VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

win7 bluescreen

https://forum.viry.cz:443/viewtopic.php?t=107976

Stránka 1 z 1

win7 bluescreen

Napsal: 29 pro 2010 23:59
od pit
zdravím,
dneska mi v průběhu dne 3x spadly windowsy do bluescreenu, vždycky zničehonic, při přehrávání videa, prohlížení obrázků atd.
projel jsem kompletně všecko avirou, ta nic nenašla. takže na konci roku se na vás obracím s žádostí o kontrolu logu a případné rady, jak likvidovat možnou havěť. předem veliké díky!

tady log z RSIT:

Logfile of random's system information tool 1.08 (written by random/random)
Run by Petr Glajc at 2010-12-29 23:36:50
Microsoft Windows 7 Professional
System drive C: has 282 GB (61%) free of 459 GB
Total RAM: 3951 MB (67% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 23:36:52, on 29.12.2010
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16700)
Boot mode: Normal

Running processes:
c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe
C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\coreshredder.exe
C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files (x86)\VirtualCloneDrive\VCDDaemon.exe
C:\Program Files (x86)\_install\lecba\RSIT.exe
C:\Program Files (x86)\trend micro\Petr Glajc.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: BHO_Startup - {3134413B-49B4-425C-98A5-893C1F195601} - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll
O2 - BHO: HP ProtectTools Security Manager Extension - {395610AE-C624-4f58-B89E-23733EA00F9A} - c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpOtsPluginIe8.dll
O2 - BHO: Pomocná služba pro přihlášení ke službě Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O4 - HKLM\..\Run: [QLBController] C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe /start
O4 - HKLM\..\Run: [File Sanitizer] C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [IMSS] "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe"
O4 - HKLM\..\Run: [NortonOnlineBackupReminder] "C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NOBuActivation.exe" UNATTENDED
O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files (x86)\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [VirtualCloneDrive] "C:\Program Files (x86)\VirtualCloneDrive\VCDDaemon.exe" /s
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKCU\..\Run: [QIP2005] C:\Program Files (x86)\QIP\qip.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Send To Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: Send to &Bluetooth Device... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O15 - Trusted Zone: http://*.mcafee.com (HKLM)
O15 - Trusted Zone: http://betavscan.mcafeeasap.com (HKLM)
O15 - Trusted Zone: http://vs.mcafeeasap.com (HKLM)
O15 - Trusted Zone: http://www.mcafeeasap.com (HKLM)
O15 - ESC Trusted Zone: http://*.mcafee.com (HKLM)
O15 - ESC Trusted Zone: http://betavscan.mcafeeasap.com (HKLM)
O15 - ESC Trusted Zone: http://vs.mcafeeasap.com (HKLM)
O15 - ESC Trusted Zone: http://www.mcafeeasap.com (HKLM)
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - Winlogon Notify: DeviceNP - DeviceNP.dll (file missing)
O23 - Service: ActivIdentity Shared Store Service (ac.sharedstore) - ActivIdentity - C:\Program Files\Common Files\ActivIdentity\ac.sharedstore.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_b20011ea53a6b83e\AESTSr64.exe
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - LSI Corporation - C:\Program Files\LSI SoftModem\agr64svc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\windows\system32\atiesrxx.exe (file missing)
O23 - Service: Avira AntiVir Scheduler (AntiVirSchedulerService) - Avira GmbH - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: DEBridge - McAfee, Inc. - c:\Program Files\Hewlett-Packard\Drive Encryption\SbHpAuthenticatorService.exe
O23 - Service: @c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128 (DpHost) - DigitalPersona, Inc. - c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: HP ProtectTools Device Locking / Auditing (FLCDLOCK) - Hewlett-Packard Ltd - c:\Windows\SysWOW64\flcdlock.exe
O23 - Service: HP Health Check Service - Hewlett-Packard - C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: HP Power Assistant Service - Hewlett-Packard - C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe
O23 - Service: HP ProtectTools Service - Hewlett-Packard Development Company, L.P - c:\Program Files (x86)\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe
O23 - Service: HP Wireless Assistant Service - Hewlett-Packard - C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
O23 - Service: HP DayStarter Service (HPDayStarterService) - Hewlett-Packard Company - c:\Program Files\Hewlett-Packard\HP QuickLook\32-bit\HPDayStarterService.exe
O23 - Service: HP Quick Synchronization Service (HPDrvMntSvc.exe) - Hewlett-Packard Company - c:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
O23 - Service: Drive Encryption Service (HpFkCryptService) - McAfee, Inc. - c:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe
O23 - Service: File Sanitizer for HP ProtectTools (HPFSService) - Hewlett-Packard - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
O23 - Service: HP Hotkey Monitor (hpHotkeyMonitor) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe
O23 - Service: hpqwmiex - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: HP Service (hpsrv) - Unknown owner - C:\windows\system32\Hpservice.exe (file missing)
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: RoxMediaDB10 - Sonic Solutions - c:\Program Files (x86)\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: Audio Service (STacSV) - IDT, Inc. - C:\windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_b20011ea53a6b83e\STacSV64.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - c:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) - Validity Sensors, Inc. - C:\windows\system32\vcsFPService.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: TrueVector Internet Monitor (vsmon) - Check Point Software Technologies LTD - C:\Windows\SysWOW64\ZoneLabs\vsmon.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 13347 bytes

======Scheduled tasks folder======

C:\windows\tasks\HPCeeScheduleForPetr Glajc.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3134413B-49B4-425C-98A5-893C1F195601}]
File Sanitizer for HP ProtectTools - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll [2010-01-19 117248]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{395610AE-C624-4f58-B89E-23733EA00F9A}]
HP ProtectTools Security Manager Extension - c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpOtsPluginIe8.dll [2010-04-02 1471752]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení ke službě Windows Live ID - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2010-02-28 561552]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"QLBController"=C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe [2010-03-01 256056]
"File Sanitizer"=C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe [2010-01-19 11266048]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2010-04-21 98304]
"IMSS"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [2010-03-04 111640]
"NortonOnlineBackupReminder"=C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NOBuActivation.exe [2009-12-03 3331944]
"avgnt"=C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [2010-12-13 281768]
"ZoneAlarm Client"=C:\Program Files (x86)\Zone Labs\ZoneAlarm\zlclient.exe [2010-11-16 1043968]
"VirtualCloneDrive"=C:\Program Files (x86)\VirtualCloneDrive\VCDDaemon.exe [2009-06-17 85160]
"BCSSync"=C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [2010-03-13 91520]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"QIP2005"=C:\Program Files (x86)\QIP\qip.exe [2008-12-09 3259392]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files (x86)\WIDCOMM\Bluetooth Software\BTTray.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\DeviceNP]
C:\windows\system32\DeviceNP.dll [2009-12-07 75320]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=DPPassFilter
scecli

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vsmon]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 months======

2010-12-29 23:36:50 ----D---- C:\rsit
2010-12-29 13:21:36 ----D---- C:\Program Files (x86)\trend micro
2010-12-28 11:18:57 ----ASH---- C:\windows\SysWOW64\KGyGaAvL.sys
2010-12-28 11:18:05 ----D---- C:\Program Files (x86)\Common Files\Corel
2010-12-28 11:15:58 ----D---- C:\Program Files (x86)\Corel Paint Shop Pro X
2010-12-28 11:12:38 ----D---- C:\Users\Petr Glajc\AppData\Roaming\Skype
2010-12-27 15:04:27 ----D---- C:\ProgramData\FLEXnet
2010-12-27 14:45:52 ----D---- C:\Users\Petr Glajc\AppData\Roaming\Autodesk
2010-12-27 14:45:48 ----D---- C:\Program Files (x86)\Common Files\Autodesk Shared
2010-12-27 14:45:22 ----D---- C:\ProgramData\Autodesk
2010-12-27 13:39:16 ----D---- C:\Users\Petr Glajc\AppData\Roaming\Corel
2010-12-26 22:52:36 ----D---- C:\windows\Minidump
2010-12-26 18:44:44 ----AD---- C:\ProgramData\TEMP
2010-12-26 18:21:28 ----D---- C:\Program Files (x86)\Microsoft Synchronization Services
2010-12-26 18:20:53 ----D---- C:\windows\PCHEALTH
2010-12-26 18:15:38 ----D---- C:\Program Files (x86)\Microsoft Analysis Services
2010-12-26 18:14:57 ----D---- C:\Program Files (x86)\Microsoft Office
2010-12-26 18:14:25 ----RHD---- C:\MSOCache
2010-12-26 10:35:01 ----D---- C:\Program Files (x86)\VirtualCloneDrive
2010-12-25 21:38:11 ----D---- C:\Program Files (x86)\Microsoft WSE
2010-12-25 21:32:17 ----A---- C:\windows\SysWOW64\D3DX9_37.dll
2010-12-25 21:32:17 ----A---- C:\windows\SysWOW64\d3dx10_37.dll
2010-12-25 21:32:17 ----A---- C:\windows\SysWOW64\D3DCompiler_37.dll
2010-12-25 21:30:55 ----D---- C:\Program Files (x86)\Common Files\Designer
2010-12-25 20:33:15 ----D---- C:\Program Files (x86)\_install
2010-12-25 20:20:16 ----D---- C:\Mp3
2010-12-25 20:19:28 ----D---- C:\Download
2010-12-25 20:18:34 ----D---- C:\Seriály
2010-12-25 20:17:53 ----D---- C:\Video
2010-12-25 20:17:05 ----D---- C:\Galerie
2010-12-25 20:16:37 ----D---- C:\Dokumenty
2010-12-25 20:02:59 ----D---- C:\Program Files (x86)\MATLAB R2008b
2010-12-25 18:45:32 ----D---- C:\Users\Petr Glajc\AppData\Roaming\MathWorks
2010-12-25 17:00:36 ----D---- C:\ProgramData\ACD Systems
2010-12-25 17:00:24 ----D---- C:\Program Files (x86)\Common Files\ACD Systems
2010-12-25 17:00:24 ----D---- C:\Program Files (x86)\ACD Systems
2010-12-25 16:01:55 ----A---- C:\windows\AutoKMS.ini
2010-12-25 15:50:45 ----D---- C:\Program Files (x86)\MSXML 4.0
2010-12-25 14:48:04 ----D---- C:\Program Files (x86)\Microsoft.NET
2010-12-25 14:45:55 ----D---- C:\ProgramData\Microsoft Help
2010-12-25 14:24:41 ----D---- C:\windows\SysWOW64\Wat
2010-12-25 14:07:43 ----D---- C:\Users\Petr Glajc\AppData\Roaming\ACD Systems
2010-12-25 13:31:14 ----D---- C:\Users\Petr Glajc\AppData\Roaming\Design Science
2010-12-25 13:15:25 ----A---- C:\windows\SysWOW64\PresentationHostProxy.dll
2010-12-25 13:15:25 ----A---- C:\windows\SysWOW64\PresentationHost.exe
2010-12-25 13:15:25 ----A---- C:\windows\SysWOW64\netfxperf.dll
2010-12-25 13:15:25 ----A---- C:\windows\SysWOW64\mscoree.dll
2010-12-25 13:15:25 ----A---- C:\windows\SysWOW64\dfshim.dll
2010-12-25 13:10:37 ----D---- C:\windows\cs
2010-12-25 13:10:04 ----D---- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2010-12-25 13:09:40 ----D---- C:\Program Files (x86)\Windows Live
2010-12-25 13:09:18 ----A---- C:\windows\SysWOW64\XAudio2_5.dll
2010-12-25 13:09:18 ----A---- C:\windows\SysWOW64\XAPOFX1_3.dll
2010-12-25 13:09:18 ----A---- C:\windows\SysWOW64\d3dx10_42.dll
2010-12-25 13:06:33 ----D---- C:\Program Files (x86)\Common Files\Windows Live
2010-12-25 13:06:06 ----A---- C:\windows\SysWOW64\WMVDECOD.DLL
2010-12-25 13:06:06 ----A---- C:\windows\SysWOW64\mfreadwrite.dll
2010-12-25 13:06:05 ----A---- C:\windows\SysWOW64\mf.dll
2010-12-25 12:58:32 ----A---- C:\windows\SysWOW64\NMSDVDXU.dll
2010-12-25 12:58:17 ----D---- C:\Program Files (x86)\LG PC Suite II
2010-12-25 12:58:05 ----D---- C:\Users\Petr Glajc\AppData\Roaming\InstallShield
2010-12-25 12:36:54 ----D---- C:\ProgramData\VirtualizedApplications
2010-12-25 12:33:40 ----A---- C:\windows\SysWOW64\WMIMPLEX.dll
2010-12-25 12:33:40 ----A---- C:\windows\SysWOW64\maplecompat.dll
2010-12-25 12:33:40 ----A---- C:\windows\SysWOW64\maplec.dll
2010-12-25 12:33:36 ----D---- C:\watcom-1.3
2010-12-25 12:32:54 ----HD---- C:\Program Files (x86)\Zero G Registry
2010-12-25 12:32:54 ----D---- C:\Program Files (x86)\Maple 12
2010-12-25 12:14:53 ----A---- C:\windows\winamp.ini
2010-12-25 12:09:43 ----D---- C:\Program Files (x86)\PDFCreator
2010-12-25 12:09:43 ----A---- C:\windows\SysWOW64\MSMPIDE.DLL
2010-12-25 11:58:42 ----D---- C:\Users\Petr Glajc\AppData\Roaming\Opera
2010-12-25 11:58:41 ----D---- C:\Program Files (x86)\Opera
2010-12-25 11:58:03 ----D---- C:\ProgramData\InstallShield
2010-12-25 11:57:46 ----D---- C:\windows\SysWOW64\Spool
2010-12-25 11:57:18 ----A---- C:\windows\SysWOW64\tzres.dll
2010-12-25 11:57:13 ----A---- C:\windows\SysWOW64\StructuredQuery.dll
2010-12-25 11:57:06 ----A---- C:\windows\SysWOW64\shell32.dll
2010-12-25 11:57:05 ----A---- C:\windows\SysWOW64\inetcomm.dll
2010-12-25 11:57:02 ----A---- C:\windows\SysWOW64\comctl32.dll
2010-12-25 11:57:01 ----A---- C:\windows\SysWOW64\schannel.dll
2010-12-25 11:57:00 ----A---- C:\windows\SysWOW64\ntoskrnl.exe
2010-12-25 11:57:00 ----A---- C:\windows\SysWOW64\ntkrnlpa.exe
2010-12-25 11:56:58 ----A---- C:\windows\SysWOW64\sscore.dll
2010-12-25 11:56:58 ----A---- C:\windows\SysWOW64\oleaut32.dll
2010-12-25 11:56:56 ----A---- C:\windows\SysWOW64\ole32.dll
2010-12-25 11:56:50 ----A---- C:\windows\SysWOW64\wmpmde.dll
2010-12-25 11:56:46 ----A---- C:\windows\SysWOW64\mshtml.dll
2010-12-25 11:56:46 ----A---- C:\windows\SysWOW64\iertutil.dll
2010-12-25 11:56:46 ----A---- C:\windows\SysWOW64\ieframe.dll
2010-12-25 11:56:45 ----A---- C:\windows\SysWOW64\mstime.dll
2010-12-25 11:56:44 ----A---- C:\windows\SysWOW64\wininet.dll
2010-12-25 11:56:44 ----A---- C:\windows\SysWOW64\urlmon.dll
2010-12-25 11:56:44 ----A---- C:\windows\SysWOW64\msfeeds.dll
2010-12-25 11:56:44 ----A---- C:\windows\SysWOW64\licmgr10.dll
2010-12-25 11:56:44 ----A---- C:\windows\SysWOW64\iepeers.dll
2010-12-25 11:56:44 ----A---- C:\windows\SysWOW64\iedkcs32.dll
2010-12-25 11:56:43 ----A---- C:\windows\SysWOW64\mshtmled.dll
2010-12-25 11:56:43 ----A---- C:\windows\SysWOW64\msfeedssync.exe
2010-12-25 11:56:43 ----A---- C:\windows\SysWOW64\msfeedsbs.dll
2010-12-25 11:56:43 ----A---- C:\windows\SysWOW64\jsproxy.dll
2010-12-25 11:56:43 ----A---- C:\windows\SysWOW64\ieui.dll
2010-12-25 11:56:38 ----A---- C:\windows\SysWOW64\ntdll.dll
2010-12-25 11:56:37 ----A---- C:\windows\SysWOW64\webio.dll
2010-12-25 11:56:36 ----A---- C:\windows\SysWOW64\atmlib.dll
2010-12-25 11:56:36 ----A---- C:\windows\SysWOW64\atmfd.dll
2010-12-25 11:56:35 ----A---- C:\windows\SysWOW64\CPFilters.dll
2010-12-25 11:56:33 ----A---- C:\windows\SysWOW64\rtutils.dll
2010-12-25 11:56:27 ----A---- C:\windows\SysWOW64\iccvid.dll
2010-12-25 11:56:24 ----A---- C:\windows\SysWOW64\msxml3.dll
2010-12-25 11:56:22 ----A---- C:\windows\SysWOW64\mfc40u.dll
2010-12-25 11:56:22 ----A---- C:\windows\SysWOW64\mfc40.dll
2010-12-25 11:56:18 ----A---- C:\windows\SysWOW64\wmp.dll
2010-12-25 11:56:17 ----A---- C:\windows\SysWOW64\wmploc.DLL
2010-12-25 11:56:17 ----A---- C:\windows\SysWOW64\t2embed.dll
2010-12-25 11:56:00 ----A---- C:\windows\SysWOW64\taskschd.dll
2010-12-25 11:56:00 ----A---- C:\windows\SysWOW64\taskeng.exe
2010-12-25 11:56:00 ----A---- C:\windows\SysWOW64\taskcomp.dll
2010-12-25 11:56:00 ----A---- C:\windows\SysWOW64\schtasks.exe
2010-12-25 11:50:14 ----D---- C:\Users\Petr Glajc\AppData\Roaming\ImgBurn
2010-12-25 11:49:54 ----D---- C:\Program Files (x86)\ImgBurn
2010-12-25 11:43:58 ----D---- C:\Users\Petr Glajc\AppData\Roaming\Winamp
2010-12-25 11:43:58 ----D---- C:\Program Files (x86)\Winamp
2010-12-25 11:39:21 ----D---- C:\Users\Petr Glajc\AppData\Roaming\vlc
2010-12-25 11:37:55 ----D---- C:\Users\Petr Glajc\AppData\Roaming\uTorrent
2010-12-25 11:35:48 ----D---- C:\Program Files (x86)\VLC
2010-12-25 11:35:47 ----D---- C:\Program Files (x86)\WinRAR
2010-12-25 11:35:43 ----D---- C:\Program Files (x86)\Virtual Dub
2010-12-25 11:35:43 ----D---- C:\Program Files (x86)\uTorrent
2010-12-25 11:35:19 ----D---- C:\Program Files (x86)\QIP
2010-12-25 11:34:11 ----D---- C:\Users\Petr Glajc\AppData\Roaming\LG Electronics
2010-12-25 11:32:20 ----D---- C:\Program Files (x86)\JPEG Resizer
2010-12-25 11:31:05 ----D---- C:\Program Files (x86)\DOSBox-0.74
2010-12-25 11:30:59 ----D---- C:\Program Files (x86)\dBpowerAMP
2010-12-25 11:28:23 ----D---- C:\Program Files (x86)\CCleaner
2010-12-25 11:27:55 ----D---- C:\Program Files (x86)\Audacity
2010-12-25 11:24:44 ----D---- C:\Program Files (x86)\Common Files\Adobe
2010-12-25 11:22:50 ----D---- C:\Program Files (x86)\Adobe
2010-12-25 11:18:54 ----D---- C:\Program Files (x86)\Total Commander
2010-12-25 11:14:45 ----D---- C:\Games
2010-12-25 04:07:59 ----D---- C:\windows\rescache
2010-12-25 04:06:07 ----ASH---- C:\pagefile.sys
2010-12-25 00:12:06 ----A---- C:\windows\SysWOW64\vsregexp.dll
2010-12-25 00:11:41 ----A---- C:\windows\SysWOW64\zlcommdb.dll
2010-12-25 00:11:41 ----A---- C:\windows\SysWOW64\zlcomm.dll
2010-12-25 00:11:38 ----A---- C:\windows\SysWOW64\vswmi.dll
2010-12-25 00:11:37 ----A---- C:\windows\SysWOW64\zpeng25.dll
2010-12-25 00:11:37 ----A---- C:\windows\SysWOW64\vsxml.dll
2010-12-25 00:11:36 ----D---- C:\windows\SysWOW64\ZoneLabs
2010-12-25 00:11:36 ----A---- C:\windows\SysWOW64\vspubapi.dll
2010-12-25 00:11:36 ----A---- C:\windows\SysWOW64\vsmonapi.dll
2010-12-25 00:11:36 ----A---- C:\windows\SysWOW64\vsdata.dll
2010-12-25 00:11:32 ----D---- C:\Program Files (x86)\Zone Labs
2010-12-25 00:11:03 ----D---- C:\ProgramData\CheckPoint
2010-12-25 00:11:02 ----D---- C:\windows\Internet Logs
2010-12-25 00:11:02 ----A---- C:\windows\SysWOW64\vsutil.dll
2010-12-25 00:11:02 ----A---- C:\windows\SysWOW64\vsinit.dll
2010-12-25 00:09:40 ----D---- C:\Users\Petr Glajc\AppData\Roaming\Avira
2010-12-25 00:05:59 ----D---- C:\ProgramData\Avira
2010-12-25 00:05:59 ----D---- C:\Program Files (x86)\Avira
2010-12-25 00:02:03 ----A---- C:\windows\myClean.bat
2010-12-24 23:59:06 ----D---- C:\Users\Petr Glajc\AppData\Roaming\Mozilla
2010-12-24 23:45:02 ----A---- C:\windows\wcx_ftp.ini
2010-12-24 23:44:03 ----A---- C:\windows\wincmd.ini
2010-12-24 23:44:03 ----A---- C:\windows\UC.PIF
2010-12-24 23:44:03 ----A---- C:\windows\RAR.PIF
2010-12-24 23:44:03 ----A---- C:\windows\PKZIP.PIF
2010-12-24 23:44:03 ----A---- C:\windows\PKUNZIP.PIF
2010-12-24 23:44:03 ----A---- C:\windows\NOCLOSE.PIF
2010-12-24 23:44:03 ----A---- C:\windows\LHA.PIF
2010-12-24 23:44:03 ----A---- C:\windows\ARJ.PIF
2010-12-24 23:12:59 ----D---- C:\ProgramData\Norton
2010-12-24 21:57:15 ----D---- C:\ProgramData\LightScribe
2010-12-24 20:51:58 ----D---- C:\Users\Petr Glajc\AppData\Roaming\Macromedia
2010-12-24 20:30:46 ----D---- C:\Users\Petr Glajc\AppData\Roaming\SoftGrid Client
2010-12-24 20:30:13 ----A---- C:\windows\SysWOW64\PerfStringBackup.INI
2010-12-24 20:29:50 ----D---- C:\Users\Petr Glajc\AppData\Roaming\TP
2010-12-24 20:24:26 ----D---- C:\Users\Petr Glajc\AppData\Roaming\ATI
2010-12-24 20:24:26 ----D---- C:\ProgramData\ATI
2010-12-24 20:24:11 ----D---- C:\Users\Petr Glajc\AppData\Roaming\Adobe
2010-12-24 20:22:46 ----D---- C:\Users\Petr Glajc\AppData\Roaming\Identities
2010-12-24 20:17:11 ----D---- C:\Users\Petr Glajc\AppData\Roaming\Hewlett-Packard
2010-12-24 20:16:41 ----D---- C:\ProgramData\Symantec
2010-12-24 20:16:41 ----D---- C:\Program Files (x86)\Symantec
2010-12-24 20:13:43 ----SHD---- C:\HPMBackup
2010-12-24 20:12:59 ----D---- C:\Users\Petr Glajc\AppData\Roaming\hpqLog
2010-12-24 20:11:57 ----D---- C:\ProgramData\WinZip
2010-12-24 20:11:25 ----D---- C:\Users\Petr Glajc\AppData\Roaming\DigitalPersona
2010-12-24 20:11:10 ----SD---- C:\Users\Petr Glajc\AppData\Roaming\Microsoft
2010-12-24 20:10:34 ----ASH---- C:\hiberfil.sys

======List of files/folders modified in the last 1 months======

2010-12-29 23:36:52 ----D---- C:\windows\Temp
2010-12-29 23:33:07 ----D---- C:\Windows
2010-12-29 23:21:45 ----D---- C:\ProgramData\HPQLOG
2010-12-29 23:21:37 ----A---- C:\windows\SysWOW64\log.txt
2010-12-29 23:18:41 ----HD---- C:\ProgramData
2010-12-29 22:06:21 ----SHD---- C:\System Volume Information
2010-12-29 13:21:36 ----RD---- C:\Program Files (x86)
2010-12-29 13:20:37 ----D---- C:\windows\debug
2010-12-29 12:40:18 ----D---- C:\windows\Prefetch
2010-12-29 12:16:35 ----D---- C:\windows\System32
2010-12-29 12:16:35 ----D---- C:\windows\inf
2010-12-28 11:39:16 ----D---- C:\windows\Microsoft.NET
2010-12-28 11:39:06 ----RSD---- C:\windows\assembly
2010-12-28 11:18:57 ----D---- C:\windows\SysWOW64
2010-12-28 11:18:31 ----SHD---- C:\windows\Installer
2010-12-28 11:18:05 ----D---- C:\Program Files (x86)\Common Files
2010-12-28 11:04:52 ----D---- C:\windows\Tasks
2010-12-28 11:02:59 ----D---- C:\windows\registration
2010-12-28 11:02:55 ----D---- C:\windows\winsxs
2010-12-28 11:00:42 ----HD---- C:\swsetup
2010-12-28 11:00:40 ----RHD---- C:\Program Files
2010-12-28 10:57:49 ----D---- C:\windows\Logs
2010-12-26 18:22:24 ----RSD---- C:\windows\Fonts
2010-12-26 18:22:15 ----D---- C:\Program Files (x86)\Common Files\microsoft shared
2010-12-26 18:18:53 ----SD---- C:\ProgramData\Microsoft
2010-12-26 18:16:07 ----D---- C:\windows\ShellNew
2010-12-25 16:35:08 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2010-12-25 16:09:55 ----A---- C:\windows\win.ini
2010-12-25 16:07:11 ----D---- C:\windows\SysWOW64\en-US
2010-12-25 14:24:58 ----D---- C:\windows\SysWOW64\sl-SI
2010-12-25 14:24:58 ----D---- C:\windows\SysWOW64\sk-SK
2010-12-25 14:24:58 ----D---- C:\windows\SysWOW64\hr-HR
2010-12-25 14:24:58 ----D---- C:\windows\SysWOW64\cs-CZ
2010-12-25 14:24:56 ----D---- C:\Program Files (x86)\Internet Explorer
2010-12-25 14:24:51 ----D---- C:\windows\ehome
2010-12-25 14:24:51 ----D---- C:\Program Files (x86)\Windows Mail
2010-12-25 14:24:40 ----D---- C:\windows\AppPatch
2010-12-25 14:24:38 ----D---- C:\Program Files (x86)\Windows Media Player
2010-12-25 14:24:36 ----D---- C:\windows\SysWOW64\migration
2010-12-25 12:59:54 ----D---- C:\windows\ModemLogs
2010-12-25 12:58:31 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2010-12-25 11:57:42 ----D---- C:\windows\Downloaded Program Files
2010-12-25 11:57:41 ----D---- C:\Program Files (x86)\Common Files\InstallShield
2010-12-25 10:42:46 ----RD---- C:\Users
2010-12-25 04:06:39 ----D---- C:\windows\Panther
2010-12-25 00:11:36 ----D---- C:\windows\SysWOW64\drivers
2010-12-25 00:00:03 ----D---- C:\Program Files (x86)\Bing Bar Installer
2010-12-24 20:42:25 ----HD---- C:\SYSTEM.SAV
2010-12-24 20:22:44 ----SHD---- C:\$Recycle.Bin
2010-12-24 20:17:08 ----RD---- C:\Program Files (x86)\Online Services
2010-12-24 20:16:56 ----D---- C:\Program Files (x86)\Windows Sidebar
2010-12-24 20:15:33 ----D---- C:\windows\SoftwareDistribution
2010-12-24 20:13:53 ----D---- C:\ProgramData\Hewlett-Packard

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 hpdskflt;HP Filter; C:\windows\system32\DRIVERS\hpdskflt.sys []
R0 iaStor;Intel AHCI Controller; C:\windows\system32\DRIVERS\iaStor.sys []
R0 PxHlpa64;PxHlpa64; C:\windows\System32\Drivers\PxHlpa64.sys []
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys []
R0 SafeBoot;SafeBoot; C:\windows\SysWOW64\drivers\SafeBoot.sys [2010-02-02 110520]
R0 SbAlg;SbAlg; C:\windows\SysWOW64\drivers\SbAlg.sys [2010-02-02 51800]
R0 SbFsLock;SbFsLock; C:\windows\SysWOW64\drivers\SbFsLock.sys [2010-02-02 13256]
R1 avipbb;avipbb; C:\windows\system32\DRIVERS\avipbb.sys []
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\windows\system32\drivers\csc.sys []
R1 ElbyCDIO;ElbyCDIO Driver; C:\windows\System32\Drivers\ElbyCDIO.sys []
R1 RsvLock;RsvLock; C:\windows\SysWOW64\drivers\RsvLock.sys [2010-02-02 40088]
R1 vpcnfltr;Virtual PC Network Filter Driver; C:\windows\system32\DRIVERS\vpcnfltr.sys []
R1 vpcvmm;@%SystemRoot%\system32\drivers\vpcvmm.sys,-100; C:\windows\system32\drivers\vpcvmm.sys []
R1 Vsdatant;Zone Alarm Firewall Driver; C:\windows\system32\DRIVERS\vsdatant.sys []
R1 vwififlt;Virtual WiFi Filter Driver; C:\windows\system32\DRIVERS\vwififlt.sys []
R2 avgntflt;avgntflt; C:\windows\system32\DRIVERS\avgntflt.sys []
R2 rimspci;rimspci; C:\windows\system32\DRIVERS\rimspe64.sys []
R2 risdpcie;risdpcie; C:\windows\system32\DRIVERS\risdpe64.sys []
R2 rixdpcie;rixdpcie; C:\windows\system32\DRIVERS\rixdpe64.sys []
R3 Accelerometer;HP Accelerometer; C:\windows\system32\DRIVERS\Accelerometer.sys []
R3 AgereSoftModem;Agere Systems Soft Modem; C:\windows\system32\DRIVERS\agrsm64.sys []
R3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\windows\system32\drivers\AtiHdmi.sys []
R3 atikmdag;atikmdag; C:\windows\system32\DRIVERS\atikmdag.sys []
R3 BCM43XX;Broadcom 802.11 Network Adapter Driver; C:\windows\system32\DRIVERS\bcmwl664.sys []
R3 e1kexpress;Intel(R) PRO/1000 PCI Express Network Connection Driver K; C:\windows\system32\DRIVERS\e1k62x64.sys []
R3 HECIx64;Intel(R) Management Engine Interface; C:\windows\system32\DRIVERS\HECIx64.sys []
R3 HpqKbFiltr;HpqKbFilter Driver; C:\windows\system32\DRIVERS\HpqKbFiltr.sys []
R3 Impcd;Impcd; C:\windows\system32\DRIVERS\Impcd.sys []
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\windows\system32\DRIVERS\snp2uvc.sys []
R3 STHDA;IDT High Definition Audio CODEC; C:\windows\system32\DRIVERS\stwrt64.sys []
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys []
R3 TPM;TPM; C:\windows\system32\drivers\tpm.sys []
R3 VClone;VClone; C:\windows\system32\DRIVERS\VClone.sys []
R3 vpcbus;Virtual PC Host Bus Service; C:\windows\system32\DRIVERS\vpchbus.sys []
R3 vpcusb;USB Virtualization Connector Service; C:\windows\system32\DRIVERS\vpcusb.sys []
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\windows\system32\DRIVERS\vwifimp.sys []
R3 WinUSB;WinUSB Service; C:\windows\system32\DRIVERS\WinUSB.sys []
S3 BthEnum;Bluetooth Request Block Driver; C:\windows\system32\DRIVERS\BthEnum.sys []
S3 BthPan;Bluetooth Device (Personal Area Network); C:\windows\system32\DRIVERS\bthpan.sys []
S3 BTHPORT;Bluetooth Port Driver; C:\windows\System32\Drivers\BTHport.sys []
S3 BTHUSB;Bluetooth Radio USB Driver; C:\windows\System32\Drivers\BTHUSB.sys []
S3 btwaudio;Bluetooth Audio Device Service; C:\windows\system32\drivers\btwaudio.sys []
S3 btwavdt;Bluetooth AVDT Service; C:\windows\system32\DRIVERS\btwavdt.sys []
S3 btwl2cap;Bluetooth L2CAP Service; C:\windows\system32\DRIVERS\btwl2cap.sys []
S3 btwrchid;btwrchid; C:\windows\system32\DRIVERS\btwrchid.sys []
S3 DAMDrv;DAMDrv; C:\windows\system32\DRIVERS\DAMDrv64.sys []
S3 NETw5s64;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 64 Bit; C:\windows\system32\DRIVERS\NETw5s64.sys []
S3 pciide;pciide; C:\windows\system32\DRIVERS\pciide.sys []
S3 RDPDR;Terminal Server Device Redirector Driver; C:\windows\System32\drivers\rdpdr.sys []
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\system32\DRIVERS\rfcomm.sys []
S3 s3cap;s3cap; C:\windows\system32\DRIVERS\vms3cap.sys []
S3 sdbus;sdbus; C:\windows\system32\DRIVERS\sdbus.sys []
S3 storvsc;storvsc; C:\windows\system32\DRIVERS\storvsc.sys []
S3 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\windows\system32\DRIVERS\vmbus.sys []
S3 VMBusHID;VMBusHID; C:\windows\system32\DRIVERS\VMBusHID.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ac.sharedstore;ActivIdentity Shared Store Service; C:\Program Files\Common Files\ActivIdentity\ac.sharedstore.exe [2009-06-04 277032]
R2 AESTFilters;Andrea ST Filters Service; C:\windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_b20011ea53a6b83e\AESTSr64.exe [2009-03-03 89600]
R2 AgereModemAudio;Agere Modem Call Progress Audio; C:\Program Files\LSI SoftModem\agr64svc.exe [2010-01-21 16896]
R2 AMD External Events Utility;AMD External Events Utility; C:\windows\system32\atiesrxx.exe []
R2 AntiVirService;Avira AntiVir Guard; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [2010-12-13 267944]
R2 AntiVirSchedulerService;Avira AntiVir Scheduler; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [2010-12-13 135336]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2009-12-29 873248]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\windows\System32\svchost.exe [2009-07-14 20992]
R2 DpHost;@c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128; c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [2010-03-31 462088]
R2 HP Health Check Service;HP Health Check Service; C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe [2010-03-24 121344]
R2 HP Power Assistant Service;HP Power Assistant Service; C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe [2010-04-05 103992]
R2 HP ProtectTools Service;HP ProtectTools Service; c:\Program Files (x86)\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe [2010-03-17 36864]
R2 HP Wireless Assistant Service;HP Wireless Assistant Service; C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe [2010-04-05 103992]
R2 HPDayStarterService;HP DayStarter Service; c:\Program Files\Hewlett-Packard\HP QuickLook\32-bit\HPDayStarterService.exe [2010-06-14 90112]
R2 HPDrvMntSvc.exe;HP Quick Synchronization Service; c:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2009-12-10 251448]
R2 HpFkCryptService;Drive Encryption Service; c:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe [2010-02-02 281192]
R2 HPFSService;File Sanitizer for HP ProtectTools; C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe [2010-01-19 297984]
R2 hpHotkeyMonitor;HP Hotkey Monitor; C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe [2010-03-01 264248]
R2 hpsrv;HP Service; C:\windows\system32\Hpservice.exe []
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2010-01-08 354840]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [2010-02-22 73728]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-03-04 268824]
R2 STacSV;Audio Service; C:\windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_b20011ea53a6b83e\STacSV64.exe [2010-03-17 244736]
R2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-03-04 2320920]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 2286976]
R3 DEBridge;DEBridge; c:\Program Files\Hewlett-Packard\Drive Encryption\SbHpAuthenticatorService.exe [2010-02-02 704512]
R3 hpqwmiex;hpqwmiex; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe [2010-02-08 230968]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 vcsFPService;Validity VCS Fingerprint Service; C:\windows\system32\vcsFPService.exe [2010-02-18 1664304]
S2 vsmon;TrueVector Internet Monitor; C:\Windows\SysWOW64\ZoneLabs\vsmon.exe [2010-11-16 2435592]
S3 AppMgmt;@appmgmts.dll,-3250; C:\windows\system32\svchost.exe [2009-07-14 20992]
S3 FLCDLOCK;HP ProtectTools Device Locking / Auditing; c:\Windows\SysWOW64\flcdlock.exe [2009-12-07 362040]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\windows\System32\svchost.exe [2009-07-14 20992]
S3 RoxMediaDB10;RoxMediaDB10; c:\Program Files (x86)\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe [2009-11-23 1120752]
S3 stllssvr;stllssvr; c:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe [2009-10-16 74392]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\windows\System32\svchost.exe [2009-07-14 20992]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\windows\System32\svchost.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\windows\system32\Wat\WatAdminSvc.exe []

-----------------EOF-----------------

Re: win7 bluescreen

Napsal: 30 pro 2010 17:27
od Rudy
Log vypadá čistý. Co bylo napsáno na té modré obrazovce?

Re: win7 bluescreen

Napsal: 30 pro 2010 17:56
od pit
zdravím,

modrou obrazovku jsem si bohužel nestihl komplet přečíst, jenom se vypsala tuším RAMka na disk a za 10 sekund restart. koukal jsem do složky c:/windows/minidump, ale ta je prázdná, to samé i v nouzovém režimu.

dneska mi ntb frčí celý den a zatím žádný pád. kdyby to náhodou zase padlo, tak zkusím pořídit nějakej obrázek nebo aspoň popis..

každopádně pokud je log čistý, tak děkuju moc za ochotu a čas! :)

Re: win7 bluescreen

Napsal: 30 pro 2010 18:13
od Rudy
Nemáte zač a případně se ozvěte.

Re: win7 bluescreen

Napsal: 02 led 2011 16:30
od pit
krásný nový rok přeju.
bohužel před chvilkou došlo k dalšímu pádu, zase z ničeho nic. bluescreen jsem stihl vyfotit, ale z fotky nejde nic přečíst, bylo to moc narychlo. pc se pak restartoval a naběhl mi "OS", který jsem na notebooku ještě neviděl.
P020111_15.510002.JPG
P020111_15.510002.JPG (24.76 KiB) Zobrazeno 1579 x
při startu po mně chtěl nastavení jazyka a času. poté jsem dal vlevo dole vypnout
P020111_15.500002.JPG
P020111_15.500002.JPG (23.51 KiB) Zobrazeno 1579 x
-> vypnout napájení.
P020111_15.500001.JPG
P020111_15.500001.JPG (30.88 KiB) Zobrazeno 1579 x
pc dlouhou dobu nic nedělal, tak jsem ho natvrdo přes powerbutton vypnul. po novém zapnutí byla dlouho vidět jen černá obrazovka, pak začal větrák chlazení hučet jak o život a cca po 3 sekundách se pc opět sám od sebe vypnul. po zapnutí do třetice už normálně nabootovaly windowsy.

tady je info z okna, který mi naběhlo po startu:[/color]
Podpis problému:
Název události problému: BlueScreen
Verze operačního systému: 6.1.7600.2.0.0.256.48
ID národního prostředí: 1029

Další informace o problému:
BCCode: 7f
BCP1: 0000000000000008
BCP2: 0000000080050033
BCP3: 00000000000006F8
BCP4: FFFFF80002E95EC0
OS Version: 6_1_7600
Service Pack: 0_0
Product: 256_1

Soubory, které popisují problém:
C:\Windows\Minidump\010211-30201-01.dmp
C:\Users\Petr Glajc\AppData\Local\Temp\WER-39624-0.sysdata.xml

tady přikládám nový log. jestli i tento bude čistý, omlouvám se za marnění vašeho času.

Logfile of random's system information tool 1.08 (written by random/random)
Run by Petr Glajc at 2011-01-02 16:21:41
Microsoft Windows 7 Professional
System drive C: has 294 GB (64%) free of 459 GB
Total RAM: 3951 MB (64% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:21:43, on 2.1.2011
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16700)
Boot mode: Normal

Running processes:
c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe
C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\coreshredder.exe
C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files (x86)\VirtualCloneDrive\VCDDaemon.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe
C:\Program Files\trend micro\Petr Glajc.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: BHO_Startup - {3134413B-49B4-425C-98A5-893C1F195601} - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll
O2 - BHO: HP ProtectTools Security Manager Extension - {395610AE-C624-4f58-B89E-23733EA00F9A} - c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpOtsPluginIe8.dll
O2 - BHO: Pomocná služba pro přihlášení ke službě Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O4 - HKLM\..\Run: [QLBController] C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe /start
O4 - HKLM\..\Run: [File Sanitizer] C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [IMSS] "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe"
O4 - HKLM\..\Run: [NortonOnlineBackupReminder] "C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NOBuActivation.exe" UNATTENDED
O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files (x86)\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [VirtualCloneDrive] "C:\Program Files (x86)\VirtualCloneDrive\VCDDaemon.exe" /s
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKCU\..\Run: [QIP2005] C:\Program Files (x86)\QIP\qip.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Send To Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: Send to &Bluetooth Device... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O15 - Trusted Zone: http://*.mcafee.com (HKLM)
O15 - Trusted Zone: http://betavscan.mcafeeasap.com (HKLM)
O15 - Trusted Zone: http://vs.mcafeeasap.com (HKLM)
O15 - Trusted Zone: http://www.mcafeeasap.com (HKLM)
O15 - ESC Trusted Zone: http://*.mcafee.com (HKLM)
O15 - ESC Trusted Zone: http://betavscan.mcafeeasap.com (HKLM)
O15 - ESC Trusted Zone: http://vs.mcafeeasap.com (HKLM)
O15 - ESC Trusted Zone: http://www.mcafeeasap.com (HKLM)
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - Winlogon Notify: DeviceNP - DeviceNP.dll (file missing)
O23 - Service: ActivIdentity Shared Store Service (ac.sharedstore) - ActivIdentity - C:\Program Files\Common Files\ActivIdentity\ac.sharedstore.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_b20011ea53a6b83e\AESTSr64.exe
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - LSI Corporation - C:\Program Files\LSI SoftModem\agr64svc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\windows\system32\atiesrxx.exe (file missing)
O23 - Service: Avira AntiVir Scheduler (AntiVirSchedulerService) - Avira GmbH - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: DEBridge - McAfee, Inc. - c:\Program Files\Hewlett-Packard\Drive Encryption\SbHpAuthenticatorService.exe
O23 - Service: @c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128 (DpHost) - DigitalPersona, Inc. - c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: HP ProtectTools Device Locking / Auditing (FLCDLOCK) - Hewlett-Packard Ltd - c:\Windows\SysWOW64\flcdlock.exe
O23 - Service: HP Health Check Service - Hewlett-Packard - C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: HP Power Assistant Service - Hewlett-Packard - C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe
O23 - Service: HP ProtectTools Service - Hewlett-Packard Development Company, L.P - c:\Program Files (x86)\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe
O23 - Service: HP Wireless Assistant Service - Hewlett-Packard - C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
O23 - Service: HP DayStarter Service (HPDayStarterService) - Hewlett-Packard Company - c:\Program Files\Hewlett-Packard\HP QuickLook\32-bit\HPDayStarterService.exe
O23 - Service: HP Quick Synchronization Service (HPDrvMntSvc.exe) - Hewlett-Packard Company - c:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
O23 - Service: Drive Encryption Service (HpFkCryptService) - McAfee, Inc. - c:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe
O23 - Service: File Sanitizer for HP ProtectTools (HPFSService) - Hewlett-Packard - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
O23 - Service: HP Hotkey Monitor (hpHotkeyMonitor) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe
O23 - Service: hpqwmiex - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: HP Service (hpsrv) - Unknown owner - C:\windows\system32\Hpservice.exe (file missing)
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: RoxMediaDB10 - Sonic Solutions - c:\Program Files (x86)\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: Audio Service (STacSV) - IDT, Inc. - C:\windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_b20011ea53a6b83e\STacSV64.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - c:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) - Validity Sensors, Inc. - C:\windows\system32\vcsFPService.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: TrueVector Internet Monitor (vsmon) - Check Point Software Technologies LTD - C:\Windows\SysWOW64\ZoneLabs\vsmon.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 13362 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\windows\system32\services.exe
C:\windows\system32\lsass.exe
C:\windows\system32\lsm.exe
C:\windows\system32\svchost.exe -k DcomLaunch
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe"
winlogon.exe
"c:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe"
C:\windows\system32\svchost.exe -k RPCSS
C:\windows\system32\atiesrxx.exe
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k netsvcs
C:\windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_b20011ea53a6b83e\STacSV64.exe
C:\windows\system32\svchost.exe -k GPSvcGroup
C:\windows\system32\svchost.exe -k LocalService
atieclxx
C:\windows\system32\Hpservice.exe
C:\windows\system32\svchost.exe -k NetworkService
C:\windows\system32\WLANExt.exe 27064912
\??\C:\windows\system32\conhost.exe
C:\windows\System32\spoolsv.exe
"C:\Program Files\Common Files\ActivIdentity\ac.sharedstore.exe"
"C:\Program Files\ActivIdentity\ActivClient\acevents.exe"
"c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe"
"C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe"
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_b20011ea53a6b83e\AESTSr64.exe
"C:\Program Files\LSI SoftModem\agr64svc.exe"
"C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe"
"C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe"
"c:\Program Files (x86)\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe"
"C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe" avshadowcontrol0_00000990
\??\C:\windows\system32\conhost.exe
"c:\Program Files\Hewlett-Packard\HP QuickLook\32-bit\HPDayStarterService.exe"
"c:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe"
"C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe"
WLIDSvcM.exe 2932
C:\windows\system32\wbem\unsecapp.exe -Embedding
C:\windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe"
C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"c:\Program Files\Hewlett-Packard\Drive Encryption\SbHpAuthenticatorService.exe"
"taskhost.exe"
"c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe"
"C:\windows\system32\Dwm.exe"
C:\windows\Explorer.EXE
"C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe"
"C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Main.exe" /hidden
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files\ActivIdentity\ActivClient\acevents.exe"
"C:\Program Files\ActivIdentity\ActivClient\accrdsub.exe"
"C:\Program Files\IDT\WDM\sttray64.exe"
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"
"C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe" /start
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\coreshredder.exe"
"C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
"C:\Program Files (x86)\VirtualCloneDrive\VCDDaemon.exe" /s
C:\windows\system32\SearchIndexer.exe /Embedding
"c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe"
"C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe"
"C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe"
C:\windows\system32\wbem\wmiprvse.exe
C:\windows\System32\svchost.exe -k secsvcs
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Main.exe" /hidden
C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpCaslNotification.exe" "<hpNotification><Toast><Title>HP Wireless Assistant</Title><Text>Bluetooth®: Off
WLAN: On</Text><IconPath>C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WA_tray_32_on.ico</IconPath><ID>1391725750</ID><Path>C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Main.exe</Path><Parameters></Parameters></Toast></hpNotification>"
"C:\Program Files (x86)\_install\lecba\RSITx64.exe"
C:\windows\system32\svchost.exe -k bthsvcs
"C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe" -Embedding
"C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe"
C:\windows\servicing\TrustedInstaller.exe
"C:\windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe6_ Global\UsGthrCtrlFltPipeMssGthrPipe6 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\windows\system32\SearchFilterHost.exe" 0 516 520 528 65536 524

======Scheduled tasks folder======

C:\windows\tasks\HPCeeScheduleForPetr Glajc.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{395610AE-C624-4f58-B89E-23733EA00F9A}]
HP ProtectTools Security Manager Extension - c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpOtsPluginIe8.dll [2010-04-02 2132232]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL [2010-02-28 688528]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3134413B-49B4-425C-98A5-893C1F195601}]
File Sanitizer for HP ProtectTools - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll [2010-01-19 117248]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{395610AE-C624-4f58-B89E-23733EA00F9A}]
HP ProtectTools Security Manager Extension - c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpOtsPluginIe8.dll [2010-04-02 1471752]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení ke službě Windows Live ID - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2010-02-28 561552]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IAAnotif"=C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe [2010-01-08 186904]
"HPPowerAssistant"=C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Main.exe [2010-04-05 1691192]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-06-04 2174760]
"HPWirelessAssistant"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe [2010-04-05 8192]
"acevents"=C:\Program Files\ActivIdentity\ActivClient\acevents.exe [2009-06-04 196648]
""= []
"accrdsub"=C:\Program Files\ActivIdentity\ActivClient\accrdsub.exe [2009-06-04 483880]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2010-03-17 487424]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"QIP2005"=C:\Program Files (x86)\QIP\qip.exe [2008-12-09 3259392]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"QLBController"=C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe [2010-03-01 256056]
"File Sanitizer"=C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe [2010-01-19 11266048]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2010-04-21 98304]
"IMSS"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [2010-03-04 111640]
"NortonOnlineBackupReminder"=C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NOBuActivation.exe [2009-12-03 3331944]
"avgnt"=C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [2010-12-13 281768]
"ZoneAlarm Client"=C:\Program Files (x86)\Zone Labs\ZoneAlarm\zlclient.exe [2010-11-16 1043968]
"VirtualCloneDrive"=C:\Program Files (x86)\VirtualCloneDrive\VCDDaemon.exe [2009-06-17 85160]
"BCSSync"=C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [2010-03-13 91520]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=DPPassFilter
scecli

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vsmon]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 months======

2011-01-02 16:21:41 ----D---- C:\rsit
2010-12-30 17:47:51 ----A---- C:\windows\ntbtlog.txt
2010-12-30 13:53:03 ----D---- C:\Program Files\trend micro
2010-12-28 11:18:57 ----ASH---- C:\windows\SYSWOW64\KGyGaAvL.sys
2010-12-28 11:15:58 ----D---- C:\Program Files (x86)\Corel Paint Shop Pro X
2010-12-28 11:12:38 ----D---- C:\Users\Petr Glajc\AppData\Roaming\Skype
2010-12-27 15:04:27 ----D---- C:\ProgramData\FLEXnet
2010-12-27 14:49:57 ----D---- C:\Program Files\Common Files\Macrovision Shared
2010-12-27 14:45:52 ----D---- C:\Users\Petr Glajc\AppData\Roaming\Autodesk
2010-12-27 14:45:22 ----D---- C:\ProgramData\Autodesk
2010-12-27 14:45:22 ----D---- C:\Program Files\DWG TrueView 2010
2010-12-27 14:45:22 ----D---- C:\Program Files\Common Files\Autodesk Shared
2010-12-27 13:39:16 ----D---- C:\Users\Petr Glajc\AppData\Roaming\Corel
2010-12-26 22:52:36 ----D---- C:\windows\Minidump
2010-12-26 18:44:44 ----AD---- C:\ProgramData\TEMP
2010-12-26 18:21:28 ----D---- C:\Program Files (x86)\Microsoft Synchronization Services
2010-12-26 18:20:53 ----D---- C:\windows\PCHEALTH
2010-12-26 18:16:37 ----D---- C:\Program Files\Microsoft Office
2010-12-26 18:15:38 ----D---- C:\Program Files (x86)\Microsoft Analysis Services
2010-12-26 18:14:57 ----D---- C:\Program Files (x86)\Microsoft Office
2010-12-26 18:14:25 ----RHD---- C:\MSOCache
2010-12-26 10:35:01 ----D---- C:\Program Files (x86)\VirtualCloneDrive
2010-12-25 21:38:11 ----D---- C:\Program Files (x86)\Microsoft WSE
2010-12-25 21:32:17 ----A---- C:\windows\SYSWOW64\D3DX9_37.dll
2010-12-25 21:32:17 ----A---- C:\windows\SYSWOW64\d3dx10_37.dll
2010-12-25 21:32:17 ----A---- C:\windows\SYSWOW64\D3DCompiler_37.dll
2010-12-25 21:32:17 ----A---- C:\windows\system32\D3DX9_37.dll
2010-12-25 21:32:17 ----A---- C:\windows\system32\d3dx10_37.dll
2010-12-25 21:32:17 ----A---- C:\windows\system32\D3DCompiler_37.dll
2010-12-25 20:33:15 ----D---- C:\Program Files (x86)\_install
2010-12-25 20:20:16 ----D---- C:\Mp3
2010-12-25 20:19:28 ----D---- C:\Download
2010-12-25 20:18:34 ----D---- C:\Seriály
2010-12-25 20:17:53 ----D---- C:\Video
2010-12-25 20:17:05 ----D---- C:\Galerie
2010-12-25 20:16:37 ----D---- C:\Dokumenty
2010-12-25 20:02:59 ----D---- C:\Program Files (x86)\MATLAB R2008b
2010-12-25 18:45:32 ----D---- C:\Users\Petr Glajc\AppData\Roaming\MathWorks
2010-12-25 17:00:36 ----D---- C:\ProgramData\ACD Systems
2010-12-25 17:00:24 ----D---- C:\Program Files (x86)\ACD Systems
2010-12-25 15:50:45 ----D---- C:\Program Files (x86)\MSXML 4.0
2010-12-25 14:48:04 ----D---- C:\Program Files (x86)\Microsoft.NET
2010-12-25 14:45:55 ----D---- C:\ProgramData\Microsoft Help
2010-12-25 14:24:41 ----D---- C:\windows\SYSWOW64\Wat
2010-12-25 14:24:41 ----D---- C:\windows\system32\Wat
2010-12-25 14:07:43 ----D---- C:\Users\Petr Glajc\AppData\Roaming\ACD Systems
2010-12-25 13:31:14 ----D---- C:\Users\Petr Glajc\AppData\Roaming\Design Science
2010-12-25 13:15:25 ----A---- C:\windows\SYSWOW64\PresentationHostProxy.dll
2010-12-25 13:15:25 ----A---- C:\windows\SYSWOW64\PresentationHost.exe
2010-12-25 13:15:25 ----A---- C:\windows\SYSWOW64\netfxperf.dll
2010-12-25 13:15:25 ----A---- C:\windows\SYSWOW64\mscoree.dll
2010-12-25 13:15:25 ----A---- C:\windows\SYSWOW64\dfshim.dll
2010-12-25 13:15:25 ----A---- C:\windows\system32\PresentationHostProxy.dll
2010-12-25 13:15:25 ----A---- C:\windows\system32\PresentationHost.exe
2010-12-25 13:15:25 ----A---- C:\windows\system32\mscoree.dll
2010-12-25 13:15:24 ----A---- C:\windows\system32\netfxperf.dll
2010-12-25 13:15:24 ----A---- C:\windows\system32\dfshim.dll
2010-12-25 13:15:13 ----A---- C:\windows\system32\browserchoice.exe
2010-12-25 13:13:16 ----A---- C:\windows\system32\MRT.exe
2010-12-25 13:10:37 ----D---- C:\windows\cs
2010-12-25 13:10:04 ----D---- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2010-12-25 13:09:40 ----D---- C:\Program Files (x86)\Windows Live
2010-12-25 13:09:18 ----A---- C:\windows\SYSWOW64\XAudio2_5.dll
2010-12-25 13:09:18 ----A---- C:\windows\SYSWOW64\XAPOFX1_3.dll
2010-12-25 13:09:18 ----A---- C:\windows\SYSWOW64\d3dx10_42.dll
2010-12-25 13:09:18 ----A---- C:\windows\system32\d3dx10_42.dll
2010-12-25 13:06:06 ----A---- C:\windows\SYSWOW64\WMVDECOD.DLL
2010-12-25 13:06:06 ----A---- C:\windows\SYSWOW64\mfreadwrite.dll
2010-12-25 13:06:06 ----A---- C:\windows\system32\mfreadwrite.dll
2010-12-25 13:06:06 ----A---- C:\windows\system32\mfps.dll
2010-12-25 13:06:05 ----A---- C:\windows\SYSWOW64\mf.dll
2010-12-25 13:06:05 ----A---- C:\windows\system32\WMVDECOD.DLL
2010-12-25 13:06:05 ----A---- C:\windows\system32\mf.dll
2010-12-25 13:05:02 ----A---- C:\windows\system32\drivers\usbvideo.sys
2010-12-25 13:05:02 ----A---- C:\windows\system32\drivers\ks.sys
2010-12-25 12:58:32 ----A---- C:\windows\SYSWOW64\NMSDVDXU.dll
2010-12-25 12:58:17 ----D---- C:\Program Files (x86)\LG PC Suite II
2010-12-25 12:58:05 ----D---- C:\Users\Petr Glajc\AppData\Roaming\InstallShield
2010-12-25 12:36:54 ----D---- C:\ProgramData\VirtualizedApplications
2010-12-25 12:33:40 ----A---- C:\windows\SYSWOW64\WMIMPLEX.dll
2010-12-25 12:33:40 ----A---- C:\windows\SYSWOW64\maplecompat.dll
2010-12-25 12:33:40 ----A---- C:\windows\SYSWOW64\maplec.dll
2010-12-25 12:33:36 ----D---- C:\watcom-1.3
2010-12-25 12:32:54 ----HD---- C:\Program Files (x86)\Zero G Registry
2010-12-25 12:32:54 ----D---- C:\Program Files (x86)\Maple 12
2010-12-25 12:14:53 ----A---- C:\windows\winamp.ini
2010-12-25 12:09:45 ----A---- C:\windows\system32\pdfcmnnt.dll
2010-12-25 12:09:43 ----D---- C:\Program Files (x86)\PDFCreator
2010-12-25 12:09:43 ----A---- C:\windows\SYSWOW64\MSMPIDE.DLL
2010-12-25 11:58:42 ----D---- C:\Users\Petr Glajc\AppData\Roaming\Opera
2010-12-25 11:58:41 ----D---- C:\Program Files (x86)\Opera
2010-12-25 11:58:03 ----D---- C:\ProgramData\InstallShield
2010-12-25 11:57:46 ----D---- C:\windows\SYSWOW64\Spool
2010-12-25 11:57:18 ----A---- C:\windows\SYSWOW64\tzres.dll
2010-12-25 11:57:18 ----A---- C:\windows\system32\tzres.dll
2010-12-25 11:57:13 ----A---- C:\windows\SYSWOW64\StructuredQuery.dll
2010-12-25 11:57:13 ----A---- C:\windows\system32\StructuredQuery.dll
2010-12-25 11:57:07 ----A---- C:\windows\system32\shell32.dll
2010-12-25 11:57:06 ----A---- C:\windows\SYSWOW64\shell32.dll
2010-12-25 11:57:05 ----A---- C:\windows\SYSWOW64\inetcomm.dll
2010-12-25 11:57:05 ----A---- C:\windows\system32\win32k.sys
2010-12-25 11:57:05 ----A---- C:\windows\system32\inetcomm.dll
2010-12-25 11:57:04 ----A---- C:\windows\system32\drivers\tcpip.sys
2010-12-25 11:57:02 ----A---- C:\windows\SYSWOW64\comctl32.dll
2010-12-25 11:57:02 ----A---- C:\windows\system32\comctl32.dll
2010-12-25 11:57:01 ----A---- C:\windows\SYSWOW64\schannel.dll
2010-12-25 11:57:01 ----A---- C:\windows\system32\schannel.dll
2010-12-25 11:57:00 ----A---- C:\windows\SYSWOW64\ntoskrnl.exe
2010-12-25 11:57:00 ----A---- C:\windows\SYSWOW64\ntkrnlpa.exe
2010-12-25 11:57:00 ----A---- C:\windows\system32\ntoskrnl.exe
2010-12-25 11:56:58 ----A---- C:\windows\SYSWOW64\sscore.dll
2010-12-25 11:56:58 ----A---- C:\windows\SYSWOW64\oleaut32.dll
2010-12-25 11:56:58 ----A---- C:\windows\system32\srvsvc.dll
2010-12-25 11:56:58 ----A---- C:\windows\system32\spoolsv.exe
2010-12-25 11:56:58 ----A---- C:\windows\system32\oleaut32.dll
2010-12-25 11:56:58 ----A---- C:\windows\system32\drivers\srvnet.sys
2010-12-25 11:56:58 ----A---- C:\windows\system32\drivers\srv2.sys
2010-12-25 11:56:58 ----A---- C:\windows\system32\drivers\srv.sys
2010-12-25 11:56:57 ----A---- C:\windows\system32\ole32.dll
2010-12-25 11:56:56 ----A---- C:\windows\SYSWOW64\ole32.dll
2010-12-25 11:56:56 ----A---- C:\windows\system32\drivers\fvevol.sys
2010-12-25 11:56:50 ----A---- C:\windows\SYSWOW64\wmpmde.dll
2010-12-25 11:56:50 ----A---- C:\windows\system32\wmpmde.dll
2010-12-25 11:56:49 ----A---- C:\windows\system32\consent.exe
2010-12-25 11:56:48 ----A---- C:\windows\system32\mshtml.dll
2010-12-25 11:56:47 ----A---- C:\windows\system32\ieframe.dll
2010-12-25 11:56:46 ----A---- C:\windows\SYSWOW64\mshtml.dll
2010-12-25 11:56:46 ----A---- C:\windows\SYSWOW64\iertutil.dll
2010-12-25 11:56:46 ----A---- C:\windows\SYSWOW64\ieframe.dll
2010-12-25 11:56:46 ----A---- C:\windows\system32\iertutil.dll
2010-12-25 11:56:45 ----A---- C:\windows\SYSWOW64\mstime.dll
2010-12-25 11:56:45 ----A---- C:\windows\system32\wininet.dll
2010-12-25 11:56:45 ----A---- C:\windows\system32\urlmon.dll
2010-12-25 11:56:45 ----A---- C:\windows\system32\mstime.dll
2010-12-25 11:56:45 ----A---- C:\windows\system32\msfeeds.dll
2010-12-25 11:56:44 ----A---- C:\windows\SYSWOW64\wininet.dll
2010-12-25 11:56:44 ----A---- C:\windows\SYSWOW64\urlmon.dll
2010-12-25 11:56:44 ----A---- C:\windows\SYSWOW64\msfeeds.dll
2010-12-25 11:56:44 ----A---- C:\windows\SYSWOW64\licmgr10.dll
2010-12-25 11:56:44 ----A---- C:\windows\SYSWOW64\iepeers.dll
2010-12-25 11:56:44 ----A---- C:\windows\SYSWOW64\iedkcs32.dll
2010-12-25 11:56:44 ----A---- C:\windows\system32\licmgr10.dll
2010-12-25 11:56:44 ----A---- C:\windows\system32\iepeers.dll
2010-12-25 11:56:44 ----A---- C:\windows\system32\iedkcs32.dll
2010-12-25 11:56:43 ----A---- C:\windows\SYSWOW64\mshtmled.dll
2010-12-25 11:56:43 ----A---- C:\windows\SYSWOW64\msfeedssync.exe
2010-12-25 11:56:43 ----A---- C:\windows\SYSWOW64\msfeedsbs.dll
2010-12-25 11:56:43 ----A---- C:\windows\SYSWOW64\jsproxy.dll
2010-12-25 11:56:43 ----A---- C:\windows\SYSWOW64\ieui.dll
2010-12-25 11:56:43 ----A---- C:\windows\system32\mshtmled.dll
2010-12-25 11:56:43 ----A---- C:\windows\system32\msfeedssync.exe
2010-12-25 11:56:43 ----A---- C:\windows\system32\msfeedsbs.dll
2010-12-25 11:56:43 ----A---- C:\windows\system32\jsproxy.dll
2010-12-25 11:56:43 ----A---- C:\windows\system32\ieui.dll
2010-12-25 11:56:38 ----A---- C:\windows\SYSWOW64\ntdll.dll
2010-12-25 11:56:38 ----A---- C:\windows\system32\ntdll.dll
2010-12-25 11:56:37 ----A---- C:\windows\SYSWOW64\webio.dll
2010-12-25 11:56:37 ----A---- C:\windows\system32\webio.dll
2010-12-25 11:56:36 ----A---- C:\windows\SYSWOW64\atmlib.dll
2010-12-25 11:56:36 ----A---- C:\windows\SYSWOW64\atmfd.dll
2010-12-25 11:56:36 ----A---- C:\windows\system32\atmlib.dll
2010-12-25 11:56:36 ----A---- C:\windows\system32\atmfd.dll
2010-12-25 11:56:35 ----A---- C:\windows\SYSWOW64\CPFilters.dll
2010-12-25 11:56:35 ----A---- C:\windows\system32\msdri.dll
2010-12-25 11:56:35 ----A---- C:\windows\system32\CPFilters.dll
2010-12-25 11:56:33 ----A---- C:\windows\SYSWOW64\rtutils.dll
2010-12-25 11:56:33 ----A---- C:\windows\system32\rtutils.dll
2010-12-25 11:56:27 ----A---- C:\windows\SYSWOW64\iccvid.dll
2010-12-25 11:56:27 ----A---- C:\windows\system32\cdd.dll
2010-12-25 11:56:24 ----A---- C:\windows\SYSWOW64\msxml3.dll
2010-12-25 11:56:24 ----A---- C:\windows\system32\msxml3.dll
2010-12-25 11:56:24 ----A---- C:\windows\system32\drivers\Diskdump.sys
2010-12-25 11:56:22 ----A---- C:\windows\SYSWOW64\mfc40u.dll
2010-12-25 11:56:22 ----A---- C:\windows\SYSWOW64\mfc40.dll
2010-12-25 11:56:19 ----A---- C:\windows\system32\wmp.dll
2010-12-25 11:56:18 ----A---- C:\windows\SYSWOW64\wmp.dll
2010-12-25 11:56:17 ----A---- C:\windows\SYSWOW64\wmploc.DLL
2010-12-25 11:56:17 ----A---- C:\windows\SYSWOW64\t2embed.dll
2010-12-25 11:56:17 ----A---- C:\windows\system32\wmploc.DLL
2010-12-25 11:56:17 ----A---- C:\windows\system32\t2embed.dll
2010-12-25 11:56:00 ----A---- C:\windows\SYSWOW64\taskschd.dll
2010-12-25 11:56:00 ----A---- C:\windows\SYSWOW64\taskeng.exe
2010-12-25 11:56:00 ----A---- C:\windows\SYSWOW64\taskcomp.dll
2010-12-25 11:56:00 ----A---- C:\windows\SYSWOW64\schtasks.exe
2010-12-25 11:56:00 ----A---- C:\windows\system32\wmicmiplugin.dll
2010-12-25 11:56:00 ----A---- C:\windows\system32\taskschd.dll
2010-12-25 11:56:00 ----A---- C:\windows\system32\taskeng.exe
2010-12-25 11:56:00 ----A---- C:\windows\system32\taskcomp.dll
2010-12-25 11:56:00 ----A---- C:\windows\system32\schtasks.exe
2010-12-25 11:56:00 ----A---- C:\windows\system32\schedsvc.dll
2010-12-25 11:50:14 ----D---- C:\Users\Petr Glajc\AppData\Roaming\ImgBurn
2010-12-25 11:49:54 ----D---- C:\Program Files (x86)\ImgBurn
2010-12-25 11:43:58 ----D---- C:\Users\Petr Glajc\AppData\Roaming\Winamp
2010-12-25 11:43:58 ----D---- C:\Program Files (x86)\Winamp
2010-12-25 11:39:21 ----D---- C:\Users\Petr Glajc\AppData\Roaming\vlc
2010-12-25 11:37:55 ----D---- C:\Users\Petr Glajc\AppData\Roaming\uTorrent
2010-12-25 11:35:48 ----D---- C:\Program Files (x86)\VLC
2010-12-25 11:35:47 ----D---- C:\Program Files (x86)\WinRAR
2010-12-25 11:35:43 ----D---- C:\Program Files (x86)\Virtual Dub
2010-12-25 11:35:43 ----D---- C:\Program Files (x86)\uTorrent
2010-12-25 11:35:19 ----D---- C:\Program Files (x86)\QIP
2010-12-25 11:34:11 ----D---- C:\Users\Petr Glajc\AppData\Roaming\LG Electronics
2010-12-25 11:32:20 ----D---- C:\Program Files (x86)\JPEG Resizer
2010-12-25 11:31:05 ----D---- C:\Program Files (x86)\DOSBox-0.74
2010-12-25 11:30:59 ----D---- C:\Program Files (x86)\dBpowerAMP
2010-12-25 11:28:23 ----D---- C:\Program Files (x86)\CCleaner
2010-12-25 11:27:55 ----D---- C:\Program Files (x86)\Audacity
2010-12-25 11:22:50 ----D---- C:\Program Files (x86)\Adobe
2010-12-25 11:18:54 ----D---- C:\Program Files (x86)\Total Commander
2010-12-25 11:14:45 ----D---- C:\Games
2010-12-25 04:07:59 ----D---- C:\windows\rescache
2010-12-25 04:06:07 ----ASH---- C:\pagefile.sys
2010-12-25 00:16:47 ----N---- C:\windows\system32\MpSigStub.exe
2010-12-25 00:12:06 ----A---- C:\windows\SYSWOW64\vsregexp.dll
2010-12-25 00:11:58 ----A---- C:\windows\system32\drivers\netio.sys
2010-12-25 00:11:41 ----A---- C:\windows\SYSWOW64\zlcommdb.dll
2010-12-25 00:11:41 ----A---- C:\windows\SYSWOW64\zlcomm.dll
2010-12-25 00:11:38 ----A---- C:\windows\SYSWOW64\vswmi.dll
2010-12-25 00:11:37 ----A---- C:\windows\SYSWOW64\zpeng25.dll
2010-12-25 00:11:37 ----A---- C:\windows\SYSWOW64\vsxml.dll
2010-12-25 00:11:36 ----D---- C:\windows\SYSWOW64\ZoneLabs
2010-12-25 00:11:36 ----A---- C:\windows\SYSWOW64\vspubapi.dll
2010-12-25 00:11:36 ----A---- C:\windows\SYSWOW64\vsmonapi.dll
2010-12-25 00:11:36 ----A---- C:\windows\SYSWOW64\vsdata.dll
2010-12-25 00:11:36 ----A---- C:\windows\system32\drivers\~GLH0023.TMP
2010-12-25 00:11:32 ----N---- C:\windows\system32\drivers\vsdatant.sys
2010-12-25 00:11:32 ----D---- C:\Program Files (x86)\Zone Labs
2010-12-25 00:11:03 ----D---- C:\ProgramData\CheckPoint
2010-12-25 00:11:02 ----D---- C:\windows\Internet Logs
2010-12-25 00:11:02 ----A---- C:\windows\SYSWOW64\vsutil.dll
2010-12-25 00:11:02 ----A---- C:\windows\SYSWOW64\vsinit.dll
2010-12-25 00:09:40 ----D---- C:\Users\Petr Glajc\AppData\Roaming\Avira
2010-12-25 00:06:00 ----A---- C:\windows\system32\drivers\avipbb.sys
2010-12-25 00:06:00 ----A---- C:\windows\system32\drivers\avgntflt.sys
2010-12-25 00:05:59 ----D---- C:\ProgramData\Avira
2010-12-25 00:05:59 ----D---- C:\Program Files (x86)\Avira
2010-12-25 00:02:03 ----A---- C:\windows\myClean.bat
2010-12-24 23:59:06 ----D---- C:\Users\Petr Glajc\AppData\Roaming\Mozilla
2010-12-24 23:45:02 ----A---- C:\windows\wcx_ftp.ini
2010-12-24 23:44:03 ----A---- C:\windows\wincmd.ini
2010-12-24 23:44:03 ----A---- C:\windows\UC.PIF
2010-12-24 23:44:03 ----A---- C:\windows\RAR.PIF
2010-12-24 23:44:03 ----A---- C:\windows\PKZIP.PIF
2010-12-24 23:44:03 ----A---- C:\windows\PKUNZIP.PIF
2010-12-24 23:44:03 ----A---- C:\windows\NOCLOSE.PIF
2010-12-24 23:44:03 ----A---- C:\windows\LHA.PIF
2010-12-24 23:44:03 ----A---- C:\windows\ARJ.PIF
2010-12-24 23:12:59 ----D---- C:\ProgramData\Norton
2010-12-24 21:57:15 ----D---- C:\ProgramData\LightScribe
2010-12-24 20:51:58 ----D---- C:\Users\Petr Glajc\AppData\Roaming\Macromedia
2010-12-24 20:30:46 ----D---- C:\Users\Petr Glajc\AppData\Roaming\SoftGrid Client
2010-12-24 20:30:13 ----A---- C:\windows\SYSWOW64\PerfStringBackup.INI
2010-12-24 20:29:50 ----D---- C:\Users\Petr Glajc\AppData\Roaming\TP
2010-12-24 20:24:26 ----D---- C:\Users\Petr Glajc\AppData\Roaming\ATI
2010-12-24 20:24:26 ----D---- C:\ProgramData\ATI
2010-12-24 20:24:11 ----D---- C:\Users\Petr Glajc\AppData\Roaming\Adobe
2010-12-24 20:22:46 ----D---- C:\Users\Petr Glajc\AppData\Roaming\Identities
2010-12-24 20:17:11 ----D---- C:\Users\Petr Glajc\AppData\Roaming\Hewlett-Packard
2010-12-24 20:16:41 ----D---- C:\ProgramData\Symantec
2010-12-24 20:16:41 ----D---- C:\Program Files (x86)\Symantec
2010-12-24 20:15:29 ----A---- C:\windows\system32\drivers\vpcvmm.sys
2010-12-24 20:13:43 ----SHD---- C:\HPMBackup
2010-12-24 20:12:59 ----D---- C:\Users\Petr Glajc\AppData\Roaming\hpqLog
2010-12-24 20:11:57 ----D---- C:\ProgramData\WinZip
2010-12-24 20:11:25 ----D---- C:\Users\Petr Glajc\AppData\Roaming\DigitalPersona
2010-12-24 20:11:10 ----SD---- C:\Users\Petr Glajc\AppData\Roaming\Microsoft
2010-12-24 20:10:34 ----ASH---- C:\hiberfil.sys

======List of files/folders modified in the last 1 months======

2011-01-02 16:21:44 ----D---- C:\windows\Temp
2011-01-02 16:17:23 ----D---- C:\windows\System32
2011-01-02 16:17:23 ----D---- C:\windows\inf
2011-01-02 16:17:23 ----A---- C:\windows\system32\PerfStringBackup.INI
2011-01-02 16:16:05 ----D---- C:\windows\system32\config
2011-01-02 15:57:02 ----D---- C:\ProgramData\HPQLOG
2011-01-02 15:56:57 ----A---- C:\windows\SYSWOW64\log.txt
2011-01-02 15:54:03 ----D---- C:\Windows
2011-01-02 13:09:08 ----D---- C:\windows\system32\Tasks
2011-01-01 15:12:15 ----D---- C:\windows\system32\NDF
2011-01-01 15:10:50 ----D---- C:\windows\Prefetch
2011-01-01 13:02:12 ----RD---- C:\Program Files (x86)
2011-01-01 13:01:58 ----SHD---- C:\windows\Installer
2011-01-01 13:01:56 ----RHD---- C:\Program Files
2011-01-01 13:01:52 ----SHD---- C:\System Volume Information
2011-01-01 12:51:28 ----D---- C:\windows\system32\catroot
2011-01-01 12:51:24 ----D---- C:\windows\system32\drivers
2011-01-01 12:50:46 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2010-12-31 11:39:06 ----D---- C:\windows\Tasks
2010-12-29 23:18:41 ----HD---- C:\ProgramData
2010-12-29 13:20:37 ----D---- C:\windows\debug
2010-12-28 11:39:16 ----D---- C:\windows\Microsoft.NET
2010-12-28 11:39:06 ----RSD---- C:\windows\assembly
2010-12-28 11:18:57 ----D---- C:\windows\SysWOW64
2010-12-28 11:18:05 ----D---- C:\Program Files (x86)\Common Files
2010-12-28 11:04:52 ----D---- C:\windows\system32\wfp
2010-12-28 11:04:52 ----D---- C:\windows\system32\DriverStore
2010-12-28 11:04:52 ----D---- C:\windows\system32\catroot2
2010-12-28 11:04:51 ----D---- C:\windows\system32\wbem
2010-12-28 11:04:51 ----D---- C:\windows\system32\drivers\UMDF
2010-12-28 11:02:59 ----D---- C:\windows\registration
2010-12-28 11:02:55 ----D---- C:\windows\winsxs
2010-12-28 11:00:42 ----HD---- C:\swsetup
2010-12-28 10:57:49 ----D---- C:\windows\Logs
2010-12-28 10:55:53 ----D---- C:\windows\system32\LogFiles
2010-12-26 18:22:24 ----RSD---- C:\windows\Fonts
2010-12-26 18:18:56 ----HD---- C:\Program Files\Common Files\Microsoft Shared
2010-12-26 18:18:53 ----SD---- C:\ProgramData\Microsoft
2010-12-26 18:16:07 ----D---- C:\windows\ShellNew
2010-12-25 21:38:08 ----HD---- C:\Program Files\Common Files
2010-12-25 16:35:08 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2010-12-25 16:09:55 ----A---- C:\windows\win.ini
2010-12-25 16:07:11 ----D---- C:\windows\SYSWOW64\en-US
2010-12-25 16:07:11 ----D---- C:\windows\system32\en-US
2010-12-25 14:24:58 ----D---- C:\windows\SYSWOW64\sl-SI
2010-12-25 14:24:58 ----D---- C:\windows\SYSWOW64\sk-SK
2010-12-25 14:24:58 ----D---- C:\windows\SYSWOW64\hr-HR
2010-12-25 14:24:58 ----D---- C:\windows\SYSWOW64\cs-CZ
2010-12-25 14:24:58 ----D---- C:\windows\system32\sl-SI
2010-12-25 14:24:58 ----D---- C:\windows\system32\sk-SK
2010-12-25 14:24:58 ----D---- C:\windows\system32\hr-HR
2010-12-25 14:24:58 ----D---- C:\windows\system32\cs-CZ
2010-12-25 14:24:56 ----HD---- C:\Program Files\Internet Explorer
2010-12-25 14:24:56 ----D---- C:\Program Files (x86)\Internet Explorer
2010-12-25 14:24:51 ----HD---- C:\Program Files\Windows Mail
2010-12-25 14:24:51 ----D---- C:\windows\ehome
2010-12-25 14:24:51 ----D---- C:\Program Files (x86)\Windows Mail
2010-12-25 14:24:40 ----D---- C:\windows\AppPatch
2010-12-25 14:24:38 ----D---- C:\Program Files (x86)\Windows Media Player
2010-12-25 14:24:37 ----HD---- C:\Program Files\Windows Media Player
2010-12-25 14:24:36 ----D---- C:\windows\SYSWOW64\migration
2010-12-25 14:24:35 ----D---- C:\windows\system32\migration
2010-12-25 12:59:54 ----D---- C:\windows\ModemLogs
2010-12-25 11:57:42 ----D---- C:\windows\Downloaded Program Files
2010-12-25 10:42:46 ----RD---- C:\Users
2010-12-25 04:06:39 ----D---- C:\windows\Panther
2010-12-25 00:11:36 ----D---- C:\windows\SYSWOW64\drivers
2010-12-25 00:00:03 ----D---- C:\Program Files (x86)\Bing Bar Installer
2010-12-24 23:15:49 ----D---- C:\windows\system32\drivers\etc
2010-12-24 22:41:12 ----D---- C:\windows\system32\wdi
2010-12-24 20:42:25 ----HD---- C:\SYSTEM.SAV
2010-12-24 20:22:44 ----SHD---- C:\$Recycle.Bin
2010-12-24 20:17:08 ----RD---- C:\Program Files (x86)\Online Services
2010-12-24 20:16:56 ----HD---- C:\Program Files\Windows Sidebar
2010-12-24 20:16:56 ----D---- C:\Program Files (x86)\Windows Sidebar
2010-12-24 20:15:33 ----D---- C:\windows\SoftwareDistribution
2010-12-24 20:13:53 ----D---- C:\ProgramData\Hewlett-Packard
2010-12-24 20:13:48 ----HD---- C:\Program Files\Hewlett-Packard
2010-12-24 20:09:29 ----D---- C:\windows\system32\restore

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 hpdskflt;HP Filter; C:\windows\system32\DRIVERS\hpdskflt.sys [2009-07-08 30008]
R0 iaStor;Intel AHCI Controller; C:\windows\system32\DRIVERS\iaStor.sys [2010-01-08 409112]
R0 PxHlpa64;PxHlpa64; C:\windows\System32\Drivers\PxHlpa64.sys [2009-07-09 55280]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2009-07-14 214096]
R0 SafeBoot;SafeBoot; C:\windows\system32\drivers\SafeBoot.sys [2010-02-02 56648]
R0 SbAlg;SbAlg; C:\windows\system32\drivers\SbAlg.sys [2009-06-04 60160]
R0 SbFsLock;SbFsLock; C:\windows\system32\drivers\SbFsLock.sys [2010-02-02 15688]
R1 avipbb;avipbb; C:\windows\system32\DRIVERS\avipbb.sys [2010-12-13 116568]
R1 ElbyCDIO;ElbyCDIO Driver; C:\windows\System32\Drivers\ElbyCDIO.sys [2009-12-17 34472]
R1 RsvLock;RsvLock; C:\windows\system32\drivers\RsvLock.sys [2010-02-02 58184]
R1 vpcnfltr;Virtual PC Network Filter Driver; C:\windows\system32\DRIVERS\vpcnfltr.sys [2010-11-14 66304]
R1 vpcvmm;@%SystemRoot%\system32\drivers\vpcvmm.sys,-100; C:\windows\system32\drivers\vpcvmm.sys [2009-12-01 359624]
R1 Vsdatant;Zone Alarm Firewall Driver; C:\windows\system32\DRIVERS\vsdatant.sys [2010-05-15 458840]
R1 vwififlt;Virtual WiFi Filter Driver; C:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 avgntflt;avgntflt; C:\windows\system32\DRIVERS\avgntflt.sys [2010-12-13 83120]
R2 rimspci;rimspci; C:\windows\system32\DRIVERS\rimspe64.sys [2009-10-26 61952]
R2 risdpcie;risdpcie; C:\windows\system32\DRIVERS\risdpe64.sys [2009-10-29 79360]
R2 rixdpcie;rixdpcie; C:\windows\system32\DRIVERS\rixdpe64.sys [2009-12-11 55808]
R2 TurboB;Turbo Boost UI Monitor driver; C:\windows\system32\DRIVERS\TurboB.sys [2010-05-21 13832]
R3 Accelerometer;HP Accelerometer; C:\windows\system32\DRIVERS\Accelerometer.sys [2009-07-08 41272]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\windows\system32\DRIVERS\agrsm64.sys [2010-01-21 1209856]
R3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\windows\system32\drivers\AtiHdmi.sys [2010-04-08 124944]
R3 atikmdag;atikmdag; C:\windows\system32\DRIVERS\atikmdag.sys [2010-04-21 6101504]
R3 BCM43XX;Broadcom 802.11 Network Adapter Driver; C:\windows\system32\DRIVERS\bcmwl664.sys [2010-11-14 3058168]
R3 btwrchid;btwrchid; C:\windows\system32\DRIVERS\btwrchid.sys [2010-01-07 21160]
R3 e1kexpress;Intel(R) PRO/1000 PCI Express Network Connection Driver K; C:\windows\system32\DRIVERS\e1k62x64.sys [2010-01-07 295088]
R3 HECIx64;Intel(R) Management Engine Interface; C:\windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\windows\system32\DRIVERS\HpqKbFiltr.sys [2010-02-16 25912]
R3 Impcd;Impcd; C:\windows\system32\DRIVERS\Impcd.sys [2010-02-27 158976]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\windows\system32\DRIVERS\snp2uvc.sys [2010-01-19 1803904]
R3 STHDA;IDT High Definition Audio CODEC; C:\windows\system32\DRIVERS\stwrt64.sys [2010-03-17 505856]
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2010-06-04 1379376]
R3 TPM;TPM; C:\windows\system32\drivers\tpm.sys [2009-07-14 38400]
R3 VClone;VClone; C:\windows\system32\DRIVERS\VClone.sys [2009-08-09 36352]
R3 vpcbus;Virtual PC Host Bus Service; C:\windows\system32\DRIVERS\vpchbus.sys [2010-11-14 187904]
R3 vpcusb;USB Virtualization Connector Service; C:\windows\system32\DRIVERS\vpcusb.sys [2010-11-14 95232]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
R3 WinUSB;WinUSB Service; C:\windows\system32\DRIVERS\WinUSB.sys [2009-07-14 40448]
S3 BthEnum;Bluetooth Request Block Driver; C:\windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Bluetooth Port Driver; C:\windows\System32\Drivers\BTHport.sys [2009-07-14 551936]
S3 BTHUSB;Bluetooth Radio USB Driver; C:\windows\System32\Drivers\BTHUSB.sys [2009-07-14 79360]
S3 btwaudio;Bluetooth Audio Device Service; C:\windows\system32\drivers\btwaudio.sys [2010-01-07 98344]
S3 btwavdt;Bluetooth AVDT; C:\windows\system32\DRIVERS\btwavdt.sys [2010-01-07 132648]
S3 btwl2cap;Bluetooth L2CAP Service; C:\windows\system32\DRIVERS\btwl2cap.sys [2010-01-07 35104]
S3 DAMDrv;DAMDrv; C:\windows\system32\DRIVERS\DAMDrv64.sys [2009-10-21 40760]
S3 NETw5s64;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 64 Bit; C:\windows\system32\DRIVERS\NETw5s64.sys [2010-02-01 7675392]
S3 pciide;pciide; C:\windows\system32\DRIVERS\pciide.sys [2009-07-14 12352]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\windows\System32\drivers\rdpdr.sys [2009-07-14 165376]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 s3cap;s3cap; C:\windows\system32\DRIVERS\vms3cap.sys [2009-07-14 6656]
S3 sdbus;sdbus; C:\windows\system32\DRIVERS\sdbus.sys [2010-09-16 109056]
S3 storvsc;storvsc; C:\windows\system32\DRIVERS\storvsc.sys [2009-07-14 34896]
S3 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\windows\system32\DRIVERS\vmbus.sys [2009-07-14 200272]
S3 VMBusHID;VMBusHID; C:\windows\system32\DRIVERS\VMBusHID.sys [2009-07-14 21760]
S4 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\windows\system32\drivers\csc.sys [2009-07-14 514048]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ac.sharedstore;ActivIdentity Shared Store Service; C:\Program Files\Common Files\ActivIdentity\ac.sharedstore.exe [2009-06-04 277032]
R2 AESTFilters;Andrea ST Filters Service; C:\windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_b20011ea53a6b83e\AESTSr64.exe [2009-03-03 89600]
R2 AgereModemAudio;Agere Modem Call Progress Audio; C:\Program Files\LSI SoftModem\agr64svc.exe [2010-01-21 16896]
R2 AMD External Events Utility;AMD External Events Utility; C:\windows\system32\atiesrxx.exe [2010-04-21 202752]
R2 AntiVirService;Avira AntiVir Guard; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [2010-12-13 267944]
R2 AntiVirSchedulerService;Avira AntiVir Scheduler; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [2010-12-13 135336]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2009-12-29 873248]
R2 DpHost;@c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128; c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [2010-03-31 462088]
R2 HP Health Check Service;HP Health Check Service; C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe [2010-03-24 121344]
R2 HP Power Assistant Service;HP Power Assistant Service; C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe [2010-04-05 103992]
R2 HP ProtectTools Service;HP ProtectTools Service; c:\Program Files (x86)\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe [2010-03-17 36864]
R2 HP Wireless Assistant Service;HP Wireless Assistant Service; C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe [2010-04-05 103992]
R2 HPDayStarterService;HP DayStarter Service; c:\Program Files\Hewlett-Packard\HP QuickLook\32-bit\HPDayStarterService.exe [2010-06-14 90112]
R2 HPDrvMntSvc.exe;HP Quick Synchronization Service; c:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2009-12-10 251448]
R2 HpFkCryptService;Drive Encryption Service; c:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe [2010-02-02 281192]
R2 HPFSService;File Sanitizer for HP ProtectTools; C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe [2010-01-19 297984]
R2 hpHotkeyMonitor;HP Hotkey Monitor; C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe [2010-03-01 264248]
R2 hpsrv;HP Service; C:\windows\system32\Hpservice.exe [2009-07-08 30520]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2010-01-08 354840]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [2010-02-22 73728]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-03-04 268824]
R2 STacSV;Audio Service; C:\windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_b20011ea53a6b83e\STacSV64.exe [2010-03-17 244736]
R2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-03-04 2320920]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 2286976]
R3 DEBridge;DEBridge; c:\Program Files\Hewlett-Packard\Drive Encryption\SbHpAuthenticatorService.exe [2010-02-02 704512]
R3 hpqwmiex;hpqwmiex; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe [2010-02-08 230968]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 vcsFPService;Validity VCS Fingerprint Service; C:\windows\system32\vcsFPService.exe [2010-02-18 2045232]
S2 vsmon;TrueVector Internet Monitor; C:\Windows\SysWOW64\ZoneLabs\vsmon.exe [2010-11-16 2435592]
S3 AppMgmt;@appmgmts.dll,-3250; C:\windows\system32\svchost.exe [2009-07-14 27136]
S3 FLCDLOCK;HP ProtectTools Device Locking / Auditing; c:\Windows\SysWOW64\flcdlock.exe [2009-12-07 362040]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\windows\System32\svchost.exe [2009-07-14 27136]
S3 RoxMediaDB10;RoxMediaDB10; c:\Program Files (x86)\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe [2009-11-23 1120752]
S3 stllssvr;stllssvr; c:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe [2009-10-16 74392]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\windows\system32\Wat\WatAdminSvc.exe [2010-12-25 1255736]
S4 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\windows\System32\svchost.exe [2009-07-14 27136]

-----------------EOF-----------------

Re: win7 bluescreen

Napsal: 02 led 2011 17:58
od Rudy
Log vypadá čistý. Něco jsem však vygooglil: http://translate.google.cz/translate?hl ... d%3Divnsfd . Podle tohoto fóra by mohl být příčinou ZoneAlarm. Zkuste ho odinstalovat, příp. použít jiný firewall. Pokud se problém nebude opakovat, byl náš odhad správný.

Re: win7 bluescreen

Napsal: 02 led 2011 18:32
od pit
ok, zone alarm jsem odinstaloval, nahodil jsem klasický windows firewall (nebo doporučujete nainstalovat jiný?)
kdyby to znova padlo, ozvu se hned, kdyby nepadlo, ozvu se tak za týden a uzavřeme to.
každopádně velké díky za tip (a kontrolu logu)! :)

Re: win7 bluescreen

Napsal: 02 led 2011 19:30
od Rudy
Win 7 má lepší fw, než předchozí verze. Pokud byste chtěl personální fw, vyberte si zde: http://www.viry.cz/forum/viewforum.php?f=41 . Nemáte zač!
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz