VIRY.CZ

OK. Disk může mít problém. Stáhněte, nainstalujte a spusťte CrystalDiskInfo: http://www.stahuj.centrum.cz/utility_a_ ... ldiskinfo/ a přes Úpravy>kopírovat sem dejte log.

----------------------------------------------------------------------------
CrystalDiskInfo 6.0.2 (C) 2008-2013 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------

OS : Windows 7 Home Premium SP1 [6.1 Build 7601] (x64)
Date : 2013/12/24 9:14:12

-- Controller Map ----------------------------------------------------------
+ Intel(R) 5 Series/3400 Series SATA AHCI Controller [ATA]
- WDC WD4000AAKS-00YGA0
- ST1000DM003-1CH162
+ Virtual CloneDrive [SCSI]
- ELBY CLONEDRIVE SCSI CdRom Device
+ GIGABYTE GBB36X Controller [SCSI]
- ASUS DRW-2014L1T SCSI CdRom Device

-- Disk List ---------------------------------------------------------------
(1) WDC WD4000AAKS-00YGA0 : 400,0 GB [0/1/0, pd1] - wd
(2) ST1000DM003-1CH162 : 1000,2 GB [1/1/1, pd1] - st

----------------------------------------------------------------------------
(1) WDC WD4000AAKS-00YGA0
----------------------------------------------------------------------------
Model : WDC WD4000AAKS-00YGA0
Firmware : 12.01C02
Serial Number : WD-WCAS84589197
Disk Size : 400,0 GB (8,4/137,4/400,0/400,0)
Buffer Size : 16384 KB
Queue Depth : 32
# of Sectors : 781422768
Rotation Rate : Neznámy údaj
Interface : Serial ATA
Major Version : ATA8-ACS
Minor Version : ----
Transfer Mode : ---- | SATA/300
Power On Hours : 10292 hod.
Power On Count : 5651 krát
Temparature : 30 C (86 F)
Health Status : Dobrý
Features : S.M.A.R.T., AAM, 48bit LBA, NCQ
APM Level : ----
AAM Level : 80FEh [OFF]

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 200 200 _51 000000000000 Počet chyb čtení
03 178 175 _21 0000000017AA Čas na roztočení ploten
04 _92 _92 __0 000000002164 Počet spuštění/zastavení
05 200 200 140 000000000000 Počet přemapovaných sektorů
07 200 200 _51 000000000000 Počet chybných hledání
09 _86 _86 __0 000000002834 Hodin v činnosti
0A 100 100 _51 000000000000 Počet opakovaných pokusů o roztočení ploten
0B 100 100 _51 000000000000 Počet pokusů o překalibrování
0C _95 _95 __0 000000001613 Počet cyklů zapnutí zařízení
C0 200 200 __0 00000000006E Počet vypnutí disku
C1 198 198 __0 000000002164 Počet cyklů načítání/vymazání
C2 120 _99 __0 00000000001E Teplota
C4 200 200 __0 000000000000 Počet udalostí s číslem realokování sektorů
C5 200 200 __0 000000000000 Počet podezřelých sektorů
C6 200 200 __0 000000000000 Počet neopravitelných sektorů
C7 200 200 __0 000000000000 Počet chyb v kontrolním součtu UltraDMA
C8 200 200 _51 000000000000 Počet chyb při zápisu sektorů

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 427A 3FFF C837 0010 0000 0000 003F 0000 0000 0000
010: 2020 2020 2057 442D 5743 4153 3834 3538 3931 3937
020: 0000 8000 0032 3132 2E30 3143 3032 5744 4320 5744
030: 3430 3030 4141 4B53 2D30 3059 4741 3020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 0000 2F00
050: 4001 0000 0000 0007 3FFF 0010 003F FC10 00FB 0110
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 001F 0706 0000 0044 0044
080: 01FE 0000 746B 7F61 4123 7469 BC41 4123 407F 0043
090: 0043 0000 FFFE 0000 80FE 0000 0000 0000 0000 0000
100: 90B0 2E93 0000 0000 0000 0000 0000 0000 5001 4EE1
110: 55FA 6E36 0000 0000 0000 0000 0000 0000 0000 4010
120: 4010 0000 0000 0000 0000 0000 0000 0000 0021 0000
130: 0000 0000 0000 1695 0000 0000 0000 0000 0000 0000
140: 0000 0000 0004 0000 0000 0000 0000 0000 0000 0000
150: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 303F 0000 0000 0000
210: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
220: 0000 0000 100E 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0001 1000 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 0EA5

-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 0F 00 C8 C8 00 00 00 00 00 00 00 03 03
010: 00 B2 AF AA 17 00 00 00 00 00 04 32 00 5C 5C 64
020: 21 00 00 00 00 00 05 33 00 C8 C8 00 00 00 00 00
030: 00 00 07 0E 00 C8 C8 00 00 00 00 00 00 00 09 32
040: 00 56 56 34 28 00 00 00 00 00 0A 12 00 64 64 00
050: 00 00 00 00 00 00 0B 12 00 64 64 00 00 00 00 00
060: 00 00 0C 32 00 5F 5F 13 16 00 00 00 00 00 C0 32
070: 00 C8 C8 6E 00 00 00 00 00 00 C1 32 00 C6 C6 64
080: 21 00 00 00 00 00 C2 22 00 78 63 1E 00 00 00 00
090: 00 00 C4 32 00 C8 C8 00 00 00 00 00 00 00 C5 12
0A0: 00 C8 C8 00 00 00 00 00 00 00 C6 10 00 C8 C8 00
0B0: 00 00 00 00 00 00 C7 3E 00 C8 C8 00 00 00 00 00
0C0: 00 00 C8 08 00 C8 C8 00 00 00 00 00 00 00 00 00
0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 84 00 90 33 01 7B
170: 03 00 01 00 02 9A 05 00 00 00 00 00 00 00 00 00
180: 00 00 01 06 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 8F

-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 33 C8 C8 C8 C8 C8 C8 00 00 00 00 03 15
010: 00 00 00 00 00 00 00 00 00 00 04 00 00 00 00 00
020: 00 00 00 00 00 00 05 8C 00 00 00 00 00 00 00 00
030: 00 00 07 33 C8 C8 C8 C8 C8 C8 00 00 00 00 09 00
040: 00 00 00 00 00 00 00 00 00 00 0A 33 00 00 00 00
050: 00 00 00 00 00 00 0B 33 00 00 00 00 00 00 00 00
060: 00 00 0C 00 00 00 00 00 00 00 00 00 00 00 C0 00
070: 00 00 00 00 00 00 00 00 00 00 C1 00 00 00 00 00
080: 00 00 00 00 00 00 C2 00 00 00 00 00 00 00 00 00
090: 00 00 C4 00 00 00 00 00 00 00 00 00 00 00 C5 00
0A0: 00 00 00 00 00 00 00 00 00 00 C6 00 00 00 00 00
0B0: 00 00 00 00 00 00 C7 00 00 00 00 00 00 00 00 00
0C0: 00 00 C8 33 C8 C8 C8 C8 C8 C8 00 00 00 00 00 00
0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 E1

----------------------------------------------------------------------------
(2) ST1000DM003-1CH162
----------------------------------------------------------------------------
Model : ST1000DM003-1CH162
Firmware : CC46
Serial Number : S1D9BXGM
Disk Size : 1000,2 GB (8,4/137,4/1000,2/1000,2)
Buffer Size : Neznámy údaj
Queue Depth : 32
# of Sectors : 1953525168
Rotation Rate : 7200 RPM
Interface : Serial ATA
Major Version : ATA8-ACS
Minor Version : ATA8-ACS version 4
Transfer Mode : SATA/300 | SATA/600
Power On Hours : 1322 hod.
Power On Count : 671 krát
Temparature : 29 C (84 F)
Health Status : Dobrý
Features : S.M.A.R.T., APM, 48bit LBA, NCQ
APM Level : 8080h [ON]
AAM Level : ----

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 112 _99 __6 000002D8B828 Počet chyb čtení
03 _97 _97 __0 000000000000 Čas na roztočení ploten
04 _99 _99 _20 0000000004FE Počet spuštění/zastavení
05 100 100 _10 000000000000 Počet přemapovaných sektorů
07 _68 _60 _30 000000697415 Počet chybných hledání
09 _99 _99 __0 00000000052A Hodin v činnosti
0A 100 100 _97 000000000000 Počet opakovaných pokusů o roztočení ploten
0C 100 100 _20 00000000029F Počet cyklů zapnutí zařízení
B7 100 100 __0 000000000000 Specifický pro výrobce
B8 100 100 _99 000000000000 Ukončovacích chyb
BB 100 100 __0 000000000000 Ohlášeno neopravitelných chyb
BC 100 100 __0 000000000000 Časový limit příkazu
BD 100 100 __0 000000000000 Vysoká rychlost zápisu
BE _71 _58 _45 00001D15001D Teplota toku vzduchu
BF 100 100 __0 000000000000 Počet udalostí zaznamenaných otřesovým senzorem
C0 100 100 __0 00000000001A Počet vypnutí disku
C1 _96 _96 __0 0000000020D1 Počet cyklů načítání/vymazání
C2 _29 _42 __0 00120000001D Teplota
C5 100 100 __0 000000000000 Počet podezřelých sektorů
C6 100 100 __0 000000000000 Počet neopravitelných sektorů
C7 200 200 __0 000000000000 Počet chyb v kontrolním součtu UltraDMA
F0 100 253 __0 C3610000023E Čas nastavování hlaviček - v hodinách
F1 100 253 __0 000093685570 Total Host Writes
F2 100 253 __0 0000C79860EF Total Host Reads

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 0C5A 3FFF C837 0010 0000 0000 003F 0000 0000 0000
010: 2020 2020 2020 2020 2020 2020 5331 4439 4258 474D
020: 0000 0000 0004 4343 3436 2020 2020 5354 3130 3030
030: 444D 3030 332D 3143 4831 3632 2020 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 4000 2F00
050: 4000 0200 0200 0007 3FFF 0010 003F FC10 00FB 0110
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 001F 850E 0004 004C 0044
080: 01F0 0029 346B 7D09 4163 3469 BC09 4163 407F 0032
090: 0032 8080 FFFE 0000 D000 0000 0000 0000 0000 0000
100: 6DB0 7470 0000 0000 0000 0000 6003 0000 5000 C500
110: 60FD BAEC 0000 0000 0000 0000 0000 0000 0000 401E
120: 401C 0000 0000 0000 0000 0000 0000 0000 0021 6DB0
130: 7470 6DB0 7470 2020 0002 0140 0100 5000 3C06 3C0A
140: 0000 003C 0000 0008 0000 0000 05FF 0280 0000 0000
150: 0008 0000 0000 0000 0000 0000 0000 0000 5800 8800
160: 0000 0000 0000 0000 0000 0000 0000 0000 0002 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 3085 0000 0000 4000
210: 0000 0000 0000 0000 0000 0000 0000 1C20 0000 0000
220: 0000 0000 1020 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
240: 0000 0000 0000 0003 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 A7A5

-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 0A 00 01 0F 00 70 63 28 B8 D8 02 00 00 00 03 03
010: 00 61 61 00 00 00 00 00 00 00 04 32 00 63 63 FE
020: 04 00 00 00 00 00 05 33 00 64 64 00 00 00 00 00
030: 00 00 07 0F 00 44 3C 15 74 69 00 00 00 00 09 32
040: 00 63 63 2A 05 00 00 00 00 00 0A 13 00 64 64 00
050: 00 00 00 00 00 00 0C 32 00 64 64 9F 02 00 00 00
060: 00 00 B7 32 00 64 64 00 00 00 00 00 00 00 B8 32
070: 00 64 64 00 00 00 00 00 00 00 BB 32 00 64 64 00
080: 00 00 00 00 00 00 BC 32 00 64 64 00 00 00 00 00
090: 00 00 BD 3A 00 64 64 00 00 00 00 00 00 00 BE 22
0A0: 00 47 3A 1D 00 15 1D 00 00 00 BF 32 00 64 64 00
0B0: 00 00 00 00 00 00 C0 32 00 64 64 1A 00 00 00 00
0C0: 00 00 C1 32 00 60 60 D1 20 00 00 00 00 00 C2 22
0D0: 00 1D 2A 1D 00 00 00 12 00 00 C5 12 00 64 64 00
0E0: 00 00 00 00 00 00 C6 10 00 64 64 00 00 00 00 00
0F0: 00 00 C7 3E 00 C8 C8 00 00 00 00 00 00 00 F0 00
100: 00 64 FD 3E 02 00 00 61 C3 1E F1 00 00 64 FD 70
110: 55 68 93 00 00 00 F2 00 00 64 FD EF 60 98 C7 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 3F 02 00 73
170: 03 00 01 00 01 69 02 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 7E 0B 00 00 01 03 03 03 03 03 03 03
190: 03 00 00 00 00 00 00 00 00 01 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 A5 9E 5D 9E 54 04 00 00
1B0: 00 00 00 00 01 00 02 07 70 55 68 93 00 00 00 00
1C0: EF 60 98 C7 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 11 16 00 00 01 00 00 00
1E0: 00 00 00 00 60 07 01 00 00 00 00 00 00 00 00 02
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 68

-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 01 00 01 06 00 00 00 00 00 00 00 00 00 00 03 00
010: 00 00 00 00 00 00 00 00 00 00 04 14 00 00 00 00
020: 00 00 00 00 00 00 05 0A 00 00 00 00 00 00 00 00
030: 00 00 07 1E 00 00 00 00 00 00 00 00 00 00 09 00
040: 00 00 00 00 00 00 00 00 00 00 0A 61 00 00 00 00
050: 00 00 00 00 00 00 0C 14 00 00 00 00 00 00 00 00
060: 00 00 B7 00 00 00 00 00 00 00 00 00 00 00 B8 63
070: 00 00 00 00 00 00 00 00 00 00 BB 00 00 00 00 00
080: 00 00 00 00 00 00 BC 00 00 00 00 00 00 00 00 00
090: 00 00 BD 00 00 00 00 00 00 00 00 00 00 00 BE 2D
0A0: 00 00 00 00 00 00 00 00 00 00 BF 00 00 00 00 00
0B0: 00 00 00 00 00 00 C0 00 00 00 00 00 00 00 00 00
0C0: 00 00 C1 00 00 00 00 00 00 00 00 00 00 00 C2 00
0D0: 00 00 00 00 00 00 00 00 00 00 C5 00 00 00 00 00
0E0: 00 00 00 00 00 00 C6 00 00 00 00 00 00 00 00 00
0F0: 00 00 C7 00 00 00 00 00 00 00 00 00 00 00 F0 00
100: 00 00 00 00 00 00 00 00 00 00 F1 00 00 00 00 00
110: 00 00 00 00 00 00 F2 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 FD

Disky jsou OK. V tom případě je tam něco, co znefunkční standardní skenery. Budete muset provész sken AVPTool: http://www.viry.cz/forum/viewtopic.php?f=29&t=58179 a dát log. Snad jeho sken projde.

3 dny PC chroupal a nic nenašel:

Co jste instaloval těsně před tím, než se problém objevil?

To už moc nevím, aleještě jsem skusil nějaký sken přes AVPTool a tady je výsledek, jeslti se něco ukáže?
Results of system analysis

Kaspersky Virus Removal Tool 11.0.0.1245 (database released 24/12/2013; 08:56)
List of processes
File name PID Description Copyright MD5 Information
c:\program files (x86)\intel\intel(r) rapid storage technology\iastordatamgrsvc.exe
Script: Quarantine, Delete, BC delete, Terminate 2540 IAStorDataSvc Copyright © Intel Corporation 2009 ?? 13.02 kb, rsAh,
created: 07.09.2010 20:41:16,
modified: 02.10.2009 12:26:12
Command line:
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
c:\program files (x86)\intel\intel(r) rapid storage technology\iastoricon.exe
Script: Quarantine, Delete, BC delete, Terminate 4180 IAStorIcon Copyright © Intel Corporation 2009 ?? 278.02 kb, rsAh,
created: 07.09.2010 20:41:16,
modified: 02.10.2009 12:26:10
Command line:
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
MsMpEng.exe
Script: Quarantine, Delete, BC delete, Terminate 660 ?? error getting file info
Command line:
msseces.exe
Script: Quarantine, Delete, BC delete, Terminate 3428 ?? error getting file info
Command line:
NisSrv.exe
Script: Quarantine, Delete, BC delete, Terminate 4328 ?? error getting file info
Command line:
nvstreamsvc.exe
Script: Quarantine, Delete, BC delete, Terminate 2196 ?? error getting file info
Command line:
nvstreamsvc.exe
Script: Quarantine, Delete, BC delete, Terminate 4376 ?? error getting file info
Command line:
nvtray.exe
Script: Quarantine, Delete, BC delete, Terminate 3576 ?? error getting file info
Command line:
nvxdsync.exe
Script: Quarantine, Delete, BC delete, Terminate 1560 ?? error getting file info
Command line:
RAVCpl64.exe
Script: Quarantine, Delete, BC delete, Terminate 3420 ?? error getting file info
Command line:
sidebar.exe
Script: Quarantine, Delete, BC delete, Terminate 3660 ?? error getting file info
Command line:
TrustedInstaller.exe
Script: Quarantine, Delete, BC delete, Terminate 6848 ?? error getting file info
Command line:
wmpnetwk.exe
Script: Quarantine, Delete, BC delete, Terminate 2324 ?? error getting file info
Command line:
Detected:72, recognized as trusted 61
Module name Handle Description Copyright MD5 Used by processes
C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\4eef5a3a4d0ed6d6fd882947a70df530\WindowsBase.ni.dll
Script: Quarantine, Delete, BC delete 1879834624 WindowsBase.dll © Microsoft Corporation. All rights reserved. -- 2540, 4180
Modules detected:339, recognized as trusted 338
Kernel Space Modules Viewer
Module Base address Size in memory Description Manufacturer
C:\Windows\System32\Drivers\dump_dumpfve.sys
Script: Quarantine, Delete, BC delete 72C9000 013000 (77824)
C:\Windows\System32\Drivers\dump_iaStor.sys
Script: Quarantine, Delete, BC delete 4C1B000 208000 (2129920)
Modules detected - 216, recognized as trusted - 214
Services
Service Description Status File Group Dependencies
PnkBstrA
Service: Stop, Delete, Disable, BC delete PnkBstrA Running C:\Windows\system32\PnkBstrA.exe
Script: Quarantine, Delete, BC delete
MBAMScheduler
Service: Stop, Delete, Disable, BC delete MBAMScheduler Not started D:\Downloads\Malwarebytes' Anti-Malware\mbamscheduler.exe
Script: Quarantine, Delete, BC delete
MBAMService
Service: Stop, Delete, Disable, BC delete MBAMService Not started D:\Downloads\Malwarebytes' Anti-Malware\mbamservice.exe
Script: Quarantine, Delete, BC delete MBAMProtector
Detected - 177, recognized as trusted - 174
Drivers
Service Description Status File Group Dependencies
sptd
Driver: Unload, Delete, Disable, BC delete sptd Running C:\Windows\SystemRoot\System32\Drivers\sptd.sys
Script: Quarantine, Delete, BC delete Boot Bus Extender
CrystalSysInfo
Driver: Unload, Delete, Disable, BC delete CrystalSysInfo Not started D:\MP3\MediaCoder\SysInfoX64.sys
Script: Quarantine, Delete, BC delete
NSHE
Driver: Unload, Delete, Disable, BC delete Guardant Emulator Driver Not started C:\Windows\system32\Drivers\NSHE.SYS
Script: Quarantine, Delete, BC delete HARDLOCK
Detected - 285, recognized as trusted - 282
Autoruns
File name Status Startup method Description
C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe
Script: Quarantine, Delete, BC delete -- Registry key HKEY_LOCAL_MACHINE, SYSTEM\CurrentControlSet\Services\Eventlog\TuneUp\TuneUp.UtilitiesSvc, EventMessageFile
C:\Program Files\MySQL\MySQL Server 5.1\bin\mysqld.exe
Script: Quarantine, Delete, BC delete -- Registry key HKEY_LOCAL_MACHINE, SYSTEM\CurrentControlSet\Services\Eventlog\Application\MySQL, EventMessageFile
C:\Users\Slosiar\AppData\Local\Temp\_uninst_10675664.bat
Script: Quarantine, Delete, BC delete Active Shortcut in Autoruns folder C:\Users\Slosiar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\, C:\Users\Slosiar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\_uninst_10675664.lnk,
C:\Users\Slosiar\AppData\Local\Temp\_uninst_32782958.bat
Script: Quarantine, Delete, BC delete Active Shortcut in Autoruns folder C:\Users\Slosiar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\, C:\Users\Slosiar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\_uninst_32782958.lnk,
C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_8_800_94_ActiveX.exe
Script: Quarantine, Delete, BC delete Active Registry key HKEY_USERS, .DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce, FlashPlayerUpdate
Delete
C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_8_800_94_ActiveX.exe
Script: Quarantine, Delete, BC delete Active Registry key HKEY_USERS, S-1-5-18\Software\Microsoft\Windows\CurrentVersion\RunOnce, FlashPlayerUpdate
Delete
C:\Windows\System32\MsSpellCheckingFacility.dll
Script: Quarantine, Delete, BC delete -- Registry key HKEY_LOCAL_MACHINE, SYSTEM\CurrentControlSet\Services\Eventlog\Application\Microsoft-Windows-Spell-Checking, EventMessageFile
C:\Windows\System32\MsSpellCheckingFacility.dll
Script: Quarantine, Delete, BC delete -- Registry key HKEY_LOCAL_MACHINE, SYSTEM\CurrentControlSet\Services\Eventlog\Application\Microsoft-Windows-SpellChecker, EventMessageFile
C:\Windows\System32\MsSpellCheckingFacility.dll
Script: Quarantine, Delete, BC delete -- Registry key HKEY_LOCAL_MACHINE, SYSTEM\CurrentControlSet\Services\Eventlog\System\Microsoft-Windows-Spell-Checking, EventMessageFile
C:\Windows\System32\MsSpellCheckingFacility.dll
Script: Quarantine, Delete, BC delete -- Registry key HKEY_LOCAL_MACHINE, SYSTEM\CurrentControlSet\Services\Eventlog\System\Microsoft-Windows-SpellChecker, EventMessageFile
C:\Windows\System32\appmgmts.dll
Script: Quarantine, Delete, BC delete Active Registry key HKEY_LOCAL_MACHINE, SYSTEM\CurrentControlSet\Services\AppMgmt\Parameters, ServiceDll
Delete
C:\Windows\System32\drivers\ss_bbus.sys
Script: Quarantine, Delete, BC delete -- Registry key HKEY_LOCAL_MACHINE, SYSTEM\CurrentControlSet\Services\Eventlog\System\ss_bbus, EventMessageFile
C:\Windows\system32\hasplms.exe
Script: Quarantine, Delete, BC delete -- Registry key HKEY_LOCAL_MACHINE, SYSTEM\CurrentControlSet\Services\Eventlog\System\hasplms, EventMessageFile
C:\Windows\system32\psxss.exe
Script: Quarantine, Delete, BC delete -- Registry key HKEY_LOCAL_MACHINE, System\CurrentControlSet\Control\Session Manager\SubSystems, Posix
SDEvents.dll
Script: Quarantine, Delete, BC delete -- Registry key HKEY_LOCAL_MACHINE, SYSTEM\CurrentControlSet\Services\Eventlog\Application\Spybot - Search & Destroy 2, EventMessageFile
auditcse.dll
Script: Quarantine, Delete, BC delete Active Registry key HKEY_LOCAL_MACHINE, Software\Microsoft\Windows NT\CurrentVersion\Winlogon\GPExtensions\{f3ccc681-b74c-4060-9f26-cd84525dca2a}, DLLName
Delete
rdpclip
Script: Quarantine, Delete, BC delete Active Registry key HKEY_LOCAL_MACHINE, System\CurrentControlSet\Control\Terminal Server\Wds\rdpwd, StartupPrograms
Delete
Autoruns items detected - 635, recognized as trusted - 618
Microsoft Internet Explorer extension modules (BHOs, Toolbars ...)
File name Type Description Manufacturer CLSID
Extension module {898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Delete
URLSearchHook {BC86E1AB-EDA5-4059-938F-CE307B0C6F0A}
Delete
Explorer Bar {555D4D79-4BD2-4094-A395-CFC534424A05}
Delete
Elements detected - 5, recognized as trusted - 2
Windows Explorer extension modules
File name Destination Description Manufacturer CLSID
WebCheck {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
Delete
Auto Update Property Sheet Extension {5F327514-6C5E-4d60-8F16-D07FA08A78ED}
Delete
WinRAR shell extension {B41DB860-8EE4-11D2-9906-E49FADC173CA}
Delete
ColumnHandler {F9DB5320-233E-11D1-9F84-707F02C10627}
Delete
Elements detected - 20, recognized as trusted - 16
Printing system extensions (print monitors, providers)
File name Type Name Description Manufacturer
hpzlllhn.dll
Script: Quarantine, Delete, BC delete Monitor LIDIL hpzlllhn
localspl.dll
Script: Quarantine, Delete, BC delete Monitor Local Port
FXSMON.DLL
Script: Quarantine, Delete, BC delete Monitor Microsoft Shared Fax Monitor
bzpdf101.dll
Script: Quarantine, Delete, BC delete Monitor PDF Print Monitor BZ101
602localmon.dll
Script: Quarantine, Delete, BC delete Monitor Software602 XPS port monitor
tcpmon.dll
Script: Quarantine, Delete, BC delete Monitor Standard TCP/IP Port
usbmon.dll
Script: Quarantine, Delete, BC delete Monitor USB Monitor
WSDMon.dll
Script: Quarantine, Delete, BC delete Monitor WSD Port
inetpp.dll
Script: Quarantine, Delete, BC delete Provider HTTP Print Services
Elements detected - 11, recognized as trusted - 2
Task Scheduler jobs
File name Job name Job status Description Manufacturer
Elements detected - 0, recognized as trusted - 0
SPI/LSP settings
Namespace providers (NSP)
Provider Status EXE file Description GUID
Detected - 8, recognized as trusted - 8
Transport protocol providers (TSP, LSP)
Provider EXE file Description
Detected - 10, recognized as trusted - 10
Results of automatic SPI settings check

LSP settings checked. No errors detected

TCP/UDP ports
Port Status Remote Host Remote Port Application Notes
TCP ports
135 LISTENING 0.0.0.0 0 [120] svchost.exe
Script: Quarantine, Delete, BC delete, Terminate
139 LISTENING 0.0.0.0 0 [4] System
Script: Quarantine, Delete, BC delete, Terminate
445 LISTENING 0.0.0.0 0 [4] System
Script: Quarantine, Delete, BC delete, Terminate
2559 TIME_WAIT 127.0.0.1 50153 [0]
2559 LISTENING 0.0.0.0 0 [2276] c:\program files (x86)\nvidia corporation\nvidia update core\daemonu.exe
Script: Quarantine, Delete, BC delete, Terminate
5357 LISTENING 0.0.0.0 0 [4] System
Script: Quarantine, Delete, BC delete, Terminate
49152 LISTENING 0.0.0.0 0 [648] wininit.exe
Script: Quarantine, Delete, BC delete, Terminate
49153 LISTENING 0.0.0.0 0 [1076] svchost.exe
Script: Quarantine, Delete, BC delete, Terminate
49154 LISTENING 0.0.0.0 0 [1172] svchost.exe
Script: Quarantine, Delete, BC delete, Terminate
49155 LISTENING 0.0.0.0 0 [772] lsass.exe
Script: Quarantine, Delete, BC delete, Terminate
49156 LISTENING 0.0.0.0 0 [720] services.exe
Script: Quarantine, Delete, BC delete, Terminate
50092 TIME_WAIT 173.194.40.164 80 [0]
50111 TIME_WAIT 173.194.70.103 80 [0]
50115 TIME_WAIT 173.194.44.249 443 [0]
50147 TIME_WAIT 212.111.2.170 80 [0]
50159 TIME_WAIT 212.111.2.170 80 [0]
50162 TIME_WAIT 212.111.2.170 80 [0]
50174 ESTABLISHED 127.0.0.1 50175 [4424] c:\program files (x86)\mozilla firefox\firefox.exe
Script: Quarantine, Delete, BC delete, Terminate
50175 ESTABLISHED 127.0.0.1 50174 [4424] c:\program files (x86)\mozilla firefox\firefox.exe
Script: Quarantine, Delete, BC delete, Terminate
UDP ports
137 LISTENING -- -- [4] System
Script: Quarantine, Delete, BC delete, Terminate
138 LISTENING -- -- [4] System
Script: Quarantine, Delete, BC delete, Terminate
427 LISTENING -- -- [2988] svchost.exe
Script: Quarantine, Delete, BC delete, Terminate
427 LISTENING -- -- [2988] svchost.exe
Script: Quarantine, Delete, BC delete, Terminate
1900 LISTENING -- -- [3184] svchost.exe
Script: Quarantine, Delete, BC delete, Terminate
1900 LISTENING -- -- [3184] svchost.exe
Script: Quarantine, Delete, BC delete, Terminate
3702 LISTENING -- -- [3184] svchost.exe
Script: Quarantine, Delete, BC delete, Terminate
3702 LISTENING -- -- [1144] svchost.exe
Script: Quarantine, Delete, BC delete, Terminate
3702 LISTENING -- -- [1144] svchost.exe
Script: Quarantine, Delete, BC delete, Terminate
3702 LISTENING -- -- [3184] svchost.exe
Script: Quarantine, Delete, BC delete, Terminate
5355 LISTENING -- -- [1384] svchost.exe
Script: Quarantine, Delete, BC delete, Terminate
44301 LISTENING -- -- [2384] c:\windows\syswow64\pnkbstra.exe
Script: Quarantine, Delete, BC delete, Terminate
48000 LISTENING -- -- [2276] c:\program files (x86)\nvidia corporation\nvidia update core\daemonu.exe
Script: Quarantine, Delete, BC delete, Terminate
48001 LISTENING -- -- [3576] nvtray.exe
Script: Quarantine, Delete, BC delete, Terminate
48002 LISTENING -- -- [4376] nvstreamsvc.exe
Script: Quarantine, Delete, BC delete, Terminate
48003 LISTENING -- -- [3436] c:\program files (x86)\nvidia corporation\nvidia update core\nvtmru.exe
Script: Quarantine, Delete, BC delete, Terminate
50106 LISTENING -- -- [3184] svchost.exe
Script: Quarantine, Delete, BC delete, Terminate
55934 LISTENING -- -- [3184] svchost.exe
Script: Quarantine, Delete, BC delete, Terminate
55935 LISTENING -- -- [3184] svchost.exe
Script: Quarantine, Delete, BC delete, Terminate
55936 LISTENING -- -- [1144] svchost.exe
Script: Quarantine, Delete, BC delete, Terminate
65419 LISTENING -- -- [1144] svchost.exe
Script: Quarantine, Delete, BC delete, Terminate
Downloaded Program Files (DPF)
File name Description Manufacturer CLSID Source URL
Elements detected - 0, recognized as trusted - 0
Control Panel Applets (CPL)
File name Description Manufacturer
Elements detected - 20, recognized as trusted - 20
Active Setup
File name Description Manufacturer CLSID
Elements detected - 8, recognized as trusted - 8
Clear Hosts file
Protocols and handlers
File name Type Description Manufacturer CLSID
mscoree.dll
Script: Quarantine, Delete, BC delete Protocol Microsoft .NET Runtime Execution Engine () © Microsoft Corporation. All rights reserved. {1E66F26B-79EE-11D2-8710-00C04F79ED0D}
Delete
mscoree.dll
Script: Quarantine, Delete, BC delete Protocol Microsoft .NET Runtime Execution Engine () © Microsoft Corporation. All rights reserved. {1E66F26B-79EE-11D2-8710-00C04F79ED0D}
Delete
mscoree.dll
Script: Quarantine, Delete, BC delete Protocol Microsoft .NET Runtime Execution Engine () © Microsoft Corporation. All rights reserved. {1E66F26B-79EE-11D2-8710-00C04F79ED0D}
Delete
Elements detected - 14, recognized as trusted - 11
Suspicious objects
File Description Type

Main script of analysis
Windows version: Windows 7 Home Premium, Build=7601, SP="Service Pack 1"
System Restore: enabled
Hidden startup suspected: HKLM\Software\Microsoft\Windows\CurrentVersion\Run\ShadowPlay="C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart"
>> Services: potentially dangerous service allowed: TermService (@%SystemRoot%\System32\termsrv.dll,-268)
>> Services: potentially dangerous service allowed: SSDPSRV (@%systemroot%\system32\ssdpsrv.dll,-100)
>> Services: potentially dangerous service allowed: Schedule (@%SystemRoot%\system32\schedsvc.dll,-100)
> Services: please bear in mind that the set of services depends on the use of the PC (home PC, office PC connected to corporate network, etc)!
>> Security: disk drives' autorun is enabled
>> Security: administrative shares (C$, D$ ...) are enabled
>> Security: anonymous user access is enabled
>> Security: sending Remote Assistant queries is enabled
>> Disable HDD autorun
>> Disable autorun from network drives
>> Disable CD/DVD autorun
>> Disable removable media autorun
>> Windows Explorer - show extensions of known file types
System Analysis in progress

System Analysis - complete


Script commands

Add commands to script:

Blocking hooks using Anti-Rootkit
Enable AVZGuard
Operations with AVZPM (true=enable,false=disable)
BootCleaner - import list of deleted files
BootCleaner - import all
Registry cleanup after deleting files
ExecuteWizard ('TSW',2,3,true) - Running Troubleshooting wizard
BootCleaner - activate
Reboot
Insert template for QuarantineFile() - quarantining file
Insert template for BC_QrFile() - quarantining file via BootCleaner
Insert template for DeleteFile() - deleting file
Insert template for DelCLSID() - deleting CLSID item from registry

Additional operations:

Performance tweaking: disable service TermService (@%SystemRoot%\System32\termsrv.dll,-268)
Performance tweaking: disable service SSDPSRV (@%systemroot%\system32\ssdpsrv.dll,-100)
Performance tweaking: disable service Schedule (@%SystemRoot%\system32\schedsvc.dll,-100)
Security tweaking: disable CD autorun
Security tweaking: disable administrative shares
Security tweaking: disable anonymous user access
Security: disable sending Remote Assistant queries

Tak 1. problém (Po zapnutí PC a nečinnosti pořád běží procesor na 25%. Podle zobrazení Správe úloh systému to dělá "Windows Media Center Diagnostic Application". Po ukončení tohoto procesu už procesor 0%.)se už neobjevuje.
Vkládám tedy znovu log FRST pro prověření.
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 04-01-2014
Ran by Slosiar at 2014-01-04 05:04:21
Running from C:\Users\Slosiar\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Microsoft Security Essentials (Enabled - Up to date) {641105E6-77ED-3F35-A304-765193BCB75F}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Microsoft Security Essentials (Enabled - Up to date) {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}

==================== Installed Programs ======================

Update for Microsoft Office 2007 (KB2508958) (x32 Version: - Microsoft)
"Assassin's Creed IV - Black Flag" (x32 Version: 1.01.0.0 - )
1310 (x32 Version: 130.0.365.000 - Hewlett-Packard) Hidden
1310_Help (x32 Version: 82.0.58.000 - Hewlett-Packard) Hidden
1310Trb (x32 Version: 82.0.242.000 - Hewlett-Packard) Hidden
602PdfDriver (x32 Version: 1.00 - Software602 a.s.) Hidden
64 Bit HP CIO Components Installer (Version: 7.2.8 - Hewlett-Packard) Hidden
Adobe AIR (x32 Version: 3.3.0.3670 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 3.3.0.3670 - Adobe Systems Incorporated) Hidden
Adobe Community Help (x32 Version: 3.0.0 - Adobe Systems Incorporated) Hidden
Adobe Community Help (x32 Version: 3.0.0.400 - Adobe Systems Incorporated)
Adobe Flash Player 11 ActiveX (x32 Version: 11.9.900.117 - Adobe Systems Incorporated)
Adobe Flash Player 11 Plugin (x32 Version: 11.9.900.117 - Adobe Systems Incorporated)
Adobe Media Player (x32 Version: 1.8 - Adobe Systems Incorporated)
Adobe Media Player (x32 Version: 1.8 - Adobe Systems Incorporated) Hidden
Adobe Photoshop CS5 (x32 Version: 12.0 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.05) (x32 Version: 11.0.05 - Adobe Systems Incorporated)
Adobe Shockwave Player (x32 Version: 10.2.0.22 - Adobe Systems, Inc.)
Advanced Wheel Mouse 6.0.0.010 (x32 Version: - )
AIO_CDB_ProductContext (x32 Version: 130.0.365.000 - Hewlett-Packard) Hidden
AIO_CDB_Software (x32 Version: 130.0.365.000 - Hewlett-Packard) Hidden
AIO_Scan (x32 Version: 130.0.421.000 - Hewlett-Packard) Hidden
Aktualizace NVIDIA 9.3.21 (Version: 9.3.21 - NVIDIA Corporation) Hidden
Aktualizace produktu Microsoft Office Excel 2007 Help (KB963678) (x32 Version: - Microsoft)
Aktualizace produktu Microsoft Office Powerpoint 2007 Help (KB963669) (x32 Version: - Microsoft)
Aktualizace produktu Microsoft Office Word 2007 Help (KB963665) (x32 Version: - Microsoft)
ArcSoft WebCam Companion 3 (x32 Version: 3.0.33.183 - ArcSoft)
Assassin's Creed (x32 Version: 1.02 - Ubisoft)
Assassin's Creed ® III (x32 Version: 1.00 - Ubisoft)
Assassin's Creed Brotherhood (x32 Version: 1.01 - Ubisoft)
Assassin's Creed Revelations (x32 Version: 1.00 - Ubisoft)
Audacity 2.0.3 (x32 Version: 2.0.3 - Audacity Team)
Avanquest update (x32 Version: 1.34 - Avanquest Software)
Battlefield 3™ (x32 Version: 1.0.0.0 - Electronic Arts)
Battlefield 4™ (x32 Version: 1.0.0.0 - Electronic Arts)
Browser Configuration Utility (x32 Version: 1.1.11.0 - DeviceVM)
BufferChm (x32 Version: 130.0.331.000 - Hewlett-Packard) Hidden
calibre (x32 Version: 0.9.27 - Kovid Goyal)
Call of Duty Black Ops II (x32 Version: - )
Call of Duty Ghosts (x32 Version: 6.0 - Black Box)
Call of Duty(R) - World at War(TM) (x32 Version: 1.0 - Activision)
Call of Duty(R) - World at War(TM) (x32 Version: 1.0 - Activision) Hidden
CCleaner (Version: 4.00 - Piriform)
CDBurnerXP (x32 Version: 4.5.0.3717 - CDBurnerXP)
ConvertXtoDVD 4.1.4.338 (x32 Version: 4.1.4.338 - )
Copy (x32 Version: 130.0.428.000 - Hewlett-Packard) Hidden
Crysis® 2 (x32 Version: 1.0.0.0 - Electronic Arts)
CZShare Manager (HKCU Version: 0.0.1.35 - CZShare)
Destinations (x32 Version: 140.0.77.000 - Hewlett-Packard) Hidden
DeviceDiscovery (x32 Version: 130.0.465.000 - Hewlett-Packard) Hidden
DirectVobSub 2.41.6609 (64-bit) (Version: 2.41.6609 - MPC-HC Team)
DiRT 3 (x32 Version: 1.0.0000.130 - Codemasters)
DiRT 3 (x32 Version: 1.0.0000.130 - Codemasters) Hidden
DocProc (x32 Version: 13.0.0.0 - Hewlett-Packard) Hidden
DVD Shrink 3.2 (x32 Version: - DVD Shrink)
EAX4 Unified Redist (x32 Version: 4.001 - Creative Labs)
EVEREST Ultimate Edition v5.50 (x32 Version: 5.50 - Lavalys, Inc.)
F1 2010 (x32 Version: 1.0.0001.132 - Codemasters) Hidden
F1 2011 (x32 Version: 1.0.0000.129 - Codemasters)
F1 2011 (x32 Version: 1.0.0000.129 - Codemasters) Hidden
Fax (x32 Version: 130.0.418.000 - Hewlett-Packard) Hidden
Feedback Tool (x32 Version: 1.2.0 - Microsoft Corporation)
FIFA 12 (c) EA version 1 (x32 Version: 1 - )
FIFA 14 (x32 Version: 1.0.0.2 - Electronic Arts)
FIFA 14 1.2 (x32 Version: - )
FL Studio 10 (x32 Version: - Image-Line)
FotoMix version 9.2.4 (x32 Version: 9.2.4 - Digital Photo Software)
Garmin USB Drivers (x32 Version: 2.3.1.0 - Garmin Ltd or its subsidiaries)
GeForce Experience NvStream Client Components (Version: 1.6.28 - NVIDIA Corporation) Hidden
Gigabyte Raid Cinfigurer (x32 Version: 1.00.0001 - GIGABYTE Technologies, Inc.)
GPBaseService2 (x32 Version: 130.0.371.000 - Hewlett-Packard) Hidden
High-Definition Video Playback 10 (x32 Version: 7.0.11400.29.0 - Nero AG) Hidden
HP Customer Participation Program 13.0 (Version: 13.0 - HP)
HP Imaging Device Functions 13.0 (Version: 13.0 - HP)
HP Photosmart Officejet and Deskjet All-In-One Driver Software 13.0 Rel. B (Version: 13.0 - HP)
HP Smart Web Printing 4.51 (Version: 4.51 - HP)
HP Solution Center 13.0 (Version: 13.0 - HP)
HPDiagnosticAlert (x32 Version: 1.00.0000 - Microsoft) Hidden
HPPhotoGadget (x32 Version: 130.0.282.000 - Hewlett-Packard) Hidden
HPProductAssistant (x32 Version: 130.0.371.000 - Hewlett-Packard) Hidden
IL Autogun (x32 Version: - Image-Line)
IL Download Manager (x32 Version: - Image-Line)
InfoMapa 17 (x32 Version: 17.0.0 - PJsoft s.r.o.)
Intel(R) Control Center (x32 Version: 1.2.0.1006 - Intel Corporation)
Intel(R) Rapid Storage Technology (x32 Version: 9.5.0.1037 - Intel Corporation)
iWisoft Free Video Converter 1.2 (x32 Version: 1.2 - www.easy-video-converter.com)
Java 7 Update 21 (x32 Version: 7.0.210 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.0 - Sun Microsystems, Inc.) Hidden
LAME v3.99.3 (for Windows) (x32 Version: - )
Mafia II (x32 Version: - )
MarketResearch (x32 Version: 130.0.374.000 - Hewlett-Packard) Hidden
Medal of Honor (TM) (x32 Version: 1.0.0.0 - Electronic Arts)
Media Player Classic - Home Cinema 1.6.1.4235 x64 (Version: 1.6.1.4235 - MPC-HC Team)
Microsoft .NET Framework 4.5 (Version: 4.5.50709 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5 CSY Language Pack (Version: 4.5.50709 - Microsoft Corporation)
Microsoft .NET Framework 4.5 CSY Language Pack (Version: 4.5.50709 - Microsoft Corporation) Hidden
Microsoft Antimalware Service CS-CZ Language Pack (Version: 3.0.8402.2 - Microsoft Corporation) Hidden
Microsoft Games for Windows - LIVE Redistributable (x32 Version: 3.5.88.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (x32 Version: 3.5.50.0 - Microsoft Corporation)
Microsoft Office 2007 Recent Documents Gadget (x32 Version: 12.0.4518.1027 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (x32 Version: - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (x32 Version: - Microsoft) Hidden
Microsoft Office Excel MUI (Czech) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (x32 Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (Czech) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (Czech) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Czech) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Slovak) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (Czech) 2007 (x32 Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32 Version: - Microsoft) Hidden
Microsoft Office Shared 64-bit MUI (Czech) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (Czech) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Standard 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Standard 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (Czech) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Primary Interoperability Assemblies 2005 (x32 Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Security Client (Version: 4.4.0304.0 - Microsoft Corporation) Hidden
Microsoft Security Client CS-CZ Language Pack (Version: 2.1.1116.0 - Microsoft Corporation) Hidden
Microsoft Security Essentials (Version: 4.4.304.0 - Microsoft Corporation)
Microsoft Silverlight (Version: 5.1.20913.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (x32 Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (Version: 8.0.51011 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (x32 Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (x32 Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (x32 Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (x32 Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft_VC80_ATL_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_ATL_x86_x64 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_CRT_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_CRT_x86_x64 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFC_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFC_x86_x64 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFCLOC_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFCLOC_x86_x64 (Version: 80.50727.4053 - Adobe) Hidden
Microsoft_VC90_ATL_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_ATL_x86_x64 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_CRT_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_CRT_x86_x64 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFC_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFC_x86_x64 (Version: 1.00.0000 - Adobe) Hidden
Mozilla Firefox 26.0 (x86 cs) (x32 Version: 26.0 - Mozilla)
Mozilla Maintenance Service (x32 Version: 21.0 - Mozilla)
MSXML 4.0 SP2 (KB954430) (x32 Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP2 Parser and SDK (x32 Version: 4.20.9818.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2721691) (x32 Version: 4.30.2114.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (x32 Version: 4.30.2117.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB973685) (x32 Version: 4.30.2107.0 - Microsoft Corporation)
MyHeritage Family Tree Builder (x32 Version: 6.0.0.5634 - MyHeritage.com)
Need for Speed(TM) Hot Pursuit (x32 Version: 1.0.0.0 - Electronic Arts)
Nero 10 Menu TemplatePack Basic (x32 Version: 10.0.10600.6.0 - Nero AG) Hidden
Nero 10 Movie ThemePack Basic (x32 Version: 10.0.10600.6.0 - Nero AG) Hidden
Nero BackItUp 10 (x32 Version: 5.4.11600.19.100 - Nero AG)
Nero BackItUp 10 Help (CHM) (x32 Version: 1.0.10700 - Nero AG) Hidden
Nero Burning ROM 10 (x32 Version: 10.0.11100.10.100 - Nero AG)
Nero BurningROM 10 Help (CHM) (x32 Version: 1.0.10700 - Nero AG) Hidden
Nero BurnRights 10 (x32 Version: 4.0.11000.12.100 - Nero AG)
Nero BurnRights 10 Help (CHM) (x32 Version: 1.0.10600 - Nero AG) Hidden
Nero Control Center 10 (x32 Version: 10.0.12000.1.4 - Nero AG) Hidden
Nero ControlCenter 10 Help (CHM) (x32 Version: 1.0.10700 - Nero AG) Hidden
Nero Core Components 10 (x32 Version: 2.0.13700.0.1 - Nero AG) Hidden
Nero CoverDesigner 10 (x32 Version: 5.0.10900.11.100 - Nero AG)
Nero CoverDesigner 10 Help (CHM) (x32 Version: 1.0.10600 - Nero AG) Hidden
Nero DiscSpeed 10 (x32 Version: 6.0.10800.7.100 - Nero AG)
Nero DiscSpeed 10 Help (CHM) (x32 Version: 1.0.10600 - Nero AG) Hidden
Nero Dolby Files 10 (x32 Version: 2.0.11000.0.10 - Nero AG) Hidden
Nero Express 10 (x32 Version: 10.0.11000.10.100 - Nero AG)
Nero Express 10 Help (CHM) (x32 Version: 1.0.10700 - Nero AG) Hidden
Nero InfoTool 10 (x32 Version: 7.0.10800.8.100 - Nero AG)
Nero InfoTool 10 Help (CHM) (x32 Version: 1.0.10600 - Nero AG) Hidden
Nero MediaHub 10 (x32 Version: 1.0.13400.11.100 - Nero AG)
Nero MediaHub 10 Help (CHM) (x32 Version: 1.0.10700 - Nero AG) Hidden
Nero Multimedia Suite 10 (x32 Version: 10.0.13100 - Nero AG)
Nero Recode 10 (x32 Version: 4.6.10900.4.100 - Nero AG)
Nero Recode 10 Help (CHM) (x32 Version: 1.0.10600 - Nero AG) Hidden
Nero RescueAgent 10 (x32 Version: 3.0.10900.9.100 - Nero AG)
Nero RescueAgent 10 Help (CHM) (x32 Version: 1.0.10700 - Nero AG) Hidden
Nero SoundTrax 10 (x32 Version: 4.6.10600.2.100 - Nero AG)
Nero SoundTrax 10 Help (CHM) (x32 Version: 1.0.10600 - Nero AG) Hidden
Nero StartSmart 10 (x32 Version: 10.0.11200.12.100 - Nero AG)
Nero StartSmart 10 Help (CHM) (x32 Version: 1.0.10700 - Nero AG) Hidden
Nero Update (x32 Version: 1.0.0017 - Nero AG)
Nero Vision 10 (x32 Version: 7.0.11100.8.100 - Nero AG)
Nero Vision 10 Help (CHM) (x32 Version: 1.0.10600 - Nero AG) Hidden
Nero WaveEditor 10 (x32 Version: 5.6.10600.2.100 - Nero AG)
Nero WaveEditor 10 Help (CHM) (x32 Version: 1.0.10600 - Nero AG) Hidden
Network64 (Version: 130.0.572.000 - Hewlett-Packard) Hidden
Network64 (Version: 140.0.221.000 - Hewlett-Packard) Hidden
NHL® 09 (x32 Version: 2.0.1.0 - Electronic Arts)
Notebook Software (x32 Version: 10.0.187.1 - SMART Technologies)
NVIDIA GeForce Experience 1.7.1 (Version: 1.7.1 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.140.952 - NVIDIA Corporation) Hidden
NVIDIA LED Visualizer 1.0 (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA Ovladač 3D Vision 331.82 (Version: 331.82 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.26.4 (Version: 1.3.26.4 - NVIDIA Corporation)
NVIDIA Ovladač řídící jednotky 3D Vision 331.82 (Version: 331.82 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 331.82 (Version: 331.82 - NVIDIA Corporation)
NVIDIA PhysX (x32 Version: 9.13.0725 - NVIDIA Corporation) Hidden
NVIDIA ShadowPlay 9.3.21 (Version: 9.3.21 - NVIDIA Corporation) Hidden
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.13.3182 - NVIDIA Corporation) Hidden
NVIDIA Systémový software PhysX 9.13.0725 (Version: 9.13.0725 - NVIDIA Corporation)
NVIDIA Update Components (Version: 9.3.21 - NVIDIA Corporation) Hidden
NVIDIA Virtual Audio 1.2.9 (Version: 1.2.9 - NVIDIA Corporation)
OCR Software by I.R.I.S. 13.0 (Version: 13.0 - HP)
ON_OFF Charge B10.0301.1 (x32 Version: 1.00.0001 - GIGABYTE)
OpenAL (x32 Version: - )
Ovládací panel NVIDIA 331.82 (Version: 331.82 - NVIDIA Corporation) Hidden
Ovladače videa společnosti Pinnacle (Version: 12.1.0.030 - Pinnacle Systems)
PC Camer@ (x32 Version: 1.0.4.15 - Aecotech)
PDF Settings CS5 (x32 Version: 10.0 - Adobe Systems Incorporated) Hidden
Picasa 3 (x32 Version: 3.9 - Google, Inc.)
Pinnacle Studio 14 (x32 Version: 14.0.0.7255 - Pinnacle Systems)
Pinnacle Studio Ultimate Collection Plugins (x32 Version: 14.0.0.7255 - Pinnacle Systems)
PunkBuster Services (x32 Version: 0.991 - Even Balance, Inc.)
PVSonyDll (Version: 1.00.0001 - NVIDIA Corporation) Hidden
Rapture3D 2.4.9 Game (x32 Version: - Blue Ripple Sound)
Realtek Ethernet Controller Driver For Windows 7 (x32 Version: 7.11.1127.2009 - Realtek)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.6029 - Realtek Semiconductor Corp.)
Reload (x32 Version: - )
Remote Control USB Driver (x32 Version: 2.3.2.317 - )
Samsung Kies (x32 Version: 2.3.3.12085_7 - Samsung Electronics Co., Ltd.)
Samsung Kies (x32 Version: 2.3.3.12085_7 - Samsung Electronics Co., Ltd.) Hidden
Samsung New PC Studio (x32 Version: 1.00.0000 - Samsung Electronics Co., Ltd.)
Samsung New PC Studio (x32 Version: 1.00.0000 - Samsung Electronics Co., Ltd.) Hidden
SAMSUNG USB Driver for Mobile Phones (Version: 1.5.9.0 - SAMSUNG Electronics Co., Ltd.)
Scan (x32 Version: 140.0.80.000 - Hewlett-Packard) Hidden
SHIELD Streaming (Version: 1.6.53 - NVIDIA Corporation) Hidden
Ski Challenge 12 (SRF) (HKCU Version: - )
Skype Click to Call (x32 Version: 6.7.12055 - Skype Technologies S.A.)
Skype™ 6.3 (x32 Version: 6.3.107 - Skype Technologies S.A.)
SmartWebPrinting (x32 Version: 130.0.457.000 - Hewlett-Packard) Hidden
Sniper Ghost Warrior (x32 Version: - )
Sniper Ghost Warrior 2 (x32 Version: - )
Software602 Form Filler (x32 Version: 4.50 - Software602 a.s.)
SolutionCenter (x32 Version: 130.0.373.000 - Hewlett-Packard) Hidden
Splinter Cell - Blacklist 1.01 (x32 Version: - )
Spybot - Search & Destroy (x32 Version: 1.6.2 - Safer Networking Limited)
Status (x32 Version: 130.0.469.000 - Hewlett-Packard) Hidden
STORMWARE PDF Printer 8.2.0.1406 (Version: 8.2.0.1406 - STORMWARE)
STORMWARE POHODA CZ Lite MLP (x32 Version: 10500.206 - STORMWARE)
Tom Clancy's Splinter Cell Conviction (x32 Version: 1.00.000 - Ubisoft)
Tom Clancy's Splinter Cell Double Agent (x32 Version: 1.00.0000 - Ubisoft)
Tom Clancy's Splinter Cell® Blacklist™ (x32 Version: 1.01 - Ubisoft)
Toolbox (x32 Version: 130.0.648.000 - Hewlett-Packard) Hidden
TrayApp (x32 Version: 130.0.422.000 - Hewlett-Packard) Hidden
Ubisoft Game Launcher (x32 Version: 1.0.0.0 - UBISOFT)
UnloadSupport (x32 Version: 11.0.0 - Hewlett-Packard) Hidden
Update for 2007 Microsoft Office System (KB967642) (x32 Version: - Microsoft)
Update for Microsoft .NET Framework 4.5 (KB2805221) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4.5 (KB2805226) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (x32 Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition (x32 Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (x32 Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (x32 Version: - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition (x32 Version: - Microsoft)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2850085) 32-Bit Edition (x32 Version: - Microsoft)
Uplay (x32 Version: 2.0 - Ubisoft)
VirtualCloneDrive (x32 Version: - Elaborate Bytes)
WebReg (x32 Version: 130.0.132.017 - Hewlett-Packard) Hidden
Windows Driver Package - Garmin (grmnusb) GARMIN Devices (04/19/2012 2.3.1.0) (Version: 04/19/2012 2.3.1.0 - Garmin)
Windows Live ID Sign-in Assistant (Version: 6.500.3165.0 - Microsoft Corporation)
Windows Media Player Firefox Plugin (x32 Version: 1.0.0.8 - Microsoft Corp)
WinFast Multimedia Driver Installation (x32 Version: - Multimedia)
WinRAR 4.20 (64-bit) (Version: 4.20.0 - win.rar GmbH)
Wise Disk Cleaner 7.98 (x32 Version: 7.98 - WiseCleaner.com, Inc.)
WRC3 verze 1.0 (x32 Version: 1.0 - Milestone Srl)
Xiph.Org Open Codecs 0.85.17777 (x32 Version: 0.85.17777 - Xiph.Org)
XXClone ver 2.01.2 (Version: 2.01.2 - Pixelab, Inc.)

==================== Restore Points =========================

19-12-2013 13:22:28 Windows Update
23-12-2013 10:23:36 Windows Update
27-12-2013 07:25:35 Windows Update
30-12-2013 08:56:47 Windows Update
03-01-2014 08:21:58 Windows Update
03-01-2014 21:30:43 Installed Microsoft Fix it 50267

==================== Hosts content: ==========================

2009-07-14 03:34 - 2013-09-03 17:19 - 00000833 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {102EF90D-482A-4E51-B889-257C2A72371F} - System32\Tasks\{20434C62-C4ED-4CA4-88ED-D94C9CFD4014} => D:\DVD\Alcohol 120\keymaker.exe
Task: {1870BBFF-A65B-489D-84FD-BD698E5E8304} - System32\Tasks\{8D14F225-8259-4FFB-B15D-E7D50597B6EC} => C:\ETKA\PROG\EtStart.exe
Task: {1B033FC6-6744-4AD8-92F5-F04B88BF4893} - System32\Tasks\{0906DACE-EBCA-4A5D-9AA2-7BE92B17CD49} => F:\Razor1911\rzr-crys.exe
Task: {2421BAD8-C258-4E54-A5F2-2986E2940572} - System32\Tasks\{CF07D216-670D-45B4-8AD7-4C7421CCF727} => D:\DVD\Alcohol 120\keymaker.exe
Task: {29166891-B8A8-4990-BEBD-D5007002937D} - System32\Tasks\{D2715C39-C58D-4D1E-927A-650823FFA740} => C:\ETKA\PROG\EtStart.exe
Task: {2B9706D0-2A07-40BB-8FFF-6751D0608955} - System32\Tasks\{EF77470F-C227-4AA6-B384-578F53EF4378} => F:\Razor1911\rzr-crys.exe
Task: {4577EE05-09FE-40A0-A091-54B0C3373C45} - System32\Tasks\GoforFilesUpdate => C:\Program Files (x86)\GoforFiles\GFFUpdater.exe <==== ATTENTION
Task: {4D0CD533-B1C6-4E43-9832-4AF680E70546} - System32\Tasks\{C0FE853C-A33C-44AE-B182-444399FA70D4} => D:\DVD\Alcohol 120\keymaker.exe
Task: {5DAF0426-54BE-49C2-92FB-E76FC94D5525} - System32\Tasks\{EDF6D50A-0C4C-451F-8F49-4F9E5BDF1C5A} => D:\Programs\Blaze Media Pro\BMP.exe
Task: {63E88336-953A-4313-A0BE-B9D3FC97FBC8} - System32\Tasks\{11591097-B2B3-4FCF-AD49-C4C397C66DEB} => D:\DVD\Alcohol 120\keymaker.exe
Task: {699579F5-0AB3-4C58-812B-C1A375CE864A} - System32\Tasks\{C41CDC12-9F15-4463-9A94-B5E07F6237E9} => D:\DVD\Alcohol 120\keymaker.exe
Task: {6A394D0C-F1A0-40DC-B21A-B96B2E2761CC} - System32\Tasks\{D591A00C-B82E-4F1D-A2E6-AB4D6952B851} => D:\Program\EVEREST Ultimate Edition\everest.exe
Task: {70ACBD0E-A5A7-4886-B294-AEC2031689E6} - System32\Tasks\{50A9EF34-77CE-48FC-8110-BD379CD9CA30} => D:\Programs\Blaze Media Pro\BMP.exe
Task: {74AAD52A-712D-4E07-A9E4-6C8EA4E33102} - System32\Tasks\{66B552E9-7C45-4DBA-B8B4-F63E0DF6298C} => D:\Programs\Blaze Media Pro\BMP.exe
Task: {7E545C09-244F-4179-88D2-A7FE51997F9B} - System32\Tasks\{6FD6B268-00F3-4ECA-AFCF-E47EBF9BCFB2} => F:\Razor1911\rzr-crys.exe
Task: {80F5EEBA-EDD4-4BDE-A354-E572DF73755D} - System32\Tasks\Microsoft\Windows\TabletPC\InputPersonalization => C:\Program Files\Common Files\Microsoft Shared\ink\InputPersonalization.exe [2009-07-14] (Microsoft Corporation)
Task: {8EA0DC3B-3A4B-4087-9017-B9DB5CD8538B} - System32\Tasks\{A179A22A-DA0B-4990-BEE5-BB83F45C57BE} => F:\Razor1911\rzr-crys.exe
Task: {A1CBA2FA-B69B-4DCE-A697-33CC74427D48} - System32\Tasks\{035F5955-8B57-4690-B78C-D9B92C7AF34E} => C:\ETKA\Prog\Etka7.exe
Task: {AB7A434E-18BE-407E-A76B-B65EF959A3C8} - System32\Tasks\{0F3BBE6D-2C50-4BA5-8A9C-02795704B839} => C:\ETKA\Prog\Etka7.exe
Task: {C4D916AF-D9D8-4319-B80A-9E4BBE94EB48} - System32\Tasks\AdobeAAMUpdater-1.0-Slosiar-PC-Slosiar => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe [2010-03-06] (Adobe Systems Incorporated)
Task: {CD299E95-6658-44CE-BD53-3241A6E39938} - System32\Tasks\{885337CE-7A0A-4108-9D94-8D3318403BA2} => D:\Programs\Blaze Media Pro\BMP.exe
Task: {D48BF969-5493-4C99-B609-D2ECF1189C04} - System32\Tasks\{75FC44F8-70B7-47C0-AFAB-C8C958C85EE3} => D:\Programs\Skype\Phone\Skype.exe
Task: {F8A53D90-08AA-4979-88DC-76838C308B90} - System32\Tasks\{5080B76C-EC8C-4B32-B050-0C94B3FC443D} => D:\Programs\Spybot - Search & Destroy\SpybotSD.exe
Task: {FDA3E731-2565-4A5E-A475-8EC5C69DE898} - System32\Tasks\CCleanerSkipUAC => D:\Programs\CCleaner\CCleaner.exe [2013-03-25] (Piriform Ltd)

==================== Loaded Modules (whitelisted) =============

2010-09-07 20:41 - 2009-10-02 12:18 - 00058880 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll
2011-01-24 20:13 - 2010-05-26 13:47 - 00036864 _____ () C:\Advanced Wheel Mouse\wh_hook.dll
2010-09-07 20:38 - 2009-07-30 17:15 - 00503202 _____ () C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\sqlite3.dll
2013-12-12 08:53 - 2013-12-12 08:53 - 03559024 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll

==================== Alternate Data Streams (whitelisted) =========


==================== Safe Mode (whitelisted) ===================

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PEVSystemStart => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\procexp90.Sys => ""="Driver"

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (01/04/2014 04:54:46 AM) (Source: Application Hang) (User: )
Description: Program mbam.exe verze 1.75.0.1 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID procesu: 830

Čas spuštění: 01cf08cce64a6f18

Čas ukončení: 16

Cesta k aplikaci: D:\Downloads\PC léčení\Malwarebytes' Anti-Malware\mbam.exe

ID hlášení: c8aefcdd-74f3-11e3-ae20-6cf049b997b1

Error: (01/03/2014 10:30:47 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.


Details:
AddWin32ServiceFiles: Unable to back up image of service MBAMService since QueryServiceConfig API failed

System Error:
Systém nemůže nalézt uvedený soubor.
.

Error: (01/03/2014 10:30:47 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.


Details:
AddWin32ServiceFiles: Unable to back up image of service MBAMScheduler since QueryServiceConfig API failed

System Error:
Systém nemůže nalézt uvedený soubor.
.

Error: (01/03/2014 10:30:43 PM) (Source: VSS) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny ConvertStringSidToSid(S-1-5-21-3566760134-361650416-4126347671-1007.bak) došlo k neočekávané chybě. hr= 0x80070539, Struktura ID zabezpečení není platná.
.


Operace:
Událost OnIdentify
Shromažďování dat modulu pro zápis

Kontext:
Kontext spuštění: Shadow Copy Optimization Writer
ID třídy modulu pro zápis: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
Název modulu pro zápis: Shadow Copy Optimization Writer
ID instance modulu pro zápis: {f343f258-2612-4501-919f-ac37e62778c5}

Error: (01/03/2014 05:48:45 PM) (Source: NvStreamSvc) (User: )
Description: NvStreamSvcNvVAD initialization failed [6]

Error: (01/03/2014 05:48:45 PM) (Source: NvStreamSvc) (User: )
Description: NvStreamSvcFailed to set NvVAD endpoint as default Audio endpoint [0]

Error: (01/03/2014 03:50:23 PM) (Source: ESENT) (User: )
Description: wuaueng.dll (1156) SUS20ClientDataStore: Při otevírání souboru protokolu C:\Windows\SoftwareDistribution\DataStore\Logs\edb.log došlo k chybě -1811 (0xfffff8ed).

Error: (01/03/2014 03:48:49 PM) (Source: Application Error) (User: )
Description: Název chybující aplikace: KiesPDLR.exe, verze: 1.0.0.0, časové razítko: 0x503b1e7f
Název chybujícího modulu: KERNELBASE.dll, verze: 6.1.7601.18229, časové razítko: 0x51fb1116
Kód výjimky: 0xe0434352
Posun chyby: 0x0000c41f
ID chybujícího procesu: 0xf64
Čas spuštění chybující aplikace: 0xKiesPDLR.exe0
Cesta k chybující aplikaci: KiesPDLR.exe1
Cesta k chybujícímu modulu: KiesPDLR.exe2
ID zprávy: KiesPDLR.exe3

Error: (01/03/2014 03:48:48 PM) (Source: .NET Runtime) (User: )
Description: Aplikace: KiesPDLR.exe
Verze Framework: v4.0.30319
Popis: Proces byl ukončen z důvodu neošetřené výjimky.
Informace o výjimce: System.TypeInitializationException
Zásobník:
na KiesPDLR.App..ctor()
na KiesPDLR.App.Main()

Error: (01/03/2014 03:48:38 PM) (Source: NvStreamSvc) (User: )
Description: NvStreamSvcNvVAD initialization failed [6]


System errors:
=============
Error: (01/03/2014 05:48:17 PM) (Source: Service Control Manager) (User: )
Description: Služba Guardant Emulator Driver neuspěla při spuštění v důsledku následující chyby:
%%1275

Error: (01/03/2014 05:48:17 PM) (Source: Application Popup) (User: )
Description: Načtení \??\C:\Windows\SysWow64\Drivers\NSHE.SYS bylo zablokováno kvůli nekompatibilitě s tímto systémem. Požádejte dodavatele softwaru
o kompatibilní verzi ovladače.

Error: (01/03/2014 05:48:17 PM) (Source: Service Control Manager) (User: )
Description: Služba MBAMService neuspěla při spuštění v důsledku následující chyby:
%%2

Error: (01/03/2014 05:48:17 PM) (Source: Service Control Manager) (User: )
Description: Služba MBAMScheduler neuspěla při spuštění v důsledku následující chyby:
%%2

Error: (01/03/2014 05:17:27 PM) (Source: Service Control Manager) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (01/03/2014 04:59:08 PM) (Source: Service Control Manager) (User: )
Description: Služba JMB36X byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (01/03/2014 04:54:35 PM) (Source: Service Control Manager) (User: )
Description: Služba Služba HP CUE DeviceDiscovery byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (01/03/2014 04:54:35 PM) (Source: Service Control Manager) (User: )
Description: Služba hpqcxs08 byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (01/03/2014 03:48:13 PM) (Source: Service Control Manager) (User: )
Description: Služba Guardant Emulator Driver neuspěla při spuštění v důsledku následující chyby:
%%1275

Error: (01/03/2014 03:48:13 PM) (Source: Application Popup) (User: )
Description: Načtení \??\C:\Windows\SysWow64\Drivers\NSHE.SYS bylo zablokováno kvůli nekompatibilitě s tímto systémem. Požádejte dodavatele softwaru
o kompatibilní verzi ovladače.


Microsoft Office Sessions:
=========================

CodeIntegrity Errors:
===================================
Date: 2013-02-19 08:04:47.144
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\SysWOW64\FsUsbExDisk.Sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-02-19 08:04:47.052
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\SysWOW64\FsUsbExDisk.Sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-02-19 08:04:44.700
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\SysWOW64\FsUsbExDisk.Sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-02-19 08:04:44.611
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\SysWOW64\FsUsbExDisk.Sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-02-19 08:04:42.508
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\SysWOW64\FsUsbExDisk.Sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-02-19 08:04:42.419
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\SysWOW64\FsUsbExDisk.Sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-02-19 08:04:40.299
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\SysWOW64\FsUsbExDisk.Sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-02-19 08:04:40.208
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\SysWOW64\FsUsbExDisk.Sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-02-19 08:04:38.099
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\SysWOW64\FsUsbExDisk.Sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-02-19 08:04:38.009
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\SysWOW64\FsUsbExDisk.Sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Memory info ===========================

Percentage of memory in use: 45%
Total physical RAM: 4091.48 MB
Available physical RAM: 2236.38 MB
Total Pagefile: 8181.15 MB
Available Pagefile: 6140.22 MB
Total Virtual: 8192 MB
Available Virtual: 8191.79 MB

==================== Drives ================================

Drive c: (SYSTEM) (Fixed) (Total:372.6 GB) (Free:124.69 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: (DATA) (Fixed) (Total:931.51 GB) (Free:500.81 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows XP) (Size: 373 GB) (Disk ID: 2850284F)
Partition 1: (Active) - (Size=373 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (Size: 932 GB) (Disk ID: 856E1FCF)
Partition 1: (Not Active) - (Size=932 GB) - (Type=07 NTFS)

==================== End Of Log ============================

Soubor c:\windows\System32\termsrv.dll zkontrolujte online na www.virustotal.com. Výsledek oznamte.

pravděpodobně neškodný

Asi nezbude, než ten program vypnout, protože se s něčím bije. Ledaže byste věděl, co jset instaloval těsně před tím, než problém nastal. WMC se dá nahradit jiným programem, např: http://xbmc.org/ .

Díky. Jen ještě, jak WMC vypnout.
Prosím, můžete ještě udělat kontrolu PC, jestli není něčím infikován. Nejde mi do hlavy, že výše uvedené programy na skenování vždycky zamrzly - ComboFix, Malwarebytes Anti-Malware. Mám antivirus Microsoft Security Essentials tak jsem spustil úplnou kontrolu, už běží 26hod a pořád skenuje složku C:/Windows/SysWOW64. Je možné, že by měla přes 5mil. souborů a velikost přes 100GB?
Asi před 1/2rokem jste mi dělal preventivní sken a vše bylo OK: http://forum.viry.cz/viewtopic.php?f=13&t=131132

Skeny jsme dělali a důkladnější, než tehdy. Smazány byly opět pouze AdWary a zbytečnosti. Vypnutí WMC: Ovl. panely>programy a funkce>zapnout nebo vypnout funkce systému windows>funkce pro média a odškrtnout políčko u konkrétní položky.

Tak díky.
A co ta složka? Je to přesně toto, co už skenuje nějakých 32hod:(soubory mají koncovku .js)
C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5
velikost - viz obrázek 1 - není to nějak moc?

C:\Windows má celkem velikost
200GB, 3 165 225 souborů, 20 675 složek

To je dočasná složka internetu. Klidně její obsah smažte.

Jak jí mám smazat, když jí nevidím?