Kontrola,velmi pomaly notebook.

[jaro3]

Vypni rez. ochranu u antiviru a antispywaru,příp. firewall..

Otevři si Poznámkový blok (Start -> Spustit... a napiš do okna Notepad a dej Ok.
Zkopíruj do něj následující celý text označený zeleně:

Kód: Vybrat vše

ClearJavaCache::
KillAll::
File::
c:\windows\Tasks\Adobe Flash Player Updater.job
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
c:\windows\Tasks\GoogleUpdateTaskMachineCore1d1f09ec4f74ad0.job
c:\windows\Tasks\GoogleUpdateTaskMachineCore1d1f0a0cb7aaf60.job

Folder::
c:\program files\Skype\Updater
c:\program files\Google\Update

Driver::
cpuz134
SkypeUpdate

RegLock::
[HKEY_USERS\S-1-5-21-861567501-1343024091-839522115-1003\Software\Microsoft\SystemCertificates\AddressBook*]
@Allowed: (Read) (RestrictedCode)
@Allowed: (Read) (RestrictedCode)

Zvol možnost Soubor -> Uložit jako... a nastav tyto parametry:
Název souboru: zde napiš: CFScript.txt
Uložit jako typ: tak tam vyber Všechny soubory
Ulož soubor na plochu.
Ukonči všechna aktivní okna.

Uchop myší vytvořený skript CFScript.txt, přemísti ho nad stažený program ComboFix.exe a když se oba soubory překryjí, skript upusť.
- Automaticky se spustí ComboFix
- Vlož sem log, který vyběhne v závěru čistícího procesu + nový log z HJT

Upozornění : Může se stát, že po aplikaci Combofixu a restartu počítače, Windows nenaběhnou , nebo nenajede plocha , budou problémy s připojením, pak znovu restartuj počítač, pokud to nepomůže , po restartu mačkej klávesu F8 a pak zvol poslední známou funkční konfiguraci. , či použij bod obnovy.

Stáhni si aswMBR
na svojí plochu. Uzavři všechna okna , programy a prohlížeče. Poklepej na aswMBR.exe. Pokud se objeví hláška o možnosti stáhnutí databáze Avastu , klikni na NE. Poté klikni na „Scan“ . Po skenu klikni na „Save Log“ a ulož si log na plochu .Zkopíruj sem celý obsah toho logu. Pak klikni na „Exit“ k zavření programu.

[Reklama]

[BAJLA]

ComboFix 16-08-03.01 - Martin 10.08.2016 7:29.2.1 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.991.739 [GMT 2:00]
Spuštěný z: c:\documents and settings\Martin\Plocha\ComboFix.exe
Použité ovládací přepínače :: c:\documents and settings\Martin\Plocha\CFScript.txt
.
VAROVÁNÍ - NA TOMTO POČÍTAČI NENÍ NAINSTALOVÁNA KONZOLA PRO ZOTAVENÍ !!
.
FILE ::
"c:\windows\Tasks\Adobe Flash Player Updater.job"
"c:\windows\Tasks\GoogleUpdateTaskMachineCore.job"
"c:\windows\Tasks\GoogleUpdateTaskMachineCore1d1f09ec4f74ad0.job"
"c:\windows\Tasks\GoogleUpdateTaskMachineCore1d1f0a0cb7aaf60.job"
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files\Google\Update
c:\program files\Google\Update\1.3.31.5\GoogleCrashHandler.exe
c:\program files\Google\Update\1.3.31.5\GoogleCrashHandler64.exe
c:\program files\Google\Update\1.3.31.5\GoogleUpdate.exe
c:\program files\Google\Update\1.3.31.5\GoogleUpdateBroker.exe
c:\program files\Google\Update\1.3.31.5\GoogleUpdateComRegisterShell64.exe
c:\program files\Google\Update\1.3.31.5\GoogleUpdateHelper.msi
c:\program files\Google\Update\1.3.31.5\GoogleUpdateOnDemand.exe
c:\program files\Google\Update\1.3.31.5\GoogleUpdateSetup.exe
c:\program files\Google\Update\1.3.31.5\GoogleUpdateWebPlugin.exe
c:\program files\Google\Update\1.3.31.5\goopdate.dll
c:\program files\Google\Update\1.3.31.5\goopdateres_am.dll
c:\program files\Google\Update\1.3.31.5\goopdateres_ar.dll
c:\program files\Google\Update\1.3.31.5\goopdateres_bg.dll
c:\program files\Google\Update\1.3.31.5\goopdateres_bn.dll
c:\program files\Google\Update\1.3.31.5\goopdateres_ca.dll
c:\program files\Google\Update\1.3.31.5\goopdateres_cs.dll
c:\program files\Google\Update\1.3.31.5\goopdateres_da.dll
c:\program files\Google\Update\1.3.31.5\goopdateres_de.dll
c:\program files\Google\Update\1.3.31.5\goopdateres_el.dll
c:\program files\Google\Update\1.3.31.5\goopdateres_en-GB.dll
c:\program files\Google\Update\1.3.31.5\goopdateres_en.dll
c:\program files\Google\Update\1.3.31.5\goopdateres_es-419.dll
c:\program files\Google\Update\1.3.31.5\goopdateres_es.dll
c:\program files\Google\Update\1.3.31.5\goopdateres_et.dll
c:\program files\Google\Update\1.3.31.5\goopdateres_fa.dll
c:\program files\Google\Update\1.3.31.5\goopdateres_fi.dll
c:\program files\Google\Update\1.3.31.5\goopdateres_fil.dll
c:\program files\Google\Update\1.3.31.5\goopdateres_fr.dll
c:\program files\Google\Update\1.3.31.5\goopdateres_gu.dll
c:\program files\Google\Update\1.3.31.5\goopdateres_hi.dll
c:\program files\Google\Update\1.3.31.5\goopdateres_hr.dll
c:\program files\Google\Update\1.3.31.5\goopdateres_hu.dll
c:\program files\Google\Update\1.3.31.5\goopdateres_id.dll
c:\program files\Google\Update\1.3.31.5\goopdateres_is.dll
c:\program files\Google\Update\1.3.31.5\goopdateres_it.dll
c:\program files\Google\Update\1.3.31.5\goopdateres_iw.dll
c:\program files\Google\Update\1.3.31.5\goopdateres_ja.dll
c:\program files\Google\Update\1.3.31.5\goopdateres_kn.dll
c:\program files\Google\Update\1.3.31.5\goopdateres_ko.dll
c:\program files\Google\Update\1.3.31.5\goopdateres_lt.dll
c:\program files\Google\Update\1.3.31.5\goopdateres_lv.dll
c:\program files\Google\Update\1.3.31.5\goopdateres_ml.dll
c:\program files\Google\Update\1.3.31.5\goopdateres_mr.dll
c:\program files\Google\Update\1.3.31.5\goopdateres_ms.dll
c:\program files\Google\Update\1.3.31.5\goopdateres_nl.dll
c:\program files\Google\Update\1.3.31.5\goopdateres_no.dll
c:\program files\Google\Update\1.3.31.5\goopdateres_pl.dll
c:\program files\Google\Update\1.3.31.5\goopdateres_pt-BR.dll
c:\program files\Google\Update\1.3.31.5\goopdateres_pt-PT.dll
c:\program files\Google\Update\1.3.31.5\goopdateres_ro.dll
c:\program files\Google\Update\1.3.31.5\goopdateres_ru.dll
c:\program files\Google\Update\1.3.31.5\goopdateres_sk.dll
c:\program files\Google\Update\1.3.31.5\goopdateres_sl.dll
c:\program files\Google\Update\1.3.31.5\goopdateres_sr.dll
c:\program files\Google\Update\1.3.31.5\goopdateres_sv.dll
c:\program files\Google\Update\1.3.31.5\goopdateres_sw.dll
c:\program files\Google\Update\1.3.31.5\goopdateres_ta.dll
c:\program files\Google\Update\1.3.31.5\goopdateres_te.dll
c:\program files\Google\Update\1.3.31.5\goopdateres_th.dll
c:\program files\Google\Update\1.3.31.5\goopdateres_tr.dll
c:\program files\Google\Update\1.3.31.5\goopdateres_uk.dll
c:\program files\Google\Update\1.3.31.5\goopdateres_ur.dll
c:\program files\Google\Update\1.3.31.5\goopdateres_vi.dll
c:\program files\Google\Update\1.3.31.5\goopdateres_zh-CN.dll
c:\program files\Google\Update\1.3.31.5\goopdateres_zh-TW.dll
c:\program files\Google\Update\1.3.31.5\npGoogleUpdate3.dll
c:\program files\Google\Update\1.3.31.5\psmachine.dll
c:\program files\Google\Update\1.3.31.5\psmachine_64.dll
c:\program files\Google\Update\1.3.31.5\psuser.dll
c:\program files\Google\Update\1.3.31.5\psuser_64.dll
c:\program files\Google\Update\Download\{430FD4D0-B729-4F61-AA34-91526481799D}\1.3.31.5\GoogleUpdateSetup.exe
c:\program files\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\49.0.2623.112\49.0.2623.112_49.0.2623.110_chrome_updater.exe
c:\program files\Google\Update\Download\{8A69D345-D564-463C-AFF1-A69D9E530F96}\49.0.2623.112\49.0.2623.112_chrome_installer.exe
c:\program files\Google\Update\GoogleUpdate.exe
c:\program files\Skype\Updater
c:\program files\Skype\Updater\Updater.dll
c:\program files\Skype\Updater\Updater.exe
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_CPUZ134
-------\Legacy_SKYPEUPDATE
-------\Service_cpuz134
-------\Service_SkypeUpdate
-------\Legacy_gupdate
-------\Legacy_gupdatem
-------\Legacy_gupdate
-------\Legacy_gupdatem
-------\Service_gupdate
-------\Service_gupdatem
-------\Service_gupdate
-------\Service_gupdatem
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2016-07-10 do 2016-08-10 )))))))))))))))))))))))))))))))
.
.
2016-08-09 19:04 . 2016-08-09 18:49 24064 ----a-w- c:\windows\zoek-delete.exe
2016-08-09 18:49 . 2016-08-09 19:01 -------- d-----w- C:\zoek_backup
2016-08-07 13:09 . 2016-08-07 19:39 -------- d-----w- C:\AdwCleaner
2016-08-05 19:56 . 2016-08-05 19:56 796352 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2016-08-05 19:56 . 2016-08-05 19:56 142528 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2016-08-02 19:55 . 2016-08-02 19:55 -------- d-----w- c:\documents and settings\All Users\Data aplikací\IObit
2016-07-27 19:43 . 2016-07-27 19:59 -------- d-----w- c:\documents and settings\Martin\Local Settings\Data aplikací\NPE
2016-07-27 19:43 . 2016-07-27 19:44 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Norton
2016-07-24 10:30 . 2016-07-24 10:34 -------- d-----w- c:\program files\Counter-Strike 1.6
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2016-08-09 18:25 . 2015-12-05 22:36 24688 ----a-w- c:\windows\system32\drivers\TrueSight.sys
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\IcmpSettings]
"AllowInboundEchoRequest"= 0 (0x0)
.
R1 HWiNFO32;HWiNFO32/64 Kernel Driver;c:\windows\system32\drivers\HWiNFO32.SYS [19.1.2016 21:40 23840]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\drivers\ssudbus.sys [22.2.2016 21:03 84248]
S3 GeneStor;Genesys Logic Storage Driver;c:\windows\system32\drivers\GeneStor.sys [22.2.2016 20:56 56832]
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2016-08-07 11:29 1106072 ----a-w- c:\program files\Google\Chrome\Application\49.0.2623.112\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2016-08-05 c:\windows\Tasks\Adobe Flash Player PPAPI Notifier.job
- c:\windows\system32\Macromed\Flash\FlashUtil32_22_0_0_209_pepper.exe [2016-08-05 19:56]
.
2016-08-05 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2016-08-05 19:56]
.
.
------- Doplňkový sken -------
.
uInternet Connection Wizard,ShellNext = hxxp://tracker.utorrent.cz/
TCP: DhcpNameServer = 10.0.0.138
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2016-08-10 07:37
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-861567501-1343024091-839522115-1003\Software\Microsoft\SystemCertificates\AddressBook*]
@Allowed: (Read) (RestrictedCode)
@Allowed: (Read) (RestrictedCode)
.
Celkový čas: 2016-08-10 07:39:50 - počítač byl restartován
ComboFix-quarantined-files.txt 2016-08-10 05:39
ComboFix2.txt 2016-08-09 19:20
.
Před spuštěním: Volných bajtů: 16 741 736 448
Po spuštění: Volných bajtů: 16 627 093 504
.
- - End Of File - - 65EE4F35CF02F8A1F9330B016FA9E26D
413FC2A0C716421B3158746D63736515

[BAJLA]

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 7:41:58, on 10.8.2016
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal

Running processes:
C:\windows\System32\smss.exe
C:\windows\system32\winlogon.exe
C:\windows\system32\services.exe
C:\windows\system32\lsass.exe
C:\windows\system32\svchost.exe
C:\windows\System32\svchost.exe
C:\windows\system32\spoolsv.exe
C:\windows\system32\svchost.exe
C:\windows\explorer.exe
C:\Documents and Settings\Martin\Plocha\hijackthis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://tracker.utorrent.cz/
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\windows\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\windows\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe

--
End of file - 2009 bytes

[BAJLA]

aswMBR version 1.0.1.2290 Copyright(c) 2014 AVAST Software
Run date: 2016-08-10 07:43:31
-----------------------------
07:43:31.811 OS Version: Windows 5.1.2600 Service Pack 3
07:43:31.811 Number of processors: 1 586 0xD06
07:43:31.811 ComputerName: MARTIN-F146E UserName: Martin
07:43:32.522 Initialize success
07:43:32.582 VM: initialized successfully
07:43:32.582 VM: Intel CPU virtualization not supported
07:43:40.584 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-3
07:43:40.584 Disk 0 Vendor: HTS421260H9AT00 HA2OA70S Size: 57231MB BusType: 3
07:43:40.744 Disk 0 MBR read successfully
07:43:40.744 Disk 0 MBR scan
07:43:40.744 Disk 0 Windows XP default MBR code
07:43:40.744 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 57223 MB offset 63
07:43:40.744 Disk 0 Boot: NTFS code=1
07:43:40.744 Disk 0 scanning sectors +117194175
07:43:40.944 Disk 0 scanning C:\windows\system32\drivers
07:43:49.537 Service scanning
07:44:16.315 Modules scanning
07:44:16.315 \Driver\prodrv06 MajorFunction[ IRP_MJ_CREATE ] @ 0xe165f828 suspicious
07:44:16.315 \Driver\prodrv06 MajorFunction[ IRP_MJ_CLOSE ] @ 0xe165f828 suspicious
07:44:16.325 \Driver\prodrv06 MajorFunction[ IRP_MJ_DEVICE_CONTROL ] @ 0xe165f828 suspicious
07:44:16.325 \Driver\prohlp02 MajorFunction[ IRP_MJ_CREATE ] @ 0xe101aa00 suspicious
07:44:16.325 \Driver\prohlp02 MajorFunction[ IRP_MJ_CLOSE ] @ 0xe101aa00 suspicious
07:44:16.335 \Driver\prohlp02 MajorFunction[ IRP_MJ_DEVICE_CONTROL ] @ 0xe101aa00 suspicious
07:44:16.335 Disk 0 trace - called modules:
07:44:16.365 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll prosync1.sys atapi.sys pciide.sys PCIIDEX.SYS TDI.SYS tcpip.sys
07:44:16.365 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x85f49ab8]
07:44:16.375 3 CLASSPNP.SYS[f770efd7] -> nt!IofCallDriver -> \Device\0000007e[0x85f6c9e8]
07:44:16.375 5 ACPI.sys[f7685620] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-3[0x85f4d940]
07:44:16.375 \Driver\atapi[0x85fc8d20] -> IRP_MJ_INTERNAL_DEVICE_CONTROL -> prosync1.sys[0xf7bd86c1]
07:44:16.375 Disk 0 statistics 76075/0/0 @ 4,33 MB/s
07:44:16.385 Scan finished successfully
07:44:31.097 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\Martin\Plocha\MBR.dat"
07:44:31.107 The log file has been saved successfully to "C:\Documents and Settings\Martin\Plocha\aswMBR.txt"

[jaro3]

ComboFix se odinstaluje takto:
Start-Spustit a zadej ComboFix /Uninstall

Vyčisti systém CCleanerem

Stáhni si OTC

na plochu. Poklepej na něj. Potom klikni na Clean up!.
Restartuj PC , pokud Ti bude doporučeno.

Stáhni si zde DelFix
https://toolslib.net/downloads/viewdownload/2-delfix/

ulož si soubor na plochu.
Poklepáním na ikonu spusť nástroj Delfix.exe
( Ve Windows Vista, Windows 7 a 8, musíš spustit soubor pravým tlačítkem myši -> Spustit jako správce .
V hlavním menu, zkontroluj tyto možnosti - Odstranění dezinfekce nástrojů (Remove desinfection tools) – Vyčistit body obnovy (Purge System Restore)
Poté klikněte na tlačítko Spustit (Run) a nech nástroj dělat svoji práci

Poté se zpráva se otevře (DelFix.txt). Vlož celý obsah zprávy sem.Jinak je zpráva zde:
v C: \ DelFix.txt

Co problémy?

[BAJLA]

# DelFix v1.013 - Logfile created 10/08/2016 at 11:11:44
# Updated 17/04/2016 by Xplode
# Username : Martin - MARTIN-F146E
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)

~ Removing disinfection tools ...

Deleted : C:\zoek_backup
Deleted : C:\AdwCleaner
Deleted : C:\zoek-results.log
Deleted : C:\Documents and Settings\Martin\Plocha\AdwCleaner.exe
Deleted : C:\Documents and Settings\Martin\Plocha\JRT.exe
Deleted : C:\Documents and Settings\Martin\Plocha\hijackthis.exe
Deleted : C:\Documents and Settings\Martin\Plocha\hijackthis.log
Deleted : C:\Documents and Settings\Martin\Plocha\TFC.exe
Deleted : C:\Documents and Settings\Martin\Plocha\zoek.exe
Deleted : HKLM\SOFTWARE\Swearware
Deleted : HKLM\SOFTWARE\TrendMicro\Hijackthis
Deleted : HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ASWMBR

~ Cleaning system restore ...


New restore point created !

########## - EOF - ##########

[BAJLA]

Notebook je ještě pomalý Google načíta po zapnutí notebooku pomalu.

[jaro3]

Stáhni si Memtest:

Políčko , ve kterém je napsáno:
All unused RAM -ponech , jak je.
-dej Start , nech nejméně 2h běžet , pokud bude po 2h stále 0 errors , jsou v pořádku.


Ještě zkontrolovat HDD na chyby ,popř. zkusit jeho defragmentaci ..

Stáhni si CrystalDiskInfo
Spusť program a klikni na Úpravy-Kopírovat. Poté sem vlož pomocí Ctrl+V obsah logu.

[BAJLA]

Memtest: o chyb
Defragmentaci jakým programem?

----------------------------------------------------------------------------
CrystalDiskInfo 6.5.2 (C) 2008-2015 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------

OS : Windows XP Professional SP3 [5.1 Build 2600] (x86)
Date : 2016/08/10 17:16:51

-- Controller Map ----------------------------------------------------------
+ Intel(R) 82801DBM Ultra ATA Storage Controller - 24CA [ATA]
+ Primární kanál IDE (0)
- HTS421260H9AT00
+ Sekundární kanál IDE (1)
- Slimtype DVDRW SOSW-852S

-- Disk List ---------------------------------------------------------------
(1) HTS421260H9AT00 : 60,0 GB [0/0/0, pd1]

----------------------------------------------------------------------------
(1) HTS421260H9AT00
----------------------------------------------------------------------------
Model : HTS421260H9AT00
Firmware : HA2OA70S
Serial Number : HKA214AJCHG4KE
Disk Size : 60,0 GB (8,4/60,0/60,0/60,0)
Buffer Size : 1570 KB
Queue Depth : 1
# of Sectors : 117210240
Rotation Rate : Neznámy údaj
Interface : Parallel ATA
Major Version : ATA/ATAPI-7
Minor Version : ATA/ATAPI-7 T13 1532D version 1
Transfer Mode : UDMA/100 | UDMA/100
Power On Hours : 6573 hod.
Power On Count : 2441 krát
Temperature : 27 C (80 F)
Health Status : Dobrý
Features : S.M.A.R.T., APM, AAM, 48bit LBA
APM Level : 4080h [ON]
AAM Level : 80FEh [OFF]

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 100 100 _62 000000000000 Počet chyb čtení
02 100 100 _40 000000000000 Průchodnost disku
03 149 149 _33 001400000002 Čas na roztočení ploten
04 _99 _99 __0 0000000009C5 Počet spuštění/zastavení
05 100 100 __5 000000000000 Počet přemapovaných sektorů
07 100 100 _67 000000000000 Počet chybných hledání
08 100 100 _40 000000000000 Čas potřebný na vyhledání
09 _85 _85 __0 0000000019AD Hodin v činnosti
0A 100 100 _60 000000000000 Počet opakovaných pokusů o roztočení ploten
0C _99 _99 __0 000000000989 Počet cyklů zapnutí zařízení
BF 100 100 __0 000000000000 Počet udalostí zaznamenaných otřesovým senzorem
C0 100 100 __0 00000000006C Počet vypnutí disku
C1 _85 _85 __0 00000002655F Počet cyklů načítání/vymazání
C2 203 203 __0 00320000001B Teplota
C4 100 100 __0 000000000006 Počet udalostí s číslem realokování sektorů
C5 100 100 __0 000000000000 Počet podezřelých sektorů
C6 100 100 __0 000000000000 Počet neopravitelných sektorů
C7 200 200 __0 000000000000 Počet chyb v kontrolním součtu UltraDMA

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 045A 3FFF C837 0010 0000 0000 003F 0000 0000 0000
010: 2020 2020 2020 484B 4132 3134 414A 4348 4734 4B45
020: 0003 0C45 0004 4841 324F 4137 3053 4854 5334 3231
030: 3236 3048 3941 5430 3020 2020 2020 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 0000 0F00
050: 4000 0200 0200 0007 3FFF 0010 003F FC10 00FB 0110
060: 7C80 06FC 0000 0007 0003 0078 0078 00F0 0078 0000
070: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
080: 00FC 001A 746B 7FE9 4163 7469 3C49 4163 203F 0017
090: 0000 4080 FFFE 600B 80FE 0000 0000 0000 0000 0000
100: 7C80 06FC 0000 0000 0000 0000 0000 96CD 5000 CCA5
110: 03C7 06AC 0000 0000 0000 0000 0000 0000 0000 0000
120: 0000 0000 0000 0000 0000 0000 0000 0000 0009 000B
130: 0006 0000 0000 0000 0000 0000 0000 0000 0000 0000
140: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
150: 8000 0000 324F 0000 0000 3131 0000 0000 0000 0000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
210: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
220: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 E7A5

-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 0B 00 64 64 00 00 00 00 00 00 00 02 05
010: 00 64 64 00 00 00 00 00 00 00 03 07 00 95 95 02
020: 00 00 00 14 00 00 04 12 00 63 63 C5 09 00 00 00
030: 00 00 05 33 00 64 64 00 00 00 00 00 00 00 07 0B
040: 00 64 64 00 00 00 00 00 00 00 08 05 00 64 64 00
050: 00 00 00 00 00 00 09 12 00 55 55 AD 19 00 00 00
060: 00 00 0A 13 00 64 64 00 00 00 00 00 00 00 0C 32
070: 00 63 63 89 09 00 00 00 00 00 BF 0A 00 64 64 00
080: 00 00 00 00 00 00 C0 32 00 64 64 6C 00 00 00 00
090: 00 00 C1 12 00 55 55 5F 65 02 00 00 00 00 C2 02
0A0: 00 CB CB 1B 00 00 00 32 00 00 C4 32 00 64 64 06
0B0: 00 00 00 00 00 00 C5 22 00 64 64 00 00 00 00 00
0C0: 00 00 C6 08 00 64 64 00 00 00 00 00 00 00 C7 0A
0D0: 00 C8 C8 00 00 00 00 00 00 00 00 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 85 02 01 5B
170: 03 00 01 00 02 2F 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 81

-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 3E 00 00 00 00 00 00 00 00 00 00 02 28
010: 00 00 00 00 00 00 00 00 00 00 03 21 00 00 00 00
020: 00 00 00 00 00 00 04 00 00 00 00 00 00 00 00 00
030: 00 00 05 05 00 00 00 00 00 00 00 00 00 00 07 43
040: 00 00 00 00 00 00 00 00 00 00 08 28 00 00 00 00
050: 00 00 00 00 00 00 09 00 00 00 00 00 00 00 00 00
060: 00 00 0A 3C 00 00 00 00 00 00 00 00 00 00 0C 00
070: 00 00 00 00 00 00 00 00 00 00 BF 00 00 00 00 00
080: 00 00 00 00 00 00 C0 00 00 00 00 00 00 00 00 00
090: 00 00 C1 00 00 00 00 00 00 00 00 00 00 00 C2 00
0A0: 00 00 00 00 00 00 00 00 00 00 C4 00 00 00 00 00
0B0: 00 00 00 00 00 00 C5 00 00 00 00 00 00 00 00 00
0C0: 00 00 C6 00 00 00 00 00 00 00 00 00 00 00 C7 00
0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 68

[jaro3]

001400000002 Čas na roztočení ploten
000000000006 Počet udalostí s číslem realokování sektorů

ten není OK. Udělej znovu CDI
Pokud je to tak , tak náhradní sektory brzy dojdou a nastanou ještě větší problémy.

Ještě zkusíme toto:
Prosím stáhni příslušnou verzi programu pro Tvůj systém 32-bit/64-bit FarbarRecovery Scan Tool (FrSt)
32bit.:
http://www.bleepingcomputer.com/downloa ... ool/dl/81/
64bit.:
http://www.bleepingcomputer.com/downloa ... ool/dl/82/
a ulož jej na plochu. ,pak spusť FrSt.
Potvrď způsob užití.
Neměň žádné z výchozích nastavení a klikni na položku „Scan“ („Skenovat“) .Když je skenování dokončeno, ukážou se dva logy = FRST.txt a Addition.txt a uloží se na ploše.Prosím zkopíruj sem celý jejich obsah.

[BAJLA]

----------------------------------------------------------------------------
CrystalDiskInfo 6.5.2 (C) 2008-2015 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------

OS : Windows XP Professional SP3 [5.1 Build 2600] (x86)
Date : 2016/08/10 21:58:07

-- Controller Map ----------------------------------------------------------
+ Intel(R) 82801DBM Ultra ATA Storage Controller - 24CA [ATA]
+ Primární kanál IDE (0)
- HTS421260H9AT00
+ Sekundární kanál IDE (1)
- Slimtype DVDRW SOSW-852S

-- Disk List ---------------------------------------------------------------
(1) HTS421260H9AT00 : 60,0 GB [0/0/0, pd1]

----------------------------------------------------------------------------
(1) HTS421260H9AT00
----------------------------------------------------------------------------
Model : HTS421260H9AT00
Firmware : HA2OA70S
Serial Number : HKA214AJCHG4KE
Disk Size : 60,0 GB (8,4/60,0/60,0/60,0)
Buffer Size : 1570 KB
Queue Depth : 1
# of Sectors : 117210240
Rotation Rate : Neznámy údaj
Interface : Parallel ATA
Major Version : ATA/ATAPI-7
Minor Version : ATA/ATAPI-7 T13 1532D version 1
Transfer Mode : UDMA/100 | UDMA/100
Power On Hours : 6574 hod.
Power On Count : 2442 krát
Temperature : 26 C (78 F)
Health Status : Dobrý
Features : S.M.A.R.T., APM, AAM, 48bit LBA
APM Level : 4080h [ON]
AAM Level : 80FEh [OFF]

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 100 100 _62 000000000000 Počet chyb čtení
02 100 100 _40 000000000000 Průchodnost disku
03 149 149 _33 001400000002 Čas na roztočení ploten
04 _99 _99 __0 0000000009C6 Počet spuštění/zastavení
05 100 100 __5 000000000000 Počet přemapovaných sektorů
07 100 100 _67 000000000000 Počet chybných hledání
08 100 100 _40 000000000000 Čas potřebný na vyhledání
09 _85 _85 __0 0000000019AE Hodin v činnosti
0A 100 100 _60 000000000000 Počet opakovaných pokusů o roztočení ploten
0C _99 _99 __0 00000000098A Počet cyklů zapnutí zařízení
BF 100 100 __0 000000000000 Počet udalostí zaznamenaných otřesovým senzorem
C0 100 100 __0 00000000006C Počet vypnutí disku
C1 _85 _85 __0 000000026573 Počet cyklů načítání/vymazání
C2 211 211 __0 00320000001A Teplota
C4 100 100 __0 000000000006 Počet udalostí s číslem realokování sektorů
C5 100 100 __0 000000000000 Počet podezřelých sektorů
C6 100 100 __0 000000000000 Počet neopravitelných sektorů
C7 200 200 __0 000000000000 Počet chyb v kontrolním součtu UltraDMA

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 045A 3FFF C837 0010 0000 0000 003F 0000 0000 0000
010: 2020 2020 2020 484B 4132 3134 414A 4348 4734 4B45
020: 0003 0C45 0004 4841 324F 4137 3053 4854 5334 3231
030: 3236 3048 3941 5430 3020 2020 2020 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 0000 0F00
050: 4000 0200 0200 0007 3FFF 0010 003F FC10 00FB 0110
060: 7C80 06FC 0000 0007 0003 0078 0078 00F0 0078 0000
070: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
080: 00FC 001A 746B 7FE9 4163 7469 3C49 4163 203F 0017
090: 0000 4080 FFFE 600B 80FE 0000 0000 0000 0000 0000
100: 7C80 06FC 0000 0000 0000 0000 0000 96CD 5000 CCA5
110: 03C7 06AC 0000 0000 0000 0000 0000 0000 0000 0000
120: 0000 0000 0000 0000 0000 0000 0000 0000 0009 000B
130: 0006 0000 0000 0000 0000 0000 0000 0000 0000 0000
140: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
150: 8000 0000 324F 0000 0000 3131 0000 0000 0000 0000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
210: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
220: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 E7A5

-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 0B 00 64 64 00 00 00 00 00 00 00 02 05
010: 00 64 64 00 00 00 00 00 00 00 03 07 00 95 95 02
020: 00 00 00 14 00 00 04 12 00 63 63 C6 09 00 00 00
030: 00 00 05 33 00 64 64 00 00 00 00 00 00 00 07 0B
040: 00 64 64 00 00 00 00 00 00 00 08 05 00 64 64 00
050: 00 00 00 00 00 00 09 12 00 55 55 AE 19 00 00 00
060: 00 00 0A 13 00 64 64 00 00 00 00 00 00 00 0C 32
070: 00 63 63 8A 09 00 00 00 00 00 BF 0A 00 64 64 00
080: 00 00 00 00 00 00 C0 32 00 64 64 6C 00 00 00 00
090: 00 00 C1 12 00 55 55 73 65 02 00 00 00 00 C2 02
0A0: 00 D3 D3 1A 00 00 00 32 00 00 C4 32 00 64 64 06
0B0: 00 00 00 00 00 00 C5 22 00 64 64 00 00 00 00 00
0C0: 00 00 C6 08 00 64 64 00 00 00 00 00 00 00 C7 0A
0D0: 00 C8 C8 00 00 00 00 00 00 00 00 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 85 02 01 5B
170: 03 00 01 00 02 2F 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 5B

-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 3E 00 00 00 00 00 00 00 00 00 00 02 28
010: 00 00 00 00 00 00 00 00 00 00 03 21 00 00 00 00
020: 00 00 00 00 00 00 04 00 00 00 00 00 00 00 00 00
030: 00 00 05 05 00 00 00 00 00 00 00 00 00 00 07 43
040: 00 00 00 00 00 00 00 00 00 00 08 28 00 00 00 00
050: 00 00 00 00 00 00 09 00 00 00 00 00 00 00 00 00
060: 00 00 0A 3C 00 00 00 00 00 00 00 00 00 00 0C 00
070: 00 00 00 00 00 00 00 00 00 00 BF 00 00 00 00 00
080: 00 00 00 00 00 00 C0 00 00 00 00 00 00 00 00 00
090: 00 00 C1 00 00 00 00 00 00 00 00 00 00 00 C2 00
0A0: 00 00 00 00 00 00 00 00 00 00 C4 00 00 00 00 00
0B0: 00 00 00 00 00 00 C5 00 00 00 00 00 00 00 00 00
0C0: 00 00 C6 00 00 00 00 00 00 00 00 00 00 00 C7 00
0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 68

[BAJLA]

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 10-08-2016
Ran by Martin (administrator) on MARTIN-F146E (10-08-2016 22:00:28)
Running from C:\Documents and Settings\Martin\Plocha
Loaded Profiles: Martin (Available Profiles: Martin)
Platform: Systém Microsoft Windows XP Professional Service Pack 3 (X86) Language: Čeština
Internet Explorer Version 6 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)



==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKU\S-1-5-19\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-20\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-861567501-1343024091-839522115-1003\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-18\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{7A4A1194-824F-4E4F-8D93-EAB9838A0AF4}: [DhcpNameServer] 10.0.0.138

Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-861567501-1343024091-839522115-1003\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKU\S-1-5-21-861567501-1343024091-839522115-1003\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dl ... r=iesearch
URLSearchHook: HKU\S-1-5-21-861567501-1343024091-839522115-1003 - Modul přiřazení adres URL - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\windows\system32\shdocvw.dll (Microsoft Corporation)
HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs: "" <======= ATTENTION
SearchScopes: HKLM -> DefaultScope value is missing
SearchScopes: HKU\S-1-5-21-861567501-1343024091-839522115-1003 -> DefaultScope {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-861567501-1343024091-839522115-1003 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
Toolbar: HKU\S-1-5-21-861567501-1343024091-839522115-1003 -> &Adresa - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\windows\system32\browseui.dll [2008-04-14] (Společnost Microsoft)
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload.macromedia.com/pub/sh ... wflash.cab

FireFox:
========
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll [No File]
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll [No File]

Chrome:
=======
CHR StartupUrls: Default -> "hxxps://www.google.com/"
CHR Profile: C:\Documents and Settings\Martin\Local Settings\Data aplikací\Google\Chrome\User Data\Default
CHR Extension: (Prezentace Google) - C:\Documents and Settings\Martin\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-08-09]
CHR Extension: (Dokumenty Google) - C:\Documents and Settings\Martin\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-08-09]
CHR Extension: (Disk Google) - C:\Documents and Settings\Martin\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-08-09]
CHR Extension: (YouTube) - C:\Documents and Settings\Martin\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-08-09]
CHR Extension: (Tabulky Google) - C:\Documents and Settings\Martin\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-08-09]
CHR Extension: (Dokumenty Google offline) - C:\Documents and Settings\Martin\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-08-09]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Documents and Settings\Martin\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-08-09]
CHR Extension: (Gmail) - C:\Documents and Settings\Martin\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-08-09]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 6to4; C:\windows\System32\6to4svc.dll [100352 2008-04-14] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 ALCXWDM; C:\windows\System32\drivers\ALCXWDM.SYS [4122368 2015-12-04] (Realtek Semiconductor Corp.)
S3 CCDECODE; C:\windows\System32\DRIVERS\CCDECODE.sys [17024 2008-04-14] (Microsoft Corporation)
S3 FET5X86V; C:\windows\System32\DRIVERS\fetnd5bv.sys [48128 2015-12-04] (VIA Technologies, Inc. )
S3 GeneStor; C:\windows\System32\DRIVERS\GeneStor.sys [56832 2016-02-22] (GenesysLogic)
R0 giveio; C:\windows\System32\giveio.sys [5248 1996-04-03] () [File not signed]
R1 HWiNFO32; C:\WINDOWS\system32\drivers\HWiNFO32.SYS [23840 2016-04-18] (REALiX(tm))
S3 NdisIP; C:\windows\System32\DRIVERS\NdisIP.sys [10880 2008-04-14] (Microsoft Corporation)
R1 prodrv06; C:\windows\System32\drivers\prodrv06.sys [80576 2004-10-07] (Protection Technology) [File not signed]
R0 prohlp02; C:\windows\System32\drivers\prohlp02.sys [115744 2004-10-07] (Protection Technology) [File not signed]
R0 prosync1; C:\windows\System32\drivers\prosync1.sys [7040 2004-07-19] (Protection Technology) [File not signed]
R0 sfhlp01; C:\windows\System32\drivers\sfhlp01.sys [4832 2003-12-01] (Protection Technology) [File not signed]
R0 speedfan; C:\windows\System32\speedfan.sys [24184 2012-12-29] (Almico Software)
S3 tap0901; C:\windows\System32\DRIVERS\tap0901.sys [35288 2013-08-22] (The OpenVPN Project)
R1 Tcpip6; C:\windows\System32\DRIVERS\tcpip6.sys [225664 2008-04-14] (Microsoft Corporation)
U3 TrueSight; C:\WINDOWS\system32\drivers\TrueSight.sys [24688 2016-08-09] ()
R3 w29n51; C:\windows\System32\DRIVERS\w29n51.sys [2216064 2015-12-04] (Intel® Corporation)
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [102272 2016-02-16] (Huawei Technologies Co., Ltd.)
U5 ScsiPort; C:\windows\system32\drivers\scsiport.sys [96384 2008-04-14] (Microsoft Corporation)
S3 WinUSB; system32\DRIVERS\WinUSB.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-08-10 22:00 - 2016-08-10 22:00 - 00007936 _____ C:\Documents and Settings\Martin\Plocha\FRST.txt
2016-08-10 22:00 - 2016-08-10 22:00 - 00000000 ____D C:\FRST
2016-08-10 21:58 - 2016-08-10 21:58 - 01743872 _____ (Farbar) C:\Documents and Settings\Martin\Plocha\FRST.exe
2016-08-10 11:11 - 2016-08-10 11:11 - 00000937 _____ C:\DelFix.txt
2016-08-10 07:39 - 2016-08-10 22:00 - 00000000 ____D C:\Documents and Settings\Martin\Local Settings\temp
2016-08-10 07:39 - 2016-08-10 07:39 - 00000000 ____D C:\Documents and Settings\NetworkService\Local Settings\temp
2016-08-10 07:39 - 2016-08-10 07:39 - 00000000 ____D C:\Documents and Settings\LocalService\Local Settings\temp
2016-08-10 07:39 - 2016-08-10 07:39 - 00000000 ____D C:\Documents and Settings\Default User\Local Settings\temp
2016-08-09 21:04 - 2016-08-09 20:49 - 00024064 _____ C:\windows\zoek-delete.exe
2016-08-07 20:45 - 2016-08-07 20:45 - 00000000 ____H C:\windows\system32\Drivers\Msft_Kernel_GeneStor_01009.Wdf
2016-08-07 13:30 - 2016-08-07 13:30 - 00001819 _____ C:\Documents and Settings\All Users\Nabídka Start\Programy\Google Chrome.lnk
2016-08-07 13:30 - 2016-08-07 13:30 - 00001813 _____ C:\Documents and Settings\All Users\Plocha\Google Chrome.lnk
2016-08-05 21:56 - 2016-08-05 21:56 - 00796352 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerApp.exe
2016-08-05 21:56 - 2016-08-05 21:56 - 00142528 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerCPLApp.cpl
2016-08-05 21:56 - 2016-08-05 21:56 - 00000958 _____ C:\windows\Tasks\Adobe Flash Player PPAPI Notifier.job
2016-08-05 21:56 - 2016-08-05 21:56 - 00000914 _____ C:\windows\Tasks\Adobe Flash Player Updater.job
2016-08-02 21:55 - 2016-08-02 21:55 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\IObit
2016-08-02 20:12 - 2016-08-02 20:12 - 00050688 _____ (Atribune.org) C:\Documents and Settings\Martin\Plocha\ATF-Cleaner.exe
2016-07-27 21:43 - 2016-07-27 21:59 - 00000000 ____D C:\Documents and Settings\Martin\Local Settings\Data aplikací\NPE
2016-07-27 21:43 - 2016-07-27 21:44 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\Norton
2016-07-24 16:24 - 2016-07-24 16:24 - 00001111 _____ C:\Documents and Settings\Martin\Plocha\Medal of Honor Widescreen & Custom Resolution Utility.lnk
2016-07-24 16:24 - 2016-07-24 16:24 - 00000677 _____ C:\Documents and Settings\Martin\Plocha\Medal of Honor Breakthrough.lnk
2016-07-24 16:24 - 2016-07-24 16:24 - 00000656 _____ C:\Documents and Settings\Martin\Plocha\Medal of Honor Spearhead.lnk
2016-07-24 16:24 - 2016-07-24 16:24 - 00000622 _____ C:\Documents and Settings\Martin\Plocha\Medal of Honor Allied Assault.lnk
2016-07-24 16:24 - 2016-07-24 16:24 - 00000000 ____D C:\Documents and Settings\Martin\Nabídka Start\Programy\MOH Revival
2016-07-24 16:05 - 2016-04-04 23:34 - 00000000 ____D C:\Documents and Settings\Martin\Dokumenty\MOHAA REVIVAL
2016-07-24 14:01 - 2016-07-24 14:02 - 00000000 ____D C:\Documents and Settings\Martin\Dokumenty\Mafia 2 CZ
2016-07-24 12:34 - 2016-07-24 12:34 - 00000747 _____ C:\Documents and Settings\Martin\Plocha\Counter-Strike 1.6.lnk
2016-07-24 12:34 - 2016-07-24 12:34 - 00000000 ____D C:\Documents and Settings\Martin\Nabídka Start\Programy\Counter-Strike 1.6
2016-07-24 12:30 - 2016-07-24 12:34 - 00000000 ____D C:\Program Files\Counter-Strike 1.6
2016-07-20 19:25 - 2016-07-20 19:25 - 00000682 _____ C:\Documents and Settings\All Users\Plocha\CCleaner.lnk
2016-07-20 19:25 - 2016-07-20 19:25 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\CCleaner

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-08-10 22:00 - 2015-12-04 20:59 - 00000000 ____D C:\Documents and Settings\Martin\Plocha
2016-08-10 17:33 - 2015-12-04 20:59 - 00000178 ___SH C:\Documents and Settings\Martin\ntuser.ini
2016-08-10 17:16 - 2015-12-05 02:02 - 00011184 _____ C:\Documents and Settings\Martin\Local Settings\Data aplikací\GDIPFONTCACHEV1.DAT
2016-08-10 11:09 - 2015-12-04 21:42 - 00091088 _____ C:\windows\system32\FNTCACHE.DAT
2016-08-10 11:07 - 2016-03-24 17:52 - 00000000 ___SD C:\Documents and Settings\Martin\UserData
2016-08-10 11:07 - 2015-12-04 20:59 - 00000000 ____D C:\Documents and Settings\Martin
2016-08-10 11:01 - 2015-12-11 01:23 - 00000000 ____D C:\windows\erdnt
2016-08-10 07:36 - 2001-10-25 14:00 - 00000227 ____N C:\windows\system.ini
2016-08-10 07:35 - 2015-12-04 21:42 - 00262144 _____ C:\windows\system32\config\SECURITY.bak
2016-08-10 07:35 - 2015-12-04 21:42 - 00262144 _____ C:\windows\system32\config\SAM.bak
2016-08-10 07:35 - 2015-12-04 21:41 - 15466496 _____ C:\windows\system32\config\software.bak
2016-08-10 07:35 - 2015-12-04 21:41 - 04980736 _____ C:\windows\system32\config\system.bak
2016-08-10 07:35 - 2015-12-04 21:41 - 00262144 _____ C:\windows\system32\config\default.bak
2016-08-10 07:34 - 2015-12-15 23:37 - 00000000 ____D C:\Program Files\Skype
2016-08-10 07:28 - 2015-12-04 20:59 - 00000000 ____D C:\Documents and Settings\Martin\Data aplikací
2016-08-10 07:26 - 2015-12-04 20:59 - 00000000 ____D C:\Documents and Settings\Martin\Dokumenty
2016-08-09 21:01 - 2015-12-04 21:43 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací
2016-08-09 20:51 - 2015-12-04 20:59 - 00000000 ___HD C:\Documents and Settings\Martin\Local Settings\Data aplikací
2016-08-09 20:25 - 2015-12-06 00:36 - 00024688 _____ C:\windows\system32\Drivers\TrueSight.sys
2016-08-09 18:59 - 2001-10-25 14:00 - 00002206 _____ C:\windows\system32\wpa.dbl
2016-08-07 21:03 - 2016-02-06 18:41 - 00000000 ____D C:\Documents and Settings\All Users\Dokumenty\filmy
2016-08-07 21:00 - 2016-05-04 17:29 - 00000000 ____D C:\Documents and Settings\Martin\Data aplikací\BSplayer
2016-08-07 15:07 - 2016-04-17 06:08 - 00539550 _____ C:\Documents and Settings\LocalService\Local Settings\Data aplikací\WPFFontCache_v0400-S-1-5-21-861567501-1343024091-839522115-1003-0.dat
2016-08-07 15:07 - 2016-04-17 06:08 - 00080750 _____ C:\Documents and Settings\LocalService\Local Settings\Data aplikací\WPFFontCache_v0400-System.dat
2016-08-07 14:04 - 2016-03-24 17:50 - 00000000 ___RD C:\Documents and Settings\Martin\Dokumenty\Filmy
2016-08-07 13:30 - 2015-12-04 21:51 - 00000000 ____D C:\Documents and Settings\Martin\Local Settings\Data aplikací\Google
2016-08-07 13:30 - 2015-12-04 21:43 - 00000000 ____D C:\Documents and Settings\All Users\Plocha
2016-08-07 13:30 - 2015-12-04 21:43 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy
2016-08-07 13:29 - 2015-12-04 21:49 - 00000000 ____D C:\Program Files\Google
2016-08-07 13:14 - 2015-12-04 21:57 - 00000000 ____D C:\Documents and Settings\Martin\Data aplikací\uTorrent
2016-08-07 11:37 - 2015-12-04 20:59 - 00000000 ____D C:\Documents and Settings\Martin\Nabídka Start\Programy
2016-08-05 21:56 - 2015-12-04 20:51 - 00000000 ____D C:\windows\system32\Macromed
2016-08-05 18:22 - 2015-12-07 02:50 - 00114176 _____ C:\Documents and Settings\Martin\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2016-08-02 21:19 - 2016-06-02 09:03 - 00000000 ____D C:\Program Files\SpeedFan
2016-07-31 15:21 - 2016-03-16 23:35 - 00000000 ___HD C:\windows\system32\GroupPolicy
2016-07-31 13:39 - 2015-12-04 21:38 - 00000000 ___RD C:\windows\Web
2016-07-30 11:48 - 2016-06-03 22:20 - 00000000 ____D C:\Documents and Settings\Martin\Data aplikací\Seznam.cz
2016-07-29 20:36 - 2015-12-04 21:43 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
2016-07-24 16:38 - 2015-12-04 21:44 - 01088860 _____ C:\windows\system32\PerfStringBackup.INI
2016-07-24 16:38 - 2001-10-25 14:00 - 00452984 _____ C:\windows\system32\perfh005.dat
2016-07-24 16:38 - 2001-10-25 14:00 - 00089592 _____ C:\windows\system32\perfc005.dat
2016-07-24 16:30 - 2015-12-04 21:38 - 00000000 ____D C:\windows\system32\mui
2016-07-24 16:25 - 2015-12-04 21:38 - 00000000 ____D C:\windows\inf
2016-07-20 19:25 - 2016-04-03 13:25 - 00000000 ____D C:\Program Files\CCleaner

==================== Files in the root of some directories =======

2015-12-07 02:50 - 2016-08-05 18:22 - 0114176 _____ () C:\Documents and Settings\Martin\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2016-04-18 23:28 - 2016-04-18 23:28 - 0000036 _____ () C:\Documents and Settings\Martin\Local Settings\Data aplikací\housecall.guid.cache

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\windows\explorer.exe => File is digitally signed
C:\windows\system32\winlogon.exe => File is digitally signed
C:\windows\system32\svchost.exe => File is digitally signed
C:\windows\system32\services.exe => File is digitally signed
C:\windows\system32\User32.dll => File is digitally signed
C:\windows\system32\userinit.exe => File is digitally signed
C:\windows\system32\rpcss.dll => File is digitally signed
C:\windows\system32\dnsapi.dll => File is digitally signed
C:\windows\system32\Drivers\volsnap.sys => File is digitally signed

==================== End of FRST.txt ============================