VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

preventivka

https://forum.viry.cz:443/viewtopic.php?t=119172

Stránka 2 z 3

Re: preventivka

Napsal: 29 led 2012 16:50
od 102mn
Naposledy co si pamatuji, se přeinstalovával systém a dělalo se nové připojení na internet, poslední program který jsem instalovala byl CyberLink PowerDVD 10, tohle se provádělo zhruba ve stejnou dobu, nevím jestli Vám to pomůže.

All processes killed
========== OTL ==========
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\HonorAutoRunSetting deleted successfully.
D:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP150.tmp folder deleted successfully.
D:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP19.tmp folder deleted successfully.
D:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP196.tmp\Microsoft.VisualStudio.Tools.Applications.Runtime.v10.0.dll deleted successfully.
D:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP196.tmp folder deleted successfully.
D:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP230.tmp folder deleted successfully.
D:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP2AE.tmp folder deleted successfully.
D:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP336.tmp folder deleted successfully.
D:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP446.tmp folder deleted successfully.
D:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP51F.tmp\mscorlib.dll deleted successfully.
D:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP51F.tmp folder deleted successfully.
D:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP54A.tmp folder deleted successfully.
D:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP563.tmp folder deleted successfully.
D:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP645.tmp folder deleted successfully.
D:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP690.tmp folder deleted successfully.
D:\WINDOWS\Installer\MSI8.tmp deleted successfully.
D:\WINDOWS\Installer\MSI84.tmp deleted successfully.
D:\WINDOWS\Installer\MSI85.tmp deleted successfully.
D:\WINDOWS\Installer\MSI86.tmp deleted successfully.
D:\WINDOWS\Installer\MSI87.tmp deleted successfully.
D:\WINDOWS\Installer\MSI88.tmp deleted successfully.
D:\WINDOWS\Installer\MSI89.tmp deleted successfully.
D:\WINDOWS\Installer\MSI9.tmp deleted successfully.
D:\WINDOWS\Installer\MSIA.tmp deleted successfully.
D:\WINDOWS\Installer\MSIB.tmp deleted successfully.
D:\WINDOWS\Installer\{CC6B1BB4-4E06-4A5B-A166-B371B551324B}\upd7E.tmp deleted successfully.
========== FILES ==========
File/Folder D:\WINDOWS\system32\*.tmp.dll not found.
File/Folder D:\WINDOWS\system32\SET*.tmp not found.
File/Folder D:\WINDOWS\*.tmp not found.
========== COMMANDS ==========

[EMPTYTEMP]

User: Administrator
->Temp folder emptied: 713216 bytes
->Temporary Internet Files folder emptied: 48514 bytes
->FireFox cache emptied: 0 bytes
->Google Chrome cache emptied: 12284884 bytes
->Flash cache emptied: 343 bytes

User: All Users

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: DOMA
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->FireFox cache emptied: 0 bytes
->Google Chrome cache emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: UpdatusUser
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 483 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 87958 bytes

Total Files Cleaned = 13,00 mb


[EMPTYFLASH]

User: Administrator
->Flash cache emptied: 0 bytes

User: All Users

User: Default User

User: DOMA
->Flash cache emptied: 0 bytes

User: LocalService

User: NetworkService

User: UpdatusUser

Total Flash Files Cleaned = 0,00 mb


OTL by OldTimer - Version 3.2.31.0 log created on 01292012_164207

Files\Folders moved on Reboot...

Registry entries deleted on Reboot...

Re: preventivka

Napsal: 29 led 2012 19:00
od Márty84
CyberLink jsme vypli hned na zacatku, takze ten by v tom mel byt nevinne :)

:???: Zpomalilo se to najednou? Ze jste v pondeli zapla pocitac a za 45 vterin najel a v utery to trvalo jednou tolik?

Podivame se jeste po rootkitech, ale ja myslim, ze to nebude prace haveti.

:arrow: Udelejte sken s GMER http://forum.viry.cz/viewtopic.php?f=29&t=62878 a dejte oba logy

Re: preventivka

Napsal: 30 led 2012 18:04
od 102mn
dobrý den, mám problém udělat kontrolu v programu gmer, při skenování celý systém zamrzne a ještě ke všemu začalo v PC nějak divně cvakat, tak bych potřebovala asi více poradit s tím cvakáním, doufám, že se nepoškodí disk.

Re: preventivka

Napsal: 30 led 2012 20:03
od Márty84
Dobry vecer.

:arrow: Zkuste spustit GMER v nouzovem rezimu (restartujte pc a mackejte klavesu F8, kdyby se vam nedarilo do nej dostat, zkuste toto http://forum.viry.cz/viewtopic.php?f=46&t=7554 )


:???: To cvakani trva stale, nebo je to jen pri startu, pripadne jen pri velke zatezi?

:arrow: Podivame se tedy na stav disku
Stahnete crystal disk info http://www.slunecnice.cz/sw/crystaldiskinfo/
Nainstalujte a spustte. Za chvili na vas vyskoci vysledek.
Kliknete nahore na napis Úpravy a pak na napis Kopírovat. To co se zkopiruje mi sem vlozte

Re: preventivka

Napsal: 30 led 2012 20:33
od 102mn
Dobrý večer, tak se mi podařilo zprovoznit gmer, ale nevim jestli je to správný log.


GMER 1.0.15.15641 - http://www.gmer.net
Rootkit scan 2012-01-30 20:25:12
Windows 5.1.2600 Service Pack 3 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP2T0L0-e Maxtor_6B200M0 rev.BANC1980
Running: gmer.exe; Driver: D:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\kfrciaob.sys


---- System - GMER 1.0.15 ----

SSDT \SystemRoot\system32\DRIVERS\ehdrv.sys (ESET Helper driver/ESET) ZwAssignProcessToJobObject [0xF1BB0610]
SSDT \SystemRoot\system32\DRIVERS\ehdrv.sys (ESET Helper driver/ESET) ZwDebugActiveProcess [0xF1BB0C10]
SSDT \SystemRoot\system32\DRIVERS\ehdrv.sys (ESET Helper driver/ESET) ZwDuplicateObject [0xF1BB0730]
SSDT \SystemRoot\system32\DRIVERS\ehdrv.sys (ESET Helper driver/ESET) ZwOpenProcess [0xF1BB04B0]
SSDT \SystemRoot\system32\DRIVERS\ehdrv.sys (ESET Helper driver/ESET) ZwOpenThread [0xF1BB0570]
SSDT \SystemRoot\system32\DRIVERS\ehdrv.sys (ESET Helper driver/ESET) ZwProtectVirtualMemory [0xF1BB06D0]
SSDT \SystemRoot\system32\DRIVERS\ehdrv.sys (ESET Helper driver/ESET) ZwQueueApcThread [0xF1BB0790]
SSDT \SystemRoot\system32\DRIVERS\ehdrv.sys (ESET Helper driver/ESET) ZwSetContextThread [0xF1BB0690]
SSDT \SystemRoot\system32\DRIVERS\ehdrv.sys (ESET Helper driver/ESET) ZwSetInformationThread [0xF1BB0650]
SSDT \SystemRoot\system32\DRIVERS\ehdrv.sys (ESET Helper driver/ESET) ZwSetSecurityObject [0xF1BB07D0]
SSDT \SystemRoot\system32\DRIVERS\ehdrv.sys (ESET Helper driver/ESET) ZwSuspendProcess [0xF1BB0510]
SSDT \SystemRoot\system32\DRIVERS\ehdrv.sys (ESET Helper driver/ESET) ZwSuspendThread [0xF1BB0590]
SSDT \SystemRoot\system32\DRIVERS\ehdrv.sys (ESET Helper driver/ESET) ZwTerminateProcess [0xF1BB04D0]
SSDT \SystemRoot\system32\DRIVERS\ehdrv.sys (ESET Helper driver/ESET) ZwTerminateThread [0xF1BB05D0]
SSDT \SystemRoot\system32\DRIVERS\ehdrv.sys (ESET Helper driver/ESET) ZwWriteVirtualMemory [0xF1BB0750]

---- Kernel code sections - GMER 1.0.15 ----

.text D:\WINDOWS\system32\DRIVERS\nv4_mini.sys section is writeable [0xF622C380, 0x8D6CD5, 0xE8000020]
.text D:\Program Files\CyberLink\PowerDVD10\NavFilter\000.fcl section is writeable [0x9EA3C000, 0x2892, 0xE8000020]
.vmp2 D:\Program Files\CyberLink\PowerDVD10\NavFilter\000.fcl entry point in ".vmp2" section [0x9EA5F050]

---- User code sections - GMER 1.0.15 ----

.text D:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe[316] kernel32.dll!SetUnhandledExceptionFilter 7C84495D 4 Bytes [C2, 04, 00, 00]
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3680] ntdll.dll!NtCreateFile + 6 7C90D0B4 4 Bytes [28, 00, 16, 00]
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3680] ntdll.dll!NtCreateFile + B 7C90D0B9 1 Byte [E2]
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3680] ntdll.dll!NtMapViewOfSection + 6 7C90D524 1 Byte [28]
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3680] ntdll.dll!NtMapViewOfSection + 6 7C90D524 4 Bytes [28, 03, 16, 00]
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3680] ntdll.dll!NtMapViewOfSection + B 7C90D529 1 Byte [E2]
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3680] ntdll.dll!NtOpenFile + 6 7C90D5A4 4 Bytes [68, 00, 16, 00]
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3680] ntdll.dll!NtOpenFile + B 7C90D5A9 1 Byte [E2]
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3680] ntdll.dll!NtOpenProcess + 6 7C90D604 4 Bytes [A8, 01, 16, 00]
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3680] ntdll.dll!NtOpenProcess + B 7C90D609 1 Byte [E2]
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3680] ntdll.dll!NtOpenProcessToken + 6 7C90D614 4 Bytes CALL 7B90EC1A
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3680] ntdll.dll!NtOpenProcessToken + B 7C90D619 1 Byte [E2]
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3680] ntdll.dll!NtOpenProcessTokenEx + 6 7C90D624 4 Bytes [A8, 02, 16, 00]
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3680] ntdll.dll!NtOpenProcessTokenEx + B 7C90D629 1 Byte [E2]
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3680] ntdll.dll!NtOpenThread + 6 7C90D664 4 Bytes [68, 01, 16, 00]
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3680] ntdll.dll!NtOpenThread + B 7C90D669 1 Byte [E2]
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3680] ntdll.dll!NtOpenThreadToken + 6 7C90D674 4 Bytes [68, 02, 16, 00]
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3680] ntdll.dll!NtOpenThreadToken + B 7C90D679 1 Byte [E2]
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3680] ntdll.dll!NtOpenThreadTokenEx + 6 7C90D684 4 Bytes CALL 7B90EC8B
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3680] ntdll.dll!NtOpenThreadTokenEx + B 7C90D689 1 Byte [E2]
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3680] ntdll.dll!NtQueryAttributesFile + 6 7C90D714 4 Bytes [A8, 00, 16, 00]
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3680] ntdll.dll!NtQueryAttributesFile + B 7C90D719 1 Byte [E2]
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3680] ntdll.dll!NtQueryFullAttributesFile + 6 7C90D7B4 4 Bytes CALL 7B90EDB9
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3680] ntdll.dll!NtQueryFullAttributesFile + B 7C90D7B9 1 Byte [E2]
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3680] ntdll.dll!NtSetInformationFile + 6 7C90DC64 4 Bytes [28, 01, 16, 00]
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3680] ntdll.dll!NtSetInformationFile + B 7C90DC69 1 Byte [E2]
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3680] ntdll.dll!NtSetInformationThread + 6 7C90DCB4 4 Bytes [28, 02, 16, 00]
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3680] ntdll.dll!NtSetInformationThread + B 7C90DCB9 1 Byte [E2]
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3680] ntdll.dll!NtUnmapViewOfSection + 6 7C90DF14 1 Byte [68]
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3680] ntdll.dll!NtUnmapViewOfSection + 6 7C90DF14 4 Bytes [68, 03, 16, 00]
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3680] ntdll.dll!NtUnmapViewOfSection + B 7C90DF19 1 Byte [E2]
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3952] ntdll.dll!NtCreateFile + 6 7C90D0B4 4 Bytes [28, 00, 16, 00]
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3952] ntdll.dll!NtCreateFile + B 7C90D0B9 1 Byte [E2]
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3952] ntdll.dll!NtMapViewOfSection + 6 7C90D524 1 Byte [28]
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3952] ntdll.dll!NtMapViewOfSection + 6 7C90D524 4 Bytes [28, 03, 16, 00]
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3952] ntdll.dll!NtMapViewOfSection + B 7C90D529 1 Byte [E2]
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3952] ntdll.dll!NtOpenFile + 6 7C90D5A4 4 Bytes [68, 00, 16, 00]
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3952] ntdll.dll!NtOpenFile + B 7C90D5A9 1 Byte [E2]
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3952] ntdll.dll!NtOpenProcess + 6 7C90D604 4 Bytes [A8, 01, 16, 00]
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3952] ntdll.dll!NtOpenProcess + B 7C90D609 1 Byte [E2]
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3952] ntdll.dll!NtOpenProcessToken + 6 7C90D614 4 Bytes CALL 7B90EC1A
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3952] ntdll.dll!NtOpenProcessToken + B 7C90D619 1 Byte [E2]
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3952] ntdll.dll!NtOpenProcessTokenEx + 6 7C90D624 4 Bytes [A8, 02, 16, 00]
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3952] ntdll.dll!NtOpenProcessTokenEx + B 7C90D629 1 Byte [E2]
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3952] ntdll.dll!NtOpenThread + 6 7C90D664 4 Bytes [68, 01, 16, 00]
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3952] ntdll.dll!NtOpenThread + B 7C90D669 1 Byte [E2]
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3952] ntdll.dll!NtOpenThreadToken + 6 7C90D674 4 Bytes [68, 02, 16, 00]
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3952] ntdll.dll!NtOpenThreadToken + B 7C90D679 1 Byte [E2]
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3952] ntdll.dll!NtOpenThreadTokenEx + 6 7C90D684 4 Bytes CALL 7B90EC8B
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3952] ntdll.dll!NtOpenThreadTokenEx + B 7C90D689 1 Byte [E2]
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3952] ntdll.dll!NtQueryAttributesFile + 6 7C90D714 4 Bytes [A8, 00, 16, 00]
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3952] ntdll.dll!NtQueryAttributesFile + B 7C90D719 1 Byte [E2]
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3952] ntdll.dll!NtQueryFullAttributesFile + 6 7C90D7B4 4 Bytes CALL 7B90EDB9
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3952] ntdll.dll!NtQueryFullAttributesFile + B 7C90D7B9 1 Byte [E2]
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3952] ntdll.dll!NtSetInformationFile + 6 7C90DC64 4 Bytes [28, 01, 16, 00]
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3952] ntdll.dll!NtSetInformationFile + B 7C90DC69 1 Byte [E2]
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3952] ntdll.dll!NtSetInformationThread + 6 7C90DCB4 4 Bytes [28, 02, 16, 00]
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3952] ntdll.dll!NtSetInformationThread + B 7C90DCB9 1 Byte [E2]
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3952] ntdll.dll!NtUnmapViewOfSection + 6 7C90DF14 1 Byte [68]
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3952] ntdll.dll!NtUnmapViewOfSection + 6 7C90DF14 4 Bytes [68, 03, 16, 00]
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3952] ntdll.dll!NtUnmapViewOfSection + B 7C90DF19 1 Byte [E2]
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3960] ntdll.dll!NtCreateFile + 6 7C90D0B4 4 Bytes [28, 00, 16, 00]
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3960] ntdll.dll!NtCreateFile + B 7C90D0B9 1 Byte [E2]
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3960] ntdll.dll!NtMapViewOfSection + 6 7C90D524 1 Byte [28]
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3960] ntdll.dll!NtMapViewOfSection + 6 7C90D524 4 Bytes [28, 03, 16, 00]
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3960] ntdll.dll!NtMapViewOfSection + B 7C90D529 1 Byte [E2]
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3960] ntdll.dll!NtOpenFile + 6 7C90D5A4 4 Bytes [68, 00, 16, 00]
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3960] ntdll.dll!NtOpenFile + B 7C90D5A9 1 Byte [E2]
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3960] ntdll.dll!NtOpenProcess + 6 7C90D604 4 Bytes [A8, 01, 16, 00]
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3960] ntdll.dll!NtOpenProcess + B 7C90D609 1 Byte [E2]
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3960] ntdll.dll!NtOpenProcessToken + 6 7C90D614 4 Bytes CALL 7B90EC1A
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3960] ntdll.dll!NtOpenProcessToken + B 7C90D619 1 Byte [E2]
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3960] ntdll.dll!NtOpenProcessTokenEx + 6 7C90D624 4 Bytes [A8, 02, 16, 00]
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3960] ntdll.dll!NtOpenProcessTokenEx + B 7C90D629 1 Byte [E2]
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3960] ntdll.dll!NtOpenThread + 6 7C90D664 4 Bytes [68, 01, 16, 00]
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3960] ntdll.dll!NtOpenThread + B 7C90D669 1 Byte [E2]
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3960] ntdll.dll!NtOpenThreadToken + 6 7C90D674 4 Bytes [68, 02, 16, 00]
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3960] ntdll.dll!NtOpenThreadToken + B 7C90D679 1 Byte [E2]
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3960] ntdll.dll!NtOpenThreadTokenEx + 6 7C90D684 4 Bytes CALL 7B90EC8B
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3960] ntdll.dll!NtOpenThreadTokenEx + B 7C90D689 1 Byte [E2]
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3960] ntdll.dll!NtQueryAttributesFile + 6 7C90D714 4 Bytes [A8, 00, 16, 00]
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3960] ntdll.dll!NtQueryAttributesFile + B 7C90D719 1 Byte [E2]
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3960] ntdll.dll!NtQueryFullAttributesFile + 6 7C90D7B4 4 Bytes CALL 7B90EDB9
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3960] ntdll.dll!NtQueryFullAttributesFile + B 7C90D7B9 1 Byte [E2]
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3960] ntdll.dll!NtSetInformationFile + 6 7C90DC64 4 Bytes [28, 01, 16, 00]
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3960] ntdll.dll!NtSetInformationFile + B 7C90DC69 1 Byte [E2]
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3960] ntdll.dll!NtSetInformationThread + 6 7C90DCB4 4 Bytes [28, 02, 16, 00]
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3960] ntdll.dll!NtSetInformationThread + B 7C90DCB9 1 Byte [E2]
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3960] ntdll.dll!NtUnmapViewOfSection + 6 7C90DF14 1 Byte [68]
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3960] ntdll.dll!NtUnmapViewOfSection + 6 7C90DF14 4 Bytes [68, 03, 16, 00]
.text D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3960] ntdll.dll!NtUnmapViewOfSection + B 7C90DF19 1 Byte [E2]

---- User IAT/EAT - GMER 1.0.15 ----

IAT D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3680] @ D:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!CreateNamedPipeW] 002D0010
IAT D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3952] @ D:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!CreateNamedPipeW] 002D0010
IAT D:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe[3960] @ D:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!CreateNamedPipeW] 002D0010

---- Devices - GMER 1.0.15 ----

AttachedDevice \FileSystem\Ntfs \Ntfs eamon.sys (Amon monitor/ESET)
AttachedDevice \Driver\Tcpip \Device\Tcp epfwtdir.sys (ESET Antivirus Network Redirector/ESET)

---- EOF - GMER 1.0.15 ----


To cvakání se zlepšilo, zatím se nic neděje, v case jsem propojila dva jiné kabely, zdálo se mi, že už jsou nějak volnější no a zatím to funguje, přesto Vám posílám stav disku.

----------------------------------------------------------------------------
CrystalDiskInfo 4.1.3 (C) 2008-2011 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------

OS : Windows XP Professional SP3 [5.1 Build 2600] (x86)
Date : 2012/01/30 20:32:43

-- Controller Map ----------------------------------------------------------
+ Intel(R) 82801FB/FBM Ultra ATA Storage Controllers - 266F [ATA]
+ Primární kanál IDE (0)
- Optiarc DVD RW AD-5200A
- Sekundární kanál IDE (1)
+ Intel(R) 82801FB Ultra ATA Storage Controllers - 2651 [ATA]
+ Primární kanál IDE (0)
- Maxtor 6B200M0
- Sekundární kanál IDE (1)

-- Disk List ---------------------------------------------------------------
(1) Maxtor 6B200M0 : 203.9 GB [0-1-0, pd1]

----------------------------------------------------------------------------
(1) Maxtor 6B200M0
----------------------------------------------------------------------------
Model : Maxtor 6B200M0
Firmware : BANC1980
Serial Number : B4031QCH
Disk Size : 203.9 GB (8.4/137.4/203.9)
Buffer Size : 8192 KB
Queue Depth : 32
# of Sectors : 398297088
Rotation Rate : Neznámy údaj
Interface : Serial ATA
Major Version : ATA/ATAPI-7
Minor Version : ATA/ATAPI-7 T13 1532D version 0
Transfer Mode : SATA/150
Power On Hours : 868 hod. (?)
Power On Count : 4522 krát
Temparature : 44 C (111 F)
Health Status : Pozor
Features : S.M.A.R.T., APM, AAM, 48bit LBA, NCQ
APM Level : 0000h [OFF]
AAM Level : C0FEh [ON]

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
03 211 204 _63 000000004288 Čas na roztočení ploten
04 251 251 __0 000000001099 Počet spuštění/zastavení
05 253 253 _63 000000000009 Počet přemapovaných sektorů
06 253 253 100 000000000000 Počet dosáhnutí konce při čtení
07 253 252 __0 000000000000 Počet chybných hledání
08 250 243 187 00000000A07E Čas potřebný na vyhledání
09 219 219 __0 00000000CB7A Hodin v činnosti
0A 253 252 157 000000000000 Počet opakovaných pokusů o roztočení ploten
0B 253 252 223 000000000000 Počet pokusů o překalibrování
0C 242 242 __0 0000000011AA Počet cyklů zapnutí zařízení
C0 253 253 __0 000000000000 Počet vypnutí disku
C1 253 253 __0 000000000000 Počet cyklů načítání/vymazání
C2 __4 253 __0 00000000002C Teplota
C3 253 252 __0 00000000177D Počet oprav chybného čtení
C4 253 253 __0 000000000000 Počet udalostí s číslem realokování sektorů
C5 253 253 __0 000000000009 Počet podezřelých sektorů
C6 253 253 __0 000000000000 Počet neopravitelných sektorů
C7 199 199 __0 000000000000 Počet chyb v kontrolním součtu UltraDMA
C8 253 252 __0 000000000000 Počet chyb při zápisu sektorů
C9 253 252 __0 000000000000 Počet chyb při čtení programů z disku
CA 253 252 __0 000000000000 Počet chyb při směrování údajů
CB 253 252 180 000000000000 Počet chyb v kódech na opravu chyb
CC 253 252 __0 000000000000 Počet softvérově opravených chyb v opravných kódech
CD 253 252 __0 000000000000 Počet chyb způsobených vysokou teplotou
CF 253 252 __0 000000000000 Množství napětí potřebného na roztočení disku
D0 253 252 __0 000000000000 Počet vyslaných impulzů na roztočení disku při nedostatečném napájení
D1 242 242 __0 00000000008F Výkon při vyhledávaní na disku při interních testech disku
D2 253 252 __0 000000000000 Neznámý
D3 253 252 __0 000000000000 Počet vibrací při čtení
D4 253 253 __0 000000000000 Počet otřesů při zápisu

-- IDENTIFY_DEVICE ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 00 40 3F FF C8 37 00 10 00 00 00 00 00 3F 00 00
010: 00 00 00 00 42 34 30 33 31 51 43 48 20 20 20 20
020: 20 20 20 20 20 20 20 20 00 03 40 00 00 04 42 41
030: 4E 43 31 39 38 30 4D 61 78 74 6F 72 20 36 42 32
040: 30 30 4D 30 20 20 20 20 20 20 20 20 20 20 20 20
050: 20 20 20 20 20 20 20 20 20 20 20 20 20 20 80 10
060: 00 00 2F 00 40 00 02 00 00 00 00 07 3F FF 00 10
070: 00 3F FC 10 00 FB 01 10 FF FF 0F FF 00 00 00 07
080: 00 03 00 78 00 78 00 78 00 78 00 00 00 00 00 00
090: 00 00 00 00 00 00 00 1F 01 02 00 00 00 00 00 00
0A0: 00 FE 00 1E 7C 6B 7F 09 40 43 7C 69 3E 01 40 43
0B0: 20 7F 00 00 00 00 00 00 FF FE 00 00 C0 FE 00 00
0C0: 00 00 00 00 00 00 00 00 88 00 17 BD 00 00 00 00
0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 09 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 01 13 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 4D A5

Re: preventivka

Napsal: 31 led 2012 09:59
od Márty84
CrystalDisk neni s diskem moc spokojen. Neco se mu tam nelibi. :?:

:arrow: Udelejte jeste kontrolu programem HD Tune
Stahnete http://www.slunecnice.cz/sw/hd-tune/ , nainstalujte a spustte.
V tom okne kliknete na posledni zalozku - Error Scan a kliknete na Start.
Kontrola bude nejakou dobu trvat. Dejte vedet, jestli tam bylo nejake cervene policko

Re: preventivka

Napsal: 31 led 2012 10:28
od JaRon
len doplnim kolegu:
doporucil by som takpovediac kompletku :)
t,j. pozriet v casti Health status a Benchmark odpisat cisla vpravo prip. vlozit obrazok

Re: preventivka

Napsal: 01 úno 2012 17:09
od 102mn
Dobrý den, po kontrole programem HD Tune se objevily dva červené čtverečky.

Re: preventivka

Napsal: 01 úno 2012 20:14
od JaRon
102mn píše:dobrý den, mám problém udělat kontrolu v programu gmer, při skenování celý systém zamrzne a ještě ke všemu začalo v PC nějak divně cvakat, tak bych potřebovala asi více poradit s tím cvakáním, doufám, že se nepoškodí disk.
ked k cvakaniu priratame cervene stvorceky z posledneho prispevku resume je jasne:
zachran si dolezite data z disku - bude nasledovat vymena HDD - uz coskoro ,,, :(

Re: preventivka

Napsal: 02 úno 2012 10:26
od Márty84
Zdravicko.
Bohuzel, je to jak uz psal kolega. Disk asi nebude v nejlepsi kondici :( A to taky muze zpusobovat ten pomaly start, protoze logy jsou jinak v poradku.

Zkuste jeste jednou spustit HD Tune a jak psal JaRon, dejte vedet, co pise na zalozce Benchmark a Health ( http://forum.viry.cz/viewtopic.php?f=46&t=79325 bod 8 )

Re: preventivka

Napsal: 02 úno 2012 17:40
od 102mn
Dobrý den, zasílám výstup z HD Tune


HD Tune: Maxtor 6B200M0 Health

ID Current Worst ThresholdData Status
(03) Spin Up Time 211 204 63 8807 Ok
(04) Start/Stop Count 251 251 0 4251 Ok
(05) Reallocated Sector Count 253 253 63 9 Ok
(06) Read Channel Margin 253 253 100 0 Ok
(07) Seek Error Rate 253 252 0 0 Ok
(08) Seek Time Performance 248 243 187 48926 Ok
(09) Power On Hours Count 219 219 0 53767 Ok
(0A) Spin Retry Count 253 252 157 0 Ok
(0B) Calibration Retry Count 253 252 223 0 Ok
(0C) Power Cycle Count 242 242 0 4524 Ok
(C0) Power Off Retract Count 253 253 0 0 Ok
(C1) Load Cycle Count 253 253 0 0 Ok
(C2) Temperature 4 253 0 39 Ok
(C3) Hardware ECC Recovered 253 252 0 6971 Ok
(C4) Reallocated Event Count 253 253 0 0 Ok
(C5) Current Pending Sector 253 253 0 9 Ok
(C6) Offline Uncorrectable 253 253 0 0 Ok
(C7) Ultra DMA CRC Error Count 199 199 0 0 Ok
(C8) Write Error Rate 253 252 0 0 Ok
(C9) TA Counter Detected 253 252 0 0 Ok
(CA) TA Counter Increased 253 252 0 0 Ok
(CB) Run Out Cancel 253 252 180 0 Ok
(CC) Soft ECC Correction 253 252 0 0 Ok
(CD) Thermal Asperity Rate 253 252 0 0 Ok
(CF) Spin High Current 253 252 0 0 Ok
(D0) Spin Buzz 253 252 0 0 Ok
(D1) Offline Seek Performance 242 242 0 143 Ok
(D2) (unknown attribute) 253 252 0 0 Ok
(D3) (unknown attribute) 253 252 0 0 Ok
(D4) (unknown attribute) 253 253 0 0 Ok

Power On Time : 53767
Health Status : Ok

HD Tune: Maxtor 6B200M0 Benchmark

Transfer Rate Minimum : 1.6 MB/sec
Transfer Rate Maximum : 3.6 MB/sec
Transfer Rate Average : 3.4 MB/sec
Access Time : 14.8 ms
Burst Rate : 3.4 MB/sec
CPU Usage : 49.3%

Re: preventivka

Napsal: 02 úno 2012 18:30
od JaRon
ten disk je prepnuty do PIO modu - navod na opravu je v sekcii o HDTune

Re: preventivka

Napsal: 02 úno 2012 18:32
od 102mn
a co mám tedy opravit

Re: preventivka

Napsal: 02 úno 2012 18:41
od JaRon
http://forum.viry.cz/viewtopic.php?f=46&t=79325 v casti 8 je popisany problem PIO modu

Re: preventivka

Napsal: 02 úno 2012 18:53
od 102mn
mám dva primární IDE kanály, to mám oba odinstalovat?
Všechny časy jsou v UTC+01:00
Stránka 2 z 3

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz