Modrá smrt mnohokrát za den

Zpráva

Lothar135 · #1 Příspěvek od **Lothar135** » 17 úno 2013 13:02

Dobrý den,

Nedávno mi počítač začal dělat slušné problémy. Krátce po načtení widows XP se vždy objevila modrá obrazovka a restart. Kamarád mi řekl, ať zkusím reinstal OS. To jsem udělal a problémy zmizely. Ovšem pouze na pár dní. Dnes mám opět problémy s modrou obrazovkou, už mi to padlo asi 15x. Stane se to buď krátce po načtení windows nebo třeba v průběhu nějaké hry či jen tak při prohlížení stránek na internetu.

Krom toho se mi několikrát nezačal načítat ani operační systém a na obrazovce se objevilo "chyba při čtení z disku".

Provedl jsem kontrolu RAM přes program, který doporučujete, chybu to nenašlo. Provedl jsem Error Scan disku přes HD tune, nic. Zdraví disku HD tune také hlásí v pohodě.

Rád bych vás požádal o pomoc, co by s tím mohlo být a který komponent to zlobí. Na internetu jsem našel, že to může být i kabel k disku nebo základní deska. Připojuji zabalené minidumpy...

#2 Příspěvek od **Rudy** » 17 úno 2013 18:41

Podle dumpů si myslím, že jde o hw problém.

1. Udělejte kontrolu RAM: http://forum.viry.cz/viewtopic.php?f=53&t=106788 .
2: Pokud bude OK, stáhněte, nainstalujte a spusťte CrystalDiskInfo: http://www.stahuj.centrum.cz/utility_a_ ... ldiskinfo/ a přes Úpravy>kopírovat sem dejte log.

MiliNess · #3 Příspěvek od **MiliNess** » 17 úno 2013 23:44

Omluva za vstup.
Mohlo by se jednat o rootkit. Snad bych se i vsadil, že bude zahákovaný objekt zařízení PhysicalDrive0.
1) Spusť tdsskiller a hoď sem výsledný log.
2) Ovládací panely->Nástroje pro správu->Prohlížeč událostí->Protokoly systému Windows->klikni pravým myšítkem na protokol Systém, vyber Uložit všechny události jako, ulož to jako
.evtx soubor a ten upni na http://www.leteckaposta.cz
3) ZaRARuj a upni na http://www.ulozto.cz soubor Windows\memory.dmp

Lothar135 · #4 Příspěvek od **Lothar135** » 18 úno 2013 09:46

Kontrolu RAM v memtestu jsem provedl, nechal proběhnout 2x. Žádný error.

Tady je ten log z Crystal disk info

----------------------------------------------------------------------------
CrystalDiskInfo 5.2.2 Shizuku Edition (C) 2008-2012 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------

OS : Windows XP Professional SP3 [5.1 Build 2600] (x86)
Date : 2013/02/18 9:44:45

-- Controller Map ----------------------------------------------------------
+ JMB36X Standard Dual Channel PCIE IDE Controller [ATA]
- Primární kanál IDE (0)
- Sekundární kanál IDE (1)
+ Intel(R) ICH9R/DO/DH 4 port Serial ATA Storage Controller 1 - 2920 [ATA]
+ Primární kanál IDE (0)
- WDC WD5002ABYS-02B1B0
+ Sekundární kanál IDE (1)
- ASUS DRW-2014L1T
+ Intel(R) ICH9 Family 2 port Serial ATA Storage Controller 2 - 2926 [ATA]
- Primární kanál IDE (0)
- Sekundární kanál IDE (1)
+ AJISJ90P IDE Controller [SCSI]
- FQZMRM F0HQZK5INCH SCSI CdRom Device

-- Disk List ---------------------------------------------------------------
(1) WDC WD5002ABYS-02B1B0 : 500,1 GB [0/2/1, pd1] - wd

----------------------------------------------------------------------------
(1) WDC WD5002ABYS-02B1B0
----------------------------------------------------------------------------
Model : WDC WD5002ABYS-02B1B0
Firmware : 02.03B03
Serial Number : WD-WCASYE695411
Disk Size : 500,1 GB (8,4/137,4/500,1)
Buffer Size : 16384 KB
Queue Depth : 32
# of Sectors : 976773168
Rotation Rate : 7200 RPM
Interface : Serial ATA
Major Version : ATA8-ACS
Minor Version : ----
Transfer Mode : SATA/300
Power On Hours : 10617 hod.
Power On Count : 1544 krát
Temparature : 38 C (100 F)
Health Status : Dobrý
Features : S.M.A.R.T., AAM, 48bit LBA, NCQ
APM Level : ----
AAM Level : 80FEh [ON]

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 200 200 _51 000000000000 Počet chyb čtení
03 201 183 _21 000000000B64 Čas na roztočení ploten
04 _99 _99 __0 000000000639 Počet spuštění/zastavení
05 200 200 140 000000000000 Počet přemapovaných sektorů
07 200 200 __0 000000000000 Počet chybných hledání
09 _86 _86 __0 000000002979 Hodin v činnosti
0A 100 100 __0 000000000000 Počet opakovaných pokusů o roztočení ploten
0B 100 100 __0 000000000000 Počet pokusů o překalibrování
0C _99 _99 __0 000000000608 Počet cyklů zapnutí zařízení
C0 200 200 __0 000000000040 Počet vypnutí disku
C1 200 200 __0 0000000005F8 Počet cyklů načítání/vymazání
C2 109 101 __0 000000000026 Teplota
C4 200 200 __0 000000000000 Počet udalostí s číslem realokování sektorů
C5 200 200 __0 000000000000 Počet podezřelých sektorů
C6 200 200 __0 000000000000 Počet neopravitelných sektorů
C7 200 200 __0 0000000007C0 Počet chyb v kontrolním součtu UltraDMA
C8 200 200 __0 000000000000 Počet chyb při zápisu sektorů

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 427A 3FFF C837 0010 0000 0000 003F 0000 0000 0000
010: 2020 2020 2057 442D 5743 4153 5945 3639 3534 3131
020: 0000 8000 0032 3032 2E30 3342 3033 5744 4320 5744
030: 3530 3032 4142 5953 2D30 3242 3142 3020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 0000 2F00
050: 4001 0000 0000 0007 3FFF 0010 003F FC10 00FB 0110
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 001F 0506 0000 0044 0040
080: 01FE 0000 746B 7F61 4163 7469 BE41 4163 207F 0030
090: 0030 0000 FFFE 0000 80FE 0000 0000 0000 0000 0000
100: 6030 3A38 0000 0000 0000 0000 0000 0000 5001 4EE2
110: AF97 FC2C 0000 0000 0000 0000 0000 0000 0000 401C
120: 401C 0000 0000 0000 0000 0000 0000 0000 0029 0000
130: 0000 0000 0000 16AB 0000 0000 0000 0000 0000 0000
140: 0000 0000 0004 0000 0000 0000 0000 0000 0000 0000
150: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 303F 0000 0000 0000
210: 0000 0000 0000 0000 0000 0000 0000 1C20 0000 0000
220: 0000 0000 100E 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0001 1000 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 DBA5

-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 2F 00 C8 C8 00 00 00 00 00 00 00 03 27
010: 00 C9 B7 64 0B 00 00 00 00 00 04 32 00 63 63 39
020: 06 00 00 00 00 00 05 33 00 C8 C8 00 00 00 00 00
030: 00 00 07 2E 00 C8 C8 00 00 00 00 00 00 00 09 32
040: 00 56 56 79 29 00 00 00 00 00 0A 32 00 64 64 00
050: 00 00 00 00 00 00 0B 32 00 64 64 00 00 00 00 00
060: 00 00 0C 32 00 63 63 08 06 00 00 00 00 00 C0 32
070: 00 C8 C8 40 00 00 00 00 00 00 C1 32 00 C8 C8 F8
080: 05 00 00 00 00 00 C2 22 00 6D 65 26 00 00 00 00
090: 00 00 C4 32 00 C8 C8 00 00 00 00 00 00 00 C5 32
0A0: 00 C8 C8 00 00 00 00 00 00 00 C6 30 00 C8 C8 00
0B0: 00 00 00 00 00 00 C7 32 00 C8 C8 C0 07 00 00 00
0C0: 00 00 C8 08 00 C8 C8 00 00 00 00 00 00 00 00 00
0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 82 00 08 25 01 7B
170: 03 00 01 00 02 70 05 00 00 00 00 00 00 00 00 00
180: 00 00 01 04 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 9F

-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 33 C8 C8 C8 C8 00 00 00 00 00 00 03 15
010: 00 00 00 00 00 00 00 00 00 00 04 00 00 00 00 00
020: 00 00 00 00 00 00 05 8C 00 00 00 00 00 00 00 00
030: 00 00 07 00 C8 C8 C8 C8 00 00 00 00 00 00 09 00
040: 00 00 00 00 00 00 00 00 00 00 0A 00 00 00 00 00
050: 00 00 00 00 00 00 0B 00 00 00 00 00 00 00 00 00
060: 00 00 0C 00 00 00 00 00 00 00 00 00 00 00 C0 00
070: 00 00 00 00 00 00 00 00 00 00 C1 00 00 00 00 00
080: 00 00 00 00 00 00 C2 00 00 00 00 00 00 00 00 00
090: 00 00 C4 00 00 00 00 00 00 00 00 00 00 00 C5 00
0A0: 00 00 00 00 00 00 00 00 00 00 C6 00 00 00 00 00
0B0: 00 00 00 00 00 00 C7 00 00 00 00 00 00 00 00 00
0C0: 00 00 C8 00 C8 C8 C8 C8 00 00 00 00 00 00 00 00
0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 5D

Lothar135 · #5 Příspěvek od **Lothar135** » 18 úno 2013 09:59

MiliNess píše:Omluva za vstup.
Mohlo by se jednat o rootkit. Snad bych se i vsadil, že bude zahákovaný objekt zařízení PhysicalDrive0.
1) Spusť tdsskiller a hoď sem výsledný log.
2) Ovládací panely->Nástroje pro správu->Prohlížeč událostí->Protokoly systému Windows->klikni pravým myšítkem na protokol Systém, vyber Uložit všechny události jako, ulož to jako
.evtx soubor a ten upni na http://www.leteckaposta.cz
3) ZaRARuj a upni na http://www.ulozto.cz soubor Windows\memory.dmp

1) Ten Tdsskiller jsem spustil, dal provést scan, ale nic to nenašlo (log nevím, jak sem dát, omlouvám se - nevím, kde to v tom programu je)

2)http://leteckaposta.cz/733641192
Snad je to ten správný soubor

3) Promiňte, ale kde přesně se tento soubor nachází? V adresáři "Windows" soubor "memory.dmp" nevidím

MiliNess · #6 Příspěvek od **MiliNess** » 18 úno 2013 12:46

-pokud jsi nenašel soubor Windows\memory.dmp, pak máš nastaven typ výpisu paměti při havárii na minimální
-log z tdsskilleru najdeš v kořeni diskové jednotky C: (např. C:\TDSSKiller.2.8.16.0_18.02.2013_12.18.33_log.txt)
-udělej ještě test pomocí GMER
-nakonec to ale asi bude pouze vada disku či diskového hostitelského řadiče. Vzhledem k chybovým událostem v protokolu událostí spíše závada disku. (elektroniky)

Lothar135 · #7 Příspěvek od **Lothar135** » 18 úno 2013 13:22

MiliNess píše:-pokud jsi nenašel soubor Windows\memory.dmp, pak máš nastaven typ výpisu paměti při havárii na minimální
-log z tdsskilleru najdeš v kořeni diskové jednotky C: (např. C:\TDSSKiller.2.8.16.0_18.02.2013_12.18.33_log.txt)
-udělej ještě test pomocí GMER
-nakonec to ale asi bude pouze vada disku či diskového hostitelského řadiče. Vzhledem k chybovým událostem v protokolu událostí spíše závada disku. (elektroniky)

Takže ten log z TDSSKilleru:
09:51:57.0875 2340 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
09:51:57.0937 2340 ============================================================
09:51:57.0937 2340 Current date / time: 2013/02/18 09:51:57.0937
09:51:57.0937 2340 SystemInfo:
09:51:57.0937 2340
09:51:57.0937 2340 OS Version: 5.1.2600 ServicePack: 3.0
09:51:57.0937 2340 Product type: Workstation
09:51:57.0937 2340 ComputerName: LOTHAROVO
09:51:57.0937 2340 UserName: Administrator
09:51:57.0937 2340 Windows directory: C:\WINDOWS
09:51:57.0937 2340 System windows directory: C:\WINDOWS
09:51:57.0937 2340 Processor architecture: Intel x86
09:51:57.0937 2340 Number of processors: 2
09:51:57.0937 2340 Page size: 0x1000
09:51:57.0937 2340 Boot type: Normal boot
09:51:57.0937 2340 ============================================================
09:51:58.0640 2340 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
09:51:58.0656 2340 ============================================================
09:51:58.0656 2340 \Device\Harddisk0\DR0:
09:51:58.0656 2340 MBR partitions:
09:51:58.0656 2340 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x61A7927
09:51:58.0656 2340 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x61A79A5, BlocksNum 0x341D93DB
09:51:58.0656 2340 ============================================================
09:51:58.0687 2340 D: <-> \Device\Harddisk0\DR0\Partition2
09:51:58.0718 2340 C: <-> \Device\Harddisk0\DR0\Partition1
09:51:58.0718 2340 ============================================================
09:51:58.0718 2340 Initialize success
09:51:58.0718 2340 ============================================================
09:52:00.0671 2576 ============================================================
09:52:00.0671 2576 Scan started
09:52:00.0671 2576 Mode: Manual;
09:52:00.0671 2576 ============================================================
09:52:01.0093 2576 ================ Scan system memory ========================
09:52:01.0093 2576 System memory - ok
09:52:01.0093 2576 ================ Scan services =============================
09:52:01.0734 2576 [ 802CD891E823ED48A55CFADD16A96F0D ] 279D02B2 C:\WINDOWS\system32\drivers\279D02B2.sys
09:52:01.0734 2576 279D02B2 - ok
09:52:01.0750 2576 [ 802CD891E823ED48A55CFADD16A96F0D ] 676820BE C:\WINDOWS\system32\drivers\676820BE.sys
09:52:01.0765 2576 676820BE - ok
09:52:01.0765 2576 Abiosdsk - ok
09:52:01.0765 2576 abp480n5 - ok
09:52:01.0781 2576 [ 4FE34F1F3126B61FCC6B2043AA8112C9 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
09:52:01.0781 2576 ACPI - ok
09:52:01.0812 2576 [ AFDFF022A01F0B11C776F0860C3B282F ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
09:52:01.0812 2576 ACPIEC - ok
09:52:01.0828 2576 [ 651168B452DA256FA9E1AA172EF5BAC5 ] ADIHdAudAddService C:\WINDOWS\system32\drivers\ADIHdAud.sys
09:52:01.0828 2576 ADIHdAudAddService - ok
09:52:01.0859 2576 [ 563CDCFEEAEF97163E206AF71A61AA6E ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
09:52:01.0859 2576 AdobeFlashPlayerUpdateSvc - ok
09:52:01.0859 2576 adpu160m - ok
09:52:01.0875 2576 [ B4AFCC2F911939A1C16A26E7EBA7F36B ] AEAudio C:\WINDOWS\system32\drivers\AEAudio.sys
09:52:01.0890 2576 AEAudio - ok
09:52:01.0906 2576 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
09:52:01.0906 2576 aec - ok
09:52:01.0906 2576 [ 322D0E36693D6E24A2398BEE62A268CD ] AFD C:\WINDOWS\System32\drivers\afd.sys
09:52:01.0906 2576 AFD - ok
09:52:01.0906 2576 Aha154x - ok
09:52:01.0921 2576 aic78u2 - ok
09:52:01.0921 2576 aic78xx - ok
09:52:01.0937 2576 [ E0A6FA244B8624D78FE5FF6F56A33BAE ] Alerter C:\WINDOWS\system32\alrsvc.dll
09:52:01.0937 2576 Alerter - ok
09:52:01.0937 2576 [ 88842DE939A827577BF24243699AC80A ] ALG C:\WINDOWS\System32\alg.exe
09:52:01.0937 2576 ALG - ok
09:52:01.0953 2576 AliIde - ok
09:52:01.0968 2576 amsint - ok
09:52:01.0984 2576 [ 18A05379958519FA2EEF5C9F3B244B06 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
09:52:01.0984 2576 AppMgmt - ok
09:52:01.0984 2576 aswTdi - ok
09:52:02.0031 2576 aswUpdSv - ok
09:52:02.0031 2576 avast! Antivirus - ok
09:52:02.0046 2576 [ B5B8A80875C1DEDEDA8B02765642C32F ] Arp1394 C:\WINDOWS\system32\DRIVERS\arp1394.sys
09:52:02.0046 2576 Arp1394 - ok
09:52:02.0046 2576 asc - ok
09:52:02.0046 2576 asc3350p - ok
09:52:02.0046 2576 asc3550 - ok
09:52:02.0078 2576 [ 2B4E66FAC6503494A2C6F32BB6AB3826 ] AsIO C:\WINDOWS\system32\drivers\AsIO.sys
09:52:02.0078 2576 AsIO - ok
09:52:02.0187 2576 [ 4EABF511B1AF176A971C3271E48FA3A8 ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
09:52:02.0187 2576 aspnet_state - ok
09:52:02.0187 2576 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
09:52:02.0187 2576 AsyncMac - ok
09:52:02.0203 2576 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
09:52:02.0203 2576 atapi - ok
09:52:02.0218 2576 Atdisk - ok
09:52:02.0218 2576 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
09:52:02.0218 2576 Atmarpc - ok
09:52:02.0234 2576 [ DE31B88962A8645DBA5A37B993E7B0F1 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
09:52:02.0234 2576 AudioSrv - ok
09:52:02.0250 2576 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
09:52:02.0250 2576 audstub - ok
09:52:02.0265 2576 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
09:52:02.0265 2576 Beep - ok
09:52:02.0281 2576 [ 18A05379958519FA2EEF5C9F3B244B06 ] BITS C:\WINDOWS\System32\appmgmts.dll
09:52:02.0281 2576 BITS - ok
09:52:02.0281 2576 [ 249276D3EF1E74B992299CB96099E4D7 ] Browser C:\WINDOWS\System32\browser.dll
09:52:02.0296 2576 Browser - ok
09:52:02.0296 2576 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
09:52:02.0296 2576 cbidf2k - ok
09:52:02.0312 2576 cd20xrnt - ok
09:52:02.0312 2576 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
09:52:02.0312 2576 Cdaudio - ok
09:52:02.0312 2576 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
09:52:02.0312 2576 Cdfs - ok
09:52:02.0312 2576 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
09:52:02.0312 2576 Cdrom - ok
09:52:02.0328 2576 Changer - ok
09:52:02.0328 2576 [ E390DC1D7C461D7D56EC53402F329928 ] CiSvc C:\WINDOWS\system32\cisvc.exe
09:52:02.0328 2576 CiSvc - ok
09:52:02.0328 2576 [ 064507A8DFA8C5C7E2FFDDD3E6F424FA ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
09:52:02.0328 2576 ClipSrv - ok
09:52:02.0359 2576 [ 234B1BC2796483E1F5C3F26649FB3388 ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
09:52:02.0359 2576 clr_optimization_v2.0.50727_32 - ok
09:52:02.0359 2576 CmdIde - ok
09:52:02.0359 2576 COMSysApp - ok
09:52:02.0375 2576 Cpqarray - ok
09:52:02.0375 2576 [ F3AB0933CBD166D271992F411C27CCAF ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
09:52:02.0375 2576 CryptSvc - ok
09:52:02.0375 2576 dac2w2k - ok
09:52:02.0375 2576 dac960nt - ok
09:52:02.0406 2576 [ C868F3AE15CF71A93F2AA3A32856D839 ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
09:52:02.0406 2576 DcomLaunch - ok
09:52:02.0421 2576 [ 8C9A53E285AC5E6704844D0459EC85BE ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
09:52:02.0421 2576 Dhcp - ok
09:52:02.0437 2576 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
09:52:02.0437 2576 Disk - ok
09:52:02.0437 2576 dmadmin - ok
09:52:02.0453 2576 [ DB5FD2BF5B07DC54BFCB3664FF05BD7C ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
09:52:02.0453 2576 dmboot - ok
09:52:02.0468 2576 [ FFF1720AF51171F32F1EAD5CF71F2810 ] dmio C:\WINDOWS\system32\drivers\dmio.sys
09:52:02.0468 2576 dmio - ok
09:52:02.0468 2576 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
09:52:02.0468 2576 dmload - ok
09:52:02.0468 2576 [ 2BFEFE9E865655A76982F050450B9591 ] dmserver C:\WINDOWS\System32\dmserver.dll
09:52:02.0468 2576 dmserver - ok
09:52:02.0500 2576 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
09:52:02.0500 2576 DMusic - ok
09:52:02.0500 2576 [ 0634B791684B84F4A331F3D3536FEEF8 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
09:52:02.0500 2576 Dnscache - ok
09:52:02.0531 2576 [ 5EABEB06B4A37255358123E9BE742A69 ] Dokan C:\WINDOWS\system32\drivers\dokan.sys
09:52:02.0531 2576 Dokan - ok
09:52:02.0546 2576 [ 309148E6A081596EE9C1EA98DA4C9E5A ] DokanMounter C:\Program Files\Dokan\DokanLibrary\mounter.exe
09:52:02.0546 2576 DokanMounter - ok
09:52:02.0562 2576 [ 4A3E2BD20157A0946751229E92EB8621 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
09:52:02.0562 2576 Dot3svc - ok
09:52:02.0562 2576 dpti2o - ok
09:52:02.0578 2576 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
09:52:02.0578 2576 drmkaud - ok
09:52:02.0593 2576 [ 0887D9C2BE8D940778CAD1E3B85F2A41 ] EapHost C:\WINDOWS\System32\eapsvc.dll
09:52:02.0593 2576 EapHost - ok
09:52:02.0593 2576 [ A2A4912798F2BE706ABADD3D30800D16 ] ERSvc C:\WINDOWS\System32\ersvc.dll
09:52:02.0593 2576 ERSvc - ok
09:52:02.0593 2576 [ F0D2AE69035092BF22DAD6B50FAB85C2 ] Eventlog C:\WINDOWS\system32\services.exe
09:52:02.0609 2576 Eventlog - ok
09:52:02.0609 2576 [ 260C69FD67687B0DC062FC3D31655857 ] EventSystem C:\WINDOWS\system32\es.dll
09:52:02.0609 2576 EventSystem - ok
09:52:02.0625 2576 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
09:52:02.0625 2576 Fastfat - ok
09:52:02.0640 2576 [ B927443008910B412BEC72FC41C1BAD0 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
09:52:02.0640 2576 FastUserSwitchingCompatibility - ok
09:52:02.0640 2576 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
09:52:02.0640 2576 Fdc - ok
09:52:02.0656 2576 [ AC366695A0796560AA37215AD5762AAF ] Fips C:\WINDOWS\system32\drivers\Fips.sys
09:52:02.0656 2576 Fips - ok
09:52:02.0656 2576 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
09:52:02.0656 2576 Flpydisk - ok
09:52:02.0671 2576 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\DRIVERS\fltMgr.sys
09:52:02.0671 2576 FltMgr - ok
09:52:02.0703 2576 [ 993883524AA9CF1C90E1545411A9AC9C ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
09:52:02.0703 2576 FontCache3.0.0.0 - ok
09:52:02.0718 2576 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
09:52:02.0718 2576 Fs_Rec - ok
09:52:02.0718 2576 [ 4E664D8541DB4A66B73A24257E322E1F ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
09:52:02.0718 2576 Ftdisk - ok
09:52:02.0734 2576 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
09:52:02.0734 2576 Gpc - ok
09:52:02.0750 2576 [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
09:52:02.0750 2576 HDAudBus - ok
09:52:02.0781 2576 [ FCFE31FB75F8A6295B6B0AF87A626282 ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
09:52:02.0781 2576 helpsvc - ok
09:52:02.0781 2576 HidServ - ok
09:52:02.0781 2576 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] hidusb C:\WINDOWS\system32\DRIVERS\hidusb.sys
09:52:02.0781 2576 hidusb - ok
09:52:02.0812 2576 [ 7A6B320928F86BC851530D63C82965D9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
09:52:02.0812 2576 hkmsvc - ok
09:52:02.0812 2576 hpn - ok
09:52:02.0828 2576 [ F6AACF5BCE2893E0C1754AFEB672E5C9 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
09:52:02.0828 2576 HTTP - ok
09:52:02.0843 2576 [ 58FE2F2DA3BC5573F4A35B3760D3125F ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
09:52:02.0843 2576 HTTPFilter - ok
09:52:02.0843 2576 i2omgmt - ok
09:52:02.0843 2576 i2omp - ok
09:52:02.0859 2576 [ C528E27945367191E7BAE364930B6932 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
09:52:02.0859 2576 i8042prt - ok
09:52:02.0906 2576 [ E7CC3AEAED9893A88876744CD439F76C ] idsvc C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
09:52:02.0921 2576 idsvc - ok
09:52:02.0921 2576 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
09:52:02.0921 2576 Imapi - ok
09:52:02.0937 2576 [ F7B93AAFAD33B2320954C17E26C8D361 ] ImapiService C:\WINDOWS\system32\imapi.exe
09:52:02.0937 2576 ImapiService - ok
09:52:02.0937 2576 ini910u - ok
09:52:02.0937 2576 IntelIde - ok
09:52:02.0953 2576 [ 27B290D632AF2CF3CF40BFDDB7370985 ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
09:52:02.0953 2576 intelppm - ok
09:52:02.0968 2576 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
09:52:02.0968 2576 Ip6Fw - ok
09:52:02.0968 2576 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
09:52:02.0968 2576 IpFilterDriver - ok
09:52:02.0968 2576 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
09:52:02.0968 2576 IpInIp - ok
09:52:02.0984 2576 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
09:52:02.0984 2576 IpNat - ok
09:52:03.0000 2576 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
09:52:03.0000 2576 IPSec - ok
09:52:03.0015 2576 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
09:52:03.0015 2576 IRENUM - ok
09:52:03.0031 2576 [ CC9F8A2D60AED1A51A3AC34C59B987AE ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
09:52:03.0031 2576 isapnp - ok
09:52:03.0093 2576 [ CC54FD59486BEF7CE70275FAC2FD9D34 ] JavaQuickStarterService C:\Program Files\Java\jre7\bin\jqs.exe
09:52:03.0093 2576 JavaQuickStarterService - ok
09:52:03.0109 2576 [ 1B6162FE7F66B1A71A4B70F941C4AA9B ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
09:52:03.0109 2576 Kbdclass - ok
09:52:03.0109 2576 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
09:52:03.0109 2576 kmixer - ok
09:52:03.0125 2576 [ 1705745D900DABF2D89F90EBADDC7517 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
09:52:03.0125 2576 KSecDD - ok
09:52:03.0140 2576 [ 21920AC69594AB021237054FA728FE46 ] LanmanServer C:\WINDOWS\System32\srvsvc.dll
09:52:03.0140 2576 LanmanServer - ok
09:52:03.0156 2576 [ 5190783F51A2D7A8495202C664D7C963 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
09:52:03.0156 2576 lanmanworkstation - ok
09:52:03.0156 2576 lbrtfdc - ok
09:52:03.0171 2576 [ 0AB159F536E3E8F7F07113702A07CCA5 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
09:52:03.0171 2576 LmHosts - ok
09:52:03.0171 2576 [ 221CD1C815B8A6B79389C3F5D1018DE8 ] Messenger C:\WINDOWS\System32\msgsvc.dll
09:52:03.0171 2576 Messenger - ok
09:52:03.0187 2576 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
09:52:03.0187 2576 mnmdd - ok
09:52:03.0218 2576 [ 9A57D046F88F4B69751B11FD40088A61 ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
09:52:03.0218 2576 mnmsrvc - ok
09:52:03.0234 2576 [ 44032B0C6D9954D3FD26438330B99EE7 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
09:52:03.0234 2576 Modem - ok
09:52:03.0234 2576 [ 4CB582831DBDE63CE43B45D771218374 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
09:52:03.0234 2576 Mouclass - ok
09:52:03.0234 2576 [ BB269EBA740737AB749B214D568B6812 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
09:52:03.0234 2576 mouhid - ok
09:52:03.0250 2576 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
09:52:03.0250 2576 MountMgr - ok
09:52:03.0281 2576 [ 51A84B690DF519DCF656F780243D953E ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
09:52:03.0281 2576 MozillaMaintenance - ok
09:52:03.0281 2576 mraid35x - ok
09:52:03.0281 2576 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
09:52:03.0281 2576 MRxDAV - ok
09:52:03.0296 2576 [ 68755F0FF16070178B54674FE5B847B0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
09:52:03.0296 2576 MRxSmb - ok
09:52:03.0312 2576 [ 6DB4D1521CABA9A5FFAB54ADE0AE867D ] MSDTC C:\WINDOWS\system32\msdtc.exe
09:52:03.0312 2576 MSDTC - ok
09:52:03.0328 2576 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
09:52:03.0328 2576 Msfs - ok
09:52:03.0328 2576 MSIServer - ok
09:52:03.0343 2576 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
09:52:03.0343 2576 MSKSSRV - ok
09:52:03.0343 2576 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
09:52:03.0343 2576 MSPCLOCK - ok
09:52:03.0359 2576 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
09:52:03.0359 2576 MSPQM - ok
09:52:03.0359 2576 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
09:52:03.0359 2576 mssmbios - ok
09:52:03.0375 2576 [ D48659BB24C48345D926ECB45C1EBDF5 ] MTsensor C:\WINDOWS\system32\DRIVERS\ASACPI.sys
09:52:03.0375 2576 MTsensor - ok
09:52:03.0390 2576 [ 2F625D11385B1A94360BFC70AAEFDEE1 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
09:52:03.0390 2576 Mup - ok
09:52:03.0406 2576 [ 6EA362E9DB03D44F6B996F4D8BE237E9 ] napagent C:\WINDOWS\System32\qagentrt.dll
09:52:03.0406 2576 napagent - ok
09:52:03.0421 2576 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
09:52:03.0421 2576 NDIS - ok
09:52:03.0437 2576 [ 1AB3D00C991AB086E69DB84B6C0ED78F ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
09:52:03.0437 2576 NdisTapi - ok
09:52:03.0437 2576 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
09:52:03.0437 2576 Ndisuio - ok
09:52:03.0437 2576 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
09:52:03.0437 2576 NdisWan - ok
09:52:03.0437 2576 [ 6215023940CFD3702B46ABC304E1D45A ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
09:52:03.0437 2576 NDProxy - ok
09:52:03.0437 2576 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
09:52:03.0453 2576 NetBIOS - ok
09:52:03.0453 2576 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
09:52:03.0453 2576 NetBT - ok
09:52:03.0453 2576 [ 933DE774986EC85E48210C44AB431DE6 ] NetDDE C:\WINDOWS\system32\netdde.exe
09:52:03.0453 2576 NetDDE - ok
09:52:03.0453 2576 [ 933DE774986EC85E48210C44AB431DE6 ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
09:52:03.0468 2576 NetDDEdsdm - ok
09:52:03.0484 2576 [ ED0A176354487CEED65B80A7148AB739 ] Netlogon C:\WINDOWS\system32\lsass.exe
09:52:03.0484 2576 Netlogon - ok
09:52:03.0500 2576 [ 72E1E9E2977BE08BDEEDB6D8FD9D4D40 ] Netman C:\WINDOWS\System32\netman.dll
09:52:03.0500 2576 Netman - ok
09:52:03.0531 2576 [ F9102685F97F9BA85F4A70AFCF722CFE ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
09:52:03.0531 2576 NetTcpPortSharing - ok
09:52:03.0531 2576 [ E9E47CFB2D461FA0FC75B7A74C6383EA ] NIC1394 C:\WINDOWS\system32\DRIVERS\nic1394.sys
09:52:03.0531 2576 NIC1394 - ok
09:52:03.0546 2576 [ AAC97DAB5F8A0573CF10E0EAC42A7724 ] Nla C:\WINDOWS\System32\mswsock.dll
09:52:03.0546 2576 Nla - ok
09:52:03.0562 2576 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
09:52:03.0562 2576 Npfs - ok
09:52:03.0578 2576 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
09:52:03.0578 2576 Ntfs - ok
09:52:03.0578 2576 [ ED0A176354487CEED65B80A7148AB739 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
09:52:03.0578 2576 NtLmSsp - ok
09:52:03.0609 2576 [ 023DD70573D644F3D9C8B1258A7BFD08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
09:52:03.0609 2576 NtmsSvc - ok
09:52:03.0625 2576 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
09:52:03.0625 2576 Null - ok
09:52:03.0906 2576 [ 625F0E2467F6800E1D939CF22F2F6C99 ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
09:52:03.0953 2576 nv - ok
09:52:03.0968 2576 [ E666A28CC51F04C7D972EF8AD4234BBA ] NVSvc C:\WINDOWS\system32\nvsvc32.exe
09:52:03.0968 2576 NVSvc - ok
09:52:04.0015 2576 [ E7973587C80CC49DAD8E88AD45D2A1CC ] nvUpdatusService C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
09:52:04.0031 2576 nvUpdatusService - ok
09:52:04.0046 2576 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
09:52:04.0046 2576 NwlnkFlt - ok
09:52:04.0046 2576 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
09:52:04.0046 2576 NwlnkFwd - ok
09:52:04.0062 2576 [ CA33832DF41AFB202EE7AEB05145922F ] ohci1394 C:\WINDOWS\system32\DRIVERS\ohci1394.sys
09:52:04.0062 2576 ohci1394 - ok
09:52:04.0093 2576 [ 7A56CF3E3F12E8AF599963B16F50FB6A ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
09:52:04.0093 2576 ose - ok
09:52:04.0109 2576 [ 46F8DB73B4A53E543F8E371DC7C75BAE ] Parport C:\WINDOWS\system32\drivers\Parport.sys
09:52:04.0109 2576 Parport - ok
09:52:04.0109 2576 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
09:52:04.0109 2576 PartMgr - ok
09:52:04.0125 2576 [ 1FAE19D0457176318BBA4A8795656EBC ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
09:52:04.0125 2576 ParVdm - ok
09:52:04.0140 2576 [ 6CE351D149CB4BEFC702951E471E1730 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
09:52:04.0140 2576 PCI - ok
09:52:04.0140 2576 PCIDump - ok
09:52:04.0156 2576 [ 2DA4EC85E0EA7A45C6B2A05820492D5A ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
09:52:04.0156 2576 PCIIde - ok
09:52:04.0156 2576 [ 4FC31E6C19A5CE5198B1ABFF94CAE758 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
09:52:04.0156 2576 Pcmcia - ok
09:52:04.0156 2576 PDCOMP - ok
09:52:04.0156 2576 PDFRAME - ok
09:52:04.0156 2576 PDRELI - ok
09:52:04.0171 2576 PDRFRAME - ok
09:52:04.0171 2576 perc2 - ok
09:52:04.0171 2576 perc2hib - ok
09:52:04.0187 2576 [ F0D2AE69035092BF22DAD6B50FAB85C2 ] PlugPlay C:\WINDOWS\system32\services.exe
09:52:04.0187 2576 PlugPlay - ok
09:52:04.0203 2576 [ ED0A176354487CEED65B80A7148AB739 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
09:52:04.0203 2576 PolicyAgent - ok
09:52:04.0203 2576 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
09:52:04.0203 2576 PptpMiniport - ok
09:52:04.0203 2576 [ ED0A176354487CEED65B80A7148AB739 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
09:52:04.0203 2576 ProtectedStorage - ok
09:52:04.0218 2576 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
09:52:04.0218 2576 PSched - ok
09:52:04.0234 2576 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
09:52:04.0234 2576 Ptilink - ok
09:52:04.0234 2576 ql1080 - ok
09:52:04.0234 2576 Ql10wnt - ok
09:52:04.0234 2576 ql12160 - ok
09:52:04.0234 2576 ql1240 - ok
09:52:04.0234 2576 ql1280 - ok
09:52:04.0250 2576 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
09:52:04.0250 2576 RasAcd - ok
09:52:04.0250 2576 [ 2B5E44EA009F2F374B980E1E9A70635D ] RasAuto C:\WINDOWS\System32\rasauto.dll
09:52:04.0265 2576 RasAuto - ok
09:52:04.0265 2576 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
09:52:04.0265 2576 Rasl2tp - ok
09:52:04.0265 2576 [ D57554C664B64604BD1EE13EA2C07E77 ] RasMan C:\WINDOWS\System32\rasmans.dll
09:52:04.0265 2576 RasMan - ok
09:52:04.0281 2576 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
09:52:04.0281 2576 RasPppoe - ok
09:52:04.0281 2576 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
09:52:04.0281 2576 Raspti - ok
09:52:04.0296 2576 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
09:52:04.0296 2576 Rdbss - ok
09:52:04.0296 2576 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
09:52:04.0296 2576 RDPCDD - ok
09:52:04.0312 2576 [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
09:52:04.0312 2576 rdpdr - ok
09:52:04.0343 2576 [ 6728E45B66F93C08F11DE2E316FC70DD ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
09:52:04.0343 2576 RDPWD - ok
09:52:04.0359 2576 [ C0D9D9711CB74EE9BC66353D8CBDAB0E ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
09:52:04.0375 2576 RDSessMgr - ok
09:52:04.0390 2576 [ 611BFD220305BE3A85AE876EA47D4AA5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
09:52:04.0390 2576 redbook - ok
09:52:04.0406 2576 [ 127C26B5371651043450E52542099ABA ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
09:52:04.0406 2576 RemoteAccess - ok
09:52:04.0406 2576 [ 8F31505484A190D5B22274708799F4EC ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
09:52:04.0406 2576 RemoteRegistry - ok
09:52:04.0421 2576 [ 718B3BDC0BC3C2F7D065A53D26202AF9 ] RpcLocator C:\WINDOWS\system32\locator.exe
09:52:04.0421 2576 RpcLocator - ok
09:52:04.0421 2576 [ C868F3AE15CF71A93F2AA3A32856D839 ] RpcSs C:\WINDOWS\system32\rpcss.dll
09:52:04.0437 2576 RpcSs - ok
09:52:04.0453 2576 [ 09AB2E71E58B078038E3BFDBA7FFC984 ] RSVP C:\WINDOWS\system32\rsvp.exe
09:52:04.0453 2576 RSVP - ok
09:52:04.0453 2576 [ ED0A176354487CEED65B80A7148AB739 ] SamSs C:\WINDOWS\system32\lsass.exe
09:52:04.0453 2576 SamSs - ok
09:52:04.0453 2576 [ 410046E401EB11E1E6749E9DEEA41D4A ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
09:52:04.0453 2576 SCardSvr - ok
09:52:04.0484 2576 [ 3FF232A7731621B8902D81D42418C93C ] Schedule C:\WINDOWS\system32\schedsvc.dll
09:52:04.0484 2576 Schedule - ok
09:52:04.0500 2576 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
09:52:04.0500 2576 Secdrv - ok
09:52:04.0500 2576 [ 477E2C3CC5E4A0D635BCB0EA8DCAC3C6 ] seclogon C:\WINDOWS\System32\seclogon.dll
09:52:04.0500 2576 seclogon - ok
09:52:04.0515 2576 [ B6A6B409FDA9D9EBD3AADB838D3D7173 ] SenFiltService C:\WINDOWS\system32\drivers\Senfilt.sys
09:52:04.0515 2576 SenFiltService - ok
09:52:04.0515 2576 [ A530B75C10C23C9AB28FDB6CE719E21F ] SENS C:\WINDOWS\system32\sens.dll
09:52:04.0515 2576 SENS - ok
09:52:04.0531 2576 [ B842729337C9B921615C40D3C1A1AF96 ] Serial C:\WINDOWS\system32\drivers\Serial.sys
09:52:04.0531 2576 Serial - ok
09:52:04.0546 2576 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
09:52:04.0546 2576 Sfloppy - ok
09:52:04.0562 2576 [ F58FACA9621D2DB01BD0927D9A0A208E ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
09:52:04.0562 2576 SharedAccess - ok
09:52:04.0578 2576 [ B927443008910B412BEC72FC41C1BAD0 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
09:52:04.0578 2576 ShellHWDetection - ok
09:52:04.0578 2576 Simbad - ok
09:52:04.0609 2576 [ 0A0A0183711EFB04F9BCC32BB44471F2 ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
09:52:04.0609 2576 SkypeUpdate - ok
09:52:04.0625 2576 Sparrow - ok
09:52:04.0640 2576 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
09:52:04.0640 2576 splitter - ok
09:52:04.0656 2576 [ CB1090BCA0E7B40D0B5B4E4D66531809 ] Spooler C:\WINDOWS\system32\spoolsv.exe
09:52:04.0656 2576 Spooler - ok
09:52:04.0687 2576 [ 68103A2B441BBF3908EBB587F0704D6C ] sptd C:\WINDOWS\System32\Drivers\sptd.sys
09:52:04.0687 2576 sptd - ok
09:52:04.0703 2576 [ 94610C8653635E4459316A0050D55CE7 ] Sr C:\WINDOWS\system32\DRIVERS\sr.sys
09:52:04.0703 2576 Sr - ok
09:52:04.0703 2576 [ 35B91147124F64AC8081A2EDB9EA4DEE ] srservice C:\WINDOWS\system32\srsvc.dll
09:52:04.0703 2576 srservice - ok
09:52:04.0718 2576 [ 5252605079810904E31C332E241CD59B ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
09:52:04.0718 2576 Srv - ok
09:52:04.0718 2576 [ BECD5271DC4E3B7C3D035F790FCBC1E5 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
09:52:04.0734 2576 SSDPSRV - ok
09:52:04.0750 2576 [ C1CDD9275F6A115BB0AE1D55D8D27BA6 ] stisvc C:\WINDOWS\system32\wiaservc.dll
09:52:04.0750 2576 stisvc - ok
09:52:04.0765 2576 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
09:52:04.0765 2576 swenum - ok
09:52:04.0781 2576 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
09:52:04.0781 2576 swmidi - ok
09:52:04.0781 2576 SwPrv - ok
09:52:04.0781 2576 symc810 - ok
09:52:04.0781 2576 symc8xx - ok
09:52:04.0781 2576 sym_hi - ok
09:52:04.0781 2576 sym_u3 - ok
09:52:04.0796 2576 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
09:52:04.0796 2576 sysaudio - ok
09:52:04.0796 2576 [ CE06F01B88ACE199A1BF460CAC29C110 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
09:52:04.0796 2576 SysmonLog - ok
09:52:04.0812 2576 [ C2546CD7A398476F9DF5614B2AE160E8 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
09:52:04.0812 2576 TapiSrv - ok
09:52:04.0828 2576 [ 93EA8D04EC73A85DB02EB8805988F733 ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
09:52:04.0828 2576 Tcpip - ok
09:52:04.0843 2576 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
09:52:04.0843 2576 TDPIPE - ok
09:52:04.0843 2576 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
09:52:04.0843 2576 TDTCP - ok
09:52:04.0859 2576 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
09:52:04.0859 2576 TermDD - ok
09:52:04.0890 2576 [ A75DD6FC3DBEE4FFF5EBC9F2C28BB66E ] TermService C:\WINDOWS\System32\termsrv.dll
09:52:04.0890 2576 TermService - ok
09:52:04.0906 2576 [ B927443008910B412BEC72FC41C1BAD0 ] Themes C:\WINDOWS\System32\shsvcs.dll
09:52:04.0906 2576 Themes - ok
09:52:04.0921 2576 [ CD0CC7B167D78043A41C98D4921EFB54 ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe
09:52:04.0921 2576 TlntSvr - ok
09:52:04.0921 2576 TosIde - ok
09:52:04.0937 2576 [ 38853304CCB938D30E0C4CDE8D2C2A8A ] TrkWks C:\WINDOWS\system32\trkwks.dll
09:52:04.0937 2576 TrkWks - ok
09:52:04.0953 2576 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
09:52:04.0953 2576 Udfs - ok
09:52:04.0953 2576 ultra - ok
09:52:04.0968 2576 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
09:52:04.0968 2576 Update - ok
09:52:04.0968 2576 [ 651BD90DCEE5B7BDC74A2EB7C9266F9E ] upnphost C:\WINDOWS\System32\upnphost.dll
09:52:04.0984 2576 upnphost - ok
09:52:04.0984 2576 [ 20A0F6A11959E92908717D09E87D670D ] UPS C:\WINDOWS\System32\ups.exe
09:52:04.0984 2576 UPS - ok
09:52:05.0000 2576 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
09:52:05.0000 2576 usbehci - ok
09:52:05.0015 2576 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
09:52:05.0015 2576 usbhub - ok
09:52:05.0015 2576 [ A32426D9B14A089EAA1D922E0C5801A9 ] usbstor C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
09:52:05.0015 2576 usbstor - ok
09:52:05.0031 2576 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
09:52:05.0031 2576 usbuhci - ok
09:52:05.0046 2576 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
09:52:05.0046 2576 VgaSave - ok
09:52:05.0046 2576 ViaIde - ok
09:52:05.0046 2576 [ 28A4B296B47782173C346E376CB374D1 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
09:52:05.0046 2576 VolSnap - ok
09:52:05.0046 2576 [ D6BA1A63D9E00933F1CD2A885573AFB2 ] VSS C:\WINDOWS\System32\vssvc.exe
09:52:05.0046 2576 VSS - ok
09:52:05.0062 2576 [ FA4E1CDBA256787F2149F4AAD07BC91F ] W32Time C:\WINDOWS\system32\w32time.dll
09:52:05.0062 2576 W32Time - ok
09:52:05.0062 2576 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
09:52:05.0062 2576 Wanarp - ok
09:52:05.0062 2576 WDICA - ok
09:52:05.0078 2576 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
09:52:05.0078 2576 wdmaud - ok
09:52:05.0078 2576 [ 47AE51048A82DFA1CD6B51D369F7E169 ] WebClient C:\WINDOWS\System32\webclnt.dll
09:52:05.0078 2576 WebClient - ok
09:52:05.0171 2576 [ E488332126E3B1182D2B8A0C35408EC6 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
09:52:05.0171 2576 winmgmt - ok
09:52:05.0187 2576 [ 18A05379958519FA2EEF5C9F3B244B06 ] WmdmPmSN C:\WINDOWS\system32\mspmsnsv.dll
09:52:05.0203 2576 WmdmPmSN - ok
09:52:05.0218 2576 [ 6538D6BDE04B56737FE743C24D4CE83D ] Wmi C:\WINDOWS\System32\advapi32.dll
09:52:05.0218 2576 Wmi - ok
09:52:05.0234 2576 [ 23F6F03272F7E5679F1F050AED5ACEE6 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
09:52:05.0234 2576 WmiApSrv - ok
09:52:05.0265 2576 [ 3739866D20ABD42F26A7B85F9E2560AF ] WMPNetworkSvc C:\Program Files\Windows Media Player\WMPNetwk.exe
09:52:05.0265 2576 WMPNetworkSvc - ok
09:52:05.0281 2576 [ 4C86D5FAF78194995AF9CC1075F65DD3 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
09:52:05.0281 2576 wscsvc - ok
09:52:05.0296 2576 [ C1364564800EE9784192145324A23308 ] wuauserv C:\WINDOWS\system32\wuauserv.dll
09:52:05.0296 2576 wuauserv - ok
09:52:05.0296 2576 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
09:52:05.0296 2576 WudfPf - ok
09:52:05.0296 2576 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
09:52:05.0312 2576 WudfRd - ok
09:52:05.0312 2576 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
09:52:05.0312 2576 WudfSvc - ok
09:52:05.0312 2576 [ A27D4BA7264C0BF52F32D10405BEA1D4 ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
09:52:05.0328 2576 WZCSVC - ok
09:52:05.0328 2576 [ EAA4BB9EDB3FB10CF8979FE65E63658F ] xmlprov C:\WINDOWS\System32\xmlprov.dll
09:52:05.0328 2576 xmlprov - ok
09:52:05.0343 2576 [ 67331FD053F97A874A60374BE6B59523 ] yukonwxp C:\WINDOWS\system32\DRIVERS\yk51x86.sys
09:52:05.0343 2576 yukonwxp - ok
09:52:05.0359 2576 ================ Scan global ===============================
09:52:05.0359 2576 [ F36278E42C8C5DF03CE17DAC8231C91C ] C:\WINDOWS\system32\basesrv.dll
09:52:05.0375 2576 [ 77A41C497ADB0C96D1E8DF6F71D843C0 ] C:\WINDOWS\system32\winsrv.dll
09:52:05.0390 2576 [ 77A41C497ADB0C96D1E8DF6F71D843C0 ] C:\WINDOWS\system32\winsrv.dll
09:52:05.0406 2576 [ F0D2AE69035092BF22DAD6B50FAB85C2 ] C:\WINDOWS\system32\services.exe
09:52:05.0406 2576 [Global] - ok
09:52:05.0406 2576 ================ Scan MBR ==================================
09:52:05.0421 2576 [ 413FC2A0C716421B3158746D63736515 ] \Device\Harddisk0\DR0
09:52:05.0562 2576 \Device\Harddisk0\DR0 - ok
09:52:05.0562 2576 ================ Scan VBR ==================================
09:52:05.0562 2576 [ 67DCDFE0C8381B7F3C76E86CAB52A266 ] \Device\Harddisk0\DR0\Partition1
09:52:05.0562 2576 \Device\Harddisk0\DR0\Partition1 - ok
09:52:05.0578 2576 [ A28DFCADCBF9E2A4C287AB0926C22600 ] \Device\Harddisk0\DR0\Partition2
09:52:05.0578 2576 \Device\Harddisk0\DR0\Partition2 - ok
09:52:05.0578 2576 ============================================================
09:52:05.0578 2576 Scan finished
09:52:05.0578 2576 ============================================================
09:52:05.0578 2464 Detected object count: 0
09:52:05.0578 2464 Actual detected object count: 0
09:52:50.0500 1692 Deinitialize success

Lothar135 · #8 Příspěvek od **Lothar135** » 18 úno 2013 17:46

MiliNess píše:-pokud jsi nenašel soubor Windows\memory.dmp, pak máš nastaven typ výpisu paměti při havárii na minimální
-udělej ještě test pomocí GMER
-nakonec to ale asi bude pouze vada disku či diskového hostitelského řadiče. Vzhledem k chybovým událostem v protokolu událostí spíše závada disku. (elektroniky)

GMER test asi něco našel, tedy byly tam nějaké červeně barvené výpisy.

Log z "Quick Scan"
http://leteckaposta.cz/517153035

MiliNess · #9 Příspěvek od **MiliNess** » 18 úno 2013 18:14

Ten GMER je dost unáhlený. Řekl bych, že je to ok. Před tím bych přísahal, že tam něco je.
Raději ještě poprosím někoho z kolegů aby na to mrknul, ale zatím to opravdu vypadá na chybu disku.

Lothar135 · #10 Příspěvek od **Lothar135** » 18 úno 2013 18:17

MiliNess píše:Ten GMER je dost unáhlený. Řekl bych, že je to ok. Před tím bych přísahal, že tam něco je.
Raději ještě poprosím někoho z kolegů aby na to mrknul, ale zatím to opravdu vypadá na chybu disku.

Ještě k tomu GMERU. Log ze scanu systémového disku C. (nevím, jestli je to podrobnější, když to není Quick scan)
http://leteckaposta.cz/947083094

#11 Příspěvek od **vyosek** » 18 úno 2013 21:06

Zdravim

Kolega me poprosil o soucinnost at vyloucime rootkita...

Stahnete aswMBR http://public.avast.com/%7Egmerek/aswMBR.exe a ulozte jej na plochu.

Utilitu spustte a prikazte ji, at skenuje - klik na Scan
Kliknutim na Save log ulozte log aswMBR na plochu
Obsah logu aswMBR mi sem vlozte

Stahnete MBRScan http://eric71.geekstogo.com/tools/MbrScan.exe

Ulozte nejlepe na plochu
Pokud pouzivate Win Vista ci W7, kliknete na MBRScan pravym a dejte Run As Administrator ci Spustit jako spravce
Kliknete na Report
Po chvilce se objevi log do souboru MBRScan.txt, ten sem vlozte

Lothar135 · #12 Příspěvek od **Lothar135** » 19 úno 2013 09:22

Ten aswMBR odkaz my píše "chyba při načítání stránky"

MBRScan mi vyplivl tento log:

Kód: Vybrat vše

MBRScan v1.1.1

OS             : Windows XP Home Service Pack 3 (32 bit)
PROCESSOR      : x86 Family 6 Model 15 Stepping 11, GenuineIntel
BOOT           : Normal Boot
DATE           : 2013/02/19 (ISO 8601) at 09:22:37
________________________________________________________________________________

DISK           : Device\Harddisk0\DR0 __WDC WD5002ABYS-02B1B0 (02.03B03)
BUS_TYPE       : (0x03)  P-ATA
USE_PIO        : YES
MAX_TRANSFER   : 128 Kb
ALIGNMENT_MASK : word aligned
________________________________________________________________________________

Device\Harddisk0\DR0	465.8 Go  [Fixed] ==> XP MBR Code

MBR_MD5   : 6DEB92B152F602C53B841D893E6783E5
MBR_SHA1  : 2A55759C2609F55FF42D83C5403D9464FF0A0697

Device\Harddisk0\Partition1	48.83 Go  	0x07 NTFS / HPFS __ BOOTABLE __
Device\Harddisk0\Partition2	416.9 Go  	0x07 NTFS / HPFS
________________________________________________________________________________

############################### Additional scan ################################

DRIVER  : C:\WINDOWS\System32\Drivers\dump_atapi.sys => Invisible on the disk
ADDRESS : 0xB4AF6000
SIZE    : 96.0 Ko

DRIVER  : C:\WINDOWS\System32\Drivers\dump_WMILIB.SYS => Invisible on the disk
ADDRESS : 0xB8606000
SIZE    : 8.0 Ko

SystemStartOptions : NOEXECUTE=OPTIN  FASTDETECT

________________________________________________________________________________

_______MBR   \Device\Harddisk0\DR0  

0x00000000   33 C0 8E D0 BC 00 7C FB 50 07 50 1F FC BE 1B 7C   3À.Ð¼.|ûP.P.ü¾.|
0x00000010   BF 1B 06 50 57 B9 E5 01 F3 A4 CB BD BE 07 B1 04   ¿..PW¹å.ó¤Ë½¾.±.
0x00000020   38 6E 00 7C 09 75 13 83 C5 10 E2 F4 CD 18 8B F5   8n.|.u..Å.âôÍ..õ
0x00000030   83 C6 10 49 74 19 38 2C 74 F6 A0 B5 07 B4 07 8B   .Æ.It.8,tö.µ.´..
0x00000040   F0 AC 3C 00 74 FC BB 07 00 B4 0E CD 10 EB F2 88   ð¬<.tü»..´.Í.ëò.
0x00000050   4E 10 E8 46 00 73 2A FE 46 10 80 7E 04 0B 74 0B   N.èF.s*þF..~..t.
0x00000060   80 7E 04 0C 74 05 A0 B6 07 75 D2 80 46 02 06 83   .~..t..¶.uÒ.F...
0x00000070   46 08 06 83 56 0A 00 E8 21 00 73 05 A0 B6 07 EB   F...V..è!.s..¶.ë
0x00000080   BC 81 3E FE 7D 55 AA 74 0B 80 7E 10 00 74 C8 A0   ¼.>þ}Uªt..~..tÈ.
0x00000090   B7 07 EB A9 8B FC 1E 57 8B F5 CB BF 05 00 8A 56   ·.ë©.ü.W.õË¿...V
0x000000A0   00 B4 08 CD 13 72 23 8A C1 24 3F 98 8A DE 8A FC   .´.Í.r#.Á$?..Þ.ü
0x000000B0   43 F7 E3 8B D1 86 D6 B1 06 D2 EE 42 F7 E2 39 56   C÷ã.Ñ.Ö±.ÒîB÷â9V
0x000000C0   0A 77 23 72 05 39 46 08 73 1C B8 01 02 BB 00 7C   .w#r.9F.s.¸..».|
0x000000D0   8B 4E 02 8B 56 00 CD 13 73 51 4F 74 4E 32 E4 8A   .N..V.Í.sQOtN2ä.
0x000000E0   56 00 CD 13 EB E4 8A 56 00 60 BB AA 55 B4 41 CD   V.Í.ëä.V.`»ªU´AÍ
0x000000F0   13 72 36 81 FB 55 AA 75 30 F6 C1 01 74 2B 61 60   .r6.ûUªu0öÁ.t+a`
0x00000100   6A 00 6A 00 FF 76 0A FF 76 08 6A 00 68 00 7C 6A   j.j..v..v.j.h.|j
0x00000110   01 6A 10 B4 42 8B F4 CD 13 61 61 73 0E 4F 74 0B   .j.´B.ôÍ.aas.Ot.
0x00000120   32 E4 8A 56 00 CD 13 EB D6 61 F9 C3 4E 65 70 6C   2ä.V.Í.ëÖaùÃNepl
0x00000130   61 74 6E A0 20 74 61 62 75 6C 6B 61 20 6F 64 64   atn. tabulka odd
0x00000140   A1 6C 85 00 43 68 79 62 61 20 70 FD 69 20 6E 61   ¡l..Chyba pýi na
0x00000150   9F A1 74 A0 6E A1 20 6F 70 65 72 61 9F 6E A1 68   .¡t.n¡ opera.n¡h
0x00000160   6F 20 73 79 73 74 82 6D 75 00 4F 70 65 72 61 9F   o syst.mu.Opera.
0x00000170   6E A1 20 73 79 73 74 82 6D 20 6E 65 6E 61 6C 65   n¡ syst.m nenale
0x00000180   7A 65 6E 00 00 00 00 00 00 00 00 00 00 00 00 00   zen.............
0x00000190   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x000001A0   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x000001B0   00 00 00 00 00 2C 44 6A 1B E8 1B E8 00 00 80 01   .....,Dj.è.è....
0x000001C0   01 00 07 FE FF FF 3F 00 00 00 27 79 1A 06 00 FE   ...þ..?...'y...þ
0x000001D0   FF FF 0F FE FF FF 66 79 1A 06 1A 94 1D 34 00 00   ...þ..fy.....4..
0x000001E0   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x000001F0   00 00 00 00 00 00 00 00 00 00 00 00 00 00 55 AA   ..............Uª

#13 Příspěvek od **vyosek** » 19 úno 2013 09:52

Me tedy jde normalne stahnout, zkuste odsud http://vyosek.ic.cz/pro_usery/aswMBR.exe

Lothar135 · #14 Příspěvek od **Lothar135** » 19 úno 2013 10:18

vyosek píše:Me tedy jde normalne stahnout, zkuste odsud http://vyosek.ic.cz/pro_usery/aswMBR.exe

Z tohoto odkazu to již lze, děkuji.
Log:
aswMBR version 0.9.9.1707 Copyright(c) 2011 AVAST Software
Run date: 2013-02-19 10:16:56
-----------------------------
10:16:56.312 OS Version: Windows 5.1.2600 Service Pack 3
10:16:56.312 Number of processors: 2 586 0xF0B
10:16:56.312 ComputerName: LOTHAROVO UserName:
10:16:56.453 Initialize success
10:17:06.031 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP2T1L0-7
10:17:06.031 Disk 0 Vendor: WDC_WD5002ABYS-02B1B0 02.03B03 Size: 476940MB BusType: 3
10:17:06.062 Disk 0 MBR read successfully
10:17:06.062 Disk 0 MBR scan
10:17:06.062 Disk 0 Windows XP default MBR code
10:17:06.062 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 49999 MB offset 63
10:17:06.062 Disk 0 Partition - 00 0F Extended LBA 426930 MB offset 102398310
10:17:06.062 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 426930 MB offset 102398373
10:17:06.062 Disk 0 scanning sectors +976752000
10:17:06.109 Disk 0 scanning C:\WINDOWS\system32\drivers
10:17:07.875 Service scanning
10:17:09.046 Service 279D02B2 C:\WINDOWS\system32\drivers\279D02B2.sys **HIDDEN**
10:17:09.046 Service 676820BE C:\WINDOWS\system32\drivers\676820BE.sys **HIDDEN**
10:17:09.046 Service Abiosdsk C:\WINDOWS\System32\Drivers\Abiosdsk.sys **HIDDEN**
10:17:09.046 Service abp480n5 C:\WINDOWS\System32\Drivers\abp480n5.sys **HIDDEN**
10:17:09.046 Service ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys **HIDDEN**
10:17:09.046 Service ACPIEC C:\WINDOWS\System32\Drivers\ACPIEC.sys **HIDDEN**
10:17:09.046 Service ADIHdAudAddService C:\WINDOWS\system32\drivers\ADIHdAud.sys **HIDDEN**
10:17:09.046 Service AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe **HIDDEN**
10:17:09.046 Service adpu160m C:\WINDOWS\System32\Drivers\adpu160m.sys **HIDDEN**
10:17:09.046 Service AEAudio C:\WINDOWS\system32\drivers\AEAudio.sys **HIDDEN**
10:17:09.046 Service aec C:\WINDOWS\system32\drivers\aec.sys **HIDDEN**
10:17:09.046 Service AFD C:\WINDOWS\System32\drivers\afd.sys **HIDDEN**
10:17:09.046 Service Aha154x C:\WINDOWS\System32\Drivers\Aha154x.sys **HIDDEN**
10:17:09.046 Service aic78u2 C:\WINDOWS\System32\Drivers\aic78u2.sys **HIDDEN**
10:17:09.046 Service aic78xx C:\WINDOWS\System32\Drivers\aic78xx.sys **HIDDEN**
10:17:09.046 Service Alerter C:\WINDOWS\system32\alrsvc.dll **HIDDEN**
10:17:09.062 Service ALG C:\WINDOWS\System32\alg.exe **HIDDEN**
10:17:09.062 Service AliIde C:\WINDOWS\System32\Drivers\AliIde.sys **HIDDEN**
10:17:09.062 Service amsint C:\WINDOWS\System32\Drivers\amsint.sys **HIDDEN**
10:17:09.062 Service AppMgmt C:\WINDOWS\System32\appmgmts.dll **HIDDEN**
10:17:09.062 Service aswTdi C:\WINDOWS\System32\Drivers\aswTdi.sys **HIDDEN**
10:17:09.062 Service aswUpdSv C:\Program **HIDDEN**
10:17:09.062 Service avast! Antivirus C:\Program **HIDDEN**
10:17:09.062 Service Arp1394 C:\WINDOWS\system32\DRIVERS\arp1394.sys **HIDDEN**
10:17:09.062 Service asc C:\WINDOWS\System32\Drivers\asc.sys **HIDDEN**
10:17:09.062 Service asc3350p C:\WINDOWS\System32\Drivers\asc3350p.sys **HIDDEN**
10:17:09.062 Service asc3550 C:\WINDOWS\System32\Drivers\asc3550.sys **HIDDEN**
10:17:09.062 Service AsIO C:\WINDOWS\system32\drivers\AsIO.sys **HIDDEN**
10:17:09.062 Service ASP.NET (null) **HIDDEN**
10:17:09.062 Service ASP.NET_2.0.50727 (null) **HIDDEN**
10:17:09.062 Service aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe **HIDDEN**
10:17:09.062 Service AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys **HIDDEN**
10:17:09.062 Service atapi C:\WINDOWS\system32\DRIVERS\atapi.sys **HIDDEN**
10:17:09.062 Service Atdisk C:\WINDOWS\System32\Drivers\Atdisk.sys **HIDDEN**
10:17:09.062 Service Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys **HIDDEN**
10:17:09.062 Service AudioSrv C:\WINDOWS\System32\audiosrv.dll **HIDDEN**
10:17:09.062 Service audstub C:\WINDOWS\system32\DRIVERS\audstub.sys **HIDDEN**
10:17:09.062 Service BattC (null) **HIDDEN**
10:17:09.062 Service Beep C:\WINDOWS\System32\Drivers\Beep.sys **HIDDEN**
10:17:09.062 Service BITS C:\WINDOWS\System32\appmgmts.dll **HIDDEN**
10:17:09.062 Service Browser C:\WINDOWS\System32\browser.dll **HIDDEN**
10:17:09.062 Service cbidf2k C:\WINDOWS\System32\Drivers\cbidf2k.sys **HIDDEN**
10:17:09.062 Service cd20xrnt C:\WINDOWS\System32\Drivers\cd20xrnt.sys **HIDDEN**
10:17:09.062 Service Cdaudio C:\WINDOWS\System32\Drivers\Cdaudio.sys **HIDDEN**
10:17:09.078 Service Cdfs C:\WINDOWS\System32\Drivers\Cdfs.sys **HIDDEN**
10:17:09.078 Service Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys **HIDDEN**
10:17:09.078 Service Changer C:\WINDOWS\System32\Drivers\Changer.sys **HIDDEN**
10:17:09.078 Service CiSvc C:\WINDOWS\system32\cisvc.exe **HIDDEN**
10:17:09.078 Service ClipSrv C:\WINDOWS\system32\clipsrv.exe **HIDDEN**
10:17:09.078 Service clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe **HIDDEN**
10:17:09.078 Service CmdIde C:\WINDOWS\System32\Drivers\CmdIde.sys **HIDDEN**
10:17:09.078 Service COMSysApp C:\WINDOWS\system32\dllhost.exe **HIDDEN**
10:17:09.078 Service ContentFilter (null) **HIDDEN**
10:17:09.078 Service ContentIndex (null) **HIDDEN**
10:17:09.078 Service Cpqarray C:\WINDOWS\System32\Drivers\Cpqarray.sys **HIDDEN**
10:17:09.078 Service CryptSvc C:\WINDOWS\System32\cryptsvc.dll **HIDDEN**
10:17:09.078 Service dac2w2k C:\WINDOWS\System32\Drivers\dac2w2k.sys **HIDDEN**
10:17:09.078 Service dac960nt C:\WINDOWS\System32\Drivers\dac960nt.sys **HIDDEN**
10:17:09.078 Service DcomLaunch C:\WINDOWS\system32\rpcss.dll **HIDDEN**
10:17:09.078 Service Dhcp C:\WINDOWS\System32\dhcpcsvc.dll **HIDDEN**
10:17:09.078 Service Disk C:\WINDOWS\system32\DRIVERS\disk.sys **HIDDEN**
10:17:09.078 Service dmadmin C:\WINDOWS\System32\dmadmin.exe **HIDDEN**
10:17:09.078 Service dmboot C:\WINDOWS\System32\drivers\dmboot.sys **HIDDEN**
10:17:09.078 Service dmio C:\WINDOWS\System32\drivers\dmio.sys **HIDDEN**
10:17:09.078 Service dmload C:\WINDOWS\System32\drivers\dmload.sys **HIDDEN**
10:17:09.093 Service dmserver C:\WINDOWS\System32\dmserver.dll **HIDDEN**
10:17:09.093 Service DMusic C:\WINDOWS\system32\drivers\DMusic.sys **HIDDEN**
10:17:09.093 Service Dnscache C:\WINDOWS\System32\dnsrslvr.dll **HIDDEN**
10:17:09.093 Service Dokan C:\WINDOWS\system32\drivers\dokan.sys **HIDDEN**
10:17:09.093 Service DokanMounter C:\Program Files\Dokan\DokanLibrary\mounter.exe **HIDDEN**
10:17:09.093 Service Dot3svc C:\WINDOWS\System32\dot3svc.dll **HIDDEN**
10:17:09.093 Service dpti2o C:\WINDOWS\System32\Drivers\dpti2o.sys **HIDDEN**
10:17:09.093 Service drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys **HIDDEN**
10:17:09.093 Service EapHost C:\WINDOWS\System32\eapsvc.dll **HIDDEN**
10:17:09.093 Service ERSvc C:\WINDOWS\System32\ersvc.dll **HIDDEN**
10:17:09.093 Service Eventlog C:\WINDOWS\system32\services.exe **HIDDEN**
10:17:09.093 Service EventSystem C:\WINDOWS\system32\es.dll **HIDDEN**
10:17:09.093 Service Fastfat C:\WINDOWS\System32\Drivers\Fastfat.sys **HIDDEN**
10:17:09.093 Service FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll **HIDDEN**
10:17:09.093 Service Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys **HIDDEN**
10:17:09.093 Service Fips C:\WINDOWS\System32\Drivers\Fips.sys **HIDDEN**
10:17:09.093 Service Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys **HIDDEN**
10:17:09.109 Service FltMgr C:\WINDOWS\system32\DRIVERS\fltMgr.sys **HIDDEN**
10:17:09.109 Service FontCache3.0.0.0 C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe **HIDDEN**
10:17:09.109 Service Fs_Rec C:\WINDOWS\System32\Drivers\Fs_Rec.sys **HIDDEN**
10:17:09.109 Service Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys **HIDDEN**
10:17:09.109 Service Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys **HIDDEN**
10:17:09.109 Service HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys **HIDDEN**
10:17:09.109 Service helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll **HIDDEN**
10:17:09.109 Service HidServ C:\WINDOWS\System32\hidserv.dll **HIDDEN**
10:17:09.109 Service hidusb C:\WINDOWS\system32\DRIVERS\hidusb.sys **HIDDEN**
10:17:09.109 Service hkmsvc C:\WINDOWS\System32\kmsvc.dll **HIDDEN**
10:17:09.109 Service hpn C:\WINDOWS\System32\Drivers\hpn.sys **HIDDEN**
10:17:09.109 Service HTTP C:\WINDOWS\System32\Drivers\HTTP.sys **HIDDEN**
10:17:09.109 Service HTTPFilter C:\WINDOWS\System32\w3ssl.dll **HIDDEN**
10:17:09.109 Service i2omgmt C:\WINDOWS\System32\Drivers\i2omgmt.sys **HIDDEN**
10:17:09.109 Service i2omp C:\WINDOWS\System32\Drivers\i2omp.sys **HIDDEN**
10:17:09.109 Service i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys **HIDDEN**
10:17:09.140 Service idsvc C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe **HIDDEN**
10:17:09.140 Service Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys **HIDDEN**
10:17:09.140 Service ImapiService C:\WINDOWS\system32\imapi.exe **HIDDEN**
10:17:09.140 Service inetaccs (null) **HIDDEN**
10:17:09.140 Service ini910u C:\WINDOWS\System32\Drivers\ini910u.sys **HIDDEN**
10:17:09.140 Service Inport (null) **HIDDEN**
10:17:09.140 Service IntelIde C:\WINDOWS\System32\Drivers\IntelIde.sys **HIDDEN**
10:17:09.140 Service intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys **HIDDEN**
10:17:09.140 Service Ip6Fw C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys **HIDDEN**
10:17:09.140 Service IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys **HIDDEN**
10:17:09.140 Service IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys **HIDDEN**
10:17:09.140 Service IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys **HIDDEN**
10:17:09.140 Service IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys **HIDDEN**
10:17:09.140 Service IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys **HIDDEN**
10:17:09.140 Service ISAPISearch (null) **HIDDEN**
10:17:09.140 Service isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys **HIDDEN**
10:17:09.140 Service JavaQuickStarterService C:\Program Files\Java\jre7\bin\jqs.exe **HIDDEN**
10:17:09.140 Service Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys **HIDDEN**
10:17:09.140 Service kmixer C:\WINDOWS\system32\drivers\kmixer.sys **HIDDEN**
10:17:09.140 Service KSecDD C:\WINDOWS\System32\Drivers\KSecDD.sys **HIDDEN**
10:17:09.156 Service LanmanServer C:\WINDOWS\System32\srvsvc.dll **HIDDEN**
10:17:09.156 Service lanmanworkstation C:\WINDOWS\System32\wkssvc.dll **HIDDEN**
10:17:09.156 Service lbrtfdc C:\WINDOWS\System32\Drivers\lbrtfdc.sys **HIDDEN**
10:17:09.156 Service ldap (null) **HIDDEN**
10:17:09.156 Service LicenseService (null) **HIDDEN**
10:17:09.156 Service LmHosts C:\WINDOWS\System32\lmhsvc.dll **HIDDEN**
10:17:09.156 Service Messenger C:\WINDOWS\System32\msgsvc.dll **HIDDEN**
10:17:09.156 Service mnmdd C:\WINDOWS\System32\Drivers\mnmdd.sys **HIDDEN**
10:17:09.156 Service mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe **HIDDEN**
10:17:09.156 Service Modem C:\WINDOWS\System32\Drivers\Modem.sys **HIDDEN**
10:17:09.156 Service Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys **HIDDEN**
10:17:09.156 Service mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys **HIDDEN**
10:17:09.156 Service MountMgr C:\WINDOWS\System32\Drivers\MountMgr.sys **HIDDEN**
10:17:09.156 Service MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe **HIDDEN**
10:17:09.156 Service mraid35x C:\WINDOWS\System32\Drivers\mraid35x.sys **HIDDEN**
10:17:09.156 Service MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys **HIDDEN**
10:17:09.156 Service MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys **HIDDEN**
10:17:09.156 Service MSDTC C:\WINDOWS\system32\msdtc.exe **HIDDEN**
10:17:09.156 Service MSDTC Bridge 3.0.0.0 (null) **HIDDEN**
10:17:09.156 Service Msfs C:\WINDOWS\System32\Drivers\Msfs.sys **HIDDEN**
10:17:09.156 Service MSIServer C:\WINDOWS\system32\msiexec.exe **HIDDEN**
10:17:09.156 Service MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys **HIDDEN**
10:17:09.156 Service MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys **HIDDEN**
10:17:09.156 Service MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys **HIDDEN**
10:17:09.156 Service mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys **HIDDEN**
10:17:09.156 Service MTsensor C:\WINDOWS\system32\DRIVERS\ASACPI.sys **HIDDEN**
10:17:09.156 Service Mup C:\WINDOWS\System32\Drivers\Mup.sys **HIDDEN**
10:17:09.156 Service napagent C:\WINDOWS\System32\qagentrt.dll **HIDDEN**
10:17:09.156 Service NDIS C:\WINDOWS\System32\Drivers\NDIS.sys **HIDDEN**
10:17:09.171 Service NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys **HIDDEN**
10:17:09.171 Service Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys **HIDDEN**
10:17:09.171 Service NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys **HIDDEN**
10:17:09.171 Service NDProxy C:\WINDOWS\System32\Drivers\NDProxy.sys **HIDDEN**
10:17:09.171 Service NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys **HIDDEN**
10:17:09.171 Service NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys **HIDDEN**
10:17:09.171 Service NetDDE C:\WINDOWS\system32\netdde.exe **HIDDEN**
10:17:09.171 Service NetDDEdsdm C:\WINDOWS\system32\netdde.exe **HIDDEN**
10:17:09.171 Service Netlogon C:\WINDOWS\system32\lsass.exe **HIDDEN**
10:17:09.171 Service Netman C:\WINDOWS\System32\netman.dll **HIDDEN**
10:17:09.171 Service NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe **HIDDEN**
10:17:09.171 Service NIC1394 C:\WINDOWS\system32\DRIVERS\nic1394.sys **HIDDEN**
10:17:09.171 Service Nla C:\WINDOWS\System32\mswsock.dll **HIDDEN**
10:17:09.171 Service Npfs C:\WINDOWS\System32\Drivers\Npfs.sys **HIDDEN**
10:17:09.187 Service Ntfs C:\WINDOWS\System32\Drivers\Ntfs.sys **HIDDEN**
10:17:09.187 Service NtLmSsp C:\WINDOWS\system32\lsass.exe **HIDDEN**
10:17:09.187 Service NtmsSvc C:\WINDOWS\system32\ntmssvc.dll **HIDDEN**
10:17:09.187 Service Null C:\WINDOWS\System32\Drivers\Null.sys **HIDDEN**
10:17:09.187 Service nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys **HIDDEN**
10:17:09.187 Service NVSvc C:\WINDOWS\system32\nvsvc32.exe **HIDDEN**
10:17:09.187 Service nvUpdatusService C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe **HIDDEN**
10:17:09.187 Service NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys **HIDDEN**
10:17:09.187 Service NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys **HIDDEN**
10:17:09.187 Service ohci1394 C:\WINDOWS\system32\DRIVERS\ohci1394.sys **HIDDEN**
10:17:09.187 Service ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE **HIDDEN**
10:17:09.203 Service Parport C:\WINDOWS\System32\Drivers\Parport.sys **HIDDEN**
10:17:09.203 Service PartMgr C:\WINDOWS\System32\Drivers\PartMgr.sys **HIDDEN**
10:17:09.203 Service ParVdm C:\WINDOWS\System32\Drivers\ParVdm.sys **HIDDEN**
10:17:09.203 Service PCI C:\WINDOWS\system32\DRIVERS\pci.sys **HIDDEN**
10:17:09.203 Service PCIDump C:\WINDOWS\System32\Drivers\PCIDump.sys **HIDDEN**
10:17:09.203 Service PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys **HIDDEN**
10:17:09.203 Service Pcmcia C:\WINDOWS\System32\Drivers\Pcmcia.sys **HIDDEN**
10:17:09.203 Service PDCOMP C:\WINDOWS\System32\Drivers\PDCOMP.sys **HIDDEN**
10:17:09.203 Service PDFRAME C:\WINDOWS\System32\Drivers\PDFRAME.sys **HIDDEN**
10:17:09.203 Service PDRELI C:\WINDOWS\System32\Drivers\PDRELI.sys **HIDDEN**
10:17:09.203 Service PDRFRAME C:\WINDOWS\System32\Drivers\PDRFRAME.sys **HIDDEN**
10:17:09.203 Service perc2 C:\WINDOWS\System32\Drivers\perc2.sys **HIDDEN**
10:17:09.203 Service perc2hib C:\WINDOWS\System32\Drivers\perc2hib.sys **HIDDEN**
10:17:09.203 Service PerfDisk (null) **HIDDEN**
10:17:09.203 Service PerfNet (null) **HIDDEN**
10:17:09.203 Service PerfOS (null) **HIDDEN**
10:17:09.203 Service PerfProc (null) **HIDDEN**
10:17:09.203 Service PlugPlay C:\WINDOWS\system32\services.exe **HIDDEN**
10:17:09.203 Service PolicyAgent C:\WINDOWS\system32\lsass.exe **HIDDEN**
10:17:09.203 Service PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys **HIDDEN**
10:17:09.203 Service ProtectedStorage C:\WINDOWS\system32\lsass.exe **HIDDEN**
10:17:09.203 Service PSched C:\WINDOWS\system32\DRIVERS\psched.sys **HIDDEN**
10:17:09.203 Service Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys **HIDDEN**
10:17:09.203 Service ql1080 C:\WINDOWS\System32\Drivers\ql1080.sys **HIDDEN**
10:17:09.203 Service Ql10wnt C:\WINDOWS\System32\Drivers\Ql10wnt.sys **HIDDEN**
10:17:09.203 Service ql12160 C:\WINDOWS\System32\Drivers\ql12160.sys **HIDDEN**
10:17:09.203 Service ql1240 C:\WINDOWS\System32\Drivers\ql1240.sys **HIDDEN**
10:17:09.218 Service ql1280 C:\WINDOWS\System32\Drivers\ql1280.sys **HIDDEN**
10:17:09.218 Service RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys **HIDDEN**
10:17:09.218 Service RasAuto C:\WINDOWS\System32\rasauto.dll **HIDDEN**
10:17:09.218 Service Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys **HIDDEN**
10:17:09.218 Service RasMan C:\WINDOWS\System32\rasmans.dll **HIDDEN**
10:17:09.218 Service RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys **HIDDEN**
10:17:09.218 Service Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys **HIDDEN**
10:17:09.218 Service Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys **HIDDEN**
10:17:09.218 Service RDPCDD C:\WINDOWS\System32\DRIVERS\RDPCDD.sys **HIDDEN**
10:17:09.218 Service RDPDD (null) **HIDDEN**
10:17:09.218 Service rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys **HIDDEN**
10:17:09.218 Service RDPNP (null) **HIDDEN**
10:17:09.218 Service RDPWD C:\WINDOWS\System32\Drivers\RDPWD.sys **HIDDEN**
10:17:09.218 Service RDSessMgr C:\WINDOWS\system32\sessmgr.exe **HIDDEN**
10:17:09.218 Service redbook C:\WINDOWS\system32\DRIVERS\redbook.sys **HIDDEN**
10:17:09.218 Service RemoteAccess C:\WINDOWS\System32\mprdim.dll **HIDDEN**
10:17:09.218 Service RemoteRegistry C:\WINDOWS\system32\regsvc.dll **HIDDEN**
10:17:09.218 Service RpcLocator C:\WINDOWS\system32\locator.exe **HIDDEN**
10:17:09.234 Service RpcSs C:\WINDOWS\system32\rpcss.dll **HIDDEN**
10:17:09.234 Service RSVP C:\WINDOWS\system32\rsvp.exe **HIDDEN**
10:17:09.234 Service SamSs C:\WINDOWS\system32\lsass.exe **HIDDEN**
10:17:09.234 Service SCardSvr C:\WINDOWS\System32\SCardSvr.exe **HIDDEN**
10:17:09.234 Service Schedule C:\WINDOWS\system32\schedsvc.dll **HIDDEN**
10:17:09.234 Service Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys **HIDDEN**
10:17:09.234 Service seclogon C:\WINDOWS\System32\seclogon.dll **HIDDEN**
10:17:09.234 Service SenFiltService C:\WINDOWS\system32\drivers\Senfilt.sys **HIDDEN**
10:17:09.234 Service SENS C:\WINDOWS\system32\sens.dll **HIDDEN**
10:17:09.234 Service Serial C:\WINDOWS\System32\Drivers\Serial.sys **HIDDEN**
10:17:09.234 Service ServiceModelEndpoint 3.0.0.0 (null) **HIDDEN**
10:17:09.234 Service ServiceModelOperation 3.0.0.0 (null) **HIDDEN**
10:17:09.234 Service ServiceModelService 3.0.0.0 (null) **HIDDEN**
10:17:09.234 Service Sfloppy C:\WINDOWS\System32\Drivers\Sfloppy.sys **HIDDEN**
10:17:09.234 Service SharedAccess C:\WINDOWS\System32\ipnathlp.dll **HIDDEN**
10:17:09.234 Service ShellHWDetection C:\WINDOWS\System32\shsvcs.dll **HIDDEN**
10:17:09.234 Service Simbad C:\WINDOWS\System32\Drivers\Simbad.sys **HIDDEN**
10:17:09.250 Service SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe **HIDDEN**
10:17:09.250 Service SMSvcHost 3.0.0.0 (null) **HIDDEN**
10:17:09.250 Service Sparrow C:\WINDOWS\System32\Drivers\Sparrow.sys **HIDDEN**
10:17:09.250 Service splitter C:\WINDOWS\system32\drivers\splitter.sys **HIDDEN**
10:17:09.250 Service Spooler C:\WINDOWS\system32\spoolsv.exe **HIDDEN**
10:17:09.250 Service sptd C:\WINDOWS\System32\Drivers\sptd.sys **HIDDEN**
10:17:09.250 Service Sr C:\WINDOWS\system32\DRIVERS\sr.sys **HIDDEN**
10:17:09.250 Service srservice C:\WINDOWS\system32\srsvc.dll **HIDDEN**
10:17:09.250 Service Srv C:\WINDOWS\system32\DRIVERS\srv.sys **HIDDEN**
10:17:09.250 Service SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll **HIDDEN**
10:17:09.250 Service stisvc C:\WINDOWS\system32\wiaservc.dll **HIDDEN**
10:17:09.250 Service swenum C:\WINDOWS\system32\DRIVERS\swenum.sys **HIDDEN**
10:17:09.250 Service swmidi C:\WINDOWS\system32\drivers\swmidi.sys **HIDDEN**
10:17:09.250 Service SwPrv C:\WINDOWS\system32\dllhost.exe **HIDDEN**
10:17:09.250 Service symc810 C:\WINDOWS\System32\Drivers\symc810.sys **HIDDEN**
10:17:09.250 Service symc8xx C:\WINDOWS\System32\Drivers\symc8xx.sys **HIDDEN**
10:17:09.250 Service sym_hi C:\WINDOWS\System32\Drivers\sym_hi.sys **HIDDEN**
10:17:09.250 Service sym_u3 C:\WINDOWS\System32\Drivers\sym_u3.sys **HIDDEN**
10:17:09.265 Service sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys **HIDDEN**
10:17:09.265 Service SysmonLog C:\WINDOWS\system32\smlogsvc.exe **HIDDEN**
10:17:09.265 Service TapiSrv C:\WINDOWS\System32\tapisrv.dll **HIDDEN**
10:17:09.265 Service Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys **HIDDEN**
10:17:09.265 Service TDPIPE C:\WINDOWS\System32\Drivers\TDPIPE.sys **HIDDEN**
10:17:09.265 Service TDTCP C:\WINDOWS\System32\Drivers\TDTCP.sys **HIDDEN**
10:17:09.265 Service TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys **HIDDEN**
10:17:09.265 Service TermService C:\WINDOWS\System32\termsrv.dll **HIDDEN**
10:17:09.265 Service Themes C:\WINDOWS\System32\shsvcs.dll **HIDDEN**
10:17:09.265 Service TlntSvr C:\WINDOWS\system32\tlntsvr.exe **HIDDEN**
10:17:09.265 Service TosIde C:\WINDOWS\System32\Drivers\TosIde.sys **HIDDEN**
10:17:09.265 Service TrkWks C:\WINDOWS\system32\trkwks.dll **HIDDEN**
10:17:09.265 Service TSDDD (null) **HIDDEN**
10:17:09.265 Service Udfs C:\WINDOWS\System32\Drivers\Udfs.sys **HIDDEN**
10:17:09.265 Service ultra C:\WINDOWS\System32\Drivers\ultra.sys **HIDDEN**
10:17:09.265 Service Update C:\WINDOWS\system32\DRIVERS\update.sys **HIDDEN**
10:17:09.265 Service upnphost C:\WINDOWS\System32\upnphost.dll **HIDDEN**
10:17:09.281 Service UPS C:\WINDOWS\System32\ups.exe **HIDDEN**
10:17:09.281 Service usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys **HIDDEN**
10:17:09.281 Service usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys **HIDDEN**
10:17:09.281 Service usbstor C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS **HIDDEN**
10:17:09.281 Service usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys **HIDDEN**
10:17:09.281 Service VgaSave C:\WINDOWS\System32\drivers\vga.sys **HIDDEN**
10:17:09.281 Service ViaIde C:\WINDOWS\System32\Drivers\ViaIde.sys **HIDDEN**
10:17:09.281 Service VolSnap C:\WINDOWS\System32\Drivers\VolSnap.sys **HIDDEN**
10:17:09.281 Service VSS C:\WINDOWS\System32\vssvc.exe **HIDDEN**
10:17:09.281 Service W32Time C:\WINDOWS\system32\w32time.dll **HIDDEN**
10:17:09.281 Service W3SVC (null) **HIDDEN**
10:17:09.281 Service Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys **HIDDEN**
10:17:09.281 Service WDICA C:\WINDOWS\System32\Drivers\WDICA.sys **HIDDEN**
10:17:09.281 Service wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys **HIDDEN**
10:17:09.281 Service WebClient C:\WINDOWS\System32\webclnt.dll **HIDDEN**
10:17:09.281 Service Windows Workflow Foundation 3.0.0.0 (null) **HIDDEN**
10:17:09.281 Service winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll **HIDDEN**
10:17:09.281 Service Winsock C:\WINDOWS\System32\Drivers\Winsock.sys **HIDDEN**
10:17:09.296 Service WinSock2 (null) **HIDDEN**
10:17:09.296 Service WinTrust (null) **HIDDEN**
10:17:09.296 Service WmdmPmSN C:\WINDOWS\system32\mspmsnsv.dll **HIDDEN**
10:17:09.296 Service Wmi C:\WINDOWS\System32\advapi32.dll **HIDDEN**
10:17:09.296 Service WmiApRpl (null) **HIDDEN**
10:17:09.296 Service WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe **HIDDEN**
10:17:09.296 Service WMPNetworkSvc C:\Program Files\Windows Media Player\WMPNetwk.exe **HIDDEN**
10:17:09.296 Service WS2IFSL (null) **HIDDEN**
10:17:09.296 Service wscsvc C:\WINDOWS\system32\wscsvc.dll **HIDDEN**
10:17:09.296 Service wuauserv C:\WINDOWS\system32\wuauserv.dll **HIDDEN**
10:17:09.296 Service WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys **HIDDEN**
10:17:09.296 Service WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys **HIDDEN**
10:17:09.296 Service WudfSvc C:\WINDOWS\System32\WUDFSvc.dll **HIDDEN**
10:17:09.296 Service WZCSVC C:\WINDOWS\System32\wzcsvc.dll **HIDDEN**
10:17:09.296 Service xmlprov C:\WINDOWS\System32\xmlprov.dll **HIDDEN**
10:17:09.296 Service yukonwxp C:\WINDOWS\system32\DRIVERS\yk51x86.sys **HIDDEN**
10:17:09.296 Service {509495C7-EB33-43F5-A96F-BF33245E6177} (null) **HIDDEN**
10:17:09.312 Service {AFCCB680-4236-4A1D-8F92-1FB4AF85F19A} (null) **HIDDEN**
10:17:09.812 Modules scanning
10:17:12.968 Disk 0 trace - called modules:
10:17:12.968 ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll atapi.sys sptd.sys pciide.sys PCIIDEX.SYS
10:17:12.968 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x8a487ab8]
10:17:12.968 3 CLASSPNP.SYS[b8108fd7] -> nt!IofCallDriver -> \Device\0000006b[0x8a4519e8]
10:17:12.968 5 ACPI.sys[b7e68620] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP2T1L0-7[0x8a451d98]
10:17:12.968 Scan finished successfully
10:17:23.578 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\Administrator\Plocha\MBR.dat"
10:17:23.578 The log file has been saved successfully to "C:\Documents and Settings\Administrator\Plocha\aswMBR.txt"

#15 Příspěvek od **vyosek** » 19 úno 2013 18:29

Netusim proc je ukazuji utility hidden, ale chyby nebudou rootkitem, spise disku ci toho radice jak kolega MiliNess psal

VIRY.CZ

Modrá smrt mnohokrát za den

Modrá smrt mnohokrát za den

Re: Modrá smrt mnohokrát za den

Re: Modrá smrt mnohokrát za den

Re: Modrá smrt mnohokrát za den

Re: Modrá smrt mnohokrát za den

Re: Modrá smrt mnohokrát za den

Re: Modrá smrt mnohokrát za den

Re: Modrá smrt mnohokrát za den

Re: Modrá smrt mnohokrát za den

Re: Modrá smrt mnohokrát za den

Re: Modrá smrt mnohokrát za den

Re: Modrá smrt mnohokrát za den

Re: Modrá smrt mnohokrát za den

Re: Modrá smrt mnohokrát za den

Re: Modrá smrt mnohokrát za den