Prosím o kontrolu - pomalý start PC Vyřešeno

Místo pro vaše HiJackThis logy a logy z dalších programů…

Moderátoři: Mods_senior, Security team

naro
Level 1.5
Level 1.5
Příspěvky: 103
Registrován: listopad 13
Pohlaví: Nespecifikováno
Stav:
Offline

Re: Prosím o kontrolu - pomalý start PC

Příspěvekod naro » 13 bře 2017 18:54

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 12-03-2017
Ran by Blaster (administrator) on BLASTER-PC (13-03-2017 18:40:53)
Running from C:\Users\Blaster\Downloads
Loaded Profiles: Blaster (Available Profiles: Blaster)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Language: Angličtina (Spojené státy)
Internet Explorer Version 11 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(Cisco Systems, Inc.) C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
(Apache Software Foundation) C:\xampp\apache\bin\httpd.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
(Cisco Systems, Inc.) C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe
(Apache Software Foundation) C:\xampp\apache\bin\httpd.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
() C:\xampp\mysql\bin\mysqld.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(VMware, Inc.) C:\Windows\SysWOW64\vmnetdhcp.exe
(VMware, Inc.) C:\Windows\SysWOW64\vmnat.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(VMware, Inc.) C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Oracle Corporation) C:\Program Files\NetBeans 8.0.2\bin\netbeans64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\WINWORD.EXE
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [61896 2016-12-29] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [909744 2017-03-03] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [Cisco AnyConnect Secure Mobility Agent for Windows] => C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe [708496 2015-10-23] (Cisco Systems, Inc.)
HKU\S-1-5-21-189607784-2882094461-4077407150-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8418584 2015-07-17] (Piriform Ltd)
HKU\S-1-5-21-189607784-2882094461-4077407150-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\scrnsave.scr [11264 2009-07-14] (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.246.1
Tcpip\..\Interfaces\{4DBC3D43-223C-4C04-8F8D-E75B9D7BD700}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{59748E01-6BCA-470F-B063-377C6721CAD0}: [NameServer] 10.0.4.90,10.0.4.94
Tcpip\..\Interfaces\{7B908F17-8421-4AAC-BD35-DC858ECE2981}: [DhcpNameServer] 192.168.246.1
Tcpip\..\Interfaces\{C5AF72BC-8712-428D-8FCF-361351354519}: [DhcpNameServer] 192.168.179.2

Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-189607784-2882094461-4077407150-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKU\S-1-5-21-189607784-2882094461-4077407150-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dl ... r=iesearch
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-189607784-2882094461-4077407150-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-189607784-2882094461-4077407150-1000 -> {6371E144-9089-454B-AB4E-B1A8534749F4} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_27368
SearchScopes: HKU\S-1-5-21-189607784-2882094461-4077407150-1000 -> {BE207C3C-1597-436F-B7B7-D84477C85C36} URL = hxxps://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:{language}:{referrer:source}&ie={inputEncoding?}&oe={outputEncoding?}
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2017-02-19] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_121\bin\ssv.dll [2017-01-23] (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\root\Office16\URLREDIR.DLL [2017-02-19] (Microsoft Corporation)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\root\Office16\GROOVEEX.DLL [2017-02-19] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-01-23] (Oracle Corporation)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2017-02-19] (Microsoft Corporation)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\URLREDIR.DLL [2017-02-19] (Microsoft Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\GROOVEEX.DLL [2017-02-19] (Microsoft Corporation)
DPF: HKLM-x32 {538793D5-659C-4639-A56C-A179AD87ED44} hxxps://vpn.upce.cz/CACHE/stc/4/binaries/vpnweb.cab
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2017-03-07] (Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2017-03-07] (Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2017-03-07] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2017-03-07] (Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2017-03-07] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2017-03-07] (Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2017-03-07] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2017-03-07] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\Blaster\AppData\Roaming\Nvu\Profiles\t0zmbd25.default [2017-03-09]
FF NewTab: Nvu\Profiles\t0zmbd25.default -> about:newtab
FF Homepage: Nvu\Profiles\t0zmbd25.default -> about:home
FF ProfilePath: C:\Users\Blaster\AppData\Roaming\Mozilla\SeaMonkey\Profiles\iy5rbqga.default [2017-03-13]
FF NewTab: Mozilla\SeaMonkey\Profiles\iy5rbqga.default -> about:newtab
FF Homepage: Mozilla\SeaMonkey\Profiles\iy5rbqga.default -> about:home
FF Extension: (DOM Inspector) - C:\Users\Blaster\AppData\Roaming\Mozilla\SeaMonkey\Profiles\iy5rbqga.default\Extensions\inspector@mozilla.org.xpi [2016-02-16] [not signed]
FF Extension: (ChatZilla) - C:\Users\Blaster\AppData\Roaming\Mozilla\SeaMonkey\Profiles\iy5rbqga.default\Extensions\{59c81df5-4b7a-477b-912d-4e0fdf64e5f2}.xpi [2016-02-16] [not signed]
FF ProfilePath: C:\Users\Blaster\AppData\Roaming\Mozilla\Firefox\Profiles\0jawrvp4.default [2017-03-13]
FF Extension: (YouTube mp3) - C:\Users\Blaster\AppData\Roaming\Mozilla\Firefox\Profiles\0jawrvp4.default\Extensions\info@youtube-mp3.org.xpi [2016-04-27]
FF Extension: (Adblock Plus) - C:\Users\Blaster\AppData\Roaming\Mozilla\Firefox\Profiles\0jawrvp4.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-11-23]
FF Extension: (Greasemonkey) - C:\Users\Blaster\AppData\Roaming\Mozilla\Firefox\Profiles\0jawrvp4.default\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi [2017-02-23]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_24_0_0_221.dll [2017-02-15] ()
FF Plugin: @java.com/DTPlugin,version=11.121.2 -> C:\Program Files\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll [2017-01-23] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.121.2 -> C:\Program Files\Java\jre1.8.0_121\bin\plugin2\npjp2.dll [2017-01-23] (Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2017-02-19] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_24_0_0_221.dll [2017-02-15] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1219160.dll [2015-07-23] (Adobe Systems, Inc.)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2017-02-19] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2017-02-19] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-12-23] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-189607784-2882094461-4077407150-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Blaster\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [No File]

Chrome:
=======
CHR Profile: C:\Users\Blaster\AppData\Local\Google\Chrome\User Data\Default [2017-03-13]
CHR Extension: (Prezentace Google) - C:\Users\Blaster\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-09-22]
CHR Extension: (Dokumenty Google) - C:\Users\Blaster\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-09-22]
CHR Extension: (Disk Google) - C:\Users\Blaster\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-30]
CHR Extension: (Seznam Lištička - Email) - C:\Users\Blaster\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2017-03-05]
CHR Extension: (Seznam Lištička - Slovník) - C:\Users\Blaster\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2017-03-05]
CHR Extension: (YouTube) - C:\Users\Blaster\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-30]
CHR Extension: (Vyhledávání Google) - C:\Users\Blaster\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-30]
CHR Extension: (Tampermonkey) - C:\Users\Blaster\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2017-01-07]
CHR Extension: (Tabulky Google) - C:\Users\Blaster\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-09-22]
CHR Extension: (Avira Browser Safety) - C:\Users\Blaster\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2016-10-27]
CHR Extension: (Dokumenty Google offline) - C:\Users\Blaster\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-17]
CHR Extension: (AdBlock) - C:\Users\Blaster\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-02-25]
CHR Extension: (Agar.io Guide Skins and Powerups) - C:\Users\Blaster\AppData\Local\Google\Chrome\User Data\Default\Extensions\lggjoeoadbenkimmgnfdigiodkkmknik [2016-08-05]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Blaster\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-09]
CHR Extension: (Seznam Lištička - Rychlá volba) - C:\Users\Blaster\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2017-03-05]
CHR Extension: (Gmail) - C:\Users\Blaster\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-09-22]
CHR Extension: (Chrome Media Router) - C:\Users\Blaster\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-02-08]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [1115552 2017-03-03] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [487424 2017-03-03] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [487424 2017-03-03] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [1519144 2017-03-03] (Avira Operations GmbH & Co. KG)
R2 Apache2.4; C:\xampp\apache\bin\httpd.exe [26112 2016-07-01] (Apache Software Foundation) [File not signed]
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [372272 2016-12-29] (Avira Operations GmbH & Co. KG)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [3294920 2017-02-19] (Microsoft Corporation)
S2 FileZillaServer; C:\xampp\filezillaftp\filezillaserver.exe [632320 2012-02-26] (FileZilla Project) [File not signed]
R2 mysql; C:\xampp\mysql\bin\mysqld.exe [11738568 2016-07-18] ()
S3 Te.Service; C:\Program Files (x86)\Windows Kits\10\Testing\Runtimes\TAEF\Wex.Services.exe [134656 2015-07-09] (Microsoft Corporation) [File not signed]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [7757040 2017-02-02] (TeamViewer GmbH)
S2 Tomcat7; C:\xampp\tomcat\bin\tomcat7.exe [86656 2014-09-26] (Apache Software Foundation)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-14] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [176968 2017-03-03] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [148104 2017-03-03] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [35328 2017-03-03] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [78600 2017-03-03] (Avira Operations GmbH & Co. KG)
S3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2016-06-14] (Disc Soft Ltd)
S3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [47672 2016-06-14] (Disc Soft Ltd)
R3 HPMo4DE3; C:\Windows\System32\DRIVERS\HPMo4DE3.sys [25088 2011-03-09] (TPMX Electronics Ltd.)
R3 HPub4DE3; C:\Windows\System32\Drivers\HPub4DE3.sys [18432 2011-04-12] (TPMX Electronics Ltd.)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [26528 2015-08-17] (REALiX(tm))
R3 vpnva; C:\Windows\System32\DRIVERS\vpnva64-6.sys [52592 2014-11-19] (Cisco Systems, Inc.)
R0 vsock; C:\Windows\System32\DRIVERS\vsock.sys [93248 2016-09-30] (VMware, Inc.)
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
S1 ZAM; \??\C:\Windows\System32\drivers\zam64.sys [X]
S1 ZAM_Guard; \??\C:\Windows\System32\drivers\zamguard64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-03-13 18:40 - 2017-03-13 18:42 - 00020479 _____ C:\Users\Blaster\Downloads\FRST.txt
2017-03-13 18:40 - 2017-03-13 18:40 - 02424832 _____ (Farbar) C:\Users\Blaster\Downloads\FRST64.exe
2017-03-13 18:40 - 2017-03-13 18:40 - 00000000 ____D C:\FRST
2017-03-13 16:53 - 2017-03-13 16:53 - 02437672 _____ C:\Users\Blaster\Downloads\OperaNeonSetup.exe
2017-03-13 15:24 - 2017-03-13 15:24 - 00000000 ____D C:\Users\Blaster\Desktop\MemTest
2017-03-13 15:22 - 2017-03-13 15:22 - 00001200 _____ C:\Users\Blaster\Desktop\CrystalDiskInfo.lnk
2017-03-13 15:22 - 2017-03-13 15:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo
2017-03-13 15:22 - 2017-03-13 15:22 - 00000000 ____D C:\Program Files (x86)\CrystalDiskInfo
2017-03-13 15:21 - 2017-03-13 15:21 - 03961080 _____ (Crystal Dew World ) C:\Users\Blaster\Downloads\CrystalDiskInfo7_0_5.exe
2017-03-13 15:20 - 2017-03-13 15:20 - 00015600 _____ C:\Users\Blaster\Downloads\MemTest.zip
2017-03-13 15:20 - 2017-03-13 15:20 - 00000000 ____D C:\Users\Blaster\Downloads\MemTest
2017-03-12 20:26 - 2017-03-12 15:07 - 00016125 _____ C:\Users\Blaster\Desktop\index.html
2017-03-12 16:51 - 2017-03-12 16:51 - 00000787 _____ C:\Users\Blaster\Desktop\cas.txt
2017-03-12 13:47 - 2017-03-12 13:48 - 00001260 _____ C:\DelFix.txt
2017-03-10 16:02 - 2017-03-10 22:11 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-03-10 14:17 - 2017-03-10 14:17 - 00000359 _____ C:\Users\Blaster\Desktop\krtek.txt
2017-03-10 11:35 - 2017-03-12 13:45 - 00000000 ____D C:\Windows\erdnt
2017-03-09 16:27 - 2017-03-09 16:27 - 00270842 _____ C:\Users\Blaster\Desktop\zadani-sem-prace-a.pdf
2017-03-09 16:10 - 2017-03-09 16:10 - 00000000 ____D C:\zoek
2017-03-09 14:20 - 2017-03-10 12:46 - 00589903 _____ C:\Windows\ZAM_Guard.krnl.trace
2017-03-09 14:20 - 2017-03-10 11:28 - 00060528 _____ C:\Windows\ZAM.krnl.trace
2017-03-09 14:19 - 2017-03-10 12:58 - 00000000 ____D C:\Program Files (x86)\Zemana AntiMalware
2017-03-09 14:18 - 2017-03-09 14:18 - 00000000 ____D C:\Users\Blaster\AppData\Local\Zemana
2017-03-09 14:17 - 2017-03-09 14:18 - 05755024 _____ (Zemana Ltd. ) C:\Users\Blaster\Downloads\Zemana.AntiMalware.Setup.exe
2017-03-09 14:15 - 2017-03-09 17:38 - 00003350 _____ C:\runcheck.txt
2017-03-09 00:13 - 2017-03-09 00:12 - 00105353 _____ C:\Users\Blaster\Desktop\^71B5EBA3DE0F26D590F0C1D00F6E358C5D97DF03D5B682A8CE^pimgpsh_fullsize_distr.jpg
2017-03-08 17:50 - 2017-03-08 17:50 - 01613824 _____ C:\Users\Blaster\Downloads\APLIKOVANÁ INFORMATIKA.ppt
2017-03-08 17:50 - 2017-03-08 17:50 - 00077548 _____ C:\Users\Blaster\Downloads\Technicképrost edky1.pptx
2017-03-08 17:49 - 2017-03-08 17:49 - 00332288 _____ C:\Users\Blaster\Downloads\Analogové po íta e.ppt
2017-03-07 10:03 - 2017-03-07 10:03 - 00000000 ____D C:\Program Files\Common Files\DESIGNER
2017-03-05 21:34 - 2017-03-09 14:13 - 00028272 _____ C:\Windows\system32\Drivers\TrueSight.sys
2017-03-05 21:19 - 2017-03-05 22:14 - 00000000 ____D C:\ProgramData\RogueKiller
2017-03-05 21:15 - 2017-03-05 21:15 - 00000000 ____D C:\ProgramData\Sophos
2017-03-05 21:13 - 2017-03-05 21:14 - 163161040 _____ (Sophos Limited) C:\Users\Blaster\Downloads\Sophos Virus Removal Tool (1).exe
2017-03-05 21:13 - 2017-03-05 21:13 - 163161040 _____ (Sophos Limited) C:\Users\Blaster\Downloads\Sophos Virus Removal Tool.exe
2017-03-05 21:10 - 2017-03-05 21:10 - 00001799 _____ C:\Users\Blaster\Desktop\asas.txt
2017-03-05 20:23 - 2017-03-05 20:23 - 00163613 _____ C:\Users\Blaster\Downloads\Zapocet-Bc-IDATS.pdf
2017-03-05 14:41 - 2017-03-05 14:41 - 05057572 _____ C:\Users\Blaster\Downloads\[LS]-IDATS---Datove-struktury.rar
2017-03-05 14:41 - 2017-03-05 14:41 - 00000000 ____D C:\Users\Blaster\Downloads\[LS]-IDATS---Datove-struktury
2017-03-03 19:48 - 2017-03-03 19:48 - 00001980 _____ C:\Users\Blaster\Desktop\sd.txt
2017-03-03 19:31 - 2017-03-03 19:31 - 57131432 _____ (Malwarebytes ) C:\Users\Blaster\Downloads\mb3-setup-consumer-3.0.6.1469-1075.exe
2017-03-03 18:58 - 2017-03-03 18:58 - 00050688 _____ (Atribune.org) C:\Users\Blaster\Downloads\ATF-Cleaner.exe
2017-03-03 18:29 - 2017-03-05 13:26 - 00000000 ____D C:\Users\Blaster\Desktop\IDATS_2017
2017-03-02 17:15 - 2017-03-02 17:15 - 01521447 _____ C:\Users\Blaster\Downloads\Teorka ZK.pdf
2017-03-02 15:54 - 2017-03-02 15:54 - 00001496 _____ C:\Users\Blaster\Desktop\Source.cpp
2017-03-02 15:11 - 2017-03-02 15:11 - 13196113 _____ C:\Users\Blaster\Downloads\Academic Skills Reading Wri SS.pdf
2017-03-02 14:59 - 2017-03-02 14:59 - 00311261 _____ C:\Users\Blaster\Downloads\1-Bc-DATSTR-2016-2017-student.pdf
2017-02-28 15:15 - 2017-02-28 15:15 - 00136548 _____ C:\Users\Blaster\Downloads\SPC19732.pdf
2017-02-28 14:57 - 2017-02-28 14:57 - 00133996 _____ C:\Users\Blaster\Downloads\Objednávací doba na plánované výkony v roce 2016.pdf
2017-02-25 17:42 - 2017-02-25 17:42 - 00792610 _____ C:\Users\Blaster\Downloads\WS2016LicensingDatasheet (1).pdf
2017-02-25 17:33 - 2017-02-25 17:33 - 01063873 _____ C:\Users\Blaster\Downloads\WinSvr2016-Licencni_Datasheet.pdf
2017-02-25 17:30 - 2017-02-25 17:30 - 00792610 _____ C:\Users\Blaster\Downloads\WS2016LicensingDatasheet.pdf
2017-02-25 12:50 - 2017-02-25 12:50 - 00212255 _____ C:\Users\Blaster\Downloads\WIndows_Server_2016_Feature_Comparison_Guide.pdf
2017-02-24 18:26 - 2017-02-26 18:13 - 00000000 ____D C:\Users\Blaster\Documents\Virtual Machines
2017-02-24 18:02 - 2017-02-24 18:02 - 00000000 ____D C:\Windows Server 2016 DataCenter Nano VHD
2017-02-24 17:59 - 2017-02-24 18:17 - 2677254144 _____ C:\Users\Blaster\Downloads\14393.0.161119-1705.RS1_REFRESH_SERVER_EVAL_X64FRE_EN-US.ISO
2017-02-24 17:59 - 2017-02-24 17:59 - 126630296 _____ (Microsoft Corporation ) C:\Users\Blaster\Downloads\NanoServerDatacenter.vhd.exe
2017-02-24 17:53 - 2017-02-24 17:53 - 05740055 _____ C:\Users\Blaster\Downloads\Windows_Server_2016_3_Reasons_ebook_EN_US.pdf
2017-02-24 17:51 - 2017-02-26 18:55 - 00000000 ____D C:\Users\Blaster\Desktop\ISOSY
2017-02-24 16:46 - 2017-02-24 16:46 - 02690754 _____ C:\Users\Blaster\Desktop\Win2k16.pptx
2017-02-24 13:56 - 2016-11-11 23:22 - 00400968 _____ (VMware, Inc.) C:\Windows\SysWOW64\vmnat.exe
2017-02-24 13:56 - 2016-11-11 23:22 - 00366664 _____ (VMware, Inc.) C:\Windows\SysWOW64\vmnetdhcp.exe
2017-02-24 13:56 - 2016-11-11 23:21 - 01148488 _____ (VMware, Inc.) C:\Windows\system32\vnetlib64.dll
2017-02-24 13:56 - 2016-11-11 23:16 - 00088128 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vmx86.sys
2017-02-24 13:56 - 2016-11-11 23:05 - 00066624 _____ (VMware, Inc.) C:\Windows\system32\vnetinst.dll
2017-02-24 13:56 - 2016-11-11 23:05 - 00045632 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vmnet.sys
2017-02-24 13:56 - 2016-11-11 23:05 - 00044096 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vmnetuserif.sys
2017-02-24 13:56 - 2016-09-30 01:11 - 00093248 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vsock.sys
2017-02-24 13:56 - 2016-09-30 01:11 - 00069104 _____ (VMware, Inc.) C:\Windows\system32\vsocklib.dll
2017-02-24 13:56 - 2016-09-30 01:11 - 00065008 _____ (VMware, Inc.) C:\Windows\SysWOW64\vsocklib.dll
2017-02-24 13:56 - 2016-09-06 18:48 - 00083008 _____ (VMware, Inc.) C:\Windows\system32\Drivers\hcmon.sys
2017-02-24 13:55 - 2017-02-24 13:55 - 00001188 _____ C:\Users\Public\Desktop\VMware Workstation 12 Player.lnk
2017-02-24 13:55 - 2017-02-24 13:55 - 00000000 ____D C:\Program Files\Common Files\VMware
2017-02-24 13:53 - 2017-02-24 13:53 - 78312488 _____ (VMware, Inc.) C:\Users\Blaster\Downloads\VMware-player-12.5.2-4638234.exe
2017-02-23 21:04 - 2017-02-23 21:04 - 00000000 ____H C:\Users\Blaster\Documents\Default.rdp
2017-02-23 17:27 - 2017-03-10 11:28 - 00000000 ____D C:\Users\Blaster\AppData\Roaming\Smart PC Solutions
2017-02-23 17:16 - 2017-02-23 17:17 - 02749720 _____ (GreenVantage LLC) C:\Users\Blaster\Downloads\SetupWinBootInfo_x86 (1).exe
2017-02-23 17:14 - 2017-02-23 17:15 - 02726424 _____ (GreenVantage LLC) C:\Users\Blaster\Downloads\SetupWinBootInfo_x86.exe
2017-02-23 16:56 - 2017-02-23 16:56 - 493441488 _____ C:\Windows\MEMORY.DMP
2017-02-23 16:56 - 2017-02-23 16:56 - 00276560 _____ C:\Windows\Minidump\022317-18642-01.dmp
2017-02-21 18:34 - 2017-02-21 18:34 - 01301201 _____ C:\Users\Blaster\Downloads\Glocknerova-DFADS-2012.pdf
2017-02-21 13:54 - 2017-02-21 13:54 - 00029293 _____ C:\Users\Blaster\Downloads\OZZ1.pdf
2017-02-19 19:11 - 2017-02-19 19:11 - 00137670 _____ C:\Users\Blaster\Desktop\640-slozenka-final-122015.pdf
2017-02-19 14:15 - 2017-02-19 14:16 - 03086696 _____ C:\Users\Blaster\Downloads\instspeedfan452.exe
2017-02-19 14:12 - 2017-02-19 14:12 - 00639728 _____ (Microsoft Corporation) C:\Windows\system32\msvcp140.dll
2017-02-19 14:12 - 2017-02-19 14:12 - 00334616 _____ (Microsoft Corporation) C:\Windows\system32\concrt140.dll
2017-02-19 14:12 - 2017-02-19 14:12 - 00244504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\concrt140.dll
2017-02-19 14:11 - 2017-02-19 14:11 - 00443632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp140.dll
2017-02-19 14:11 - 2017-02-19 14:11 - 00089328 _____ (Microsoft Corporation) C:\Windows\system32\vcruntime140.dll
2017-02-19 14:10 - 2017-02-19 14:10 - 00085744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vcruntime140.dll
2017-02-19 14:09 - 2017-02-19 14:09 - 00394504 _____ (Microsoft Corporation) C:\Windows\system32\vccorlib140.dll
2017-02-19 14:09 - 2017-02-19 14:09 - 00271104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vccorlib140.dll
2017-02-16 13:24 - 2017-02-16 13:24 - 00000090 _____ C:\Users\Blaster\Documents\balet.txt
2017-02-15 12:03 - 2017-02-15 12:03 - 00311457 _____ C:\Users\Blaster\Downloads\Erasmus_partnerské země_FEI.pdf
2017-02-13 14:43 - 2017-02-13 14:43 - 00000414 _____ C:\Users\Blaster\Documents\podpis_travian_forum.txt

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-03-13 18:37 - 2015-08-18 09:59 - 00000000 ____D C:\Users\Blaster\AppData\Roaming\Skype
2017-03-13 17:52 - 2015-08-18 16:05 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2017-03-13 17:38 - 2015-08-24 18:58 - 00000000 ____D C:\Program Files\NetBeans 8.0.2
2017-03-13 15:04 - 2009-07-14 05:45 - 00014192 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-03-13 15:04 - 2009-07-14 05:45 - 00014192 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-03-13 14:58 - 2016-03-20 18:41 - 00000000 ____D C:\ProgramData\VMware
2017-03-13 14:57 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-03-13 14:55 - 2015-08-17 18:21 - 00065536 _____ C:\Windows\system32\spu_storage.bin
2017-03-12 19:26 - 2016-11-27 15:18 - 00000000 ____D C:\Users\Blaster\AppData\Roaming\TS3Client
2017-03-11 11:40 - 2009-07-14 03:34 - 00000215 _____ C:\Windows\system.ini
2017-03-11 11:32 - 2015-09-20 13:20 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2017-03-11 09:48 - 2015-08-17 17:58 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-03-09 17:10 - 2015-12-23 13:41 - 00000000 ____D C:\Users\Blaster\AppData\Local\CrashDumps
2017-03-09 16:23 - 2015-08-17 18:54 - 00000000 ____D C:\Users\Blaster\AppData\Local\Adobe
2017-03-09 16:17 - 2015-08-17 16:41 - 00000000 ____D C:\Users\Blaster
2017-03-07 10:04 - 2015-08-18 10:00 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2017-03-07 10:03 - 2009-07-14 04:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2017-03-07 10:02 - 2015-08-18 10:00 - 00000000 ____D C:\Program Files\Microsoft Office
2017-03-06 13:01 - 2016-01-26 20:27 - 00000971 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 11.lnk
2017-03-06 13:01 - 2016-01-26 20:27 - 00000959 _____ C:\Users\Public\Desktop\TeamViewer 11.lnk
2017-03-06 07:58 - 2009-07-14 06:08 - 00032616 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2017-03-03 00:19 - 2015-08-18 09:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2017-03-03 00:18 - 2016-10-06 12:51 - 00051248 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avusbflt.sys
2017-03-03 00:18 - 2015-08-18 09:59 - 00176968 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2017-03-03 00:18 - 2015-08-18 09:59 - 00148104 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2017-03-03 00:18 - 2015-08-18 09:59 - 00078600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2017-03-03 00:18 - 2015-08-18 09:59 - 00035328 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2017-02-26 18:36 - 2016-03-19 13:08 - 00000000 ____D C:\Users\Blaster\AppData\Roaming\VMware
2017-02-24 13:56 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf
2017-02-24 13:55 - 2015-08-18 10:35 - 01648932 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2017-02-24 13:55 - 2015-08-18 10:18 - 00689494 _____ C:\Windows\system32\perfh005.dat
2017-02-24 13:55 - 2015-08-18 10:18 - 00148526 _____ C:\Windows\system32\perfc005.dat
2017-02-23 17:03 - 2015-09-22 10:45 - 00000000 ____D C:\Program Files (x86)\Opera
2017-02-23 17:03 - 2015-08-17 16:41 - 00001393 _____ C:\Users\Blaster\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2017-02-23 16:56 - 2015-08-31 20:55 - 00000000 ____D C:\Windows\Minidump
2017-02-21 17:04 - 2015-08-26 19:04 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-02-19 15:25 - 2015-08-18 12:40 - 00000000 ____D C:\Program Files (x86)\SpeedFan
2017-02-19 14:16 - 2015-08-18 12:40 - 00001007 _____ C:\Users\Blaster\Desktop\SpeedFan.lnk
2017-02-19 14:16 - 2015-08-18 12:40 - 00000045 _____ C:\Windows\SysWOW64\initdebug.nfo
2017-02-15 12:52 - 2015-08-18 16:05 - 00802904 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2017-02-15 12:52 - 2015-08-18 16:05 - 00144472 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2017-02-15 12:52 - 2015-08-18 16:05 - 00003852 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2017-02-15 12:52 - 2015-08-18 16:05 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2017-02-15 12:52 - 2015-08-18 16:05 - 00000000 ____D C:\Windows\system32\Macromed
2017-02-14 17:13 - 2015-10-07 12:24 - 00000000 ____D C:\Users\Blaster\AppData\Local\TSVNCache
2017-02-14 15:35 - 2015-08-24 19:24 - 00000000 ____D C:\Users\Blaster\AppData\Roaming\TeamViewer
2017-02-14 15:32 - 2015-08-26 19:04 - 00000000 ____D C:\Program Files (x86)\Adobe
2017-02-14 15:27 - 2015-08-17 18:54 - 00000000 ____D C:\Users\Blaster\AppData\Roaming\Adobe
2017-02-14 15:22 - 2015-08-18 09:51 - 00000000 ____D C:\Program Files\CCleaner
2017-02-14 14:54 - 2015-09-01 07:38 - 00000000 ____D C:\Users\Blaster\AppData\Local\Sony

==================== Files in the root of some directories =======

2016-10-30 12:25 - 2016-10-30 12:25 - 0000600 _____ () C:\Users\Blaster\AppData\Local\PUTTY.RND
2015-08-17 18:02 - 2015-08-17 18:02 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2017-03-05 14:21

==================== End of FRST.txt ============================

Reklama
Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43054
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu - pomalý start PC

Příspěvekod jaro3 » 14 bře 2017 09:51

Prosím, postupuj následujícím způsobem:
Otevřít poznámkový blok (Start => Všechny programy => Příslušenství => Poznámkový blok).
Prosím, zkopíruj do něj celý obsah níže.

Kód: Vybrat vše

Start
CloseProcesses:
Task: {3B06C288-D2C1-4059-8FF0-E5F6A785A663} - \{E0DA7D18-861E-47F3-B3CA-7FB21BBBDA03} -> No File <==== ATTENTION
Task: {A190D2BD-45A8-441A-9B1B-AB5E432EF533} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-22] (Google Inc.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-189607784-2882094461-4077407150-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-189607784-2882094461-4077407150-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-189607784-2882094461-4077407150-1000 -> {6371E144-9089-454B-AB4E-B1A8534749F4} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_27368
SearchScopes: HKU\S-1-5-21-189607784-2882094461-4077407150-1000 -> {BE207C3C-1597-436F-B7B7-D84477C85C36} URL = hxxps://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:{language}:{referrer:source}&ie={inputEncoding?}&oe={outputEncoding?}
FF Plugin HKU\S-1-5-21-189607784-2882094461-4077407150-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Blaster\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [No File]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
C:\ProgramData\DP45977C.lfl

EmptyTemp:
End

(Můžeš použít funkci „vybrat vše“, klepni pravým tlačítkem myši na levé horní políčko v otevřeném poznámkovém bloku a zvol „ Vložit“).

Ulož jej na na plochu jako fixlist.txt


Spusťt FRST a stiskni tlačítko „Fix“ (Opravit) jen jednou a čekej.
Nástroj vypracuje log na ploše (Fixlog.txt), prosím zkopíruj sem celý jeho obsah.

(1) SAMSUNG HD253GJ
000000000845 Průchodnost disku
000000001435 Čas na roztočení ploten

(2) ST1000DM003-1ER162
000000000003 Časový limit příkazu
Udělej dnes znovu CDI.

Stáhni si a nainstaluj WhoCrashed
otevři ho a klikni na Analyze.
Program vytvoří zprávu , zkopíruj celou a vlož prosím sem.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra

naro
Level 1.5
Level 1.5
Příspěvky: 103
Registrován: listopad 13
Pohlaví: Nespecifikováno
Stav:
Offline

Re: Prosím o kontrolu - pomalý start PC

Příspěvekod naro » 14 bře 2017 12:46

Fix result of Farbar Recovery Scan Tool (x64) Version: 13-03-2017
Ran by Blaster (14-03-2017 12:42:47) Run:1
Running from C:\Users\Blaster\Desktop
Loaded Profiles: Blaster (Available Profiles: Blaster)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CloseProcesses:
Task: {3B06C288-D2C1-4059-8FF0-E5F6A785A663} - \{E0DA7D18-861E-47F3-B3CA-7FB21BBBDA03} -> No File <==== ATTENTION
Task: {A190D2BD-45A8-441A-9B1B-AB5E432EF533} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-22] (Google Inc.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-189607784-2882094461-4077407150-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-189607784-2882094461-4077407150-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-189607784-2882094461-4077407150-1000 -> {6371E144-9089-454B-AB4E-B1A8534749F4} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_27368
SearchScopes: HKU\S-1-5-21-189607784-2882094461-4077407150-1000 -> {BE207C3C-1597-436F-B7B7-D84477C85C36} URL = hxxps://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:{language}:{referrer:source}&ie={inputEncoding?}&oe={outputEncoding?}
FF Plugin HKU\S-1-5-21-189607784-2882094461-4077407150-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Blaster\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [No File]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
C:\ProgramData\DP45977C.lfl

EmptyTemp:
End
*****************

Processes closed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3B06C288-D2C1-4059-8FF0-E5F6A785A663} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3B06C288-D2C1-4059-8FF0-E5F6A785A663} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{E0DA7D18-861E-47F3-B3CA-7FB21BBBDA03} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A190D2BD-45A8-441A-9B1B-AB5E432EF533} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A190D2BD-45A8-441A-9B1B-AB5E432EF533} => key removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA => key removed successfully
C:\Windows\Tasks\Adobe Flash Player Updater.job => moved successfully
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer => key removed successfully
HKU\S-1-5-21-189607784-2882094461-4077407150-1000\SOFTWARE\Policies\Microsoft\Internet Explorer => key removed successfully
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value restored successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value restored successfully
HKU\S-1-5-21-189607784-2882094461-4077407150-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} => key removed successfully
HKCR\CLSID\{012E1000-F331-11DB-8314-0800200C9A66} => key not found.
HKU\S-1-5-21-189607784-2882094461-4077407150-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6371E144-9089-454B-AB4E-B1A8534749F4} => key removed successfully
HKCR\CLSID\{6371E144-9089-454B-AB4E-B1A8534749F4} => key not found.
HKU\S-1-5-21-189607784-2882094461-4077407150-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{BE207C3C-1597-436F-B7B7-D84477C85C36} => key removed successfully
HKCR\CLSID\{BE207C3C-1597-436F-B7B7-D84477C85C36} => key not found.
HKU\S-1-5-21-189607784-2882094461-4077407150-1000\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0 => key removed successfully
C:\Users\Blaster\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll => not found.
HKLM\SOFTWARE\Google\Chrome\Extensions\flliilndjeohchalpbbcdekjklbdgfkk => key removed successfully
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\efaidnbmnnnibpcajpcglclefindmkaj => key removed successfully
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\flliilndjeohchalpbbcdekjklbdgfkk => key removed successfully
C:\ProgramData\DP45977C.lfl => moved successfully

=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 33427163 B
Java, Flash, Steam htmlcache => 17834 B
Windows/system/drivers => 1767643 B
Edge => 0 B
Chrome => 633143244 B
Firefox => 64730443 B
Opera => 32995258 B

Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 33058 B
Public => 0 B
ProgramData => 0 B
systemprofile => 33186 B
systemprofile32 => 66116 B
LocalService => 132244 B
NetworkService => 66228 B
Blaster => 25402422 B

RecycleBin => 0 B
EmptyTemp: => 763.1 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 12:43:11 ====

naro
Level 1.5
Level 1.5
Příspěvky: 103
Registrován: listopad 13
Pohlaví: Nespecifikováno
Stav:
Offline

Re: Prosím o kontrolu - pomalý start PC

Příspěvekod naro » 14 bře 2017 12:47

----------------------------------------------------------------------------
CrystalDiskInfo 7.0.5 (C) 2008-2016 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------

OS : Windows 7 Ultimate SP1 [6.1 Build 7601] (x64)
Date : 2017/03/14 12:47:04

-- Controller Map ----------------------------------------------------------
+ AMD SATA Controller [ATA]
- SAMSUNG HD253GJ SATA Disk Device
- ST1000DM 003-1ER162 SATA Disk Device

-- Disk List ---------------------------------------------------------------
(1) SAMSUNG HD253GJ : 250,0 GB [0/0/0, pd1]
(2) ST1000DM003-1ER162 : 1000,2 GB [1/0/0, pd1] - st

----------------------------------------------------------------------------
(1) SAMSUNG HD253GJ
----------------------------------------------------------------------------
Model : SAMSUNG HD253GJ
Firmware : 1AJ10001
Serial Number : S24JJ90Z524717
Disk Size : 250,0 GB (8,4/137,4/250,0/250,0)
Buffer Size : 16384 KB
Queue Depth : 32
# of Sectors : 488397168
Rotation Rate : 7200 RPM
Interface : Serial ATA
Major Version : ATA8-ACS
Minor Version : ATA8-ACS version 6
Transfer Mode : ---- | SATA/300
Power On Hours : 15564 hod.
Power On Count : 6704 krát
Temperature : 31 C (87 F)
Health Status : Dobrý
Features : S.M.A.R.T., APM, AAM, 48bit LBA, NCQ
APM Level : 0000h [OFF]
AAM Level : FE00h [OFF]
Drive Letter : E: F: G:

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 100 100 _51 00000000000B Počet chyb čtení
02 _55 _55 __0 000000000845 Průchodnost disku
03 _83 _83 _25 000000001455 Čas na roztočení ploten
04 _91 _91 __0 0000000023ED Počet spuštění/zastavení
05 252 252 _10 000000000000 Počet přemapovaných sektorů
07 252 252 _51 000000000000 Počet chybných hledání
08 252 252 _15 000000000000 Čas potřebný na vyhledání
09 100 100 __0 000000003CCC Hodin v činnosti
0A 252 252 _51 000000000000 Počet opakovaných pokusů o roztočení ploten
0B 252 252 __0 000000000000 Počet pokusů o překalibrování
0C _94 _94 __0 000000001A30 Počet cyklů zapnutí zařízení
BF 100 100 __0 00000000000E Počet udalostí zaznamenaných otřesovým senzorem
C0 252 252 __0 000000000000 Počet vypnutí disku
C2 _64 _56 __0 002D0012001F Teplota
C3 100 100 __0 000000000000 Počet oprav chybného čtení
C4 252 252 __0 000000000000 Počet udalostí s číslem realokování sektorů
C5 252 252 __0 000000000000 Počet podezřelých sektorů
C6 252 252 __0 000000000000 Počet neopravitelných sektorů
C7 _95 _95 __0 000000000A65 Počet chyb v kontrolním součtu UltraDMA
C8 100 100 __0 000000000079 Počet chyb při zápisu sektorů
DF 252 252 __0 000000000000 Zatížení budiče magnetických hlav způsobené opakovanými úkony
E1 100 100 __0 000000002430 Počet cyklů načítání/vymazání

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 0040 3FFF C837 0010 0000 0000 003F 0000 0000 0000
010: 5332 344A 4A39 305A 3532 3437 3137 2020 2020 2020
020: 0000 8000 0050 3141 4A31 3030 3031 5341 4D53 554E
030: 4720 4844 3235 3347 4A20 2020 2020 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 4000 2F00
050: 4000 0200 0200 0007 3FFF 0010 003F FC10 00FB 0110
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 001F 1706 0000 004C 0044
080: 01FF 0028 746B 7F69 4123 7469 BC41 4123 407F 0013
090: 0013 0000 FFFE 0000 FE00 0000 0000 0000 0000 0000
100: 5970 1D1C 0000 0000 0000 0000 4000 0000 5002 4E92
110: 0287 1C5E 0000 0000 0000 0000 0000 0000 0000 401C
120: 401C 0000 0000 0000 0000 0000 0000 0000 0029 0000
130: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
140: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
150: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0002 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 003F 0000 0000 0000
210: 0000 0000 0000 0000 0000 0000 0000 1C20 0000 0000
220: 0000 0000 101F 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0001 0400 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 C7A5

-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 2F 00 64 64 0B 00 00 00 00 00 00 02 26
010: 00 37 37 45 08 00 00 00 00 00 03 23 00 53 53 55
020: 14 00 00 00 00 00 04 32 00 5B 5B ED 23 00 00 00
030: 00 00 05 33 00 FC FC 00 00 00 00 00 00 00 07 2E
040: 00 FC FC 00 00 00 00 00 00 00 08 24 00 FC FC 00
050: 00 00 00 00 00 00 09 32 00 64 64 CC 3C 00 00 00
060: 00 00 0A 32 00 FC FC 00 00 00 00 00 00 00 0B 32
070: 00 FC FC 00 00 00 00 00 00 00 0C 32 00 5E 5E 30
080: 1A 00 00 00 00 00 BF 22 00 64 64 0E 00 00 00 00
090: 00 00 C0 22 00 FC FC 00 00 00 00 00 00 00 C2 02
0A0: 00 40 38 1F 00 12 00 2D 00 00 C3 3A 00 64 64 00
0B0: 00 00 00 00 00 00 C4 32 00 FC FC 00 00 00 00 00
0C0: 00 00 C5 32 00 FC FC 00 00 00 00 00 00 00 C6 30
0D0: 00 FC FC 00 00 00 00 00 00 00 C7 36 00 5F 5F 65
0E0: 0A 00 00 00 00 00 C8 2A 00 64 64 79 00 00 00 00
0F0: 00 00 DF 32 00 FC FC 00 00 00 00 00 00 00 E1 32
100: 00 64 64 30 24 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 E8 08 00 5B
170: 03 00 01 00 02 26 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 D9

-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 33 00 00 00 00 00 00 00 00 00 00 02 00
010: 00 00 00 00 00 00 00 00 00 00 03 19 00 00 00 00
020: 00 00 00 00 00 00 04 00 00 00 00 00 00 00 00 00
030: 00 00 05 0A 00 00 00 00 00 00 00 00 00 00 07 33
040: 00 00 00 00 00 00 00 00 00 00 08 0F 00 00 00 00
050: 00 00 00 00 00 00 09 00 00 00 00 00 00 00 00 00
060: 00 00 0A 33 00 00 00 00 00 00 00 00 00 00 0B 00
070: 00 00 00 00 00 00 00 00 00 00 0C 00 00 00 00 00
080: 00 00 00 00 00 00 BF 00 00 00 00 00 00 00 00 00
090: 00 00 C0 00 00 00 00 00 00 00 00 00 00 00 C2 00
0A0: 00 00 00 00 00 00 00 00 00 00 C3 00 00 00 00 00
0B0: 00 00 00 00 00 00 C4 00 00 00 00 00 00 00 00 00
0C0: 00 00 C5 00 00 00 00 00 00 00 00 00 00 00 C6 00
0D0: 00 00 00 00 00 00 00 00 00 00 C7 00 00 00 00 00
0E0: 00 00 00 00 00 00 C8 00 00 00 00 00 00 00 00 00
0F0: 00 00 DF 00 00 00 00 00 00 00 00 00 00 00 E1 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 3B

----------------------------------------------------------------------------
(2) ST1000DM003-1ER162
----------------------------------------------------------------------------
Model : ST1000DM003-1ER162
Firmware : CC45
Serial Number : Z4Y79GEW
Disk Size : 1000,2 GB (8,4/137,4/1000,2/1000,2)
Buffer Size : Neznámy údaj
Queue Depth : 32
# of Sectors : 1953525168
Rotation Rate : 7200 RPM
Interface : Serial ATA
Major Version : ACS-2
Minor Version : ACS-3 Revision 3b
Transfer Mode : SATA/600 | SATA/600
Power On Hours : 3628 hod.
Power On Count : 2201 krát
Temperature : 33 C (91 F)
Health Status : Dobrý
Features : S.M.A.R.T., APM, 48bit LBA, NCQ
APM Level : 8080h [ON]
AAM Level : ----
Drive Letter : C: D:

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 120 _99 __6 00000E017F58 Počet chyb čtení
03 _97 _97 __0 000000000000 Čas na roztočení ploten
04 _98 _98 _20 00000000089D Počet spuštění/zastavení
05 100 100 _10 000000000000 Počet přemapovaných sektorů
07 _83 _60 _30 00010D1C34AB Počet chybných hledání
09 _96 _96 __0 000000000E2C Hodin v činnosti
0A 100 100 _97 000000000000 Počet opakovaných pokusů o roztočení ploten
0C _98 _98 _20 000000000899 Počet cyklů zapnutí zařízení
B7 100 100 __0 000000000000 Specifický pro výrobce
B8 100 100 _99 000000000000 Ukončovacích chyb
BB 100 100 __0 000000000000 Ohlášeno neopravitelných chyb
BC 100 _99 __0 000000000003 Časový limit příkazu
BD 100 100 __0 000000000000 Vysoká rychlost zápisu
BE _67 _57 _45 000021180021 Teplota toku vzduchu
BF 100 100 __0 000000000000 Počet udalostí zaznamenaných otřesovým senzorem
C0 100 100 __0 00000000000F Počet vypnutí disku
C1 _99 _99 __0 000000000CAC Počet cyklů načítání/vymazání
C2 _33 _43 __0 001300000021 Teplota
C5 100 100 __0 000000000000 Počet podezřelých sektorů
C6 100 100 __0 000000000000 Počet neopravitelných sektorů
C7 200 200 __0 000000000001 Počet chyb v kontrolním součtu UltraDMA
F0 100 253 __0 D36500000EC1 Čas nastavování hlaviček - v hodinách
F1 100 253 __0 000472CC1D62 Total Host Writes
F2 100 253 __0 00AA9C560C68 Total Host Reads

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 0C5A 3FFF C837 0010 0000 0000 003F 0000 0000 0000
010: 2020 2020 2020 2020 2020 2020 5A34 5937 3947 4557
020: 0000 0000 0004 4343 3435 2020 2020 5354 3130 3030
030: 444D 3030 332D 3145 5231 3632 2020 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 4000 2F00
050: 4000 0200 0200 0007 3FFF 0010 003F FC10 00FB 5110
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 001F 850E 0006 00CC 0044
080: 03F0 001F 346B 7D69 4163 3469 BC49 4163 407F 0031
090: 0031 8080 FFFE 0000 D0D0 0000 0000 0000 0000 0000
100: 6DB0 7470 0000 0000 0000 0000 6003 0000 5000 C500
110: 7B35 A6F9 0000 0000 0000 0000 0000 0000 0000 405E
120: 401C 0000 0000 0000 0000 0000 0000 0000 0029 6DB0
130: 7470 6DB0 7470 2020 0002 0140 0100 5000 3C06 3C0A
140: 0000 003C 0000 0008 0000 0000 05FF 0280 0000 0000
150: 0008 0000 0000 0000 0000 8000 0000 0000 5800 8000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0002 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 1085 0000 0000 4000
210: 0000 0000 0000 0000 0000 0000 0000 1C20 0000 0000
220: 0000 0000 107E 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
240: 0000 0000 0000 0007 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 0BA5

-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 0A 00 01 0F 00 78 63 58 7F 01 0E 00 00 00 03 03
010: 00 61 61 00 00 00 00 00 00 00 04 32 00 62 62 9D
020: 08 00 00 00 00 00 05 33 00 64 64 00 00 00 00 00
030: 00 00 07 0F 00 53 3C AB 34 1C 0D 01 00 00 09 32
040: 00 60 60 2C 0E 00 00 00 00 00 0A 13 00 64 64 00
050: 00 00 00 00 00 00 0C 32 00 62 62 99 08 00 00 00
060: 00 00 B7 32 00 64 64 00 00 00 00 00 00 00 B8 32
070: 00 64 64 00 00 00 00 00 00 00 BB 32 00 64 64 00
080: 00 00 00 00 00 00 BC 32 00 64 63 03 00 00 00 00
090: 00 00 BD 3A 00 64 64 00 00 00 00 00 00 00 BE 22
0A0: 00 43 39 21 00 18 21 00 00 00 BF 32 00 64 64 00
0B0: 00 00 00 00 00 00 C0 32 00 64 64 0F 00 00 00 00
0C0: 00 00 C1 32 00 63 63 AC 0C 00 00 00 00 00 C2 22
0D0: 00 21 2B 21 00 00 00 13 00 00 C5 12 00 64 64 00
0E0: 00 00 00 00 00 00 C6 10 00 64 64 00 00 00 00 00
0F0: 00 00 C7 3E 00 C8 C8 01 00 00 00 00 00 00 F0 00
100: 00 64 FD C1 0E 00 00 65 D3 04 F1 00 00 64 FD 62
110: 1D CC 72 04 00 00 F2 00 00 64 FD 68 0C 56 9C AA
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 50 00 00 73
170: 03 00 01 00 01 67 02 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 FF 06 00 00 05 03 03 03 03 03 03 03
190: 03 00 00 00 00 00 00 00 00 01 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 6B 1D 7B 2E E1 0B 00 00
1B0: 00 00 00 00 01 00 63 6B 62 1D CC 72 04 00 00 00
1C0: 68 0C 56 9C AA 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 05 24 00 00 01 00 00 00
1E0: 00 00 00 00 28 30 01 00 00 00 00 00 00 00 00 01
1F0: 00 00 00 00 00 00 00 00 00 00 14 18 00 00 00 51

-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 01 00 01 06 00 00 00 00 00 00 00 00 00 00 03 00
010: 00 00 00 00 00 00 00 00 00 00 04 14 00 00 00 00
020: 00 00 00 00 00 00 05 0A 00 00 00 00 00 00 00 00
030: 00 00 07 1E 00 00 00 00 00 00 00 00 00 00 09 00
040: 00 00 00 00 00 00 00 00 00 00 0A 61 00 00 00 00
050: 00 00 00 00 00 00 0C 14 00 00 00 00 00 00 00 00
060: 00 00 B7 00 00 00 00 00 00 00 00 00 00 00 B8 63
070: 00 00 00 00 00 00 00 00 00 00 BB 00 00 00 00 00
080: 00 00 00 00 00 00 BC 00 00 00 00 00 00 00 00 00
090: 00 00 BD 00 00 00 00 00 00 00 00 00 00 00 BE 2D
0A0: 00 00 00 00 00 00 00 00 00 00 BF 00 00 00 00 00
0B0: 00 00 00 00 00 00 C0 00 00 00 00 00 00 00 00 00
0C0: 00 00 C1 00 00 00 00 00 00 00 00 00 00 00 C2 00
0D0: 00 00 00 00 00 00 00 00 00 00 C5 00 00 00 00 00
0E0: 00 00 00 00 00 00 C6 00 00 00 00 00 00 00 00 00
0F0: 00 00 C7 00 00 00 00 00 00 00 00 00 00 00 F0 00
100: 00 00 00 00 00 00 00 00 00 00 F1 00 00 00 00 00
110: 00 00 00 00 00 00 F2 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 FD

naro
Level 1.5
Level 1.5
Příspěvky: 103
Registrován: listopad 13
Pohlaví: Nespecifikováno
Stav:
Offline

Re: Prosím o kontrolu - pomalý start PC

Příspěvekod naro » 14 bře 2017 12:52

System Information (local)
--------------------------------------------------------------------------------

Computer name: BLASTER-PC
Windows version: Windows 7 Service Pack 1, 6.1, build: 7601
Windows dir: C:\Windows
Hardware: Gigabyte Technology Co., Ltd., F2A88XM-D3H
CPU: AuthenticAMD AMD A10-5800K APU with Radeon(tm) HD Graphics AMD586, level: 21
4 logical processors, active mask: 15
RAM: 7729168384 bytes total




--------------------------------------------------------------------------------
Crash Dump Analysis
--------------------------------------------------------------------------------

Crash dump directory: C:\Windows\Minidump

Crash dumps are enabled on your computer.

On Thu 23.2.2017 16:54:59 your computer crashed
crash dump file: C:\Windows\Minidump\022317-18642-01.dmp
This was probably caused by the following module: tcpip.sys (tcpip+0x56F06)
Bugcheck code: 0x1E (0x0, 0x0, 0x0, 0x0)
Error: KMODE_EXCEPTION_NOT_HANDLED
file path: C:\Windows\system32\drivers\tcpip.sys
product: Microsoft® Windows® Operating System
company: Microsoft Corporation
description: TCP/IP Driver
Bug check description: This indicates that a kernel-mode program generated an exception which the error handler did not catch.
This appears to be a typical software driver bug and is not likely to be caused by a hardware problem.
The crash took place in a standard Microsoft module. Your system configuration may be incorrect. Possibly this problem is caused by another driver on your system that cannot be identified at this time.



On Thu 23.2.2017 16:54:59 your computer crashed
crash dump file: C:\Windows\memory.dmp
This was probably caused by the following module: storport.sys (storport!StorPortGetSrb+0x331F)
Bugcheck code: 0x1E (0x0, 0x0, 0x0, 0x0)
Error: KMODE_EXCEPTION_NOT_HANDLED
file path: C:\Windows\system32\drivers\storport.sys
product: Microsoft® Windows® Operating System
company: Microsoft Corporation
description: Microsoft Storage Port Driver
Bug check description: This indicates that a kernel-mode program generated an exception which the error handler did not catch.
This appears to be a typical software driver bug and is not likely to be caused by a hardware problem.
The crash took place in a standard Microsoft module. Your system configuration may be incorrect. Possibly this problem is caused by another driver on your system that cannot be identified at this time.





--------------------------------------------------------------------------------
Conclusion
--------------------------------------------------------------------------------

2 crash dumps have been found and analyzed. No offending third party drivers have been found. Connsider using WhoCrashed Professional which offers more detailed analysis using symbol resolution. Also configuring your system to produce a full memory dump may help you.


Read the topic general suggestions for troubleshooting system crashes for more information.

Note that it's not always possible to state with certainty whether a reported driver is responsible for crashing your system or that the root cause is in another module. Nonetheless it's suggested you look for updates for the products that these drivers belong to and regularly visit Windows update or enable automatic updates for Windows. In case a piece of malfunctioning hardware is causing trouble, a search with Google on the bug check errors together with the model name and brand of your computer may help you investigate this further.

Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43054
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu - pomalý start PC

Příspěvekod jaro3 » 14 bře 2017 18:51

Stáhni si zde DelFix
https://toolslib.net/downloads/viewdownload/2-delfix/

ulož si soubor na plochu.
Poklepáním na ikonu spusť nástroj Delfix.exe
( Ve Windows Vista, Windows 7 a 8, musíš spustit soubor pravým tlačítkem myši -> Spustit jako správce .
V hlavním menu, zkontroluj tyto možnosti - Odstranění dezinfekce nástrojů (Remove desinfection tools) – Vyčistit body obnovy (Purge System Restore)
Poté klikněte na tlačítko Spustit (Run) a nech nástroj dělat svoji práci

Poté se zpráva se otevře (DelFix.txt). Vlož celý obsah zprávy sem.Jinak je zpráva zde:
v C: \ DelFix.txt

(1) SAMSUNG HD253GJ
000000000845 Průchodnost disku
000000001435 Čas na roztočení ploten
000000000845 Průchodnost disku
000000001455 Čas na roztočení ploten

(2) ST1000DM003-1ER162
000000000003 Časový limit příkazu
000000000003 Časový limit příkazu

Časový limit - príkaz Command Timeout Počet operácií, ktoré boli prerušené kvôli časovému limitu pre pevný disk. Za normálnych okolností by sa táto hodnota mala rovnať nule. Ak je hodnota vyššia ako nula, pravdepodobne sú nejaké problémy s napájaním, alebo je dátový kábel zaoxidovaný.

Spin Up Time
Čas potřebný k roztočení ploten. S časem se zhoršuje, avšak poměrně pomalu. Náhlá změna značí poškození motorku otáčejícího plotny.

ty disky nejsou OK , ale nevím , zda způsobují problémy.

Co problémy?
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra

naro
Level 1.5
Level 1.5
Příspěvky: 103
Registrován: listopad 13
Pohlaví: Nespecifikováno
Stav:
Offline

Re: Prosím o kontrolu - pomalý start PC

Příspěvekod naro » 14 bře 2017 19:58

# DelFix v1.013 - Logfile created 14/03/2017 at 19:56:54
# Updated 17/04/2016 by Xplode
# Username : Blaster - BLASTER-PC
# Operating System : Windows 7 Ultimate Service Pack 1 (64 bits)

~ Removing disinfection tools ...

Deleted : C:\FRST
Deleted : C:\Users\Blaster\Desktop\Fixlog.txt
Deleted : C:\Users\Blaster\Desktop\FRST64 (1).exe
Deleted : C:\Users\Blaster\Downloads\Addition.txt
Deleted : C:\Users\Blaster\Downloads\FRST.txt
Deleted : C:\Users\Blaster\Downloads\FRST64.exe
Deleted : C:\Users\Blaster\Downloads\log.txt

########## - EOF - ##########


A ten druhý disk ST1000DM003-1ER162 je také ve špatném stavu? Mám ho teprve rok. Jinak děkuji moc za pomoc, myslím, že to budeme moct uzavřít.

Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43054
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu - pomalý start PC  Vyřešeno

Příspěvekod jaro3 » 14 bře 2017 21:09

000000000003 Časový limit příkazu
000000000003 Časový limit příkazu

Časový limit - príkaz Command Timeout Počet operácií, ktoré boli prerušené kvôli časovému limitu pre pevný disk. Za normálnych okolností by sa táto hodnota mala rovnať nule. Ak je hodnota vyššia ako nula, pravdepodobne sú nejaké problémy s napájaním, alebo je dátový kábel zaoxidovaný.

zkus jinej kabel , nebo jiný konektor.Jinak OK.

Pokud nejsou problémy , je to vše a můžeš dát vyřešeno , zelenou fajfku.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra


Zpět na “HiJackThis”

Kdo je online

Uživatelé prohlížející si toto fórum: Žádní registrovaní uživatelé a 10 hostů