framebuf.dll => Invisible on the disk
ADDRESS : 0x009E0000
SIZE    : 36.0 Ko

DRIVER  : C:\Windows\system32\drivers\WudfPf.sys => Invisible on the disk
ADDRESS : 0x03ABD000
SIZE    : 132.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\nwifi.sys => Invisible on the disk
ADDRESS : 0x03ADE000
SIZE    : 332.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\ndisuio.sys => Invisible on the disk
ADDRESS : 0x03B31000
SIZE    : 76.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\bowser.sys => Invisible on the disk
ADDRESS : 0x03B44000
SIZE    : 120.0 Ko

DRIVER  : C:\Windows\System32\drivers\mpsdrv.sys => Invisible on the disk
ADDRESS : 0x03B62000
SIZE    : 96.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\mrxsmb.sys => Invisible on the disk
ADDRESS : 0x03B7A000
SIZE    : 180.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\mrxsmb10.sys => Invisible on the disk
ADDRESS : 0x03BA7000
SIZE    : 312.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\mrxsmb20.sys => Invisible on the disk
ADDRESS : 0x03A00000
SIZE    : 144.0 Ko

DRIVER  : C:\Windows\System32\Drivers\fastfat.SYS => Invisible on the disk
ADDRESS : 0x03A24000
SIZE    : 216.0 Ko

DRIVER  : C:\Windows\System32\smss.exe => Invisible on the disk
ADDRESS : 0x48080000
SIZE    : 128.0 Ko

BCD EmsSettings {0CE4991B-E6B3-4B16-B23C-5E0D9250E5D9} => BcdLibraryBoolean_EmsEnabled (16000020)

SystemStartOptions :  NOEXECUTE=OPTIN  SAFEBOOT:NETWORK  SOS  BOOTLOG  NOGUIBOOT  BOOTLOGO

________________________________________________________________________________

_______MBR   \Device\Harddisk0\DR0  

0x00000000   33 C0 8E D0 BC 00 7C FB 50 07 50 1F FC BE 1B 7C   3À.м.|ûP.P.ü¾.|
0x00000010   BF 1B 06 50 57 B9 E5 01 F3 A4 CB BD BE 07 B1 04   ¿..PW¹å.ó¤Ë½¾.±.
0x00000020   38 6E 00 7C 09 75 13 83 C5 10 E2 F4 CD 18 8B F5   8n.|.u..Å.âôÍ..õ
0x00000030   83 C6 10 49 74 19 38 2C 74 F6 A0 B5 07 B4 07 8B   .Æ.It.8,tö.µ.´..
0x00000040   F0 AC 3C 00 74 FC BB 07 00 B4 0E CD 10 EB F2 88   ð¬<.tü»..´.Í.ëò.
0x00000050   4E 10 E8 46 00 73 2A FE 46 10 80 7E 04 0B 74 0B   N.èF.s*þF..~..t.
0x00000060   80 7E 04 0C 74 05 A0 B6 07 75 D2 80 46 02 06 83   .~..t..¶.uÒ.F...
0x00000070   46 08 06 83 56 0A 00 E8 21 00 73 05 A0 B6 07 EB   F...V..è!.s..¶.ë
0x00000080   BC 81 3E FE 7D 55 AA 74 0B 80 7E 10 00 74 C8 A0   ¼.>þ}Uªt..~..tÈ.
0x00000090   B7 07 EB A9 8B FC 1E 57 8B F5 CB BF 05 00 8A 56   ·.ë©.ü.W.õË¿...V
0x000000A0   00 B4 08 CD 13 72 23 8A C1 24 3F 98 8A DE 8A FC   .´.Í.r#.Á$?..Þ.ü
0x000000B0   43 F7 E3 8B D1 86 D6 B1 06 D2 EE 42 F7 E2 39 56   C÷ã.Ñ.Ö±.ÒîB÷â9V
0x000000C0   0A 77 23 72 05 39 46 08 73 1C B8 01 02 BB 00 7C   .w#r.9F.s.¸..».|
0x000000D0   8B 4E 02 8B 56 00 CD 13 73 51 4F 74 4E 32 E4 8A   .N..V.Í.sQOtN2ä.
0x000000E0   56 00 CD 13 EB E4 8A 56 00 60 BB AA 55 B4 41 CD   V.Í.ëä.V.`»ªU´AÍ
0x000000F0   13 72 36 81 FB 55 AA 75 30 F6 C1 01 74 2B 61 60   .r6.ûUªu0öÁ.t+a`
0x00000100   6A 00 6A 00 FF 76 0A FF 76 08 6A 00 68 00 7C 6A   j.j..v..v.j.h.|j
0x00000110   01 6A 10 B4 42 8B F4 CD 13 61 61 73 0E 4F 74 0B   .j.´B.ôÍ.aas.Ot.
0x00000120   32 E4 8A 56 00 CD 13 EB D6 61 F9 C3 49 6E 76 61   2ä.V.Í.ëÖaùÃInva
0x00000130   6C 69 64 20 70 61 72 74 69 74 69 6F 6E 20 74 61   lid partition ta
0x00000140   62 6C 65 00 45 72 72 6F 72 20 6C 6F 61 64 69 6E   ble.Error loadin
0x00000150   67 20 6F 70 65 72 61 74 69 6E 67 20 73 79 73 74   g operating syst
0x00000160   65 6D 00 4D 69 73 73 69 6E 67 20 6F 70 65 72 61   em.Missing opera
0x00000170   74 69 6E 67 20 73 79 73 74 65 6D 00 00 00 00 00   ting system.....
0x00000180   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x00000190   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x000001A0   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x000001B0   00 00 00 00 00 2C 44 63 01 00 00 00 00 00 00 01   .....,Dc........
0x000001C0   01 00 07 FE FF FF 3F 00 00 00 74 3C 0D 03 00 00   ...þ..?...t<....
0x000001D0   C1 FF 07 FE FF FF B3 3C 0D 03 D3 70 A2 19 00 00   Á..þ..³<..Óp¢...
0x000001E0   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x000001F0   00 00 00 00 00 00 00 00 00 00 00 00 00 00 55 AA   ..............Uª

