Půl roku života občasnou modrou obrazovkou..

Zpráva

Josef_kd · #1 Příspěvek od **Josef_kd** » 24 led 2012 12:11

Zdravím přítomný. Obracím se na vás, jako na "poslední štaci". Padá mi počítač s w7 64bit. Provedl jsem mnohokrát memtest - celonoční...nic, mám všechny nový ovladače...nic.. Prostě nevím, co dělat. Mám nainstalovanej BlueScreenViewer, dovolím si tedy pochlubit se několika důvody pádu počítače. Dal jsem je sem -
http://bsod.phorum.cz/vzor/
Budu vděčnej za jakoukoliv radu. Díky, Josef
Doufám, že se mi podařil ten odkaz

#2 Příspěvek od **Rudy** » 24 led 2012 12:28

Také zdravím!
Pokud je toto všechno z jednoho PC, pak problém může být jak v poškozeném systému, tak v hardwaru. Pokaždé totiž hlásí něco jiného. Od ovladačů gr. karty, přes ovladač chipsetu až k systéímovým souborům. Zkuste nejprve stáhnout, nainstalovat a spustit CrystalDiskInfo: http://www.stahuj.centrum.cz/utility_a_ ... ldiskinfo/ a přes Úpravy>kopírovat sem vložit log.

Josef_kd · #3 Příspěvek od **Josef_kd** » 24 led 2012 12:46

Věřím, že to je k neuvěření, ale ano, je to z jednoho počítače a to od 9.1!!! Katastrofa, co?
Log -

----------------------------------------------------------------------------
CrystalDiskInfo 4.1.3 (C) 2008-2011 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------

OS : Windows 7 Ultimate Edition SP1 [6.1 Build 7601] (x64)
Date : 2012/01/24 12:43:53

-- Controller Map ----------------------------------------------------------
+ Intel(R) ICH8 4 port Serial ATA Storage Controller - 2820 [ATA]
- ATA Channel 0 (0)
- ATA Channel 1 (1)
+ Intel(R) ICH8 2 port Serial ATA Storage Controller - 2825 [ATA]
+ ATA Channel 0 (0)
- WDC WD740ADFD-00NLR1 ATA Device
+ ATA Channel 1 (1)
- WDC WD2500KS-00MJB0 ATA Device
+ JMicron JMB36X Controller [SCSI]
- HL-DT-ST DVDRAM GSA-H10N SCSI CdRom Device

-- Disk List ---------------------------------------------------------------
(1) WDC WD2500KS-00MJB0 : 250.0 GB [0-2-0, pd1]
(2) WDC WD740ADFD-00NLR1 : 74.3 GB [1-1-0, pd1]
(3) WDC WD20EACS-11BHUB0 : 2000.3 GB [2-X-X, sa1] (V=1058, P=1021)

----------------------------------------------------------------------------
(1) WDC WD2500KS-00MJB0
----------------------------------------------------------------------------
Model : WDC WD2500KS-00MJB0
Firmware : 02.01C03
Serial Number : WD-WCANK5913632
Disk Size : 250.0 GB (8.4/137.4/250.0)
Buffer Size : 16384 KB
Queue Depth : 1
# of Sectors : 488395055
Rotation Rate : Neznámy údaj
Interface : Serial ATA
Major Version : ATA/ATAPI-7
Minor Version : ----
Transfer Mode : SATA/300
Power On Hours : 22412 hod.
Power On Count : 5285 krát
Temparature : 37 C (98 F)
Health Status : Pozor
Features : S.M.A.R.T., AAM, 48bit LBA
APM Level : ----
AAM Level : 8080h [ON]

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 200 200 _51 000000000000 Počet chyb čtení
03 205 188 _21 000000001285 Čas na roztočení ploten
04 _95 _95 __0 00000000157E Počet spuštění/zastavení
05 196 196 140 00000000001D Počet přemapovaných sektorů
07 200 200 _51 000000000000 Počet chybných hledání
09 _70 _70 __0 00000000578C Hodin v činnosti
0A 100 100 _51 000000000000 Počet opakovaných pokusů o roztočení ploten
0B 100 100 _51 000000000000 Počet pokusů o překalibrování
0C _95 _95 __0 0000000014A5 Počet cyklů zapnutí zařízení
BE _63 _37 _45 000000000025 Teplota toku vzduchu
C2 113 _87 __0 000000000025 Teplota
C4 191 191 __0 000000000009 Počet udalostí s číslem realokování sektorů
C5 200 200 __0 000000000000 Počet podezřelých sektorů
C6 200 200 __0 000000000000 Počet neopravitelných sektorů
C7 200 200 __0 000000000645 Počet chyb v kontrolním součtu UltraDMA
C8 200 195 _51 000000000000 Počet chyb při zápisu sektorů

-- IDENTIFY_DEVICE ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 42 7A 3F FF C8 37 00 10 00 00 00 00 00 3F 00 00
010: 00 00 00 00 20 20 20 20 20 57 44 2D 57 43 41 4E
020: 4B 35 39 31 33 36 33 32 00 00 80 00 00 32 30 32
030: 2E 30 31 43 30 33 57 44 43 20 57 44 32 35 30 30
040: 4B 53 2D 30 30 4D 4A 42 30 20 20 20 20 20 20 20
050: 20 20 20 20 20 20 20 20 20 20 20 20 20 20 80 10
060: 00 00 2F 00 40 01 00 00 00 00 00 07 3F FF 00 10
070: 00 3F FC 10 00 FB 01 10 FF FF 0F FF 00 00 00 07
080: 00 03 00 78 00 78 00 78 00 78 00 00 00 00 00 00
090: 00 00 00 00 00 00 00 00 06 06 00 00 00 40 00 40
0A0: 00 FE 00 00 74 6B 7F 01 40 23 74 69 3E 01 40 23
0B0: 20 7F 00 00 00 00 00 00 FF FE 00 00 80 80 00 00
0C0: 00 00 00 00 00 00 00 00 51 2F 1D 1C 00 00 00 00
0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 09 00 00 00 00 00 00 00 00 16 63 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 04 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 10 3F 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 B6 A5

----------------------------------------------------------------------------
(2) WDC WD740ADFD-00NLR1
----------------------------------------------------------------------------
Model : WDC WD740ADFD-00NLR1
Firmware : 20.07P20
Serial Number : WD-WMANS1178861
Disk Size : 74.3 GB (8.4/74.3/74.3)
Buffer Size : 16384 KB
Queue Depth : 32
# of Sectors : 145223999
Rotation Rate : Neznámy údaj
Interface : Serial ATA
Major Version : ATA/ATAPI-7
Minor Version : ATA/ATAPI-7 published ANSI INCITS 397-2005.
Transfer Mode : SATA/150
Power On Hours : 21572 hod.
Power On Count : 5302 krát
Temparature : 30 C (86 F)
Health Status : Dobrý
Features : S.M.A.R.T., AAM, 48bit LBA, NCQ
APM Level : ----
AAM Level : 8080h [ON]

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 200 197 _51 000000000000 Počet chyb čtení
03 167 166 _21 000000000A62 Čas na roztočení ploten
04 _93 _93 _40 000000001CB5 Počet spuštění/zastavení
05 200 200 140 000000000000 Počet přemapovaných sektorů
07 200 200 _51 000000000000 Počet chybných hledání
09 _71 _71 __0 000000005444 Hodin v činnosti
0A 100 100 _51 000000000000 Počet opakovaných pokusů o roztočení ploten
0B 100 100 _51 000000000000 Počet pokusů o překalibrování
0C _95 _95 __0 0000000014B6 Počet cyklů zapnutí zařízení
C2 113 _88 __0 00000000001E Teplota
C4 200 200 __0 000000000000 Počet udalostí s číslem realokování sektorů
C5 200 200 __0 000000000000 Počet podezřelých sektorů
C6 200 200 __0 000000000000 Počet neopravitelných sektorů
C7 200 253 __0 0000000000D2 Počet chyb v kontrolním součtu UltraDMA
C8 200 200 _51 000000000000 Počet chyb při zápisu sektorů

-- IDENTIFY_DEVICE ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 42 7A 3F FF C8 37 00 10 E1 00 02 58 00 3F 00 00
010: 00 00 00 0E 20 20 20 20 20 57 44 2D 57 4D 41 4E
020: 53 31 31 37 38 38 36 31 00 03 80 00 00 30 32 30
030: 2E 30 37 50 32 30 57 44 43 20 57 44 37 34 30 41
040: 44 46 44 2D 30 30 4E 4C 52 31 20 20 20 20 20 20
050: 20 20 20 20 20 20 20 20 20 20 20 20 20 20 80 10
060: 00 00 2F 00 40 01 02 80 00 00 00 07 3F FF 00 10
070: 00 3F FC 10 00 FB 01 10 F1 3F 08 A7 00 00 00 07
080: 00 03 00 78 00 78 00 78 00 78 00 00 00 00 00 00
090: 00 00 00 00 00 00 00 1F 07 02 00 00 00 44 00 40
0A0: 00 FE 00 1D 74 6B 7F 61 40 23 74 69 3E 41 40 23
0B0: 20 7F 00 00 00 00 00 00 FF FE 00 00 80 80 00 00
0C0: 00 00 00 00 00 00 00 00 F1 3F 08 A7 00 00 00 00
0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 09 01 41 00 00 00 00 00 00 07 6B 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 02 00 01
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 80 07
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 10 3F 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 F3 A5

----------------------------------------------------------------------------
(3) WDC WD20EACS-11BHUB0
----------------------------------------------------------------------------
Enclosure : WD Ext HDD 1021 USB Device (V=1058, P=1021, sa1)
Model : WDC WD20EACS-11BHUB0
Firmware : 51.0AB51
Serial Number : WD-WCAZA3540655
Disk Size : 2000.3 GB (8.4/137.4/2000.3)
Buffer Size : 16384 KB
Queue Depth : 32
# of Sectors : 3907029168
Rotation Rate : Neznámy údaj
Interface : USB (Serial ATA)
Major Version : ATA8-ACS
Minor Version : ----
Transfer Mode : SATA/300
Power On Hours : 3008 hod.
Power On Count : 3885 krát
Temparature : 40 C (104 F)
Health Status : Dobrý
Features : S.M.A.R.T., AAM, 48bit LBA, NCQ
APM Level : ----
AAM Level : 80FEh [OFF]

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 200 200 _51 000000000000 Počet chyb čtení
03 243 167 _21 000000000B22 Čas na roztočení ploten
04 _96 _96 __0 000000001204 Počet spuštění/zastavení
05 200 200 140 000000000000 Počet přemapovaných sektorů
07 200 200 __0 000000000000 Počet chybných hledání
09 _96 _96 __0 000000000BC0 Hodin v činnosti
0A 100 100 __0 000000000000 Počet opakovaných pokusů o roztočení ploten
0B 100 100 __0 000000000000 Počet pokusů o překalibrování
0C _97 _97 __0 000000000F2D Počet cyklů zapnutí zařízení
C0 200 200 __0 000000000014 Počet vypnutí disku
C1 175 175 __0 000000012784 Počet cyklů načítání/vymazání
C2 110 _98 __0 000000000028 Teplota
C4 200 200 __0 000000000000 Počet udalostí s číslem realokování sektorů
C5 200 200 __0 000000000000 Počet podezřelých sektorů
C6 200 200 __0 000000000000 Počet neopravitelných sektorů
C7 200 200 __0 000000000000 Počet chyb v kontrolním součtu UltraDMA
C8 200 200 __0 000000000000 Počet chyb při zápisu sektorů

-- IDENTIFY_DEVICE ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 42 7A 3F FF C8 37 00 10 00 00 00 00 00 3F 00 00
010: 00 00 00 00 20 20 20 20 20 57 44 2D 57 43 41 5A
020: 41 33 35 34 30 36 35 35 00 00 80 00 00 32 35 31
030: 2E 30 41 42 35 31 57 44 43 20 57 44 32 30 45 41
040: 43 53 2D 31 31 42 48 55 42 30 20 20 20 20 20 20
050: 20 20 20 20 20 20 20 20 20 20 20 20 20 20 80 10
060: 00 00 2F 00 40 01 00 00 00 00 00 07 3F FF 00 10
070: 00 3F FC 10 00 FB 01 00 FF FF 0F FF 00 00 01 07
080: 00 03 00 78 00 78 00 78 00 78 00 00 00 00 00 00
090: 00 00 00 00 00 00 00 1F 17 06 00 00 00 44 00 40
0A0: 01 FE 00 00 74 6B 7F 61 41 23 74 69 BC 41 41 23
0B0: 00 7F 00 BA 00 BA 00 00 FF FE 00 00 80 FE 00 00
0C0: 00 00 00 00 00 00 00 00 88 B0 E8 E0 00 00 00 00
0D0: 00 00 00 00 60 03 00 00 50 01 4E E2 B0 17 CC D7
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 40 18
0F0: 40 18 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 21 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 04 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 30 35 00 00
1A0: 00 00 40 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 10 1E 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 01 10 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 CB A5

#4 Příspěvek od **Rudy** » 24 led 2012 13:05

Tento disk: WDC WD2500KS-00MJB0 má chybu. Pokud je systémový, uhodili jsme "hřebík na hlavičku". Hodnoty červeně vyznačené:

ID Cur Wor Thr RawValues(6) Attribute Name
01 200 200 _51 000000000000 Počet chyb čtení
03 205 188 _21 000000001285 Čas na roztočení ploten
04 _95 _95 __0 00000000157E Počet spuštění/zastavení
05 196 196 140 00000000001D Počet přemapovaných sektorů
07 200 200 _51 000000000000 Počet chybných hledání
09 _70 _70 __0 00000000578C Hodin v činnosti
0A 100 100 _51 000000000000 Počet opakovaných pokusů o roztočení ploten
0B 100 100 _51 000000000000 Počet pokusů o překalibrování
0C _95 _95 __0 0000000014A5 Počet cyklů zapnutí zařízení
BE _63 _37 _45 000000000025 Teplota toku vzduchu
C2 113 _87 __0 000000000025 Teplota
C4 191 191 __0 000000000009 Počet udalostí s číslem realokování sektorů
C5 200 200 __0 000000000000 Počet podezřelých sektorů
C6 200 200 __0 000000000000 Počet neopravitelných sektorů
C7 200 200 __0 000000000645 Počet chyb v kontrolním součtu UltraDMA
C8 200 195 _51 000000000000 Počet chyb při zápisu sektorů

jsou podstatnou chybou, která (v případě, že disk je systémový) způsobuje ty BSOD. Vzhledem k tomu, že nemá (zatím) žádné chybné sektory, zkuste ho nejprve projet systémovým checkdiskem s aut. opravou chyb. Pokud se stav nezmění, sformatujte. Je to ovšem spojeno s kompletním reinstalem systému a aplikací. Když by ani potom řádně nefungoval, bude nutné ho vyměnit. Zálohu dat doporučuji provést již před checkdiskem.

Josef_kd · #5 Příspěvek od **Josef_kd** » 24 led 2012 13:24

Já snad omdlím. Neumím ani popsat, co všechno jsem "oblítal", kolik stránek jsem prolistoval, kolik fór jsem navštívil... A on disk. Ano, je systémový. Mám ještě, jak jste si jistě všimnul, jeden malej, 75 gigovej, ze kterýho jsem systém převalil na ten 250ti gigovej, protože ten malej je 10000 otáčkovej a při práci pořád vrčí. Ale co je nejhorší, systém má nyní 103 giga a to se mi nevejde. No, popřemýšlím, nic jinýho mi nezbyde. Ten "velkej" je usb disk, tam to nejde..
Ještě zkusím disk opravit a potom se ještě zkusíme podívat, jestli to mělo vliv.. Jdu na to

Josef_kd · #6 Příspěvek od **Josef_kd** » 24 led 2012 15:22

Tak oprava nezabrala. Nejspíš mi nezbyde nic jinýho, než přeinstalace na malej disk. ˇ
To jde o mechanickou chybu disku? Tedy něco jako ulomenej šroub nebo skroucenej kryt u auta?

Jestli třeba neexistuje nějaká pomoc nějakou westerndigital utilitkou.. Nebo tak. Jen se chytám stébla.

----------------------------------------------------------------------------
CrystalDiskInfo 4.1.3 (C) 2008-2011 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------

OS : Windows 7 Ultimate Edition SP1 [6.1 Build 7601] (x64)
Date : 2012/01/24 15:18:10

-- Controller Map ----------------------------------------------------------
+ Intel(R) ICH8 4 port Serial ATA Storage Controller - 2820 [ATA]
- ATA Channel 0 (0)
- ATA Channel 1 (1)
+ Intel(R) ICH8 2 port Serial ATA Storage Controller - 2825 [ATA]
+ ATA Channel 0 (0)
- WDC WD740ADFD-00NLR1 ATA Device
+ ATA Channel 1 (1)
- WDC WD2500KS-00MJB0 ATA Device
+ JMicron JMB36X Controller [SCSI]
- HL-DT-ST DVDRAM GSA-H10N SCSI CdRom Device

-- Disk List ---------------------------------------------------------------
(1) WDC WD2500KS-00MJB0 : 250.0 GB [0-2-0, pd1]
(2) WDC WD740ADFD-00NLR1 : 74.3 GB [1-1-0, pd1]
(3) WDC WD20EACS-11BHUB0 : 2000.3 GB [2-X-X, sa1] (V=1058, P=1021)

----------------------------------------------------------------------------
(1) WDC WD2500KS-00MJB0
----------------------------------------------------------------------------
Model : WDC WD2500KS-00MJB0
Firmware : 02.01C03
Serial Number : WD-WCANK5913632
Disk Size : 250.0 GB (8.4/137.4/250.0)
Buffer Size : 16384 KB
Queue Depth : 1
# of Sectors : 488395055
Rotation Rate : Neznámy údaj
Interface : Serial ATA
Major Version : ATA/ATAPI-7
Minor Version : ----
Transfer Mode : SATA/300
Power On Hours : 22414 hod.
Power On Count : 5285 krát
Temparature : 39 C (102 F)
Health Status : Pozor
Features : S.M.A.R.T., AAM, 48bit LBA
APM Level : ----
AAM Level : 8080h [ON]

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 200 200 _51 000000000000 Počet chyb čtení
03 205 188 _21 000000001285 Čas na roztočení ploten
04 _95 _95 __0 00000000157E Počet spuštění/zastavení
05 196 196 140 00000000001D Počet přemapovaných sektorů
07 200 200 _51 000000000000 Počet chybných hledání
09 _70 _70 __0 00000000578E Hodin v činnosti
0A 100 100 _51 000000000000 Počet opakovaných pokusů o roztočení ploten
0B 100 100 _51 000000000000 Počet pokusů o překalibrování
0C _95 _95 __0 0000000014A5 Počet cyklů zapnutí zařízení
BE _61 _37 _45 000000000027 Teplota toku vzduchu
C2 111 _87 __0 000000000027 Teplota
C4 191 191 __0 000000000009 Počet udalostí s číslem realokování sektorů
C5 200 200 __0 000000000000 Počet podezřelých sektorů
C6 200 200 __0 000000000000 Počet neopravitelných sektorů
C7 200 200 __0 000000000645 Počet chyb v kontrolním součtu UltraDMA
C8 200 195 _51 000000000000 Počet chyb při zápisu sektorů

-- IDENTIFY_DEVICE ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 42 7A 3F FF C8 37 00 10 00 00 00 00 00 3F 00 00
010: 00 00 00 00 20 20 20 20 20 57 44 2D 57 43 41 4E
020: 4B 35 39 31 33 36 33 32 00 00 80 00 00 32 30 32
030: 2E 30 31 43 30 33 57 44 43 20 57 44 32 35 30 30
040: 4B 53 2D 30 30 4D 4A 42 30 20 20 20 20 20 20 20
050: 20 20 20 20 20 20 20 20 20 20 20 20 20 20 80 10
060: 00 00 2F 00 40 01 00 00 00 00 00 07 3F FF 00 10
070: 00 3F FC 10 00 FB 01 10 FF FF 0F FF 00 00 00 07
080: 00 03 00 78 00 78 00 78 00 78 00 00 00 00 00 00
090: 00 00 00 00 00 00 00 00 06 06 00 00 00 40 00 40
0A0: 00 FE 00 00 74 6B 7F 01 40 23 74 69 3E 01 40 23
0B0: 20 7F 00 00 00 00 00 00 FF FE 00 00 80 80 00 00
0C0: 00 00 00 00 00 00 00 00 51 2F 1D 1C 00 00 00 00
0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 09 00 00 00 00 00 00 00 00 16 63 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 04 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 10 3F 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 B6 A5

----------------------------------------------------------------------------
(2) WDC WD740ADFD-00NLR1
----------------------------------------------------------------------------
Model : WDC WD740ADFD-00NLR1
Firmware : 20.07P20
Serial Number : WD-WMANS1178861
Disk Size : 74.3 GB (8.4/74.3/74.3)
Buffer Size : 16384 KB
Queue Depth : 32
# of Sectors : 145223999
Rotation Rate : Neznámy údaj
Interface : Serial ATA
Major Version : ATA/ATAPI-7
Minor Version : ATA/ATAPI-7 published ANSI INCITS 397-2005.
Transfer Mode : SATA/150
Power On Hours : 21574 hod.
Power On Count : 5302 krát
Temparature : 36 C (96 F)
Health Status : Dobrý
Features : S.M.A.R.T., AAM, 48bit LBA, NCQ
APM Level : ----
AAM Level : 8080h [ON]

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 200 197 _51 000000000000 Počet chyb čtení
03 167 166 _21 000000000A62 Čas na roztočení ploten
04 _93 _93 _40 000000001CB6 Počet spuštění/zastavení
05 200 200 140 000000000000 Počet přemapovaných sektorů
07 200 200 _51 000000000000 Počet chybných hledání
09 _71 _71 __0 000000005446 Hodin v činnosti
0A 100 100 _51 000000000000 Počet opakovaných pokusů o roztočení ploten
0B 100 100 _51 000000000000 Počet pokusů o překalibrování
0C _95 _95 __0 0000000014B6 Počet cyklů zapnutí zařízení
C2 107 _88 __0 000000000024 Teplota
C4 200 200 __0 000000000000 Počet udalostí s číslem realokování sektorů
C5 200 200 __0 000000000000 Počet podezřelých sektorů
C6 200 200 __0 000000000000 Počet neopravitelných sektorů
C7 200 253 __0 0000000000D2 Počet chyb v kontrolním součtu UltraDMA
C8 200 200 _51 000000000000 Počet chyb při zápisu sektorů

-- IDENTIFY_DEVICE ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 42 7A 3F FF C8 37 00 10 E1 00 02 58 00 3F 00 00
010: 00 00 00 0E 20 20 20 20 20 57 44 2D 57 4D 41 4E
020: 53 31 31 37 38 38 36 31 00 03 80 00 00 30 32 30
030: 2E 30 37 50 32 30 57 44 43 20 57 44 37 34 30 41
040: 44 46 44 2D 30 30 4E 4C 52 31 20 20 20 20 20 20
050: 20 20 20 20 20 20 20 20 20 20 20 20 20 20 80 10
060: 00 00 2F 00 40 01 02 80 00 00 00 07 3F FF 00 10
070: 00 3F FC 10 00 FB 01 10 F1 3F 08 A7 00 00 00 07
080: 00 03 00 78 00 78 00 78 00 78 00 00 00 00 00 00
090: 00 00 00 00 00 00 00 1F 07 02 00 00 00 44 00 40
0A0: 00 FE 00 1D 74 6B 7F 61 40 23 74 69 3E 41 40 23
0B0: 20 7F 00 00 00 00 00 00 FF FE 00 00 80 80 00 00
0C0: 00 00 00 00 00 00 00 00 F1 3F 08 A7 00 00 00 00
0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 09 01 41 00 00 00 00 00 00 07 6B 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 02 00 01
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 80 07
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 10 3F 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 F3 A5

----------------------------------------------------------------------------
(3) WDC WD20EACS-11BHUB0
----------------------------------------------------------------------------
Enclosure : WD Ext HDD 1021 USB Device (V=1058, P=1021, sa1)
Model : WDC WD20EACS-11BHUB0
Firmware : 51.0AB51
Serial Number : WD-WCAZA3540655
Disk Size : 2000.3 GB (8.4/137.4/2000.3)
Buffer Size : 16384 KB
Queue Depth : 32
# of Sectors : 3907029168
Rotation Rate : Neznámy údaj
Interface : USB (Serial ATA)
Major Version : ATA8-ACS
Minor Version : ----
Transfer Mode : SATA/300
Power On Hours : 3011 hod.
Power On Count : 3889 krát
Temparature : 33 C (91 F)
Health Status : Dobrý
Features : S.M.A.R.T., AAM, 48bit LBA, NCQ
APM Level : ----
AAM Level : 80FEh [OFF]

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 200 200 _51 000000000000 Počet chyb čtení
03 243 167 _21 000000000B11 Čas na roztočení ploten
04 _96 _96 __0 000000001209 Počet spuštění/zastavení
05 200 200 140 000000000000 Počet přemapovaných sektorů
07 200 200 __0 000000000000 Počet chybných hledání
09 _96 _96 __0 000000000BC3 Hodin v činnosti
0A 100 100 __0 000000000000 Počet opakovaných pokusů o roztočení ploten
0B 100 100 __0 000000000000 Počet pokusů o překalibrování
0C _97 _97 __0 000000000F31 Počet cyklů zapnutí zařízení
C0 200 200 __0 000000000014 Počet vypnutí disku
C1 175 175 __0 000000012793 Počet cyklů načítání/vymazání
C2 117 _98 __0 000000000021 Teplota
C4 200 200 __0 000000000000 Počet udalostí s číslem realokování sektorů
C5 200 200 __0 000000000000 Počet podezřelých sektorů
C6 200 200 __0 000000000000 Počet neopravitelných sektorů
C7 200 200 __0 000000000000 Počet chyb v kontrolním součtu UltraDMA
C8 200 200 __0 000000000000 Počet chyb při zápisu sektorů

-- IDENTIFY_DEVICE ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 42 7A 3F FF C8 37 00 10 00 00 00 00 00 3F 00 00
010: 00 00 00 00 20 20 20 20 20 57 44 2D 57 43 41 5A
020: 41 33 35 34 30 36 35 35 00 00 80 00 00 32 35 31
030: 2E 30 41 42 35 31 57 44 43 20 57 44 32 30 45 41
040: 43 53 2D 31 31 42 48 55 42 30 20 20 20 20 20 20
050: 20 20 20 20 20 20 20 20 20 20 20 20 20 20 80 10
060: 00 00 2F 00 40 01 00 00 00 00 00 07 3F FF 00 10
070: 00 3F FC 10 00 FB 01 00 FF FF 0F FF 00 00 01 07
080: 00 03 00 78 00 78 00 78 00 78 00 00 00 00 00 00
090: 00 00 00 00 00 00 00 1F 17 06 00 00 00 44 00 40
0A0: 01 FE 00 00 74 6B 7F 61 41 23 74 69 BC 41 41 23
0B0: 00 7F 00 BA 00 BA 00 00 FF FE 00 00 80 FE 00 00
0C0: 00 00 00 00 00 00 00 00 88 B0 E8 E0 00 00 00 00
0D0: 00 00 00 00 60 03 00 00 50 01 4E E2 B0 17 CC D7
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 40 18
0F0: 40 18 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 21 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 04 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 30 35 00 00
1A0: 00 00 40 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 10 1E 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 01 10 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 CB A5

Josef_kd · #7 Příspěvek od **Josef_kd** » 24 led 2012 16:13

A ještě jsem zkusil podívat se na disk programem HDDScan - http://bsod.phorum.cz/hddscan.jpg
Dá se tady ještě něco dělat?
Díky, Josef

#8 Příspěvek od **Rudy** » 24 led 2012 17:58

HDDscan nám nic nového neřekl. 103 GB má systém i s aplikacemi, což by znamenalo, že by nešlo reinstalovat vše. Ten disk (myslím ten poškozený zkuste zformátovat a pak znovu na něm udělat sken).

Josef_kd · #9 Příspěvek od **Josef_kd** » 24 led 2012 19:57

Dobře. Zkusím odinstalovat vše tolik nepotřebné, dostat se pod 70 GB a naklonuju systém na "malej" disk. Potom se pustím do tohohle zlobivýho

Zatím děkuju za pomoc. Byla po dlouhý době tou, která pomohla.
Josef

#10 Příspěvek od **Rudy** » 24 led 2012 20:00

Zatím nemáte zač!

Josef_kd · #11 Příspěvek od **Josef_kd** » 25 led 2012 18:21

Vážený příteli, moc Vám děkuju. Po jednom dnu už nepochybuju, že chybný disk byl nejspíš opravdu původem pádů systému. Po naklonování na "malý" disk se systém uklidnil, drží celý den, což v poslední době nebylo zdaleka samozřejmostí a ještě zrychlil. Možná díky vyšším otáčkám disku. Každopádně - nechci to zakřiknout, systém je v pořádku - po půl roce!!!

Kdyby však snad všichni čerti dopustili, dovolím si pokračovat v diskuzi.
Zdravím, Josef

#12 Příspěvek od **Rudy** » 25 led 2012 19:14

Nemáte vůbec zač!

Josef_kd · #13 Příspěvek od **Josef_kd** » 29 led 2012 11:53

Tak jsem to zakřiknul. Něco je asi fakt špatně. Dovolím si vložit výsledek posledního dění

Nevím, jestli jsem neměl začít znovu jinde, omlouvám se a děkuju za eventuální pomoc.
Jen si už nemyslím, že vůbec jaká je.

==================================================
Dump File : 012912-35828-01.dmp
Crash Time : 29.1.2012 11:41:22
Bug Check String : SYSTEM_SERVICE_EXCEPTION
Bug Check Code : 0x0000003b
Parameter 1 : 00000000`c000001d
Parameter 2 : fffff800`031edc8a
Parameter 3 : fffff880`05e53e50
Parameter 4 : 00000000`00000000
Caused By Driver : ntoskrnl.exe
Caused By Address : ntoskrnl.exe+7cc40
File Description : NT Kernel & System
Product Name : Microsoft® Windows® Operating System
Company : Microsoft Corporation
File Version : 6.1.7601.17640 (win7sp1_gdr.110622-1506)
Processor : x64
Computer Name :
Full Path : C:\Windows\Minidump\012912-35828-01.dmp
Processors Count : 2
Major Version : 15
Minor Version : 7601
Dump File Size : 290 248
==================================================

==================================================
Dump File : 012812-36812-01.dmp
Crash Time : 28.1.2012 20:58:09
Bug Check String : KMODE_EXCEPTION_NOT_HANDLED
Bug Check Code : 0x0000001e
Parameter 1 : 00000000`00000000
Parameter 2 : 00000000`00000000
Parameter 3 : 00000000`00000000
Parameter 4 : 00000000`00000000
Caused By Driver : yk62x64.sys
Caused By Address : yk62x64.sys+17520
File Description :
Product Name :
Company :
File Version :
Processor : x64
Computer Name :
Full Path : C:\Windows\Minidump\012812-36812-01.dmp
Processors Count : 2
Major Version : 15
Minor Version : 7601
Dump File Size : 288 296
==================================================

==================================================
Dump File : 012812-34843-01.dmp
Crash Time : 28.1.2012 12:37:38
Bug Check String : DRIVER_IRQL_NOT_LESS_OR_EQUAL
Bug Check Code : 0x000000d1
Parameter 1 : 00000000`00000002
Parameter 2 : 00000000`00000002
Parameter 3 : 00000000`00000008
Parameter 4 : 00000000`00000002
Caused By Driver : hal.dll
Caused By Address : hal.dll+49ce
File Description :
Product Name :
Company :
File Version :
Processor : x64
Computer Name :
Full Path : C:\Windows\Minidump\012812-34843-01.dmp
Processors Count : 2
Major Version : 15
Minor Version : 7601
Dump File Size : 287 760
==================================================

==================================================
Dump File : 012512-42500-01.dmp
Crash Time : 25.1.2012 12:22:33
Bug Check String : SYSTEM_THREAD_EXCEPTION_NOT_HANDLED
Bug Check Code : 0x1000007e
Parameter 1 : ffffffff`c0000094
Parameter 2 : fffff800`02d3ac38
Parameter 3 : fffff880`0686db08
Parameter 4 : fffff880`0686d360
Caused By Driver : fltmgr.sys
Caused By Address : fltmgr.sys+1ec2
File Description :
Product Name :
Company :
File Version :
Processor : x64
Computer Name :
Full Path : C:\Windows\Minidump\012512-42500-01.dmp
Processors Count : 2
Major Version : 15
Minor Version : 7601
Dump File Size : 283 720
==================================================

#14 Příspěvek od **Rudy** » 29 led 2012 12:02

Zkusíme na to jít z druhé strany. Prověříme na viry a rootkity. Dejte nejprve log z RSIT: http://www.viry.cz/forum/viewtopic.php?f=13&t=105895 .

Josef_kd · #15 Příspěvek od **Josef_kd** » 29 led 2012 14:18

Velmi rád. Zde je výsledek:
Logfile of random's system information tool 1.09 (written by random/random)
Run by Administrator at 2012-01-29 14:16:44
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 28 GB (40%) free of 71 GB
Total RAM: 4096 MB (75% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14:16:47, on 29.1.2012
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Uniblue\DriverScanner\dsmonitor.exe
C:\Program Files (x86)\Rainlendar2\Rainlendar2.exe
C:\Program Files (x86)\APC\PowerChute Personal Edition\apcsystray.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Adblock Pro\abpmain.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files\trend micro\Administrator.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~4\Office14\GROOVEEX.DLL
O2 - BHO: Pomocná služba pro přihlášení ke službě Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~4\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Adblock Pro - {F385C231-605B-4d8f-ACA9-DBFF765BBE17} - C:\Program Files (x86)\Adblock Pro\AdblockPro.dll
O4 - HKLM\..\Run: [ioCentre] C:\Genius\ioCentre\gTaskBar.exe
O4 - HKLM\..\Run: [JMB36X IDE Setup] C:\Windows\RaidTool\xInsIDE.exe
O4 - HKLM\..\Run: [Display] C:\Program Files (x86)\APC\PowerChute Personal Edition\DataCollectionLauncher.exe
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Rainlendar2] C:\Program Files (x86)\Rainlendar2\Rainlendar2.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-1072119229-208863262-3296353851-1019\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-1072119229-208863262-3296353851-1019\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O4 - Startup: Spamihilator.lnk = C:\Program Files\Spamihilator\spamihilator.exe
O4 - Global Startup: APC UPS Status.lnk = C:\Program Files (x86)\APC\PowerChute Personal Edition\Display.exe
O8 - Extra context menu item: &Block This Image (ABP) - C:\Program Files (x86)\Adblock Pro\blockimg.html
O8 - Extra context menu item: &Blokovat obrázek (ABP) - C:\Program Files (x86)\Adblock Pro\blockimg.html
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~4\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~4\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - C:\Program Files (x86)\ICQ7.6\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - C:\Program Files (x86)\ICQ7.6\ICQ.exe
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~4\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Adblock Pro Preferences - {E7FD3540-AB30-40f1-91E7-101F733C1FD5} - C:\Program Files (x86)\Adblock Pro\AdblockPro.dll
O9 - Extra 'Tools' menuitem: Adblock Pro Preferences - {E7FD3540-AB30-40f1-91E7-101F733C1FD5} - C:\Program Files (x86)\Adblock Pro\AdblockPro.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\vsocklib.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\vsocklib.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} (System Requirements Lab) - http://www.nvidia.com/content/DriverDow ... ab_nvd.cab
O16 - DPF: {74DBCB52-F298-4110-951D-AD2FF67BC8AB} (NVIDIA Smart Scan) - http://www.nvidia.com/content/DriverDow ... rtScan.cab
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos/OnlineScanner.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/pub/s ... wflash.cab
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: APC Data Service - Schneider Electric - C:\Program Files (x86)\APC\PowerChute Personal Edition\dataserv.exe
O23 - Service: APC UPS Service - Schneider Electric - C:\Program Files (x86)\APC\PowerChute Personal Edition\mainserv.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
O23 - Service: GeniusMouseService - Unknown owner - C:\Genius\ioCentre\GMouseService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: KMService - Unknown owner - C:\Windows\system32\srvany.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
O23 - Service: O&O Defrag - Unknown owner - C:\Windows\system32\oodag.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: TeamViewer 7 (TeamViewer7) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: VMware Authorization Service (VMAuthdService) - VMware, Inc. - C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe
O23 - Service: VMware DHCP Service (VMnetDHCP) - VMware, Inc. - C:\Windows\system32\vmnetdhcp.exe
O23 - Service: VMware USB Arbitration Service (VMUSBArbService) - VMware, Inc. - C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe
O23 - Service: VMware NAT Service - VMware, Inc. - C:\Windows\system32\vmnat.exe
O23 - Service: VMware Workstation Server (VMwareHostd) - Unknown owner - C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 11255 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\APC\PowerChute Personal Edition\mainserv.exe"
"C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Genius\ioCentre\GMouseService.exe
C:\Windows\SysWOW64\srvany.exe
"C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE"
C:\Windows\KMService.exe
"taskhost.exe"
\??\C:\Windows\system32\conhost.exe "780092166-1614549707-12579028952303664662096042665-757380971-10065144471517954458
taskeng.exe {CE5E94F6-6595-4F0C-AFF9-6B1F16F43582}
"C:\Windows\system32\Dwm.exe"
C:\Windows\system32\oodag.exe
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\Uniblue\DriverScanner\dsmonitor.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe"
"C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe"
C:\Windows\SysWOW64\vmnat.exe
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files (x86)\APC\PowerChute Personal Edition\dataserv.exe"
WLIDSvcM.exe 2284
"C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\Program Files (x86)\Rainlendar2\Rainlendar2.exe"
"C:\Program Files\Spamihilator\spamihilator.exe"
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Genius\ioCentre\gTaskBar.exe"
"C:\Program Files (x86)\APC\PowerChute Personal Edition\apcsystray.exe"
C:\Genius\ioCentre\gMouseTask
C:\Genius\ioCentre\gKbdTask
C:\Genius\ioCentre\gIoCentreFunMgm
C:\Windows\SysWOW64\vmnetdhcp.exe
C:\Genius\ioCentre\gKbdTask
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe"
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\System32\svchost.exe -k swprv
C:\Windows\servicing\TrustedInstaller.exe
"C:\Program Files (x86)\Internet Explorer\iexplore.exe" -Embedding
"C:\Program Files (x86)\Internet Explorer\iexplore.exe" SCODEF:3364 CREDAT:145409
"C:\Program Files (x86)\Adblock Pro\abpmain.exe" -m
"C:\Program Files (x86)\Internet Explorer\iexplore.exe" SCODEF:3364 CREDAT:145411
"c:\program files\windows defender\MpCmdRun.exe" SpyNetService -RestrictPrivileges -AccessKey A67D896F-9444-A55E-AF5A-452531D16463 -Reinvoke
"C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SRFTERQ3\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\Windows\tasks\DriverScanner.job

=========Mozilla firefox=========

ProfilePath - C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\j7zz1i7i.default

prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "http://www.ulozto.cz/"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@garmin.com/GpsControl]
"Description"=Garmin GPS Control for Firefox
"Path"=C:\Program Files (x86)\Garmin GPS Plugin\npGarmin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\4.0.60831.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~2\MICROS~4\Office14\NPAUTHZ.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL

C:\Program Files (x86)\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}

C:\Program Files (x86)\Mozilla Firefox\components\
binary.manifest
browsercomps.dll

C:\Program Files (x86)\Mozilla Firefox\searchplugins\
google.xml
heureka-cz.xml
jyxo-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml

C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\j7zz1i7i.default\extensions\
{195A3098-0BD5-4e90-AE22-BA1C540AFD1E}

C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\j7zz1i7i.default\searchplugins\
uloto.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2011-06-12 6721936]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28 529280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2010-12-21 689040]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-09-27 49440]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-01-03 63912]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~4\Office14\GROOVEEX.DLL [2011-06-12 4221328]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení ke službě Windows Live ID - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28 441216]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~4\Office14\URLREDIR.DLL [2010-12-21 561552]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2011-11-18 42272]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F385C231-605B-4d8f-ACA9-DBFF765BBE17}]
Adblock Pro - C:\Program Files (x86)\Adblock Pro\AdblockPro.dll [2010-09-20 462848]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2010-07-02 2903688]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2011-08-26 12681320]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1475584]
"Rainlendar2"=C:\Program Files (x86)\Rainlendar2\Rainlendar2.exe [2009-08-22 5148672]
""= []

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"ioCentre"=C:\Genius\ioCentre\gTaskBar.exe [2009-09-03 60928]
"JMB36X IDE Setup"=C:\Windows\RaidTool\xInsIDE.exe [2007-03-20 36864]
""= []
"Display"=C:\Program Files (x86)\APC\PowerChute Personal Edition\DataCollectionLauncher.exe [2011-08-24 284024]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
APC UPS Status.lnk - C:\Program Files (x86)\APC\PowerChute Personal Edition\Display.exe

C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Spamihilator.lnk - C:\Program Files\Spamihilator\spamihilator.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2011-06-12 6721936]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~4\Office14\GROOVEEX.DLL [2011-06-12 4221328]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"legalnoticetext"=
"EnableLinkedConnections"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
"NoDriveTypeAutoRun"=95

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=lvcod64.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"MSVideo"=vfwwdm32.dll
"msacm.l3pacm"=l3codecp.acm
"msacm.aacacm"=AACACM.acm
"msacm.lameacm"=lameACM.acm
"msacm.ac3acm"=ac3acm.acm
"VIDC.LAGS"=lagarith.dll
"VIDC.FFDS"=ff_vfw.dll
"msacm.avis"=ff_acm.acm
"vidc.x264"=x264vfw.dll
"msacm.ac3filter"=ac3filter.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2012-01-29 14:16:44 ----D---- C:\rsit
2012-01-29 14:16:44 ----D---- C:\Program Files\trend micro
2012-01-26 13:41:23 ----D---- C:\Program Files\DFX
2012-01-26 13:41:23 ----D---- C:\Program Files\Common Files\DFX
2012-01-26 13:15:37 ----D---- C:\ProgramData\DFX
2012-01-26 11:33:44 ----A---- C:\Windows\KMService.exe
2012-01-26 11:24:24 ----D---- C:\Program Files (x86)\KLS Soft
2012-01-26 11:17:07 ----D---- C:\ProgramData\KLS Soft
2012-01-26 00:25:00 ----D---- C:\ProgramData\Genie-Soft
2012-01-26 00:24:38 ----D---- C:\Users\Administrator\AppData\Roaming\Genie-Soft
2012-01-25 21:29:10 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2012-01-25 21:29:04 ----A---- C:\Windows\system32\nvsvcr.dll
2012-01-25 21:29:04 ----A---- C:\Windows\system32\easyupdatusapiu64.dll
2012-01-25 21:28:03 ----N---- C:\Windows\SYSWOW64\OpenCL.dll
2012-01-25 21:28:03 ----N---- C:\Windows\SYSWOW64\nvoglv32.dll
2012-01-25 21:28:03 ----A---- C:\Windows\system32\OpenCL.dll
2012-01-25 21:28:03 ----A---- C:\Windows\system32\nvoglv64.dll
2012-01-25 21:28:02 ----A---- C:\Windows\system32\nvgenco64.dll
2012-01-25 21:28:02 ----A---- C:\Windows\system32\nvdispco64.dll
2012-01-25 21:28:02 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2012-01-25 21:28:01 ----N---- C:\Windows\SYSWOW64\nvd3dum.dll
2012-01-25 21:28:01 ----N---- C:\Windows\SYSWOW64\nvcuvid.dll
2012-01-25 21:28:01 ----N---- C:\Windows\SYSWOW64\nvcuvenc.dll
2012-01-25 21:28:01 ----N---- C:\Windows\SYSWOW64\nvcuda.dll
2012-01-25 21:28:01 ----N---- C:\Windows\SYSWOW64\nvcompiler.dll
2012-01-25 21:28:01 ----N---- C:\Windows\SYSWOW64\nvapi.dll
2012-01-25 21:28:01 ----A---- C:\Windows\system32\nvcuvid.dll
2012-01-25 21:28:01 ----A---- C:\Windows\system32\nvcuvenc.dll
2012-01-25 21:28:01 ----A---- C:\Windows\system32\nvcuda.dll
2012-01-25 21:28:01 ----A---- C:\Windows\system32\nvcompiler.dll
2012-01-25 21:26:30 ----D---- C:\ProgramData\NVIDIA
2012-01-25 19:35:53 ----D---- C:\Users\Administrator\AppData\Roaming\Nokia
2012-01-25 19:33:47 ----D---- C:\Program Files (x86)\PC Connectivity Solution
2012-01-25 17:39:44 ----D---- C:\Program Files (x86)\Wildfire Software
2012-01-25 14:06:31 ----A---- C:\Windows\system32\AutoPartNt.exe
2012-01-25 13:54:01 ----A---- C:\Windows\system32\drivers\fltsrv.sys
2012-01-25 13:04:45 ----D---- C:\Users\Administrator\AppData\Roaming\HD Tune Pro
2012-01-25 13:04:12 ----D---- C:\Program Files (x86)\HD Tune Pro
2012-01-25 12:36:28 ----D---- C:\Program Files (x86)\EurotelSMS
2012-01-25 01:23:52 ----D---- C:\ProgramData\firebird
2012-01-25 00:20:56 ----ASH---- C:\hiberfil.sys
2012-01-25 00:20:54 ----ASH---- C:\pagefile.sys
2012-01-13 12:22:33 ----D---- C:\Program Files (x86)\APC
2012-01-13 00:52:55 ----A---- C:\Windows\system32\drivers\VMparport.sys
2012-01-13 00:52:54 ----A---- C:\Windows\system32\drivers\vmx86.sys
2012-01-13 00:52:16 ----N---- C:\Windows\SYSWOW64\vmnetdhcp.exe
2012-01-13 00:52:15 ----N---- C:\Windows\SYSWOW64\vmnat.exe
2012-01-13 00:52:14 ----A---- C:\Windows\system32\drivers\vmnetuserif.sys
2012-01-13 00:52:09 ----A---- C:\Windows\system32\vnetlib64.dll
2012-01-13 00:51:55 ----A---- C:\Windows\system32\drivers\VMkbd.sys
2012-01-13 00:51:53 ----A---- C:\Windows\system32\drivers\hcmon.sys
2012-01-13 00:50:07 ----D---- C:\Program Files\Common Files\VMware
2012-01-13 00:21:01 ----D---- C:\Program Files (x86)\VMware
2012-01-12 20:37:57 ----D---- C:\Users\Administrator\AppData\Roaming\Uniblue
2012-01-12 20:37:53 ----D---- C:\Program Files (x86)\Uniblue
2012-01-12 20:21:11 ----A---- C:\Windows\system32\drivers\jraid.sys
2012-01-12 17:11:26 ----D---- C:\Windows\SYSWOW64\RTCOM
2012-01-12 17:05:10 ----A---- C:\Windows\system32\WavesGUILib.dll
2012-01-12 17:05:10 ----A---- C:\Windows\system32\tosade.dll
2012-01-12 17:05:10 ----A---- C:\Windows\system32\tepeqapo64.dll
2012-01-12 17:05:10 ----A---- C:\Windows\system32\tadefxapo264.dll
2012-01-12 17:05:09 ----A---- C:\Windows\system32\tadefxapo.dll
2012-01-12 17:05:09 ----A---- C:\Windows\system32\SRSWOW64.dll
2012-01-12 17:05:09 ----A---- C:\Windows\system32\SRSTSX64.dll
2012-01-12 17:05:09 ----A---- C:\Windows\system32\SRSTSH64.dll
2012-01-12 17:05:09 ----A---- C:\Windows\system32\SRSHP64.dll
2012-01-12 17:05:07 ----A---- C:\Windows\system32\SFSS_APO.dll
2012-01-12 17:05:07 ----A---- C:\Windows\system32\SFNHK64.dll
2012-01-12 17:05:06 ----N---- C:\Windows\SYSWOW64\SFCOM.dll
2012-01-12 17:05:06 ----A---- C:\Windows\system32\SFCOM64.dll
2012-01-12 17:05:06 ----A---- C:\Windows\system32\SFAPO64.dll
2012-01-12 17:05:05 ----A---- C:\Windows\system32\RtPgEx64.dll
2012-01-12 17:05:04 ----A---- C:\Windows\system32\RtlCPAPI64.dll
2012-01-12 17:05:04 ----A---- C:\Windows\system32\drivers\RTKVHD64.sys
2012-01-12 17:05:03 ----A---- C:\Windows\system32\RtkCfg64.dll
2012-01-12 17:05:03 ----A---- C:\Windows\system32\RtkAPO64.dll
2012-01-12 17:05:03 ----A---- C:\Windows\system32\RtkApi64.dll
2012-01-12 17:05:03 ----A---- C:\Windows\system32\RTEEP64A.dll
2012-01-12 17:05:03 ----A---- C:\Windows\system32\RTEEL64A.dll
2012-01-12 17:05:03 ----A---- C:\Windows\system32\RTEEG64A.dll
2012-01-12 17:05:03 ----A---- C:\Windows\system32\RTEED64A.dll
2012-01-12 17:05:02 ----A---- C:\Windows\system32\RTCOM64.dll
2012-01-12 17:05:02 ----A---- C:\Windows\system32\RP3DHT64.dll
2012-01-12 17:05:02 ----A---- C:\Windows\system32\RP3DAA64.dll
2012-01-12 17:05:02 ----A---- C:\Windows\system32\RCoRes64.dat
2012-01-12 17:05:02 ----A---- C:\Windows\system32\RCoInst64.dll
2012-01-12 17:05:01 ----A---- C:\Windows\system32\R4EEP64A.dll
2012-01-12 17:05:01 ----A---- C:\Windows\system32\R4EEL64A.dll
2012-01-12 17:05:01 ----A---- C:\Windows\system32\R4EEG64A.dll
2012-01-12 17:05:01 ----A---- C:\Windows\system32\R4EED64A.dll
2012-01-12 17:05:01 ----A---- C:\Windows\system32\R4EEA64A.dll
2012-01-12 17:05:00 ----A---- C:\Windows\system32\MaxxVolumeSDAPO.dll
2012-01-12 17:04:59 ----A---- C:\Windows\system32\MaxxAudioRealtek.dll
2012-01-12 17:04:59 ----A---- C:\Windows\system32\MaxxAudioEQ.dll
2012-01-12 17:04:58 ----A---- C:\Windows\system32\MaxxAudioAPO30.dll
2012-01-12 17:04:58 ----A---- C:\Windows\system32\MaxxAudioAPO20.dll
2012-01-12 17:04:58 ----A---- C:\Windows\system32\KAAPORT64.dll
2012-01-12 17:04:54 ----A---- C:\Windows\system32\FMAPO64.dll
2012-01-12 17:04:54 ----A---- C:\Windows\system32\DTSVoiceClarityDLL64.dll
2012-01-12 17:04:54 ----A---- C:\Windows\system32\DTSU2PREC64.dll
2012-01-12 17:04:54 ----A---- C:\Windows\system32\DTSU2PLFX64.dll
2012-01-12 17:04:53 ----A---- C:\Windows\system32\DTSU2PGFX64.dll
2012-01-12 17:04:53 ----A---- C:\Windows\system32\DTSSymmetryDLL64.dll
2012-01-12 17:04:53 ----A---- C:\Windows\system32\DTSS2SpeakerDLL64.dll
2012-01-12 17:04:53 ----A---- C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2012-01-12 17:04:53 ----A---- C:\Windows\system32\DTSNeoPCDLL64.dll
2012-01-12 17:04:53 ----A---- C:\Windows\system32\DTSLimiterDLL64.dll
2012-01-12 17:04:53 ----A---- C:\Windows\system32\DTSLFXAPO64.dll
2012-01-12 17:04:53 ----A---- C:\Windows\system32\DTSGFXAPONS64.dll
2012-01-12 17:04:53 ----A---- C:\Windows\system32\DTSGFXAPO64.dll
2012-01-12 17:04:53 ----A---- C:\Windows\system32\DTSGainCompensatorDLL64.dll
2012-01-12 17:04:52 ----A---- C:\Windows\system32\DTSBoostDLL64.dll
2012-01-12 17:04:52 ----A---- C:\Windows\system32\DTSBassEnhancementDLL64.dll
2012-01-12 17:04:52 ----A---- C:\Windows\system32\AERTAR64.dll
2012-01-12 17:04:52 ----A---- C:\Windows\system32\AERTAC64.dll
2012-01-12 17:04:48 ----A---- C:\Windows\RtlExUpd.dll
2012-01-12 16:57:20 ----D---- C:\RaidTool
2012-01-12 16:57:04 ----D---- C:\Windows\RaidTool
2012-01-12 16:36:47 ----A---- C:\Windows\IsUninst.exe
2012-01-11 20:00:32 ----A---- C:\Windows\ntbtlog.txt
2012-01-11 18:28:48 ----A---- C:\Windows\system32\drivers\tdrpm273.sys
2012-01-11 18:28:42 ----A---- C:\Windows\system32\drivers\timntr.sys
2012-01-11 18:28:24 ----A---- C:\Windows\system32\drivers\snapman.sys
2012-01-11 18:21:29 ----D---- C:\Users\Administrator\AppData\Roaming\Acronis
2012-01-11 15:21:14 ----A---- C:\Windows\system32\drivers\VBoxDrv.sys
2012-01-11 15:21:09 ----A---- C:\Windows\system32\drivers\VBoxUSBMon.sys
2012-01-11 14:45:15 ----A---- C:\Windows\unvise32.exe
2012-01-11 14:45:11 ----D---- C:\Program Files (x86)\LooksBuilderSE
2012-01-11 14:33:48 ----D---- C:\ProgramData\Pinnacle Studio Ultimate Collection
2012-01-11 14:23:51 ----D---- C:\ProgramData\Pinnacle
2012-01-11 13:47:09 ----A---- C:\Windows\SYSWOW64\schannel.dll
2012-01-11 13:47:09 ----A---- C:\Windows\system32\schannel.dll
2012-01-11 13:47:09 ----A---- C:\Windows\system32\lsasrv.dll
2012-01-11 13:47:09 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2012-01-11 13:47:08 ----A---- C:\Windows\SYSWOW64\webio.dll
2012-01-11 13:47:08 ----A---- C:\Windows\SYSWOW64\secur32.dll
2012-01-11 13:47:08 ----A---- C:\Windows\system32\webio.dll
2012-01-11 13:47:08 ----A---- C:\Windows\system32\sspisrv.dll
2012-01-11 13:47:08 ----A---- C:\Windows\system32\sspicli.dll
2012-01-11 13:47:08 ----A---- C:\Windows\system32\secur32.dll
2012-01-11 13:47:08 ----A---- C:\Windows\system32\lsass.exe
2012-01-11 13:47:08 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2012-01-11 13:47:08 ----A---- C:\Windows\system32\drivers\cng.sys
2012-01-11 13:47:07 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2012-01-11 12:55:02 ----A---- C:\Windows\IsUn0405.exe
2012-01-11 11:34:42 ----A---- C:\Windows\system32\quartz.dll
2012-01-11 11:34:41 ----A---- C:\Windows\SYSWOW64\quartz.dll
2012-01-11 11:34:41 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2012-01-11 11:34:41 ----A---- C:\Windows\system32\qdvd.dll
2012-01-11 11:34:39 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2012-01-11 11:34:39 ----A---- C:\Windows\system32\ntdll.dll
2012-01-11 11:34:38 ----A---- C:\Windows\SYSWOW64\packager.dll
2012-01-11 11:34:38 ----A---- C:\Windows\system32\packager.dll
2012-01-10 17:27:10 ----D---- C:\ProgramData\NVIDIA Corporation
2012-01-10 01:32:45 ----N---- C:\Windows\SYSWOW64\slmgr.vbs
2012-01-09 12:48:20 ----D---- C:\Program Files (x86)\Phyxion.net
2012-01-09 12:36:19 ----A---- C:\Windows\system32\~WebUpdateHelper.exe
2012-01-07 23:21:25 ----SHD---- C:\$RECYCLE.BIN
2012-01-04 12:09:16 ----A---- C:\Windows\system32\drivers\gMouUsb.sys
2012-01-04 12:09:16 ----A---- C:\Windows\system32\drivers\gMouPS2.sys
2012-01-04 12:09:16 ----A---- C:\Windows\system32\drivers\gHidPnp.sys
2012-01-04 12:08:10 ----D---- C:\Users\Administrator\AppData\Roaming\InstallShield
2012-01-03 11:01:24 ----N---- C:\Windows\SYSWOW64\unrar.dll
2012-01-03 11:01:19 ----N---- C:\Windows\SYSWOW64\xvidvfw.dll
2012-01-03 11:01:19 ----N---- C:\Windows\SYSWOW64\xvidcore.dll
2012-01-03 11:01:19 ----N---- C:\Windows\SYSWOW64\ff_vfw.dll
2012-01-03 11:01:15 ----D---- C:\Program Files (x86)\K-Lite Codec Pack
2011-12-31 14:46:35 ----HD---- C:\Program Files (x86)\Temp
2011-12-31 14:46:03 ----D---- C:\Program Files (x86)\Intel
2011-12-31 14:45:44 ----D---- C:\Intel

======List of files/folders modified in the last 1 month======

2012-01-29 14:16:46 ----D---- C:\Windows\Temp
2012-01-29 14:16:44 ----RD---- C:\Program Files
2012-01-29 14:14:25 ----D---- C:\Windows\system32\config
2012-01-29 14:13:15 ----SHD---- C:\System Volume Information
2012-01-29 13:28:19 ----D---- C:\Users\Administrator\AppData\Roaming\Skype
2012-01-29 11:43:13 ----D---- C:\Users\Administrator\AppData\Roaming\Spamihilator
2012-01-29 11:42:44 ----D---- C:\ProgramData\VMware
2012-01-29 11:41:17 ----D---- C:\Windows\Minidump
2012-01-29 11:40:54 ----D---- C:\Windows
2012-01-28 23:39:00 ----AD---- C:\ProgramData\TEMP
2012-01-28 21:21:14 ----D---- C:\totalcmd
2012-01-28 17:33:09 ----D---- C:\Windows\System32
2012-01-28 13:44:37 ----A---- C:\Windows\WDICT32.INI
2012-01-28 13:14:56 ----D---- C:\Users\Administrator\AppData\Roaming\ICQ
2012-01-28 12:38:26 ----D---- C:\Windows\system32\catroot2
2012-01-27 20:37:27 ----D---- C:\Users\Administrator\AppData\Roaming\VMware
2012-01-26 18:51:29 ----D---- C:\Windows\system32\FxsTmp
2012-01-26 14:57:09 ----D---- C:\Program Files (x86)\Mozilla Firefox
2012-01-26 14:47:14 ----D---- C:\Windows\system32\catroot
2012-01-26 14:45:30 ----D---- C:\Program Files (x86)\Common Files
2012-01-26 14:45:17 ----RD---- C:\Program Files (x86)
2012-01-26 14:44:17 ----D---- C:\Windows\winsxs
2012-01-26 14:43:43 ----SHD---- C:\Windows\Installer
2012-01-26 14:43:43 ----SHD---- C:\Config.Msi
2012-01-26 14:43:43 ----SD---- C:\Users\Administrator\AppData\Roaming\Microsoft
2012-01-26 14:43:43 ----D---- C:\Windows\system32\DriverStore
2012-01-26 14:43:43 ----D---- C:\Windows\inf
2012-01-26 14:34:25 ----HD---- C:\ProgramData
2012-01-26 14:34:24 ----D---- C:\Windows\SYSWOW64\XPSViewer
2012-01-26 14:33:34 ----D---- C:\Windows\SysWOW64
2012-01-26 13:41:23 ----D---- C:\Program Files\Common Files
2012-01-26 13:40:26 ----D---- C:\Program Files (x86)\Internet Explorer
2012-01-26 11:32:59 ----N---- C:\Windows\SYSWOW64\srvany.exe
2012-01-26 10:47:20 ----D---- C:\Users\Administrator\AppData\Roaming\BitTorrent
2012-01-26 10:10:18 ----D---- C:\Windows\system32\wdi
2012-01-26 10:03:36 ----D---- C:\Windows\system32\drivers
2012-01-26 09:43:42 ----D---- C:\Windows\Tasks
2012-01-26 09:43:42 ----D---- C:\Windows\system32\wfp
2012-01-26 09:43:40 ----D---- C:\Windows\system32\wbem
2012-01-26 09:42:38 ----D---- C:\Windows\system32\Tasks
2012-01-26 09:42:38 ----D---- C:\Windows\system32\CodeIntegrity
2012-01-26 09:42:23 ----D---- C:\Windows\registration
2012-01-25 21:29:12 ----RD---- C:\Users
2012-01-25 21:29:10 ----D---- C:\Program Files\NVIDIA Corporation
2012-01-25 21:24:18 ----D---- C:\Windows\Help
2012-01-25 19:33:52 ----DC---- C:\Windows\system32\DRVSTORE
2012-01-25 19:33:21 ----D---- C:\Program Files (x86)\Nokia
2012-01-25 19:32:38 ----A---- C:\Windows\system32\PerfStringBackup.INI
2012-01-25 17:58:45 ----D---- C:\Windows\Prefetch
2012-01-25 02:04:00 ----D---- C:\Users\Administrator\AppData\Roaming\SMS posílač Treca
2012-01-25 01:23:14 ----RSD---- C:\Windows\assembly
2012-01-25 00:25:31 ----D---- C:\Windows\SoftwareDistribution
2012-01-25 00:22:11 ----D---- C:\Windows\CSC
2012-01-13 00:51:44 ----N---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2012-01-13 00:51:11 ----D---- C:\Windows\SYSWOW64\drivers
2012-01-12 19:41:49 ----D---- C:\Program Files\Common Files\logishrd
2012-01-12 17:04:51 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2012-01-12 17:04:51 ----D---- C:\Program Files (x86)\Realtek
2012-01-11 20:37:54 ----D---- C:\Windows\Downloaded Program Files
2012-01-11 14:32:04 ----RSD---- C:\Windows\Fonts
2012-01-11 14:22:44 ----D---- C:\Windows\Logs
2012-01-11 13:57:12 ----D---- C:\ProgramData\Microsoft Help
2012-01-11 13:48:35 ----D---- C:\Windows\debug
2012-01-11 13:48:29 ----A---- C:\Windows\system32\MRT.exe
2012-01-10 11:28:20 ----D---- C:\Windows\system32\NDF
2012-01-09 22:53:47 ----SHD---- C:\Boot
2012-01-04 15:50:47 ----D---- C:\Users\Administrator\AppData\Roaming\SolSuite
2012-01-01 13:07:38 ----D---- C:\Windows\Microsoft.NET
2012-01-01 03:17:33 ----D---- C:\Program Files (x86)\Win7codecs

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 fltsrv;Acronis Storage Filter Management; C:\Windows\system32\DRIVERS\fltsrv.sys [2012-01-25 132704]
R0 JRAID;JRAID; C:\Windows\system32\DRIVERS\jraid.sys [2012-01-12 115824]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2011-12-27 828912]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 199552]
R0 vmci;VMware VMCI Bus Driver; C:\Windows\system32\DRIVERS\vmci.sys [2011-08-08 116336]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 514560]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2010-04-28 139704]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2010-06-24 166984]
R2 epfw;epfw; C:\Windows\system32\DRIVERS\epfw.sys [2010-04-28 169592]
R2 epfwwfp;epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [2010-04-28 50600]
R2 hcmon;VMware hcmon; \??\C:\Windows\system32\drivers\hcmon.sys [2011-08-29 39024]
R2 PfFilter;PfFilter; \??\C:\Program Files (x86)\IObit\Password Folder\pffilter.sys [2011-01-12 66144]
R2 VMnetBridge;VMware Bridge Protocol; C:\Windows\system32\DRIVERS\vmnetbridge.sys [2011-11-13 45680]
R2 VMnetuserif;VMware Network Application Interface; \??\C:\Windows\system32\drivers\vmnetuserif.sys [2011-11-13 30320]
R2 VMparport;VMware VMparport; \??\C:\Windows\system32\drivers\VMparport.sys [2011-11-13 31344]
R2 vmx86;VMware vmx86; \??\C:\Windows\system32\drivers\vmx86.sys [2011-11-13 63088]
R2 vstor2-mntapi10-shared;Vstor2 MntApi 1.0 Driver (shared); C:\Windows\SysWOW64\drivers\vstor2-mntapi10-shared.sys [2011-07-08 33392]
R3 Epfwndis;Eset Personal Firewall; C:\Windows\system32\DRIVERS\Epfwndis.sys [2010-04-28 33608]
R3 gHidPnp;USB Device Enhanced Function Driver; C:\Windows\System32\Drivers\gHidPnp.Sys [2009-11-02 25088]
R3 gMouUsb;USB Mouse Device Drv; C:\Windows\system32\DRIVERS\gMouUsb.sys [2009-11-02 14336]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2011-08-30 3069032]
R3 RTL8023x64;Realtek 10/100 NIC Family NDIS x64 Driver; C:\Windows\system32\DRIVERS\Rtnic64.sys [2009-07-23 52736]
R3 vmkbd;VMware kbd; \??\C:\Windows\system32\drivers\VMkbd.sys [2011-11-13 32880]
R3 VMnetAdapter;VMware Virtual Ethernet Adapter Driver; C:\Windows\system32\DRIVERS\vmnetadapter.sys [2011-11-13 20080]
S3 athur;Atheros AR9271 Wireless Network Adapter Service; C:\Windows\system32\DRIVERS\athurx.sys [2010-01-05 1847296]
S3 gMouPS2;PS2 Scroll Mouse Device; C:\Windows\system32\DRIVERS\gMouPS2.sys [2009-06-30 19968]
S3 GVCplDrv;GVCplDrv; C:\Windows\system32\drivers\GVCplDrv.sys []
S3 LVRS64;Logitech RightSound Filter Driver; C:\Windows\system32\DRIVERS\lvrs64.sys [2011-08-19 351136]
S3 LVUVC64;Logitech Webcam C160(UVC); C:\Windows\system32\DRIVERS\lvuvc64.sys [2011-08-19 4869024]
S3 MarvinBus;Pinnacle Marvin Bus 64; C:\Windows\system32\DRIVERS\MarvinBus64.sys [2005-09-23 261120]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmbx64.sys [2011-11-01 19968]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbox64.sys [2011-11-01 27136]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys [2008-08-28 25600]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2010-11-20 20992]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 6656]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 34688]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys []
S3 teamviewervpn;TeamViewer VPN Adapter; C:\Windows\system32\DRIVERS\teamviewervpn.sys [2011-03-30 35112]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys []
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys [2011-11-01 9216]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 41984]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2010-11-20 32768]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys [2011-11-01 9216]
S3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter; C:\Windows\system32\DRIVERS\VBoxNetAdp.sys [2011-12-19 146736]
S3 VBoxNetFlt;VirtualBox Bridged Networking Service; C:\Windows\system32\DRIVERS\VBoxNetFlt.sys []
S3 VBoxUSB;VirtualBox USB; C:\Windows\System32\Drivers\VBoxUSB.sys [2011-12-19 117040]
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 21760]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-01-03 63928]
R2 APC Data Service;APC Data Service; C:\Program Files (x86)\APC\PowerChute Personal Edition\dataserv.exe [2011-08-24 21880]
R2 APC UPS Service;APC UPS Service; C:\Program Files (x86)\APC\PowerChute Personal Edition\mainserv.exe [2011-08-24 705912]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [2010-07-02 810144]
R2 GeniusMouseService;GeniusMouseService; C:\Genius\ioCentre\GMouseService.exe [2010-03-11 16384]
R2 KMService;KMService; C:\Windows\syswow64\srvany.exe [2012-01-26 8192]
R2 MDM;Machine Debug Manager; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-19 322120]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2011-10-15 1640768]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2011-10-15 2253120]
R2 O&O Defrag;O&O Defrag; C:\Windows\system32\oodag.exe [2009-04-08 2020608]
R2 TeamViewer7;TeamViewer 7; C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe [2012-01-19 3027840]
R2 VMnetDHCP;VMware DHCP Service; C:\Windows\syswow64\vmnetdhcp.exe [2011-11-13 354416]
R2 VMUSBArbService;VMware USB Arbitration Service; C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe [2011-08-29 846448]
R2 VMware NAT Service;VMware NAT Service; C:\Windows\syswow64\vmnat.exe [2011-11-13 433264]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2011-03-28 2292096]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 VMAuthdService;VMware Authorization Service; C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe [2011-11-13 79872]
S2 VMwareHostd;VMware Workstation Server; C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe [2011-11-13 11839488]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2010-03-18 44376]
S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe [2010-07-02 42360]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2011-06-12 31125880]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2012-01-04 718888]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-08-30 1255736]
S4 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

-----------------EOF-----------------

VIRY.CZ

Půl roku života občasnou modrou obrazovkou..

Půl roku života občasnou modrou obrazovkou..

Re: Půl roku života občasnou modrou obrazovkou..

Re: Půl roku života občasnou modrou obrazovkou..

Re: Půl roku života občasnou modrou obrazovkou..

Re: Půl roku života občasnou modrou obrazovkou..

Re: Půl roku života občasnou modrou obrazovkou..

Re: Půl roku života občasnou modrou obrazovkou..

Re: Půl roku života občasnou modrou obrazovkou..

Re: Půl roku života občasnou modrou obrazovkou..

Re: Půl roku života občasnou modrou obrazovkou..

Re: Půl roku života občasnou modrou obrazovkou..

Re: Půl roku života občasnou modrou obrazovkou..

Re: Půl roku života občasnou modrou obrazovkou..

Re: Půl roku života občasnou modrou obrazovkou..

Re: Půl roku života občasnou modrou obrazovkou..