VIRY.CZ

Zdravím,

prosím o pomoc. Neustálé vytížení CPU - NT Kernel & System. Po diagnostice paměti přes program od Microsoftu ntb jede bez problému. Když ovšem ntb restartuji nebo vypnu, problém se opakuje. Děkuji za odpovědi

Ještě bych dodal, že se ntb přehřívá i při nečinnosti, občas se objeví bluescreen a ntb spadne.

Zdravím!
Dejte log RSIT: http://forum.viry.cz/viewtopic.php?t=81939 .

Logfile of random's system information tool 1.09 (written by random/random)
Run by Acer at 2013-07-17 23:52:42
Microsoft Windows 7 Home Premium
System drive C: has 436 GB (94%) free of 465 GB
Total RAM: 3838 MB (78% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 23:52:56, on 17.7.2013
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16385)
Boot mode: Normal

Running processes:
C:\Program Files\trend micro\Acer.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACA ... 6j5491i466
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://homepage.acer.com/rdr.aspx?b=ACA ... 6j5491i466
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACA ... 6j5491i466
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://homepage.acer.com/rdr.aspx?b=ACA ... 6j5491i466
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Partner BHO Class - {83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4} - C:\ProgramData\Partner\Partner.dll
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Přidat na blog - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Přidat na blog Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do zařízení Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: Odeslat do zařízení &Bluetooth... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Acer\Acer VCM\Skype4COM.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: IviRegMgr - InterVideo - C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Partner Service - Google Inc. - C:\ProgramData\Partner\Partner.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: Raw Socket Service (RS_Service) - Acer Incorporated - C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Updater Service - Acer - C:\Program Files\Acer\Acer Updater\UpdaterService.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 7116 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
atieclxx
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
"C:\Windows\system32\Dwm.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\Explorer.EXE
"C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe"
"C:\Program Files (x86)\Launch Manager\dsiwmis.exe"
"taskhost.exe"
"C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe"
taskeng.exe {5FB88773-61E1-4190-8843-3C2B9E573D83}
taskeng.exe {D053EEDC-7AEF-4512-AB60-2B4BCB131435}
"C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe"
"C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe"
"c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe"
"C:\Program Files\Acer\Acer Updater\UpdaterService.exe"
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files\Apoint2K\Apoint.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe"
"C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
DrvInst.exe "1" "200" "usb\vid_046d&pid_c016\5&166c7f51&0&1" "" "" "681715e63" "0000000000000000" "0000000000000584" "00000000000005A0"
"C:\Windows\system32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-b54c9e00-6a0e-4725-81b6-5923ccb40793 -SystemEventPortName:HostProcess-162ba664-e6dd-4ec3-9fc8-ea10272473a8 -IoCancelEventPortName:HostProcess-56654ea8-7f7d-4e62-93d3-662470758699 -NonStateChangingEventPortName:HostProcess-6fb38a3d-bd28-4c41-9bd2-4999304b81fb -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:0a1ec92e-134e-43d0-b705-54a7095a3a7a
C:\Windows\System32\svchost.exe -k WerSvcGroup
"C:\Program Files\Apoint2K\ApMsgFwd.exe" -s{05FA8492-C047-4207-BE65-780D8591C113}
"Apntex.exe"
\??\C:\Windows\system32\conhost.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Windows\System32\dinotify.exe" pnpui.dll,SimplifiedDINotification
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 508 512 520 65536 516
"D:\RSITx64.exe"

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\ParetoLogic Registration3.job
C:\Windows\tasks\ParetoLogic Update Version3 Startup Task.job
C:\Windows\tasks\ParetoLogic Update Version3.job
C:\Windows\tasks\RegCure Pro.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4}]
Partner BHO Class - C:\ProgramData\Partner\Partner64.dll [2009-10-20 750064]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4}]
Partner BHO Class - C:\ProgramData\Partner\Partner.dll [2009-10-20 433648]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Apoint"=C:\Program Files\Apoint2K\Apoint.exe [2009-05-21 295936]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2009-07-23 7981600]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2013-03-21 6330568]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-28 35696]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Global Registration]
C:\Program Files (x86)\Acer\Registration\GREG.exe BOOT []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LManager]
C:\Program Files (x86)\Launch Manager\LManager.exe [2009-10-26 830032]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\mcagent_exe]
C:\Program Files (x86)\McAfee.com\Agent\mcagent.exe /runkey []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NortonOnlineBackupReminder]
C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe UNATTENDED []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PLFSetI]
C:\Windows\PLFSetI.exe [2013-07-12 206208]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Acer VCM.lnk]
C:\PROGRA~2\Acer\ACERVC~1\AcerVCM.exe [2009-07-11 708608]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Bluetooth.lnk]
C:\PROGRA~1\WIDCOMM\BLUETO~1\BTTray.exe [2009-07-17 1079584]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcmscsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MpfService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2013-07-17 23:52:42 ----D---- C:\rsit
2013-07-17 23:52:42 ----D---- C:\Program Files\trend micro
2013-07-16 21:35:48 ----D---- C:\Users\Acer\AppData\Roaming\ParetoLogic
2013-07-16 21:35:48 ----D---- C:\Users\Acer\AppData\Roaming\DriverCure
2013-07-16 21:34:16 ----D---- C:\ProgramData\ParetoLogic
2013-07-16 21:34:16 ----D---- C:\Program Files (x86)\ParetoLogic
2013-07-15 13:31:08 ----D---- C:\Users\Acer\AppData\Roaming\ESET
2013-07-15 13:26:45 ----D---- C:\ProgramData\ESET
2013-07-15 13:26:45 ----D---- C:\Program Files\ESET
2013-07-15 13:21:16 ----A---- C:\Windows\system32\wups2.dll
2013-07-15 13:21:16 ----A---- C:\Windows\system32\wucltux.dll
2013-07-15 13:21:16 ----A---- C:\Windows\system32\wuaueng.dll
2013-07-15 13:21:16 ----A---- C:\Windows\system32\wuauclt.exe
2013-07-15 13:20:51 ----A---- C:\Windows\system32\wuwebv.dll
2013-07-15 13:20:51 ----A---- C:\Windows\system32\wuapp.exe
2013-07-15 12:59:38 ----A---- C:\Windows\system32\drivers\usbfilter.sys
2013-07-15 12:59:33 ----D---- C:\Program Files (x86)\AMD
2013-07-13 13:19:17 ----D---- C:\ProgramData\AMD
2013-07-13 13:19:13 ----A---- C:\Windows\system32\drivers\amdiox64.sys
2013-07-13 13:14:06 ----D---- C:\AMD
2013-07-13 02:47:41 ----A---- C:\Windows\system32\perfi005.dat
2013-07-13 02:47:41 ----A---- C:\Windows\system32\perfh005.dat
2013-07-13 02:47:41 ----A---- C:\Windows\system32\perfd005.dat
2013-07-13 02:47:41 ----A---- C:\Windows\system32\perfc005.dat
2013-07-13 02:47:16 ----D---- C:\Windows\SYSWOW64\cs
2013-07-13 02:47:15 ----D---- C:\Windows\SYSWOW64\XPSViewer
2013-07-13 02:47:15 ----D---- C:\Windows\SYSWOW64\drivers\cs-CZ
2013-07-13 02:47:15 ----D---- C:\Windows\system32\cs
2013-07-13 02:47:15 ----D---- C:\Windows\cs-CZ
2013-07-13 02:47:13 ----D---- C:\Windows\system32\drivers\cs-CZ
2013-07-13 02:41:09 ----D---- C:\Windows\NAPP_Dism_Log
2013-07-12 23:30:07 ----D---- C:\Users\Acer\AppData\Roaming\FreshDiagnose
2013-07-12 20:52:18 ----D---- C:\ProgramData\Kingsoft
2013-07-12 20:38:19 ----N---- C:\Windows\system32\MpSigStub.exe
2013-07-12 20:23:55 ----D---- C:\Program Files (x86)\Google
2013-07-12 20:17:46 ----D---- C:\Users\Acer\AppData\Roaming\Adobe
2013-07-12 19:17:14 ----D---- C:\Windows\pss
2013-07-12 19:10:57 ----D---- C:\Users\Acer\AppData\Roaming\Google
2013-07-12 19:04:44 ----D---- C:\Windows\Minidump
2013-07-12 17:52:54 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2013-07-12 17:49:26 ----D---- C:\Program Files\Microsoft SQL Server
2013-07-12 17:49:22 ----D---- C:\Program Files (x86)\Microsoft SQL Server
2013-07-12 17:42:53 ----D---- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2013-07-12 17:41:21 ----D---- C:\Program Files (x86)\Microsoft
2013-07-12 17:40:49 ----D---- C:\Program Files (x86)\Windows Live
2013-07-12 17:38:17 ----A---- C:\Windows\PLFSetI.exe
2013-07-12 17:38:16 ----A---- C:\Windows\PidList.ini
2013-07-12 17:38:15 ----A---- C:\Windows\FixUVC.exe
2013-07-12 17:35:54 ----D---- C:\Program Files\Apoint2K
2013-07-12 17:34:13 ----D---- C:\Program Files (x86)\Launch Manager
2013-07-12 17:31:33 ----D---- C:\Program Files\WIDCOMM
2013-07-12 17:23:20 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2013-07-12 17:23:19 ----A---- C:\Windows\system32\mshtml.dll
2013-07-12 17:22:17 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2013-07-12 17:22:17 ----A---- C:\Windows\system32\msv1_0.dll
2013-07-12 17:21:15 ----A---- C:\Windows\SYSWOW64\msasn1.dll
2013-07-12 17:21:15 ----A---- C:\Windows\system32\msasn1.dll
2013-07-12 17:20:08 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2013-07-12 17:20:05 ----A---- C:\Windows\system32\msfeedsbs.dll
2013-07-12 17:15:30 ----A---- C:\Windows\SYSWOW64\CertEnroll.dll
2013-07-12 17:15:29 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2013-07-12 17:15:29 ----A---- C:\Windows\system32\CertEnroll.dll
2013-07-12 17:15:29 ----A---- C:\Windows\system32\atmfd.dll
2013-07-12 17:15:28 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2013-07-12 17:15:22 ----A---- C:\Windows\SYSWOW64\t2embed.dll
2013-07-12 17:15:22 ----A---- C:\Windows\system32\t2embed.dll
2013-07-12 17:15:22 ----A---- C:\Windows\system32\fontsub.dll
2013-07-12 17:15:20 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2013-07-12 17:15:12 ----A---- C:\Windows\SYSWOW64\explorer.exe
2013-07-12 17:15:12 ----A---- C:\Windows\explorer.exe
2013-07-12 17:15:10 ----A---- C:\Windows\SYSWOW64\wmp.dll
2013-07-12 17:15:09 ----A---- C:\Windows\system32\wmp.dll
2013-07-12 17:15:07 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2013-07-12 17:15:07 ----A---- C:\Windows\system32\wmploc.DLL
2013-07-12 17:14:17 ----D---- C:\Users\Acer\AppData\Roaming\ATI
2013-07-12 17:13:29 ----AD---- C:\book
2013-07-12 17:13:28 ----D---- C:\ProgramData\McQcModifier-5c47-a7b0
2013-07-12 17:13:26 ----D---- C:\Users\Acer\AppData\Roaming\Macromedia
2013-07-12 17:12:40 ----D---- C:\Users\Acer\AppData\Roaming\Identities
2013-07-12 17:08:08 ----SD---- C:\Users\Acer\AppData\Roaming\Microsoft
2013-07-12 17:08:08 ----D---- C:\Users\Acer\AppData\Roaming\Media Center Programs
2013-07-12 17:07:56 ----SHD---- C:\Recovery
2013-07-12 17:07:55 ----SHD---- C:\ProgramData\Šablony
2013-07-12 17:07:55 ----SHD---- C:\ProgramData\Plocha
2013-07-12 17:07:55 ----SHD---- C:\ProgramData\Oblíbené položky
2013-07-12 17:07:55 ----SHD---- C:\ProgramData\Nabídka Start
2013-07-12 17:07:55 ----SHD---- C:\ProgramData\Dokumenty
2013-07-12 17:07:55 ----SHD---- C:\ProgramData\Data aplikací
2013-07-12 17:00:21 ----D---- C:\Program Files\DIFX
2013-07-12 17:00:20 ----DC---- C:\Windows\system32\DRVSTORE
2013-07-12 16:56:55 ----D---- C:\Windows\SoftwareDistribution
2013-07-12 16:53:25 ----SHD---- C:\System Volume Information
2013-07-12 16:53:25 ----ASH---- C:\pagefile.sys
2013-07-12 16:53:25 ----ASH---- C:\hiberfil.sys

======List of files/folders modified in the last 1 month======

2013-07-17 23:52:51 ----D---- C:\Windows\Temp
2013-07-17 23:52:51 ----D---- C:\Windows\Prefetch
2013-07-17 23:52:42 ----RD---- C:\Program Files
2013-07-17 23:50:58 ----AD---- C:\Windows
2013-07-16 21:52:24 ----D---- C:\Windows\system32\catroot2
2013-07-16 21:48:19 ----D---- C:\Windows\system32\catroot
2013-07-16 21:48:08 ----D---- C:\Windows\winsxs
2013-07-16 21:39:51 ----D---- C:\Windows\SYSWOW64\LogFiles
2013-07-16 21:39:51 ----D---- C:\Windows\system32\LogFiles
2013-07-16 21:39:46 ----D---- C:\Windows\debug
2013-07-16 21:38:06 ----D---- C:\Windows\System32
2013-07-16 21:38:06 ----D---- C:\Windows\inf
2013-07-16 21:38:06 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-07-16 21:36:06 ----D---- C:\Windows\Tasks
2013-07-16 21:36:06 ----D---- C:\Windows\system32\Tasks
2013-07-16 21:34:23 ----D---- C:\Program Files (x86)\Common Files
2013-07-16 21:34:16 ----RD---- C:\Program Files (x86)
2013-07-16 21:34:16 ----HD---- C:\ProgramData
2013-07-15 13:29:33 ----SHD---- C:\Windows\Installer
2013-07-15 13:28:42 ----D---- C:\Windows\system32\DriverStore
2013-07-15 13:28:42 ----D---- C:\Windows\system32\drivers
2013-07-15 13:21:41 ----D---- C:\Windows\system32\cs-CZ
2013-07-14 20:25:13 ----D---- C:\Windows\system32\wdi
2013-07-14 16:49:58 ----D---- C:\Windows\system32\config
2013-07-14 16:48:51 ----SD---- C:\ProgramData\Microsoft
2013-07-14 16:43:44 ----D---- C:\Windows\SYSWOW64\RTCOM
2013-07-14 16:43:36 ----D---- C:\Windows\SysWOW64
2013-07-14 16:41:36 ----HD---- C:\Program Files (x86)\Temp
2013-07-14 16:41:35 ----D---- C:\Program Files (x86)\Realtek
2013-07-14 16:35:41 ----D---- C:\Program Files\Acer
2013-07-14 16:30:29 ----D---- C:\Program Files\Common Files
2013-07-14 16:29:38 ----SHD---- C:\$Recycle.Bin
2013-07-13 13:17:54 ----RSD---- C:\Windows\assembly
2013-07-13 13:15:54 ----D---- C:\Program Files\Common Files\Microsoft Shared
2013-07-13 12:53:50 ----D---- C:\Windows\system32\drivers\UMDF
2013-07-13 02:51:27 ----D---- C:\Windows\SYSWOW64\en-US
2013-07-13 02:51:27 ----D---- C:\Windows\SYSWOW64\en
2013-07-13 02:51:27 ----D---- C:\Windows\SYSWOW64\drivers\en-US
2013-07-13 02:51:27 ----D---- C:\Windows\servicing
2013-07-13 02:51:26 ----D---- C:\Windows\system32\winrm
2013-07-13 02:51:26 ----D---- C:\Windows\system32\WCN
2013-07-13 02:51:26 ----D---- C:\Windows\system32\slmgr
2013-07-13 02:51:26 ----D---- C:\Windows\system32\en-US
2013-07-13 02:51:26 ----D---- C:\Windows\system32\en
2013-07-13 02:51:26 ----D---- C:\Windows\system32\drivers\en-US
2013-07-13 02:51:26 ----D---- C:\Windows\system32\Dism
2013-07-13 02:51:26 ----D---- C:\Windows\system32\Boot
2013-07-13 02:51:26 ----D---- C:\Windows\en-US
2013-07-13 02:47:17 ----D---- C:\Program Files\Windows Sidebar
2013-07-13 02:47:17 ----D---- C:\Program Files\Windows Mail
2013-07-13 02:47:17 ----D---- C:\Program Files\DVD Maker
2013-07-13 02:47:17 ----D---- C:\Program Files (x86)\Windows Sidebar
2013-07-13 02:47:17 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2013-07-13 02:47:17 ----D---- C:\Program Files (x86)\Windows Mail
2013-07-13 02:47:17 ----D---- C:\Program Files (x86)\Windows Defender
2013-07-13 02:47:16 ----D---- C:\Windows\SYSWOW64\winrm
2013-07-13 02:47:16 ----D---- C:\Windows\SYSWOW64\slmgr
2013-07-13 02:47:16 ----D---- C:\Windows\SYSWOW64\migwiz
2013-07-13 02:47:16 ----D---- C:\Windows\SYSWOW64\migration
2013-07-13 02:47:16 ----D---- C:\Program Files\Windows Photo Viewer
2013-07-13 02:47:16 ----D---- C:\Program Files\Windows Journal
2013-07-13 02:47:16 ----D---- C:\Program Files\Windows Defender
2013-07-13 02:47:16 ----D---- C:\Program Files\Common Files\System
2013-07-13 02:47:15 ----D---- C:\Windows\SYSWOW64\WCN
2013-07-13 02:47:15 ----D---- C:\Windows\SYSWOW64\wbem
2013-07-13 02:47:15 ----D---- C:\Windows\SYSWOW64\Printing_Admin_Scripts
2013-07-13 02:47:15 ----D---- C:\Windows\SYSWOW64\MUI
2013-07-13 02:47:15 ----D---- C:\Windows\SYSWOW64\DriverStore
2013-07-13 02:47:15 ----D---- C:\Windows\SYSWOW64\drivers
2013-07-13 02:47:15 ----D---- C:\Windows\SYSWOW64\Dism
2013-07-13 02:47:15 ----D---- C:\Windows\SYSWOW64\com
2013-07-13 02:47:15 ----D---- C:\Windows\system32\sysprep
2013-07-13 02:47:15 ----D---- C:\Windows\system32\oobe
2013-07-13 02:47:15 ----D---- C:\Windows\system32\migwiz
2013-07-13 02:47:15 ----D---- C:\Windows\system32\migration
2013-07-13 02:47:15 ----D---- C:\Windows\PolicyDefinitions
2013-07-13 02:47:15 ----D---- C:\Windows\IME
2013-07-13 02:47:13 ----D---- C:\Windows\system32\wbem
2013-07-13 02:47:13 ----D---- C:\Windows\system32\Printing_Admin_Scripts
2013-07-13 02:47:13 ----D---- C:\Windows\system32\MUI
2013-07-13 02:47:13 ----D---- C:\Windows\system32\com
2013-07-12 20:05:17 ----D---- C:\ProgramData\McAfee
2013-07-12 19:52:54 ----D---- C:\Program Files (x86)\Adobe
2013-07-12 19:52:00 ----D---- C:\Program Files (x86)\Acer
2013-07-12 19:47:42 ----D---- C:\ProgramData\Microsoft Help
2013-07-12 19:46:44 ----D---- C:\Windows\ShellNew
2013-07-12 19:45:43 ----RSD---- C:\Windows\Fonts
2013-07-12 19:43:15 ----A---- C:\Windows\win.ini
2013-07-12 19:27:00 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2013-07-12 19:24:01 ----D---- C:\Windows\Registration
2013-07-12 19:23:11 ----D---- C:\Windows\SYSWOW64\cs-CZ
2013-07-12 19:10:51 ----D---- C:\Program Files (x86)\Ferrari
2013-07-12 18:09:27 ----HD---- C:\OEM
2013-07-12 18:08:48 ----D---- C:\Windows\system32\OEM
2013-07-12 18:06:50 ----D---- C:\Windows\Microsoft.NET
2013-07-12 17:32:04 ----SD---- C:\Windows\system32\Microsoft
2013-07-12 17:25:12 ----D---- C:\Program Files\Internet Explorer
2013-07-12 17:25:12 ----D---- C:\Program Files (x86)\Internet Explorer
2013-07-12 17:25:10 ----D---- C:\Windows\ehome
2013-07-12 17:25:10 ----D---- C:\Windows\AppPatch
2013-07-12 17:25:10 ----D---- C:\Program Files\Windows Media Player
2013-07-12 17:25:10 ----D---- C:\Program Files (x86)\Windows Media Player
2013-07-12 17:14:19 ----D---- C:\Windows\system32\restore
2013-07-12 17:14:10 ----D---- C:\Windows\Logs
2013-07-12 17:13:47 ----AD---- C:\Windows\DeployWinRE2
2013-07-12 17:09:35 ----D---- C:\Windows\rescache
2013-07-12 17:08:33 ----D---- C:\ProgramData\OEM
2013-07-12 17:08:08 ----RD---- C:\Users
2013-07-12 17:08:01 ----D---- C:\Windows\Panther
2013-07-12 17:07:55 ----D---- C:\Program Files\Windows NT
2013-07-12 17:02:11 ----A---- C:\Windows\system32\PLD_Framework.cmd

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 AtiPcie;AMD PCI Express (3GIO) Filter; C:\Windows\system32\DRIVERS\AtiPcie.sys [2009-05-04 16440]
R0 epfwwfp;epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [2013-02-14 58416]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2009-07-14 214096]
R1 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2013-02-14 213416]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2013-01-10 150616]
R1 EpfwLWF;Epfw NDIS LightWeight Filter; C:\Windows\system32\DRIVERS\EpfwLWF.sys [2013-01-10 59440]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 epfw;epfw; C:\Windows\system32\DRIVERS\epfw.sys [2013-01-10 190232]
R3 ApfiltrService;Alps Pointing-device Filter Driver; C:\Windows\system32\DRIVERS\Apfiltr.sys [2009-05-24 243760]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2009-08-19 1490944]
R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2009-07-13 5020672]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2009-07-23 1967648]
R3 L1C;NDIS Miniport Driver for Atheros AR8131/AR8132 PCI-E Ethernet Controller (NDIS 6.20); C:\Windows\system32\DRIVERS\L1C62x64.sys [2009-07-27 58880]
R3 usbfilter;AMD USB Filter Driver; C:\Windows\system32\DRIVERS\usbfilter.sys [2009-06-05 34872]
S3 amdiox64;AMD IO Driver; C:\Windows\system32\DRIVERS\amdiox64.sys [2010-02-18 46136]
S3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2009-07-13 5020672]
S3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2012-11-16 359936]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2009-07-14 551936]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2009-07-14 79360]
S3 btusbflt;Bluetooth USB Filter; C:\Windows\system32\drivers\btusbflt.sys [2009-07-01 52264]
S3 DKbFltr;Dritek Keyboard Filter Driver (64-bit); C:\Windows\SysWOW64\Drivers\DKbFltr.sys [2009-03-26 25608]
S3 FreshIO;FreshIO; \??\C:\Program Files (x86)\FreshDevices\FreshDiagnose\FreshIO.sys []
S3 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys [2009-07-14 12352]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUStor.sys [2009-06-24 216576]
S3 RtsUIR;Realtek IR Driver; C:\Windows\system32\DRIVERS\Rts516xIR.sys []
S3 USBCCID;Realtek Smartcard Reader Driver; C:\Windows\system32\DRIVERS\RtsUCcid.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2009-09-24 203264]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2009-07-17 864032]
R2 DsiWMIService;Dritek WMI Service; C:\Program Files (x86)\Launch Manager\dsiwmis.exe [2009-10-26 117328]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [2013-03-21 1341664]
R2 PSI_SVC_2;Protexis Licensing V2; C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe [2007-07-24 185632]
R2 RS_Service;Raw Socket Service; C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe [2009-07-10 253952]
R2 SQLWriter;SQL Server VSS Writer; c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2008-11-25 153952]
R2 Updater Service;Updater Service; C:\Program Files\Acer\Acer Updater\UpdaterService.exe [2009-07-04 240160]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-07-12 116648]
S2 IviRegMgr;IviRegMgr; C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe [2007-01-05 112152]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-07-12 116648]
S3 Partner Service;Partner Service; C:\ProgramData\Partner\Partner.exe [2009-10-20 332272]

-----------------EOF-----------------

V logu není nic nebezpečného vidět. Co jste v poslední době instaloval? Nebyl přidán nějaký hw?

Ntb se delší dobu silně přehříval. Proto byla zakoupena chladící podložka. Ntb se přehříval i přes to a ke konci často ntb začal padat po zobrazení bluescreen. Bluescreeny se zobrazovaly docela krátce, takže celé znění jsem nebyl schopný přečíst. Tak jsem ntb obnovil do tov. nastavení. Nejsem si ovšem jistý, zda problém s NT Kernel & System byl i zpočátku. Ntb není můj, tudíž nevím, kdy problém začal. Jen jsem byl obeznámen, že se ntb seká a přehřívá. Systém jsem několikrát obnovil, ale bez úspěchu.

Snad bych ještě dodal jednu věc. Bluescreen se často objevuje jakmile něco stahuji či instaluji. Ovšem HDD byl několikrát testován různými programy a je bez vad. Co bych ale dodal je to, že když spustím diagnostiku paměti pomocí windowsáckého programu, po spuštění ntb jede bez problémů!!! NT Kernel & System je v normálu a ntb jede bez jakýchkoliv problémů. Jakmile jsem ovšem diagnostikoval paměti přes Memtest86, zhruba v 20% se ntb vypnul. Mám za to, že z důvodu přehřátí, protože je nadměrně horký.

Samozřejmě diagnostika přes program od windows proběhla celá a paměti jsou podle tohoto programu v pořádku...

To opravdu vypadá na přehřívání. V logu není nic zvláštního vidět. Nainstalujte Speedfan: http://www.stahuj.centrum.cz/utility_a_ ... /speedfan/ a v průběhu chodu sledujte teploty systému. Neměly by překačovat trvale 65°C (u NB 70°C).

Zdravím, tak jsem ntb dnes zapnul a CPU překvapivě v pohodě. Ale s teplotou to je asi špatné. Moc se v tom programu nevyznám, ale HD0: 35C, Temp1: 74C, Core: 70C...

Jsou to hraniční hodnoty. Bude třeba NB rozebrat, přepastovat chladiče a vyčistit vzduchový kanál a větrák.

Právě že už je přepastovaný i vyčištěný... A CPU opět vysoké... vypadá to, že se servisu nevyhnu...

Opět? Před tím jste psal, že už je OK. Na zkoušku vypněte aut. aktualizace a přeinstalujte antivir.