_______MBR   \Device\Harddisk1\DR1  

0x00000000   33 C0 8E D0 BC 00 7C 8E C0 8E D8 BE 00 7C BF 00   3À.м.|.À.ؾ.|¿.
0x00000010   06 B9 00 02 FC F3 A4 50 68 1C 06 CB FB B9 04 00   .¹..üó¤Ph..Ëû¹..
0x00000020   BD BE 07 80 7E 00 00 7C 0B 0F 85 0E 01 83 C5 10   ½¾..~..|......Å.
0x00000030   E2 F1 CD 18 88 56 00 55 C6 46 11 05 C6 46 10 00   âñÍ..V.UÆF..ÆF..
0x00000040   B4 41 BB AA 55 CD 13 5D 72 0F 81 FB 55 AA 75 09   ´A»ªUÍ.]r..ûUªu.
0x00000050   F7 C1 01 00 74 03 FE 46 10 66 60 80 7E 10 00 74   ÷Á..t.þF.f`.~..t
0x00000060   26 66 68 00 00 00 00 66 FF 76 08 68 00 00 68 00   &fh....f.v.h..h.
0x00000070   7C 68 01 00 68 10 00 B4 42 8A 56 00 8B F4 CD 13   |h..h..´B.V..ôÍ.
0x00000080   9F 83 C4 10 9E EB 14 B8 01 02 BB 00 7C 8A 56 00   ..Ä..ë.¸..».|.V.
0x00000090   8A 76 01 8A 4E 02 8A 6E 03 CD 13 66 61 73 1C FE   .v..N..n.Í.fas.þ
0x000000A0   4E 11 75 0C 80 7E 00 80 0F 84 8A 00 B2 80 EB 84   N.u..~......².ë.
0x000000B0   55 32 E4 8A 56 00 CD 13 5D EB 9E 81 3E FE 7D 55   U2ä.V.Í.]ë..>þ}U
0x000000C0   AA 75 6E FF 76 00 E8 8D 00 75 17 FA B0 D1 E6 64   ªun.v.è..u.ú°Ñæd
0x000000D0   E8 83 00 B0 DF E6 60 E8 7C 00 B0 FF E6 64 E8 75   è..°ßæ`è|.°.ædèu
0x000000E0   00 FB B8 00 BB CD 1A 66 23 C0 75 3B 66 81 FB 54   .û¸.»Í.f#Àu;f.ûT
0x000000F0   43 50 41 75 32 81 F9 02 01 72 2C 66 68 07 BB 00   CPAu2.ù..r,fh.».
0x00000100   00 66 68 00 02 00 00 66 68 08 00 00 00 66 53 66   .fh....fh....fSf
0x00000110   53 66 55 66 68 00 00 00 00 66 68 00 7C 00 00 66   SfUfh....fh.|..f
0x00000120   61 68 00 00 07 CD 1A 5A 32 F6 EA 00 7C 00 00 CD   ah...Í.Z2öê.|..Í
0x00000130   18 A0 B7 07 EB 08 A0 B6 07 EB 03 A0 B5 07 32 E4   ..·.ë..¶.ë..µ.2ä
0x00000140   05 00 07 8B F0 AC 3C 00 74 09 BB 07 00 B4 0E CD   ....ð¬<.t.»..´.Í
0x00000150   10 EB F2 F4 EB FD 2B C9 E4 64 EB 00 24 02 E0 F8   .ëòôëý+Éädë.$.àø
0x00000160   24 02 C3 49 6E 76 61 6C 69 64 20 70 61 72 74 69   $.ÃInvalid parti
0x00000170   74 69 6F 6E 20 74 61 62 6C 65 00 45 72 72 6F 72   tion table.Error
0x00000180   20 6C 6F 61 64 69 6E 67 20 6F 70 65 72 61 74 69    loading operati
0x00000190   6E 67 20 73 79 73 74 65 6D 00 4D 69 73 73 69 6E   ng system.Missin
0x000001A0   67 20 6F 70 65 72 61 74 69 6E 67 20 73 79 73 74   g operating syst
0x000001B0   65 6D 00 00 00 63 7B 9A E3 C8 B1 BD 00 00 80 01   em...c{.ãȱ½....
0x000001C0   01 00 07 20 C8 FF 08 00 00 00 38 20 3C 03 00 00   ... È.....8 <...
0x000001D0   C1 FF 07 20 C8 FF 40 20 3C 03 F8 9F E5 06 00 00   Á.. È.@ <.ø.å...
0x000001E0   C1 FF 07 20 C8 FF 38 C0 21 0A F8 8F 7D 12 00 00   Á.. È.8À!.ø.}...
0x000001F0   00 00 00 00 00 00 00 00 00 00 00 00 00 00 55 AA   ..............Uª

_______MBR   \Device\Harddisk2\DR2  

0x00000000   E8 12 01 B9 F0 01 BE 10 7C BF 10 06 57 F3 A4 C3   è..¹ð.¾.|¿..Wó¤Ã
0x00000010   8B 4E 14 83 F9 0E 75 08 8D 5E 07 43 02 07 E2 FB   .N..ù.u..^.C..âû
0x00000020   8C 56 0C 8C 56 0E 75 69 8A 56 10 84 D2 79 62 E8   .V..V.ui.V..Òybè
0x00000030   F6 00 BB AA 55 CD 13 72 6F 3B 5E 5C 75 6A D1 E9   ö.»ªUÍ.ro;^\ujÑé
0x00000040   73 66 B4 42 C6 46 02 01 EB 66 89 B6 F6 FE 8A 44   sf´BÆF..ëf.¶öþ.D
0x00000050   04 84 C0 74 0F 3C 05 74 0B 3C 0F 74 07 8A 14 80   ..Àt.<.t.<.t....
0x00000060   E2 80 75 CB 83 C6 10 06 C4 5C 08 89 5E 08 8C 46   â.uË.Æ..Ä\..^..F
0x00000070   0A 07 FE 8E F9 FE 75 D2 B0 31 C6 46 D7 50 88 46   ..þ.ùþuÒ°1ÆF×P.F
0x00000080   D4 BE 6A 07 AC 84 C0 74 08 B4 0E B3 07 CD 10 EB   Ô¾j.¬.Àt.´.³.Í.ë
0x00000090   F3 E8 81 00 88 46 11 BE AE 07 3C 05 75 C6 CD 16   óè...F.¾®.<.uÆÍ.
0x000000A0   33 D2 89 56 08 89 56 0A E8 7D 00 72 1B B8 01 02   3Ò.V..V.è}.r.¸..
0x000000B0   BF 05 00 8B DC 56 50 50 32 E4 CD 13 58 8B F5 CD   ¿...ÜVPP2äÍ.X.õÍ
0x000000C0   13 58 5E 73 03 4F 75 EB B0 32 72 B2 40 8A 66 11   .X^s.Ouë°2r²@.f.
0x000000D0   9E 7B 04 C6 47 02 0E 72 35 75 0C 88 57 40 C4 4E   .{.ÆG..r5u..W@ÄN
0x000000E0   08 89 4F 1C 8C 47 1E 79 06 8A 4E 12 88 4F 25 80   ..O..G.y..N..O%.
0x000000F0   C7 02 81 7F FE 55 AA 75 85 81 7F FA CD 19 75 09   Ç...þUªu...úÍ.u.
0x00000100   C6 47 FA E9 C7 47 FB 94 88 E8 1C 00 FF E4 74 CE   ÆGúéÇGû..è...ätÎ
0x00000110   88 57 24 EB C9 5D 33 C0 8E D8 8E C0 8E D0 BC 00   .W$ëÉ]3À.Ø.À.м.
0x00000120   7C 55 BD A2 07 FC FB C3 B4 08 52 06 CD 13 07 72   |U½¢.üûô.R.Í..r
0x00000130   33 33 DB 8A DE 8B 46 0A 33 D2 83 E1 3F F7 F1 91   33Û.Þ.F.3Ò.á?÷ñ.
0x00000140   97 8B 46 08 F7 F7 42 87 CA 3B DA 72 17 43 F7 F3   ..F.÷÷B.Ê;Úr.C÷ó
0x00000150   8A F2 86 C5 D1 E8 D1 E8 0A C8 D0 CC D0 CC 0A F4   .ò.ÅÑèÑè.ÈÐÌÐÌ.ô
0x00000160   84 E4 74 02 B4 41 5B 8A D3 C3 0D 0A 4D 42 52 20   .ät.´A[.ÓÃ..MBR 
0x00000170   45 72 72 6F 72 20 00 0D 0A 00 72 65 73 73 20 61   Error ....ress a
0x00000180   6E 79 20 6B 65 79 20 74 6F 20 62 6F 6F 74 20 66   ny key to boot f
0x00000190   72 6F 6D 20 66 6C 6F 70 70 79 2E 2E 2E 00 00 00   rom floppy......
0x000001A0   00 00 10 00 01 00 00 7C 00 00 00 00 00 00 00 00   .......|........
0x000001B0   00 00 00 00 00 00 00 00 A6 99 A2 CE 00 00 80 01   ........¦.¢Î....
0x000001C0   01 00 07 FE FF FF 3F 00 00 00 82 59 70 74 00 00   ...þ..?....Ypt..
0x000001D0   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x000001E0   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x000001F0   00 00 00 00 00 00 00 00 00 00 00 00 00 00 55 AA   ..............Uª

Re: pomoc s "system check"

Napsal: 19 bře 2012 18:14
od vyosek
Zdravim :)

Nelegalnimi operacnimi systemy se tu ale dle pravidel fora nezabyvame...

Re: pomoc s "system check"

Napsal: 19 bře 2012 18:36
od Tron02
o legálnosti či nelegálnosti neveim, zostava bola kupovaná už s nainštalovaním win cez inzerát

Re: pomoc s "system check"

Napsal: 19 bře 2012 18:56
od vyosek
To je sice hezke, ale v tom pripade reklamujte jelikoz system je tam zcela urcite nelegalni...

Re: pomoc s "system check"

Napsal: 19 bře 2012 19:04
od Tron02
bohužiaľ to už nie je možné, takto sa s tým nedá pohnúť ?

Re: pomoc s "system check"

Napsal: 20 bře 2012 00:44
od vyosek
:arrow: Jste tu novy, tak to polecime, priste bude pomoc odmitnuta

:arrow: Stahnete si TDSSKiller http://support.kaspersky.com/downloads/ ... killer.exe
  • Kliknete na volbu Change parametrs
  • V obou oknech (Objects to scan i Additional Option) zakliknete vsechny moznosti - ve vsech ctvereccich musi mit fajecka
  • Kliknete na OK
  • Utilite prikazte, at skenuje - klik na Start Scan
  • Po dokonceni skenu se objevi okno, zkontrolujte, zda-li je vsude moznost Skip
  • Pokud moznost Skip nebude primarne nastavena, prekliknete ji na Skip
  • Pokud mate vsude Skip, kliknete na Continue
  • Na disku, kde mate Windows (obvykle c:\) ve tvaru TDSSKiller.nejaka cisilka _log.txt bude log - jeho obsah sem vlozte

Re: pomoc s "system check"

Napsal: 20 bře 2012 18:26
od Tron02
Ďakujem veľmi pekne za ochotu a pomoc s vyriešením problému prikladám log z TDSSKiller:




18:11:36.0867 1668 TDSS rootkit removing tool 2.7.20.0 Mar 9 2012 17:10:43
18:11:37.0195 1668 ============================================================
18:11:37.0195 1668 Current date / time: 2012/03/20 18:11:37.0195
18:11:37.0195 1668 SystemInfo:
18:11:37.0195 1668
18:11:37.0195 1668 OS Version: 6.1.7601 ServicePack: 1.0
18:11:37.0195 1668 Product type: Workstation
18:11:37.0195 1668 ComputerName: SZALAI
18:11:37.0195 1668 UserName: Szalai Jan
18:11:37.0195 1668 Windows directory: C:\Windows
18:11:37.0195 1668 System windows directory: C:\Windows
18:11:37.0195 1668 Running under WOW64
18:11:37.0195 1668 Processor architecture: Intel x64
18:11:37.0195 1668 Number of processors: 2
18:11:37.0195 1668 Page size: 0x1000
18:11:37.0195 1668 Boot type: Normal boot
18:11:37.0195 1668 ============================================================
18:11:38.0240 1668 Drive \Device\Harddisk2\DR2 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:11:38.0443 1668 Drive \Device\Harddisk1\DR1 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x1C3A85, SectorsPerTrack: 0x8, TracksPerCylinder: 0x21, Type 'K0', Flags 0x00000040
18:11:38.0443 1668 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:11:38.0474 1668 \Device\Harddisk2\DR2:
18:11:38.0474 1668 MBR used
18:11:38.0474 1668 \Device\Harddisk2\DR2\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x30D3C74
18:11:38.0474 1668 \Device\Harddisk2\DR2\Partition1: MBR, Type 0x7, StartLBA 0x30D3CB3, BlocksNum 0x19A270D3
18:11:38.0474 1668 \Device\Harddisk1\DR1:
18:11:38.0474 1668 MBR used
18:11:38.0474 1668 \Device\Harddisk1\DR1\Partition0: MBR, Type 0x7, StartLBA 0x8, BlocksNum 0x33C2038
18:11:38.0474 1668 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x33C2040, BlocksNum 0x6E59FF8
18:11:38.0474 1668 \Device\Harddisk1\DR1\Partition2: MBR, Type 0x7, StartLBA 0xA21C038, BlocksNum 0x127D8FF8
18:11:38.0474 1668 \Device\Harddisk0\DR0:
18:11:38.0474 1668 MBR used
18:11:38.0474 1668 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x74705982
18:11:38.0614 1668 Initialize success
18:11:38.0614 1668 ============================================================
18:11:44.0340 1360 ============================================================
18:11:44.0340 1360 Scan started
18:11:44.0340 1360 Mode: Manual; SigCheck; TDLFS;
18:11:44.0340 1360 ============================================================
18:11:44.0730 1360 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
18:11:44.0808 1360 1394ohci - ok
18:11:44.0854 1360 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
18:11:44.0870 1360 ACPI - ok
18:11:44.0886 1360 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
18:11:44.0917 1360 AcpiPmi - ok
18:11:44.0948 1360 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
18:11:44.0964 1360 adp94xx - ok
18:11:44.0995 1360 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
18:11:45.0010 1360 adpahci - ok
18:11:45.0042 1360 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
18:11:45.0057 1360 adpu320 - ok
18:11:45.0120 1360 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
18:11:45.0166 1360 AFD - ok
18:11:45.0182 1360 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
18:11:45.0198 1360 agp440 - ok
18:11:45.0213 1360 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
18:11:45.0229 1360 aliide - ok
18:11:45.0260 1360 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
18:11:45.0260 1360 amdide - ok
18:11:45.0291 1360 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
18:11:45.0307 1360 AmdK8 - ok
18:11:45.0338 1360 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
18:11:45.0354 1360 AmdPPM - ok
18:11:45.0385 1360 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
18:11:45.0400 1360 amdsata - ok
18:11:45.0432 1360 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
18:11:45.0447 1360 amdsbs - ok
18:11:45.0463 1360 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
18:11:45.0478 1360 amdxata - ok
18:11:45.0510 1360 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
18:11:45.0572 1360 AppID - ok
18:11:45.0603 1360 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
18:11:45.0619 1360 arc - ok
18:11:45.0634 1360 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
18:11:45.0650 1360 arcsas - ok
18:11:45.0744 1360 ASInsHelp - ok
18:11:45.0759 1360 AsIO - ok
18:11:45.0790 1360 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
18:11:45.0837 1360 AsyncMac - ok
18:11:45.0853 1360 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
18:11:45.0868 1360 atapi - ok
18:11:45.0900 1360 AtcL001 (940e5b876251e04fffe058ad71fe0f1c) C:\Windows\system32\DRIVERS\l160x64.sys
18:11:45.0915 1360 AtcL001 - ok
18:11:45.0962 1360 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
18:11:45.0978 1360 b06bdrv - ok
18:11:46.0009 1360 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
18:11:46.0024 1360 b57nd60a - ok
18:11:46.0071 1360 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
18:11:46.0102 1360 Beep - ok
18:11:46.0149 1360 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
18:11:46.0165 1360 blbdrive - ok
18:11:46.0212 1360 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
18:11:46.0227 1360 bowser - ok
18:11:46.0243 1360 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
18:11:46.0274 1360 BrFiltLo - ok
18:11:46.0290 1360 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
18:11:46.0305 1360 BrFiltUp - ok
18:11:46.0336 1360 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
18:11:46.0352 1360 Brserid - ok
18:11:46.0383 1360 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
18:11:46.0399 1360 BrSerWdm - ok
18:11:46.0414 1360 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
18:11:46.0430 1360 BrUsbMdm - ok
18:11:46.0446 1360 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
18:11:46.0477 1360 BrUsbSer - ok
18:11:46.0524 1360 BthAudioHF (07dcb3c254d584e3949fe2c0ee3963f2) C:\Windows\system32\DRIVERS\BthAudioHF.sys
18:11:46.0539 1360 BthAudioHF - ok
18:11:46.0570 1360 BthAvrcp (832b121e4532919cc49f2438f1dcaa21) C:\Windows\system32\DRIVERS\BthAvrcp.sys
18:11:46.0586 1360 BthAvrcp - ok
18:11:46.0617 1360 BthEnum (cf98190a94f62e405c8cb255018b2315) C:\Windows\system32\drivers\BthEnum.sys
18:11:46.0633 1360 BthEnum - ok
18:11:46.0695 1360 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
18:11:46.0711 1360 BTHMODEM - ok
18:11:46.0758 1360 BthPan (02dd601b708dd0667e1331fa8518e9ff) C:\Windows\system32\DRIVERS\bthpan.sys
18:11:46.0789 1360 BthPan - ok
18:11:46.0820 1360 BTHPORT (64c198198501f7560ee41d8d1efa7952) C:\Windows\System32\Drivers\BTHport.sys
18:11:46.0851 1360 BTHPORT - ok
18:11:46.0867 1360 BTHUSB (f188b7394d81010767b6df3178519a37) C:\Windows\System32\Drivers\BTHUSB.sys
18:11:46.0882 1360 BTHUSB - ok
18:11:46.0914 1360 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
18:11:46.0960 1360 cdfs - ok
18:11:46.0992 1360 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\drivers\cdrom.sys
18:11:47.0007 1360 cdrom - ok
18:11:47.0038 1360 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
18:11:47.0054 1360 circlass - ok
18:11:47.0101 1360 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
18:11:47.0116 1360 CLFS - ok
18:11:47.0179 1360 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
18:11:47.0194 1360 CmBatt - ok
18:11:47.0210 1360 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
18:11:47.0226 1360 cmdide - ok
18:11:47.0272 1360 CNG (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys
18:11:47.0304 1360 CNG - ok
18:11:47.0319 1360 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
18:11:47.0319 1360 Compbatt - ok
18:11:47.0366 1360 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
18:11:47.0382 1360 CompositeBus - ok
18:11:47.0413 1360 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
18:11:47.0428 1360 crcdisk - ok
18:11:47.0475 1360 CSC (54da3dfd29ed9f1619b6f53f3ce55e49) C:\Windows\system32\drivers\csc.sys
18:11:47.0506 1360 CSC - ok
18:11:47.0553 1360 csr_a2dp (df07c6d98ba7f81d0571e366b1cd6672) C:\Windows\system32\drivers\bthav.sys
18:11:47.0569 1360 csr_a2dp - ok
18:11:47.0631 1360 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
18:11:47.0694 1360 DfsC - ok
18:11:47.0725 1360 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
18:11:47.0772 1360 discache - ok
18:11:47.0787 1360 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
18:11:47.0803 1360 Disk - ok
18:11:47.0834 1360 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
18:11:47.0850 1360 drmkaud - ok
18:11:47.0896 1360 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
18:11:47.0928 1360 DXGKrnl - ok
18:11:47.0990 1360 eamonm (13533557d01b88c83110d5cf749f14d7) C:\Windows\system32\DRIVERS\eamonm.sys
18:11:48.0052 1360 eamonm - ok
18:11:48.0146 1360 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
18:11:48.0208 1360 ebdrv - ok
18:11:48.0240 1360 ehdrv (e097728129e7b79bf1089d7aef42332b) C:\Windows\system32\DRIVERS\ehdrv.sys
18:11:48.0255 1360 ehdrv - ok
18:11:48.0302 1360 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
18:11:48.0333 1360 elxstor - ok
18:11:48.0380 1360 epfw (198c6fbc30bbd9632ea051203dccf204) C:\Windows\system32\DRIVERS\epfw.sys
18:11:48.0396 1360 epfw - ok
18:11:48.0442 1360 EpfwLWF (56de463f517710a8aa44eef82c35b3c9) C:\Windows\system32\DRIVERS\EpfwLWF.sys
18:11:48.0442 1360 EpfwLWF - ok
18:11:48.0489 1360 epfwwfp (710b0442bb2f99278d7b8e02a8849c11) C:\Windows\system32\DRIVERS\epfwwfp.sys
18:11:48.0505 1360 epfwwfp - ok
18:11:48.0552 1360 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
18:11:48.0567 1360 ErrDev - ok
18:11:48.0630 1360 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
18:11:48.0676 1360 exfat - ok
18:11:48.0708 1360 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
18:11:48.0739 1360 fastfat - ok
18:11:48.0754 1360 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
18:11:48.0770 1360 fdc - ok
18:11:48.0817 1360 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
18:11:48.0832 1360 FileInfo - ok
18:11:48.0848 1360 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
18:11:48.0895 1360 Filetrace - ok
18:11:48.0910 1360 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
18:11:48.0926 1360 flpydisk - ok
18:11:48.0957 1360 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
18:11:48.0973 1360 FltMgr - ok
18:11:49.0020 1360 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
18:11:49.0020 1360 FsDepends - ok
18:11:49.0082 1360 fssfltr (6c06701bf1db05405804d7eb610991ce) C:\Windows\system32\DRIVERS\fssfltr.sys
18:11:49.0098 1360 fssfltr - ok
18:11:49.0129 1360 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\Windows\system32\drivers\Fs_Rec.sys
18:11:49.0144 1360 Fs_Rec - ok
18:11:49.0176 1360 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
18:11:49.0191 1360 fvevol - ok
18:11:49.0222 1360 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
18:11:49.0238 1360 gagp30kx - ok
18:11:49.0316 1360 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
18:11:49.0332 1360 hcw85cir - ok
18:11:49.0363 1360 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
18:11:49.0394 1360 HdAudAddService - ok
18:11:49.0410 1360 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
18:11:49.0425 1360 HDAudBus - ok
18:11:49.0456 1360 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
18:11:49.0472 1360 HidBatt - ok
18:11:49.0503 1360 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
18:11:49.0534 1360 HidBth - ok
18:11:49.0534 1360 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
18:11:49.0566 1360 HidIr - ok
18:11:49.0597 1360 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
18:11:49.0612 1360 HidUsb - ok
18:11:49.0644 1360 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
18:11:49.0659 1360 HpSAMD - ok
18:11:49.0706 1360 HTCAND64 (f47cec45fb85791d4ab237563ad0fa8f) C:\Windows\system32\Drivers\ANDROIDUSB.sys
18:11:49.0722 1360 HTCAND64 - ok
18:11:49.0768 1360 htcnprot (b8b1b284362e1d8135112573395d5da5) C:\Windows\system32\DRIVERS\htcnprot.sys
18:11:49.0784 1360 htcnprot - ok
18:11:49.0862 1360 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
18:11:49.0909 1360 HTTP - ok
18:11:49.0956 1360 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
18:11:49.0971 1360 hwpolicy - ok
18:11:49.0987 1360 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
18:11:50.0002 1360 i8042prt - ok
18:11:50.0049 1360 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
18:11:50.0065 1360 iaStorV - ok
18:11:50.0112 1360 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
18:11:50.0112 1360 iirsp - ok
18:11:50.0143 1360 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
18:11:50.0158 1360 intelide - ok
18:11:50.0190 1360 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
18:11:50.0205 1360 intelppm - ok
18:11:50.0236 1360 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
18:11:50.0283 1360 IpFilterDriver - ok
18:11:50.0299 1360 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
18:11:50.0330 1360 IPMIDRV - ok
18:11:50.0346 1360 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
18:11:50.0392 1360 IPNAT - ok
18:11:50.0424 1360 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
18:11:50.0439 1360 IRENUM - ok
18:11:50.0470 1360 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
18:11:50.0470 1360 isapnp - ok
18:11:50.0517 1360 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
18:11:50.0548 1360 iScsiPrt - ok
18:11:50.0595 1360 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
18:11:50.0611 1360 kbdclass - ok
18:11:50.0642 1360 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\DRIVERS\kbdhid.sys
18:11:50.0658 1360 kbdhid - ok
18:11:50.0720 1360 KMWDFILTERV1 (cc362af6c5d13c3c5403819577abd8c9) C:\Windows\system32\DRIVERS\RPGMOUSEV1.sys
18:11:50.0736 1360 KMWDFILTERV1 - ok
18:11:50.0767 1360 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys
18:11:50.0798 1360 KSecDD - ok
18:11:50.0814 1360 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys
18:11:50.0829 1360 KSecPkg - ok
18:11:50.0876 1360 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
18:11:50.0907 1360 ksthunk - ok
18:11:50.0938 1360 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
18:11:50.0985 1360 lltdio - ok
18:11:51.0016 1360 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
18:11:51.0032 1360 LSI_FC - ok
18:11:51.0063 1360 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
18:11:51.0079 1360 LSI_SAS - ok
18:11:51.0110 1360 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
18:11:51.0110 1360 LSI_SAS2 - ok
18:11:51.0141 1360 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
18:11:51.0157 1360 LSI_SCSI - ok
18:11:51.0188 1360 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
18:11:51.0235 1360 luafv - ok
18:11:51.0282 1360 LVcKap64 (b78a51734deab6321de048b1e54ab629) C:\Windows\system32\DRIVERS\LVcKap64.sys
18:11:51.0328 1360 LVcKap64 - ok
18:11:51.0406 1360 LVMVDrv (81a61e4efead334d3347825af554cca9) C:\Windows\system32\DRIVERS\LVMVDrv.sys
18:11:51.0453 1360 LVMVDrv - ok
18:11:51.0484 1360 LVPr2M64 (2032ff756b8737ee76ef32bcd12af406) C:\Windows\system32\DRIVERS\LVPr2M64.sys
18:11:51.0500 1360 LVPr2M64 - ok
18:11:51.0531 1360 LVUSBS64 (5c3ff68267a5d242ee79ee01b993d6ce) C:\Windows\system32\drivers\LVUSBS64.sys
18:11:51.0547 1360 LVUSBS64 - ok
18:11:51.0578 1360 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
18:11:51.0594 1360 megasas - ok
18:11:51.0625 1360 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
18:11:51.0640 1360 MegaSR - ok
18:11:51.0687 1360 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
18:11:51.0734 1360 Modem - ok
18:11:51.0781 1360 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
18:11:51.0796 1360 monitor - ok
18:11:51.0843 1360 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
18:11:51.0859 1360 mouclass - ok
18:11:51.0890 1360 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
18:11:51.0921 1360 mouhid - ok
18:11:51.0952 1360 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
18:11:51.0952 1360 mountmgr - ok
18:11:51.0999 1360 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
18:11:52.0015 1360 mpio - ok
18:11:52.0046 1360 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
18:11:52.0077 1360 mpsdrv - ok
18:11:52.0124 1360 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
18:11:52.0155 1360 MRxDAV - ok
18:11:52.0218 1360 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
18:11:52.0233 1360 mrxsmb - ok
18:11:52.0249 1360 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
18:11:52.0264 1360 mrxsmb10 - ok
18:11:52.0296 1360 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
18:11:52.0311 1360 mrxsmb20 - ok
18:11:52.0342 1360 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
18:11:52.0342 1360 msahci - ok
18:11:52.0374 1360 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
18:11:52.0389 1360 msdsm - ok
18:11:52.0436 1360 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
18:11:52.0467 1360 Msfs - ok
18:11:52.0483 1360 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
18:11:52.0530 1360 mshidkmdf - ok
18:11:52.0545 1360 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
18:11:52.0561 1360 msisadrv - ok
18:11:52.0592 1360 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
18:11:52.0623 1360 MSKSSRV - ok
18:11:52.0654 1360 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
18:11:52.0701 1360 MSPCLOCK - ok
18:11:52.0717 1360 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
18:11:52.0748 1360 MSPQM - ok
18:11:52.0795 1360 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
18:11:52.0826 1360 MsRPC - ok
18:11:52.0842 1360 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
18:11:52.0857 1360 mssmbios - ok
18:11:52.0873 1360 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
18:11:52.0920 1360 MSTEE - ok
18:11:52.0935 1360 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
18:11:52.0951 1360 MTConfig - ok
18:11:52.0998 1360 MTsensor (6936198f2cc25b39cf5262436c80df46) C:\Windows\system32\DRIVERS\ASACPI.sys
18:11:53.0013 1360 MTsensor - ok
18:11:53.0044 1360 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
18:11:53.0060 1360 Mup - ok
18:11:53.0107 1360 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
18:11:53.0122 1360 NativeWifiP - ok
18:11:53.0169 1360 NBVol (7b2d90bbbbed11c8dfba441d34ae901e) C:\Windows\system32\DRIVERS\NBVol.sys
18:11:53.0185 1360 NBVol - ok
18:11:53.0216 1360 NBVolUp (4fe7b5757279d82c4d171e9f7fd52a75) C:\Windows\system32\DRIVERS\NBVolUp.sys
18:11:53.0232 1360 NBVolUp - ok
18:11:53.0278 1360 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
18:11:53.0294 1360 NDIS - ok
18:11:53.0325 1360 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
18:11:53.0356 1360 NdisCap - ok
18:11:53.0388 1360 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
18:11:53.0434 1360 NdisTapi - ok
18:11:53.0466 1360 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
18:11:53.0497 1360 Ndisuio - ok
18:11:53.0544 1360 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
18:11:53.0606 1360 NdisWan - ok
18:11:53.0622 1360 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
18:11:53.0668 1360 NDProxy - ok
18:11:53.0700 1360 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
18:11:53.0731 1360 NetBIOS - ok
18:11:53.0778 1360 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
18:11:53.0809 1360 NetBT - ok
18:11:53.0871 1360 netr7364 (7b3a86cda73b3e89fd69666c4329c3b7) C:\Windows\system32\DRIVERS\netr7364.sys
18:11:53.0902 1360 netr7364 - ok
18:11:53.0934 1360 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
18:11:53.0949 1360 nfrd960 - ok
18:11:53.0965 1360 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
18:11:54.0012 1360 Npfs - ok
18:11:54.0043 1360 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
18:11:54.0090 1360 nsiproxy - ok
18:11:54.0168 1360 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
18:11:54.0199 1360 Ntfs - ok
18:11:54.0230 1360 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
18:11:54.0261 1360 Null - ok
18:11:54.0542 1360 nvlddmkm (b15258b1f45f9571758ac6bb2f043b01) C:\Windows\system32\DRIVERS\nvlddmkm.sys
18:11:54.0760 1360 nvlddmkm - ok
18:11:54.0838 1360 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
18:11:54.0854 1360 nvraid - ok
18:11:54.0885 1360 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
18:11:54.0901 1360 nvstor - ok
18:11:54.0948 1360 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
18:11:54.0963 1360 nv_agp - ok
18:11:55.0026 1360 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
18:11:55.0057 1360 ohci1394 - ok
18:11:55.0057 1360 OMSCAN - ok
18:11:55.0088 1360 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
18:11:55.0119 1360 Parport - ok
18:11:55.0150 1360 partmgr (871eadac56b0a4c6512bbe32753ccf79) C:\Windows\system32\drivers\partmgr.sys
18:11:55.0166 1360 partmgr - ok
18:11:55.0244 1360 pccsmcfd (81b5e63131090879ad6ef9f32109b88d) C:\Windows\system32\DRIVERS\pccsmcfdx64.sys
18:11:55.0260 1360 pccsmcfd - ok
18:11:55.0291 1360 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
18:11:55.0306 1360 pci - ok
18:11:55.0322 1360 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
18:11:55.0338 1360 pciide - ok
18:11:55.0353 1360 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
18:11:55.0369 1360 pcmcia - ok
18:11:55.0400 1360 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
18:11:55.0400 1360 pcw - ok
18:11:55.0431 1360 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
18:11:55.0478 1360 PEAUTH - ok
18:11:55.0525 1360 pfc - ok
18:11:55.0618 1360 PID_PEPI (087a343dfc337f37723dd7912de6b6cd) C:\Windows\system32\DRIVERS\LV302V64.SYS
18:11:55.0665 1360 PID_PEPI - ok
18:11:55.0743 1360 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
18:11:55.0790 1360 PptpMiniport - ok
18:11:55.0806 1360 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
18:11:55.0821 1360 Processor - ok
18:11:55.0884 1360 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
18:11:55.0930 1360 Psched - ok
18:11:55.0977 1360 PxHlpa64 (87b04878a6d59d6c79251dc960c674c1) C:\Windows\system32\Drivers\PxHlpa64.sys
18:11:55.0993 1360 PxHlpa64 - ok
18:11:56.0040 1360 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
18:11:56.0071 1360 ql2300 - ok
18:11:56.0086 1360 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
18:11:56.0102 1360 ql40xx - ok
18:11:56.0133 1360 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
18:11:56.0149 1360 QWAVEdrv - ok
18:11:56.0196 1360 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
18:11:56.0242 1360 RasAcd - ok
18:11:56.0258 1360 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
18:11:56.0305 1360 RasAgileVpn - ok
18:11:56.0367 1360 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
18:11:56.0398 1360 Rasl2tp - ok
18:11:56.0430 1360 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
18:11:56.0476 1360 RasPppoe - ok
18:11:56.0492 1360 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
18:11:56.0523 1360 RasSstp - ok
18:11:56.0570 1360 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
18:11:56.0617 1360 rdbss - ok
18:11:56.0632 1360 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
18:11:56.0664 1360 rdpbus - ok
18:11:56.0679 1360 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
18:11:56.0726 1360 RDPCDD - ok
18:11:56.0773 1360 RDPDR (1b6163c503398b23ff8b939c67747683) C:\Windows\system32\drivers\rdpdr.sys
18:11:56.0804 1360 RDPDR - ok
18:11:56.0820 1360 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
18:11:56.0866 1360 RDPENCDD - ok
18:11:56.0882 1360 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
18:11:56.0913 1360 RDPREFMP - ok
18:11:56.0976 1360 RdpVideoMiniport (70cba1a0c98600a2aa1863479b35cb90) C:\Windows\system32\drivers\rdpvideominiport.sys
18:11:56.0991 1360 RdpVideoMiniport - ok
18:11:57.0007 1360 RDPWD (6d76e6433574b058adcb0c50df834492) C:\Windows\system32\drivers\RDPWD.sys
18:11:57.0038 1360 RDPWD - ok
18:11:57.0054 1360 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
18:11:57.0069 1360 rdyboost - ok
18:11:57.0100 1360 regi (88e128c45699ab390f40f3520f2ee29f) C:\Windows\system32\drivers\regi.sys
18:11:57.0100 1360 regi - ok
18:11:57.0147 1360 RFCOMM (3dd798846e2c28102b922c56e71b7932) C:\Windows\system32\DRIVERS\rfcomm.sys
18:11:57.0163 1360 RFCOMM - ok
18:11:57.0225 1360 RivaTuner64 (a10b40cf9eb57d24e44717a2d38a00f4) C:\Program Files (x86)\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTuner64.sys
18:11:57.0241 1360 RivaTuner64 - ok
18:11:57.0288 1360 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
18:11:57.0334 1360 rspndr - ok
18:11:57.0381 1360 s116bus (33e3b5497741e11609f5c19a4babece5) C:\Windows\system32\DRIVERS\s116bus.sys
18:11:57.0397 1360 s116bus - ok
18:11:57.0428 1360 s116mdfl (3bf42a40d618ee70c7a0194655120594) C:\Windows\system32\DRIVERS\s116mdfl.sys
18:11:57.0444 1360 s116mdfl - ok
18:11:57.0490 1360 s116mdm (1337f164c6a833ebc094c7db2e52c095) C:\Windows\system32\DRIVERS\s116mdm.sys
18:11:57.0506 1360 s116mdm - ok
18:11:57.0537 1360 s116mgmt (ae3999ccb1cb4f4c9a545782e6321864) C:\Windows\system32\DRIVERS\s116mgmt.sys
18:11:57.0553 1360 s116mgmt - ok
18:11:57.0568 1360 s116nd5 (0fe400d90ed42b93b43c3c9f0b4fd43d) C:\Windows\system32\DRIVERS\s116nd5.sys
18:11:57.0568 1360 s116nd5 - ok
18:11:57.0600 1360 s116obex (f2dbdaac99b87f73e9f18df505f0601f) C:\Windows\system32\DRIVERS\s116obex.sys
18:11:57.0615 1360 s116obex - ok
18:11:57.0631 1360 s116unic (e587b738bc7cbb094bcd041b345c9bd3) C:\Windows\system32\DRIVERS\s116unic.sys
18:11:57.0646 1360 s116unic - ok
18:11:57.0662 1360 s3cap (e60c0a09f997826c7627b244195ab581) C:\Windows\system32\drivers\vms3cap.sys
18:11:57.0678 1360 s3cap - ok
18:11:57.0724 1360 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
18:11:57.0740 1360 sbp2port - ok
18:11:57.0787 1360 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
18:11:57.0818 1360 scfilter - ok
18:11:57.0849 1360 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
18:11:57.0896 1360 secdrv - ok
18:11:57.0927 1360 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
18:11:57.0943 1360 Serenum - ok
18:11:57.0974 1360 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
18:11:58.0005 1360 Serial - ok
18:11:58.0036 1360 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
18:11:58.0052 1360 sermouse - ok
18:11:58.0114 1360 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
18:11:58.0130 1360 sffdisk - ok
18:11:58.0161 1360 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
18:11:58.0177 1360 sffp_mmc - ok
18:11:58.0208 1360 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
18:11:58.0224 1360 sffp_sd - ok
18:11:58.0255 1360 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
18:11:58.0270 1360 sfloppy - ok
18:11:58.0317 1360 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
18:11:58.0317 1360 SiSRaid2 - ok
18:11:58.0364 1360 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
18:11:58.0380 1360 SiSRaid4 - ok
18:11:58.0395 1360 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
18:11:58.0442 1360 Smb - ok
18:11:58.0458 1360 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
18:11:58.0473 1360 spldr - ok
18:11:58.0536 1360 sptd (602884696850c86434530790b110e8eb) C:\Windows\system32\Drivers\sptd.sys
18:11:58.0536 1360 Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: 602884696850c86434530790b110e8eb
18:11:58.0536 1360 sptd ( LockedFile.Multi.Generic ) - warning
18:11:58.0536 1360 sptd - detected LockedFile.Multi.Generic (1)
18:11:58.0614 1360 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
18:11:58.0629 1360 srv - ok
18:11:58.0676 1360 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
18:11:58.0692 1360 srv2 - ok
18:11:58.0723 1360 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
18:11:58.0738 1360 srvnet - ok
18:11:58.0785 1360 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
18:11:58.0816 1360 stexstor - ok
18:11:58.0863 1360 storflt (7785dc213270d2fc066538daf94087e7) C:\Windows\system32\drivers\vmstorfl.sys
18:11:58.0879 1360 storflt - ok
18:11:58.0926 1360 storvsc (d34e4943d5ac096c8edeebfd80d76e23) C:\Windows\system32\drivers\storvsc.sys
18:11:58.0941 1360 storvsc - ok
18:11:58.0988 1360 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
18:11:59.0004 1360 swenum - ok
18:11:59.0019 1360 Synth3dVsc - ok
18:11:59.0097 1360 Tcpip (fc62769e7bff2896035aeed399108162) C:\Windows\system32\drivers\tcpip.sys
18:11:59.0144 1360 Tcpip - ok
18:11:59.0191 1360 TCPIP6 (fc62769e7bff2896035aeed399108162) C:\Windows\system32\DRIVERS\tcpip.sys
18:11:59.0238 1360 TCPIP6 - ok
18:11:59.0269 1360 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
18:11:59.0316 1360 tcpipreg - ok
18:11:59.0347 1360 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
18:11:59.0362 1360 TDPIPE - ok
18:11:59.0378 1360 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
18:11:59.0394 1360 TDTCP - ok
18:11:59.0440 1360 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
18:11:59.0472 1360 tdx - ok
18:11:59.0550 1360 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
18:11:59.0565 1360 TermDD - ok
18:11:59.0628 1360 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
18:11:59.0659 1360 tssecsrv - ok
18:11:59.0706 1360 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
18:11:59.0737 1360 TsUsbFlt - ok
18:11:59.0768 1360 tsusbhub - ok
18:11:59.0799 1360 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
18:11:59.0846 1360 tunnel - ok
18:11:59.0877 1360 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
18:11:59.0893 1360 uagp35 - ok
18:11:59.0924 1360 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
18:11:59.0971 1360 udfs - ok
18:12:00.0002 1360 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
18:12:00.0018 1360 uliagpkx - ok
18:12:00.0049 1360 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys
18:12:00.0064 1360 umbus - ok
18:12:00.0096 1360 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
18:12:00.0111 1360 UmPass - ok
18:12:00.0158 1360 usbaudio (82e8f44688e6fac57b5b7c6fc7adbc2a) C:\Windows\system32\drivers\usbaudio.sys
18:12:00.0189 1360 usbaudio - ok
18:12:00.0205 1360 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
18:12:00.0220 1360 usbccgp - ok
18:12:00.0236 1360 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
18:12:00.0267 1360 usbcir - ok
18:12:00.0283 1360 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\DRIVERS\usbehci.sys
18:12:00.0298 1360 usbehci - ok
18:12:00.0330 1360 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
18:12:00.0345 1360 usbhub - ok
18:12:00.0361 1360 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
18:12:00.0376 1360 usbohci - ok
18:12:00.0423 1360 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
18:12:00.0454 1360 usbprint - ok
18:12:00.0486 1360 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
18:12:00.0501 1360 USBSTOR - ok
18:12:00.0532 1360 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\DRIVERS\usbuhci.sys
18:12:00.0548 1360 usbuhci - ok
18:12:00.0564 1360 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
18:12:00.0579 1360 vdrvroot - ok
18:12:00.0610 1360 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
18:12:00.0626 1360 vga - ok
18:12:00.0657 1360 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
18:12:00.0704 1360 VgaSave - ok
18:12:00.0720 1360 VGPU - ok
18:12:00.0735 1360 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
18:12:00.0766 1360 vhdmp - ok
18:12:00.0782 1360 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
18:12:00.0798 1360 viaide - ok
18:12:00.0813 1360 vmbus (86ea3e79ae350fea5331a1303054005f) C:\Windows\system32\drivers\vmbus.sys
18:12:00.0829 1360 vmbus - ok
18:12:00.0844 1360 VMBusHID (7de90b48f210d29649380545db45a187) C:\Windows\system32\drivers\VMBusHID.sys
18:12:00.0860 1360 VMBusHID - ok
18:12:00.0876 1360 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
18:12:00.0891 1360 volmgr - ok
18:12:00.0938 1360 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
18:12:00.0954 1360 volmgrx - ok
18:12:01.0000 1360 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
18:12:01.0016 1360 volsnap - ok
18:12:01.0047 1360 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
18:12:01.0063 1360 vsmraid - ok
18:12:01.0094 1360 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
18:12:01.0110 1360 vwifibus - ok
18:12:01.0141 1360 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
18:12:01.0172 1360 vwififlt - ok
18:12:01.0188 1360 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys
18:12:01.0219 1360 vwifimp - ok
18:12:01.0250 1360 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
18:12:01.0266 1360 WacomPen - ok
18:12:01.0281 1360 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
18:12:01.0328 1360 WANARP - ok
18:12:01.0328 1360 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
18:12:01.0375 1360 Wanarpv6 - ok
18:12:01.0437 1360 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
18:12:01.0437 1360 Wd - ok
18:12:01.0484 1360 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
18:12:01.0500 1360 Wdf01000 - ok
18:12:01.0546 1360 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
18:12:01.0578 1360 WfpLwf - ok
18:12:01.0609 1360 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
18:12:01.0624 1360 WIMMount - ok
18:12:01.0687 1360 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\drivers\WinUSB.SYS
18:12:01.0702 1360 WinUsb - ok
18:12:01.0765 1360 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
18:12:01.0780 1360 WmiAcpi - ok
18:12:01.0827 1360 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
18:12:01.0858 1360 ws2ifsl - ok
18:12:01.0921 1360 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
18:12:01.0952 1360 WudfPf - ok
18:12:01.0983 1360 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
18:12:02.0030 1360 WUDFRd - ok
18:12:02.0077 1360 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk2\DR2
18:12:02.0186 1360 \Device\Harddisk2\DR2 - ok
18:12:02.0202 1360 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk1\DR1
18:12:02.0280 1360 \Device\Harddisk1\DR1 - ok
18:12:02.0280 1360 MBR (0x1B8) (5f8b5082f3482cc06b72ec5806598ae9) \Device\Harddisk0\DR0
18:12:02.0701 1360 \Device\Harddisk0\DR0 - ok
18:12:02.0701 1360 Boot (0x1200) (44dd38eed8003873258ac4568ba69848) \Device\Harddisk2\DR2\Partition0
18:12:02.0701 1360 \Device\Harddisk2\DR2\Partition0 - ok
18:12:02.0732 1360 Boot (0x1200) (ad35c644fefa9e8d6a3628ce657bd1c1) \Device\Harddisk2\DR2\Partition1
18:12:02.0732 1360 \Device\Harddisk2\DR2\Partition1 - ok
18:12:02.0732 1360 Boot (0x1200) (9c8c35983e144cc5c308f328abac196b) \Device\Harddisk1\DR1\Partition0
18:12:02.0748 1360 \Device\Harddisk1\DR1\Partition0 - ok
18:12:02.0763 1360 Boot (0x1200) (cf9e4b5828db8b4d8985ab275234388d) \Device\Harddisk1\DR1\Partition1
18:12:02.0763 1360 \Device\Harddisk1\DR1\Partition1 - ok
18:12:02.0779 1360 Boot (0x1200) (ee87a277c61b3e598b3d184e9ca0650b) \Device\Harddisk1\DR1\Partition2
18:12:02.0779 1360 \Device\Harddisk1\DR1\Partition2 - ok
18:12:02.0794 1360 Boot (0x1200) (7e55651ec686efbc1ca88fd51569970c) \Device\Harddisk0\DR0\Partition0
18:12:02.0794 1360 \Device\Harddisk0\DR0\Partition0 - ok
18:12:02.0794 1360 ============================================================
18:12:02.0794 1360 Scan finished
18:12:02.0794 1360 ============================================================
18:12:02.0810 3980 Detected object count: 1
18:12:02.0810 3980 Actual detected object count: 1
18:12:07.0755 3980 sptd ( LockedFile.Multi.Generic ) - skipped by user
18:12:07.0755 3980 sptd ( LockedFile.Multi.Generic ) - User select action: Skip

Re: pomoc s "system check"

Napsal: 20 bře 2012 18:28
od vyosek
:arrow: Stahnete aswMBR http://public.avast.com/%7Egmerek/aswMBR.exe a ulozte jej na plochu.
  • Utilitu spustte a prikazte ji, at skenuje - klik na Scan
  • Kliknutim na Save log ulozte log aswMBR na plochu
  • Obsah logu aswMBR mi sem vlozte

Re: pomoc s "system check"

Napsal: 20 bře 2012 18:36
od Tron02
aswMBR version 0.9.9.1665 Copyright(c) 2011 AVAST Software
Run date: 2012-03-20 18:34:54
-----------------------------
18:34:54.428 OS Version: Windows x64 6.1.7601 Service Pack 1
18:34:54.428 Number of processors: 2 586 0xF0D
18:34:54.428 ComputerName: SZALAI UserName:
18:34:54.803 Initialize success
18:35:02.625 Disk 0 \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP4T0L0-4
18:35:02.625 Disk 0 Vendor: WDC_WD10EARS-00Y5B1 80.00A80 Size: 953869MB BusType: 3
18:35:02.641 Disk 1 (boot) \Device\Harddisk1\DR1 -> \Device\Ide\IdeDeviceP3T0L0-3
18:35:02.641 Disk 1 Vendor: SAMSUNG_HD252HJ 1AC01108 Size: 238475MB BusType: 3
18:35:02.641 Disk 2 \Device\Harddisk2\DR2 -> \Device\Ide\IdeDeviceP1T1L0-9
18:35:02.657 Disk 2 Vendor: ST3250620A 3.AAE Size: 238475MB BusType: 3
18:35:02.672 Disk 1 MBR read successfully
18:35:02.672 Disk 1 MBR scan
18:35:02.688 Disk 1 Windows 7 default MBR code
18:35:02.688 Disk 1 Partition 1 80 (A) 07 HPFS/NTFS NTFS 26500 MB offset 8
18:35:02.688 Disk 1 Partition 2 00 07 HPFS/NTFS NTFS 56499 MB offset 54272064
18:35:02.703 Disk 1 Partition 3 00 07 HPFS/NTFS NTFS 151473 MB offset 169984056
18:35:02.719 Disk 1 scanning C:\Windows\system32\drivers
18:35:10.659 Service scanning
18:35:20.612 Service sptd C:\Windows\System32\Drivers\sptd.sys **LOCKED** 32
18:35:23.997 Modules scanning
18:35:23.997 Disk 1 trace - called modules:
18:35:24.029 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys >>UNKNOWN [0xfffffa8006a012c0]<<sppl.sys ataport.SYS pciide.sys PCIIDEX.SYS hal.dll atapi.sys
18:35:24.044 1 nt!IofCallDriver -> \Device\Harddisk1\DR1[0xfffffa8007aa1060]
18:35:24.044 3 CLASSPNP.SYS[fffff88001bbb43f] -> nt!IofCallDriver -> [0xfffffa80078f6580]
18:35:24.060 5 ACPI.sys[fffff880011a37a1] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP3T0L0-3[0xfffffa80078f8060]
18:35:24.075 \Driver\atapi[0xfffffa80078b0950] -> IRP_MJ_CREATE -> 0xfffffa8006a012c0
18:35:24.075 Scan finished successfully
18:36:14.073 Disk 1 MBR has been saved successfully to "C:\Users\Szalai Jan\Desktop\MBR.dat"
18:36:14.089 The log file has been saved successfully to "C:\Users\Szalai Jan\Desktop\aswMBR.txt"

Re: pomoc s "system check"

Napsal: 20 bře 2012 22:55
od vyosek
:arrow: Stahnete TDSSQlook http://www.malwareinfo.nl/tools/TDSSQlook.exe
  • Ulozte na plochu a spustte
  • Zvolte moznost A a potvrdte Enterem
  • Po chvili se zobrazi log, ten sem vlozte

Re: pomoc s "system check"

Napsal: 21 bře 2012 17:52
od Tron02
TDSSKiller Quarantine Information log
Version 1.0.0.4
***** START SCAN st 21. 03. 2012 17:52:49,36 *****

---------- Warning! ----------

TDSSKiller Quarantine folder not found

---------- TDSSKiller logs ----------

TDSSKiller.2.7.20.0_20.03.2012_18.11.36_log.txt

---------- TDSSStarter logs ----------


***** END SCAN st 21. 03. 2012 17:52:49,54 *****
- EOF -

Re: pomoc s "system check"

Napsal: 21 bře 2012 18:02
od vyosek
:arrow: Presunte TDSSKiller na plochu

:arrow: Kliknete na Start a pote Spustit, pripadne pouzijte klavesou zkratku Win+R
  • Vyskoci na Vas okenko, do ktereho zkopirujte text nize

  • Kód: Vybrat vše

    "%userprofile%\desktop\TDSSKiller.exe" -qmbr
  • Kliknete na OK
  • TDSSKiller se sam spusti a udela nam zalohu mbr sektoru
  • Pak jej muzete ukoncit
:arrow: Pak znovu udelejte TDSSQlook

Re: pomoc s "system check"

Napsal: 21 bře 2012 18:18
od Tron02
TDSSKiller Quarantine Information log
Version 1.0.0.4
***** START SCAN st 21. 03. 2012 18:17:50,50 *****

---------- TDSSKiller logs ----------

TDSSKiller.2.7.20.0_20.03.2012_18.11.36_log.txt
TDSSKiller.2.7.20.0_21.03.2012_18.17.26_log.txt

---------- TDSSStarter logs ----------


---------- DIR LIST ----------

C:\TDSSKiller_Quarantine\21.03.2012_18.17.30
C:\TDSSKiller_Quarantine\21.03.2012_18.17.30\auto0002
C:\TDSSKiller_Quarantine\21.03.2012_18.17.30\auto0001
C:\TDSSKiller_Quarantine\21.03.2012_18.17.30\auto0000
C:\TDSSKiller_Quarantine\21.03.2012_18.17.30\auto0000\object.ini
C:\TDSSKiller_Quarantine\21.03.2012_18.17.30\auto0000\mbr0000
C:\TDSSKiller_Quarantine\21.03.2012_18.17.30\auto0000\mbr0000\object.ini
C:\TDSSKiller_Quarantine\21.03.2012_18.17.30\auto0000\mbr0000\tsk0000.ini
C:\TDSSKiller_Quarantine\21.03.2012_18.17.30\auto0000\mbr0000\tsk0000.dta
C:\TDSSKiller_Quarantine\21.03.2012_18.17.30\auto0000\mbr0000\tsk0001.ini
C:\TDSSKiller_Quarantine\21.03.2012_18.17.30\auto0000\mbr0000\tsk0001.dta
C:\TDSSKiller_Quarantine\21.03.2012_18.17.30\auto0001\object.ini
C:\TDSSKiller_Quarantine\21.03.2012_18.17.30\auto0001\mbr0000
C:\TDSSKiller_Quarantine\21.03.2012_18.17.30\auto0001\mbr0000\object.ini
C:\TDSSKiller_Quarantine\21.03.2012_18.17.30\auto0001\mbr0000\tsk0000.ini
C:\TDSSKiller_Quarantine\21.03.2012_18.17.30\auto0001\mbr0000\tsk0000.dta
C:\TDSSKiller_Quarantine\21.03.2012_18.17.30\auto0001\mbr0000\tsk0001.ini
C:\TDSSKiller_Quarantine\21.03.2012_18.17.30\auto0001\mbr0000\tsk0001.dta
C:\TDSSKiller_Quarantine\21.03.2012_18.17.30\auto0002\object.ini
C:\TDSSKiller_Quarantine\21.03.2012_18.17.30\auto0002\mbr0000
C:\TDSSKiller_Quarantine\21.03.2012_18.17.30\auto0002\mbr0000\object.ini
C:\TDSSKiller_Quarantine\21.03.2012_18.17.30\auto0002\mbr0000\tsk0000.ini
C:\TDSSKiller_Quarantine\21.03.2012_18.17.30\auto0002\mbr0000\tsk0000.dta
C:\TDSSKiller_Quarantine\21.03.2012_18.17.30\auto0002\mbr0000\tsk0001.ini
C:\TDSSKiller_Quarantine\21.03.2012_18.17.30\auto0002\mbr0000\tsk0001.dta

---------- INI FILES ----------

=== C:\TDSSKiller_Quarantine\21.03.2012_18.17.30\auto0000\object.ini

[InfectedObject]
Autoquarantined file


=== C:\TDSSKiller_Quarantine\21.03.2012_18.17.30\auto0000\mbr0000\object.ini

[InfectedObject]
Type: MBR
Name: \Device\Harddisk2\DR2


=== C:\TDSSKiller_Quarantine\21.03.2012_18.17.30\auto0000\mbr0000\tsk0000.ini

[InfectedFile]
Type: Raw image


=== C:\TDSSKiller_Quarantine\21.03.2012_18.17.30\auto0000\mbr0000\tsk0001.ini

[InfectedFile]
Type: Raw BB image


=== C:\TDSSKiller_Quarantine\21.03.2012_18.17.30\auto0001\object.ini

[InfectedObject]
Autoquarantined file


=== C:\TDSSKiller_Quarantine\21.03.2012_18.17.30\auto0001\mbr0000\object.ini

[InfectedObject]
Type: MBR
Name: \Device\Harddisk0\DR0


=== C:\TDSSKiller_Quarantine\21.03.2012_18.17.30\auto0001\mbr0000\tsk0000.ini

[InfectedFile]
Type: Raw image


=== C:\TDSSKiller_Quarantine\21.03.2012_18.17.30\auto0001\mbr0000\tsk0001.ini

[InfectedFile]
Type: Raw BB image


=== C:\TDSSKiller_Quarantine\21.03.2012_18.17.30\auto0002\object.ini

[InfectedObject]
Autoquarantined file


=== C:\TDSSKiller_Quarantine\21.03.2012_18.17.30\auto0002\mbr0000\object.ini

[InfectedObject]
Type: MBR
Name: \Device\Harddisk1\DR1


=== C:\TDSSKiller_Quarantine\21.03.2012_18.17.30\auto0002\mbr0000\tsk0000.ini

[InfectedFile]
Type: Raw image


=== C:\TDSSKiller_Quarantine\21.03.2012_18.17.30\auto0002\mbr0000\tsk0001.ini

[InfectedFile]
Type: Raw BB image

Re: pomoc s "system check"

Napsal: 21 bře 2012 18:26
od vyosek
:arrow: Poprosim vas o vytvoreni raru (treba dumpy.rar)
  • Rar bude obsahovat tohle:
    • od aswmbr C:\Users\Szalai Jan\Desktop\MBR.dat
    • v miste spusteni MBRScanu jsou soubory Dump_Hdd0_DR0.mbr, Dump_Hdd1_DR1.mbr apod
    • Dale celou slozku C:\TDSSKiller_Quarantine\21.03.2012_18.17.30
  • rar a uploadnete treba na LP http://leteckaposta.cz/
:arrow: Myslite ze byste si dokazal poradit s live CD - vypalit, nabootovat a pak udelat nejake ukony k ziskani dalsich dumpu :???:

Re: pomoc s "system check"

Napsal: 23 bře 2012 17:38
od Tron02
môžme to skúsiť, ak sa nejedná o nejakú linux verziu nebude problém

Kód: Vybrat vše

http://leteckaposta.cz/343840219
Všechny časy jsou v UTC+01:00
Stránka 1 z 2

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz