Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Vytížení disku na 100%

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
kacenkapc
Návštěvník
Návštěvník
Příspěvky: 7
Registrován: 17 zář 2016 21:50

Vytížení disku na 100%

#1 Příspěvek od kacenkapc »

Dobrý den,
prosím o kontrolu PC. Poslední dobou mi pořád pracuje disk na 100% a nedá se s notesem už pomalu ani pracovat. Děkuji.

Kód: Vybrat vše

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 17-09-2016
Ran by KAČENKA (administrator) on KACENKA (17-09-2016 22:37:02)
Running from C:\Users\KAČENKA\Desktop
Loaded Profiles: KAČENKA (Available Profiles: KAČENKA)
Platform: Windows 8 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 10 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(DigitalPersona, Inc.) C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
(PDF Complete Inc) C:\Program Files (x86)\PDF Complete\pdfsvc.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Uniblue Systems Ltd) C:\Program Files (x86)\Uniblue\DriverScanner\dsmonitor.exe
(DigitalPersona, Inc.) C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(Qualcomm®Atheros®) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
() C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe
(DigitalPersona, Inc.) C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpAgent.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Microsoft Corporation) C:\Windows\System32\AutoUpdate.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Windows\SoftwareDistribution\Download\1357d18a8934da01ed8eee3d21cac2cf\windowsstoresetupbox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\$Windows.~BT\Sources\SetupHost.exe
(Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.2.9200.17516_none_6276a5b950d43361\TiWorker.exe
(Microsoft Corporation) C:\$Windows.~BT\Sources\wicainventory.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1425408 2012-08-06] (IDT, Inc.)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Smart Security\egui.exe [6330568 2013-03-21] (ESET)
HKLM\...\Run: [SpywareTerminatorUpdater] => C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe [3684488 2013-08-29] (Crawler.com)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [169768 2015-01-27] (Apple Inc.)
HKLM-x32\...\Run: [CLMLServer_For_P2G8] => c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [111120 2012-06-08] (CyberLink)
HKLM-x32\...\Run: [CLVirtualDrive] => c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [491120 2012-07-24] (CyberLink Corp.)
HKLM-x32\...\Run: [RemoteControl10] => c:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [91432 2012-03-29] (CyberLink Corp.)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [60712 2015-01-20] (Apple Inc.)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642216 2012-09-18] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [QLBController] => C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe [337184 2013-10-16] (Hewlett-Packard Company)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [IrSoftImportAssistantStarter] => C:\Program Files (x86)\Testo\IRSoft\ImportAssistantStarter.exe [13312 2012-10-01] (Hewlett-Packard Company)
HKLM-x32\...\Run: [PDF Complete] => C:\Program Files (x86)\PDF Complete\pdfsty.exe [683656 2013-07-18] (PDF Complete Inc)
HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe,C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe,
Winlogon\Notify\DeviceNP-x32: DeviceNP.dll [X]
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [132736 2013-09-25] (Qualcomm®Atheros®)
HKU\S-1-5-21-4294006856-1665788878-3267595846-1002\...\Run: [] => [X]
HKU\S-1-5-21-4294006856-1665788878-3267595846-1002\...\Run: [NokiaSuite.exe] => C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe [1092448 2014-11-19] (Nokia)
IFEO\bitguard.exe: [Debugger] tasklist.exe
IFEO\bprotect.exe: [Debugger] tasklist.exe
IFEO\browserdefender.exe: [Debugger] tasklist.exe
IFEO\browserprotect.exe: [Debugger] tasklist.exe
Lsa: [Notification Packages] DPPassFilter scecli
BootExecute: autocheck autochk * sdnclean64.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{BF1787E7-55A1-4635-83E2-E3A2C7F66349}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{F6F63C25-8CB7-47AA-86B5-A5D092D9FEA5}: [DhcpNameServer] 10.77.0.1 10.77.1.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=CMNTDFJS
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=CMNTDFJS
HKU\S-1-5-21-4294006856-1665788878-3267595846-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.seznam.cz/?clid=2
HKU\S-1-5-21-4294006856-1665788878-3267595846-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.seznam.cz/?clid=2
SearchScopes: HKLM -> {52db1893-8a90-4192-aede-08e00b8f8473} URL = hxxp://dts.search.ask.com/sr?src=ieb&gct=ds&appid=100&systemid=473&v=a9397-149&apn_uid=8095215370334167&apn_dtid=BND473&o=APN10640&apn_ptnrs=AG1&q={searchTerms}
SearchScopes: HKLM-x32 -> {52db1893-8a90-4192-aede-08e00b8f8473} URL = hxxp://dts.search.ask.com/sr?src=ieb&gct=ds&appid=100&systemid=473&v=a9397-149&apn_uid=8095215370334167&apn_dtid=BND473&o=APN10640&apn_ptnrs=AG1&q={searchTerms}
SearchScopes: HKU\S-1-5-21-4294006856-1665788878-3267595846-1002 -> DefaultScope {42E7742F-2E6D-4C9B-811B-E0D7048FC92D} URL = hxxp://search.seznam.cz/?q={searchTerms}&sourceid=Quicksearch_2
SearchScopes: HKU\S-1-5-21-4294006856-1665788878-3267595846-1002 -> {42E7742F-2E6D-4C9B-811B-E0D7048FC92D} URL = hxxp://search.seznam.cz/?q={searchTerms}&sourceid=Quicksearch_2
SearchScopes: HKU\S-1-5-21-4294006856-1665788878-3267595846-1002 -> {52db1893-8a90-4192-aede-08e00b8f8473} URL = hxxp://dts.search.ask.com/sr?src=ieb&gct=ds&appid=100&systemid=473&v=a9397-149&apn_uid=8095215370334167&apn_dtid=BND473&o=APN10640&apn_ptnrs=AG1&q={searchTerms}
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2016-07-21] (HP Inc.)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2016-07-21] (HP Inc.)

FireFox:
========
FF ProfilePath: C:\Users\KAČENKA\AppData\Roaming\Mozilla\Firefox\Profiles\0t7fdfh3.default
FF SearchEngineOrder.1: Ask.com
FF Homepage: about:home
FF Keyword.URL: hxxp://dts.search.ask.com/sr?src=ffb&gct=ds&appid=100&systemid=473&v=a9397-149&apn_dtid=BND473&apn_ptnrs=AG1&apn_uid=8095215370334167&o=APN10640&q=
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_18_0_0_194.dll [2015-07-02] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_194.dll [2015-07-02] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-10-30] ()
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2013-04-02] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2013-04-02] (Foxit Corporation)
FF Plugin-x32: @nokia.com/EnablerPlugin -> C:\Program Files (x86)\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll [2014-11-19] ( )
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: digitalpersona.com/ChromeDPAgent -> C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\ChromeExt\components\npChromeDPAgent.dll [2012-10-26] (DigitalPersona, Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\Ask.xml [2013-10-29]
FF Extension: (FireGestures) - C:\Users\KAČENKA\AppData\Roaming\Mozilla\Firefox\Profiles\0t7fdfh3.default\extensions\firegestures@xuldev.org.xpi [2016-05-19]
FF Extension: (NewScrollbars (aka NoiaScrollbars)) - C:\Users\KAČENKA\AppData\Roaming\Mozilla\Firefox\Profiles\0t7fdfh3.default\extensions\NoiaScrollbars@ArisT2_Noia4dev.xpi [2016-06-18]
FF Extension: (Screengrab (fix version)) - C:\Users\KAČENKA\AppData\Roaming\Mozilla\Firefox\Profiles\0t7fdfh3.default\extensions\{02450914-cdd9-410f-b1da-db004e18c671}.xpi [2016-09-12]
FF Extension: (Český slovník pro kontrolu pravopisu (bez diakritiky)) - C:\Users\KAČENKA\AppData\Roaming\Mozilla\Firefox\Profiles\0t7fdfh3.default\Extensions\cs2@dictionaries.addons.mozilla.org [2016-08-14]
FF Extension: (Český slovník pro kontrolu pravopisu) - C:\Users\KAČENKA\AppData\Roaming\Mozilla\Firefox\Profiles\0t7fdfh3.default\Extensions\cs@dictionaries.addons.mozilla.org [2016-08-14]
FF Extension: (Autofill) - C:\Users\KAČENKA\AppData\Roaming\Mozilla\Firefox\Profiles\0t7fdfh3.default\Extensions\firefox-autofill@googlegroups.com.xpi [2016-04-27]
FF Extension: (Personas Plus) - C:\Users\KAČENKA\AppData\Roaming\Mozilla\Firefox\Profiles\0t7fdfh3.default\Extensions\personas@christopher.beard.xpi [2016-07-28]
FF Extension: (Firefox Synchronisation Extension) - C:\Users\KAČENKA\AppData\Roaming\Mozilla\Firefox\Profiles\0t7fdfh3.default\Extensions\synchronize@nokia.suite [2013-09-05] [not signed]
FF Extension: (Password Exporter) - C:\Users\KAČENKA\AppData\Roaming\Mozilla\Firefox\Profiles\0t7fdfh3.default\Extensions\{B17C1C5A-04B1-11DB-9804-B622A1EF5492}.xpi [2016-04-05]
FF Extension: (Adblock Plus) - C:\Users\KAČENKA\AppData\Roaming\Mozilla\Firefox\Profiles\0t7fdfh3.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-04-28]
FF Extension: (Bitdefender QuickScan) - C:\Users\KAČENKA\AppData\Roaming\Mozilla\Firefox\Profiles\0t7fdfh3.default\Extensions\{e001c731-5e37-4538-a5cb-8168736a2360} [2016-09-17]
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF Extension: (ESET Smart Security Extension) - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2013-05-24] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [otis@digitalpersona.com] - C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\FirefoxExt
FF Extension: (DigitalPersona Extension) - C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\FirefoxExt [2016-08-07] [not signed]
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird

Chrome: 
=======
CHR HKLM-x32\...\Chrome\Extension: [ncffjdbbodifgldkcbhmiiljfcnbgjab] - C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\ChromeExt\dpchrome.crx [2012-10-26]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S4 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [172344 2016-09-17] (SUPERAntiSpyware.com)
S4 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-01-20] (Apple Inc.)
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [312448 2013-09-25] (Windows (R) Win 7 DDK provider) [File not signed]
R2 DpHost; C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [488824 2012-10-26] (DigitalPersona, Inc.)
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [1341664 2013-03-21] (ESET)
S4 FLCDLOCK; c:\Windows\SysWOW64\flcdlock.exe [477088 2012-08-01] (Hewlett-Packard Company)
S4 hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe [681760 2013-10-16] (Hewlett-Packard Company)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [29728 2016-08-15] (HP Inc.)
R2 pdfcDispatcher; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [1143432 2013-07-18] (PDF Complete Inc)
S4 ST2012_Svc; C:\Program Files (x86)\Spyware Terminator\st_rsser64.exe [1149104 2013-08-29] (Crawler.com)
S4 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [321536 2012-08-06] (IDT, Inc.) [File not signed]
S4 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5419792 2014-11-28] (TeamViewer GmbH)
S3 vmicvss; C:\Windows\System32\ICSvc.dll [336384 2012-07-26] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16056 2015-07-06] (Microsoft Corporation)
S4 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2013-09-25] (Atheros) [File not signed]

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 amdkmpfd; C:\Windows\System32\drivers\amdkmpfd.sys [35496 2012-07-09] (Advanced Micro Devices, Inc.)
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdW86.sys [91648 2014-04-10] (Advanced Micro Devices)
S3 BCM43XX; C:\Windows\system32\DRIVERS\bcmwl63a.sys [5139968 2012-06-02] (Broadcom Corporation)
R3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2013-09-25] (Qualcomm Atheros)
R3 BthMtpEnum; C:\Windows\system32\DRIVERS\BthMtpEnum.sys [64512 2012-07-26] (Microsoft Corporation)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
S3 DAMDrv; C:\Windows\system32\DRIVERS\DAMDrv64.sys [64832 2012-07-25] (Hewlett-Packard Company)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [213416 2013-02-14] (ESET)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3265256 2012-09-20] (Broadcom Corporation)
R1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [150616 2013-01-10] (ESET)
R2 epfw; C:\Windows\system32\DRIVERS\epfw.sys [190232 2013-01-10] (ESET)
R1 EpfwLWF; C:\Windows\system32\DRIVERS\EpfwLWF.sys [59440 2013-01-10] (ESET)
R0 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [58416 2013-02-14] (ESET)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R3 SensorsServiceDriver; C:\Windows\system32\DRIVERS\WUDFRd.sys [198656 2012-07-26] (Microsoft Corporation)
S3 SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [41272 2012-08-15] (Synaptics Incorporated)
S3 SmbDrvI; C:\Windows\System32\drivers\Smb_driver_Intel.sys [43832 2012-08-15] (Synaptics Incorporated)
R3 SNP2UVC; C:\Windows\system32\DRIVERS\snp2uvc.sys [1862536 2012-07-28] ()
R2 sp_rsdrv2; C:\Windows\System32\DRIVERS\stflt.sys [51496 2013-10-05] (Windows (R) Win 7 DDK provider)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44560 2015-07-06] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [281944 2015-07-06] (Microsoft Corporation)
R3 WinDriver6; C:\Windows\system32\drivers\windrvr6.sys [254976 2011-05-09] (Jungo)
R3 WirelessButtonDriver; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [20800 2013-06-27] (Hewlett-Packard Development Company, L.P.)
R3 WUDFWpdComp; C:\Windows\system32\DRIVERS\WUDFRd.sys [198656 2012-07-26] (Microsoft Corporation)
S3 cpuz136; \??\C:\Windows\TEMP\cpuz136\cpuz136_x64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-09-17 22:37 - 2016-09-17 22:37 - 00018637 _____ C:\Users\KAČENKA\Desktop\FRST.txt
2016-09-17 22:35 - 2016-09-17 22:37 - 00000000 ____D C:\FRST
2016-09-17 22:33 - 2016-09-17 22:33 - 02399232 _____ (Farbar) C:\Users\KAČENKA\Desktop\FRST64.exe
2016-09-17 22:31 - 2016-09-17 22:31 - 00000000 ____D C:\AdwCleaner
2016-09-17 22:30 - 2016-09-17 22:30 - 03861056 _____ C:\Users\KAČENKA\Desktop\adwcleaner_6.020.exe
2016-09-17 22:21 - 2016-09-17 22:21 - 00000000 ___RD C:\Users\KAČENKA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
2016-09-17 21:53 - 2016-09-17 21:53 - 06760064 _____ (ESET spol. s r.o.) C:\Users\KAČENKA\Desktop\ESETOnlineScanner_CSY.exe
2016-09-17 21:52 - 2016-09-17 21:52 - 00000000 ____D C:\Users\KAČENKA\AppData\Roaming\QuickScan

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-09-17 22:34 - 2014-11-22 00:02 - 00000000 ___HD C:\$Windows.~BT
2016-09-17 22:19 - 2014-06-18 18:09 - 00000360 _____ C:\Windows\Tasks\dsmonitor.job
2016-09-17 22:19 - 2012-09-11 07:34 - 00000000 ____D C:\ProgramData\PDFC
2016-09-17 22:19 - 2012-07-26 09:22 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-09-17 22:18 - 2012-07-26 07:26 - 00262144 ___SH C:\Windows\system32\config\BBI
2016-09-17 22:16 - 2016-07-11 23:20 - 00007596 _____ C:\Users\KAČENKA\AppData\Local\Resmon.ResmonCfg
2016-09-17 21:50 - 2013-01-25 20:32 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-09-17 21:38 - 2012-07-26 10:12 - 00000000 ___HD C:\Program Files\WindowsApps
2016-09-17 21:38 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\AUInstallAgent
2016-09-17 21:33 - 2014-02-18 22:16 - 00000356 _____ C:\Windows\Tasks\HPCeeScheduleForKAČENKA.job
2016-09-17 21:32 - 2013-10-05 09:00 - 00000000 ____D C:\Program Files\SUPERAntiSpyware
2016-09-17 21:25 - 2014-02-18 22:16 - 00003174 _____ C:\Windows\System32\Tasks\HPCeeScheduleForKAČENKA
2016-09-17 21:25 - 2013-01-24 02:49 - 00000000 ____D C:\Users\KAČENKA
2016-09-17 20:06 - 2012-09-11 07:37 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-09-17 20:02 - 2013-01-24 10:13 - 00000000 ____D C:\obchůdek
2016-09-17 19:55 - 2013-07-24 19:14 - 00000000 ____D C:\Users\KAČENKA\AppData\Roaming\FileZilla
2016-09-17 19:53 - 2012-07-26 07:37 - 00000000 ____D C:\Windows\Inf
2016-09-17 19:52 - 2013-02-18 07:58 - 00000000 ____D C:\Windows\Minidump
2016-09-17 19:52 - 2013-01-24 11:12 - 00000000 ____D C:\Users\KAČENKA\AppData\Local\CrashDumps
2016-09-17 19:35 - 2013-07-14 08:14 - 00000000 ____D C:\Windows\system32\MRT
2016-09-17 19:10 - 2013-01-24 10:54 - 144199024 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-09-12 21:49 - 2015-02-08 15:03 - 00000000 ____D C:\On Style

==================== Files in the root of some directories =======

2016-04-06 21:32 - 2016-04-06 21:32 - 0000822 _____ () C:\Users\KAČENKA\AppData\Local\recently-used.xbel
2016-07-11 23:20 - 2016-09-17 22:16 - 0007596 _____ () C:\Users\KAČENKA\AppData\Local\Resmon.ResmonCfg

Files to move or delete:
====================
C:\Users\KAČENKA\install_flashplayer11x32au_mssa_aih.exe


Some files in TEMP:
====================
C:\Users\KAČENKA\AppData\Local\Temp\libeay32.dll
C:\Users\KAČENKA\AppData\Local\Temp\msvcr120.dll
C:\Users\KAČENKA\AppData\Local\Temp\sqlite3.dll


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2016-09-12 13:29

==================== End of FRST.txt ============================

Márty84
VIP
VIP
Příspěvky: 21679
Registrován: 05 pro 2009 20:08
Bydliště: Ostrava

Re: Vytížení disku na 100%

#2 Příspěvek od Márty84 »

Zdravim :)

:arrow: Nedavejte prosim logy do Code. Spatne se to cte, boli z toho oci.


:arrow: Stahnete crystal disk info http://www.slunecnice.cz/sw/crystaldiskinfo/
Nainstalujte (pozor na pripadne doplnky, ty odmitnete zrusenim zatrzitka) a spustte jako spravce. Za chvili se zobrazi vysledek.
Kliknete nahore na napis Úpravy a pak na napis Kopírovat. To co se zkopiruje (ulozi se to do pameti) mi sem vlozte (ctrl + V)


:arrow: Stahnete AdwCleaner https://toolslib.net/downloads/finish/1/ a ulozte ho na plochu.
Ukoncete vsechny programy, jinak to AdwCleaner udela za vas.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Kliknete na Scan a pockejte, az kontrola dobehne.
Pak kliknete na Cleaning
Program zacne pracovat (muze dojit k restartu pc) a vyplivne log (pripadne bude zde C:\AdwCleaner\AdwCleaner[C?].txt ). Ten mi sem zkopirujte.


:arrow: Udelejte kontrolu s MBAM. Test nastavte podle tohoto navodu (cili Vlastni sken vsech disku) http://forum.viry.cz/viewtopic.php?f=29&t=144868 a dejte sem vysledky. Predem nic nemazte, miva obcas falesne detekce
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz

Možnost podpořit naše fórum https://platba.viry.cz/payment/

Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).

kacenkapc
Návštěvník
Návštěvník
Příspěvky: 7
Registrován: 17 zář 2016 21:50

Re: Vytížení disku na 100%

#3 Příspěvek od kacenkapc »

Dobrý den, zato se omlouvám, příště se polepším :) přikládám výpis z crystal disk info:

----------------------------------------------------------------------------
CrystalDiskInfo 7.0.3 (C) 2008-2016 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------

OS : Windows 8 [6.2 Build 9200] (x64)
Date : 2016/09/18 9:44:43

-- Controller Map ----------------------------------------------------------
+ AMD SATA Controller [ATA]
- Hitachi HTS547575A9E384 SATA Disk Device
- hp DVDRAM GT50N SATA CdRom Device
- Řadič prostorů úložišť [SCSI]

-- Disk List ---------------------------------------------------------------
(1) Hitachi HTS547575A9E384 : 750,1 GB [0/0/0, pd1]

----------------------------------------------------------------------------
(1) Hitachi HTS547575A9E384
----------------------------------------------------------------------------
Model : Hitachi HTS547575A9E384
Firmware : JE4OA50A
Serial Number : J2540020CKYB4E
Disk Size : 750,1 GB (8,4/137,4/750,1/750,1)
Buffer Size : 8192 KB
Queue Depth : 32
# of Sectors : 1465149168
Rotation Rate : 5400 RPM
Interface : Serial ATA
Major Version : ATA8-ACS
Minor Version : ATA8-ACS version 6
Transfer Mode : ---- | SATA/300
Power On Hours : 5614 hod.
Power On Count : 3355 krát
Temperature : 26 C (78 F)
Health Status : Dobrý
Features : S.M.A.R.T., APM, 48bit LBA, NCQ
APM Level : 4080h [ON]
AAM Level : ----
Drive Letter : C: D: F:

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 100 _98 _62 000000000000 Počet chyb čtení
02 100 100 _40 000000000000 Průchodnost disku
03 185 100 _33 001100000001 Čas na roztočení ploten
04 _98 _98 __0 000000000EB5 Počet spuštění/zastavení
05 100 100 __5 000000000000 Počet přemapovaných sektorů
07 100 100 _67 000000000000 Počet chybných hledání
08 100 100 _40 000000000000 Čas potřebný na vyhledání
09 _88 _88 __0 0000000015EE Hodin v činnosti
0A 100 100 _60 000000000000 Počet opakovaných pokusů o roztočení ploten
0C _98 _98 __0 000000000D1B Počet cyklů zapnutí zařízení
B7 100 100 __0 000000000000 Specifický pro výrobce
B8 100 100 _97 000000000000 Ukončovacích chyb
BB 100 100 __0 0020003E0000 Ohlášeno neopravitelných chyb
BC 100 100 __0 000300060000 Časový limit příkazu
BE _74 _57 _45 0000141A001A Teplota toku vzduchu
BF _97 _97 __0 000000000347 Počet udalostí zaznamenaných otřesovým senzorem
C0 100 100 __0 000000260026 Počet vypnutí disku
C1 _66 _66 __0 000000053436 Počet cyklů načítání/vymazání
C4 100 100 __0 000000000000 Počet udalostí s číslem realokování sektorů
C5 100 100 __0 000000000000 Počet podezřelých sektorů
C6 100 100 __0 000000000000 Počet neopravitelných sektorů
C7 100 100 __0 000000000000 Počet chyb v kontrolním součtu UltraDMA
DF 100 _99 __0 000000000000 Zatížení budiče magnetických hlav způsobené opakovanými úkony

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 0040 3FFF C837 0010 0000 0000 003F 0000 0000 0000
010: 2020 2020 2020 4A32 3534 3030 3230 434B 5942 3445
020: 0003 4000 0004 4A45 344F 4135 3041 4869 7461 6368
030: 6920 4854 5335 3437 3537 3541 3945 3338 3420 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 4000 2F00
050: 4000 0200 0200 0007 3FFF 0010 003F FC10 00FB 0110
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 001F 0D06 0000 004C 004C
080: 01FC 0028 706B 7C09 6123 7069 BC09 6123 203F 005C
090: 005D 4080 FFFE 0000 0000 0000 0000 0000 0000 0000
100: 66F0 5754 0000 0000 0000 0000 6003 826C 5000 CCA7
110: 28C8 2885 0000 0000 0000 0000 0000 0000 0000 401C
120: 401C 0000 0000 0000 0000 0000 0000 0000 0029 000B
130: 0000 0000 2182 1CF1 3A10 0000 4000 0400 0108 0000
140: 0000 0703 0604 0803 0604 0000 0000 0000 0000 0000
150: 0000 0000 3448 4435 0000 2904 0000 5DAD 2518 8000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0003 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 003D 0000 0000 4000
210: 0000 0000 0000 0000 0000 0000 0000 1518 0000 0000
220: 0000 0000 101F 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0001 0080 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 BBA5

-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 2F 00 64 62 00 00 00 00 00 00 00 02 25
010: 00 64 64 00 00 00 00 00 00 00 03 23 00 B9 64 01
020: 00 00 00 11 00 00 04 32 00 62 62 B5 0E 00 00 00
030: 00 00 05 33 00 64 64 00 00 00 00 00 00 00 07 2F
040: 00 64 64 00 00 00 00 00 00 00 08 25 00 64 64 00
050: 00 00 00 00 00 00 09 32 00 58 58 EE 15 00 00 00
060: 00 00 0A 33 00 64 64 00 00 00 00 00 00 00 0C 32
070: 00 62 62 1B 0D 00 00 00 00 00 B7 32 00 64 64 00
080: 00 00 00 00 00 00 B8 33 00 64 64 00 00 00 00 00
090: 00 00 BB 32 00 64 64 00 00 3E 00 20 00 00 BC 32
0A0: 00 64 64 00 00 06 00 03 00 00 BE 22 00 4A 39 1A
0B0: 00 1A 14 00 00 00 BF 32 00 61 61 47 03 00 00 00
0C0: 00 00 C0 32 00 64 64 26 00 26 00 00 00 00 C1 32
0D0: 00 42 42 36 34 05 00 00 00 00 C4 32 00 64 64 00
0E0: 00 00 00 00 00 00 C5 32 00 64 64 00 00 00 00 00
0F0: 00 00 C6 30 00 64 64 00 00 00 00 00 00 00 C7 36
100: 00 64 64 00 00 00 00 00 00 00 DF 2A 00 64 63 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 2D 00 01 51
170: 03 00 01 00 02 BA 00 00 00 00 00 00 00 00 00 00
180: 00 00 37 05 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 D4

-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 3E 00 00 00 00 00 00 00 00 00 00 02 28
010: 00 00 00 00 00 00 00 00 00 00 03 21 00 00 00 00
020: 00 00 00 00 00 00 04 00 00 00 00 00 00 00 00 00
030: 00 00 05 05 00 00 00 00 00 00 00 00 00 00 07 43
040: 00 00 00 00 00 00 00 00 00 00 08 28 00 00 00 00
050: 00 00 00 00 00 00 09 00 00 00 00 00 00 00 00 00
060: 00 00 0A 3C 00 00 00 00 00 00 00 00 00 00 0C 00
070: 00 00 00 00 00 00 00 00 00 00 B7 00 00 00 00 00
080: 00 00 00 00 00 00 B8 61 00 00 00 00 00 00 00 00
090: 00 00 BB 00 00 00 00 00 00 00 00 00 00 00 BC 00
0A0: 00 00 00 00 00 00 00 00 00 00 BE 2D 00 00 00 00
0B0: 00 00 00 00 00 00 BF 00 00 00 00 00 00 00 00 00
0C0: 00 00 C0 00 00 00 00 00 00 00 00 00 00 00 C1 00
0D0: 00 00 00 00 00 00 00 00 00 00 C4 00 00 00 00 00
0E0: 00 00 00 00 00 00 C5 00 00 00 00 00 00 00 00 00
0F0: 00 00 C6 00 00 00 00 00 00 00 00 00 00 00 C7 00
100: 00 00 00 00 00 00 00 00 00 00 DF 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 19

kacenkapc
Návštěvník
Návštěvník
Příspěvky: 7
Registrován: 17 zář 2016 21:50

Re: Vytížení disku na 100%

#4 Příspěvek od kacenkapc »

Výpis z AdwCleaner:

# AdwCleaner v6.020 - Log soubor vytvořen 18/09/2016 na 09:49:45
# Aktualizováno dne 14/09/2016 z ToolsLib
# Databáze : 2016-09-17.1 [Server]
# Operační systém : Windows 8 (X64)
# Uživatelské jméno : KAČENKA - KACENKA
# Beží od : C:\Users\KAČENKA\Desktop\adwcleaner_6.020.exe
# Mod: Čištění
# Podpora : https://toolslib.net/forum



***** [ Služby ] *****

[-] Služby smazány:sp_rsdrv2


***** [ Adresáře ] *****

[-] Adresář smazán:C:\Users\KAČENKA\AppData\Local\MediaDrug
[-] Adresář smazán:C:\Users\KAČENKA\AppData\Roaming\Uniblue
[-] Adresář smazán:C:\Users\KAČENKA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MediaDrug
[-] Adresář smazán:C:\MediaDrug
[-] Adresář smazán:C:\ProgramData\BitGuard
[-] Adresář smazán:C:\ProgramData\Browser Manager
[-] Adresář smazán:C:\ProgramData\BrowserProtect
[#] Adresář nelze smazat:C:\ProgramData\Application Data\BitGuard
[#] Adresář nelze smazat:C:\ProgramData\Application Data\Browser Manager
[#] Adresář nelze smazat:C:\ProgramData\Application Data\BrowserProtect
[-] Adresář smazán:C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Uniblue
[-] Adresář smazán:C:\Program Files (x86)\Uniblue


***** [ Soubory ] *****

[-] Soubor smazán:C:\Users\KAČENKA\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\driverscanner.lnk
[#] Soubor smazán:C:\Users\KAČENKA\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\DriverScanner.lnk
[-] Soubor smazán:C:\Users\Public\Desktop\driverscanner.lnk
[#] Soubor smazán:C:\Users\Public\Desktop\DriverScanner.lnk
[-] Soubor smazán:C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\Ask.xml
[#] Soubor smazán:C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\Ask.xml
[#] Soubor smazán:C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\Ask.xml


***** [ DLL ] *****



***** [ WMI ] *****



***** [ Zástupce ] *****



***** [ Plánovač úloh ] *****



***** [ Registry ] *****

[-] Klíč smazán:HKLM\SOFTWARE\Classes\driverscanner
[-] Klíč smazán:HKLM\SOFTWARE\Classes\PCSuiteContactsView
[-] Klíč smazán:HKLM\SOFTWARE\Classes\PCSuiteMessagesView
[#] Klíč smazán po restartování:[x64] HKLM\SOFTWARE\Classes\driverscanner
[#] Klíč smazán po restartování:[x64] HKLM\SOFTWARE\Classes\PCSuiteContactsView
[#] Klíč smazán po restartování:[x64] HKLM\SOFTWARE\Classes\PCSuiteMessagesView
[-] Klíč smazán:HKLM\SOFTWARE\Classes\Interface\{813A22E0-3E2B-4188-9BDA-ECA9878B8D48}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
[-] Klíč smazán:HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{338A754C-B46E-4BF2-8AC8-23DE36862AD3}
[-] Klíč smazán:HKU\S-1-5-21-4294006856-1665788878-3267595846-1002\Software\APN PIP
[-] Klíč smazán:HKU\S-1-5-21-4294006856-1665788878-3267595846-1002\Software\BI
[#] Klíč smazán po restartování:HKCU\Software\APN PIP
[#] Klíč smazán po restartování:HKCU\Software\BI
[-] Klíč smazán:HKLM\SOFTWARE\DataMngr
[-] Klíč smazán:HKLM\SOFTWARE\InstallIQ
[-] Klíč smazán:HKLM\SOFTWARE\PIP
[-] Klíč smazán:HKLM\SOFTWARE\SafetyNut
[-] Klíč smazán:HKLM\SOFTWARE\Uniblue
[#] Klíč smazán po restartování:HKLM\SOFTWARE\Uniblue\DriverScanner
[#] Klíč smazán po restartování:HKLM\SOFTWARE\Datamngr
[#] Klíč smazán po restartování:HKLM\SOFTWARE\SAFETYNUT
[-] Klíč smazán:HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{C2F8CA82-2BD9-4513-B2D1-08A47914C1DA}_is1
[#] Klíč smazán po restartování:[x64] HKCU\Software\APN PIP
[#] Klíč smazán po restartování:[x64] HKCU\Software\BI
[-] Klíč smazán:HKU\S-1-5-21-4294006856-1665788878-3267595846-1002\Software\Microsoft\Internet Explorer\SearchScopes\{52db1893-8a90-4192-aede-08e00b8f8473}
[#] Klíč smazán po restartování:HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{52db1893-8a90-4192-aede-08e00b8f8473}
[-] Klíč smazán:HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{52db1893-8a90-4192-aede-08e00b8f8473}
[#] Klíč smazán po restartování:[x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{52db1893-8a90-4192-aede-08e00b8f8473}
[-] Klíč smazán:[x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{52db1893-8a90-4192-aede-08e00b8f8473}
[-] Hodnota smazána:HKU\S-1-5-21-4294006856-1665788878-3267595846-1002\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run [AppsHat]
[-] Hodnota smazána:HKU\S-1-5-21-4294006856-1665788878-3267595846-1002\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run [SDP]


***** [ Prohlížeče ] *****

[-] Firefox nastavení vyčištěno:"browser.search.order.1" - "Ask.com"
[-] Firefox nastavení vyčištěno:"keyword.URL" - "hxxp://dts.search.ask.com/sr?src=ffb&gct=ds&appid=100&systemid=473&v=a9397-149&apn_dtid=BND473&apn_ptnrs=AG1&apn_uid=8095215370334167&o=APN10640&q="


*************************

:: "Tracing" klíč smazán
:: Winsock nastavení vyčištěno

*************************

C:\AdwCleaner\AdwCleaner[C0].txt - [5104 Bajtů] - [18/09/2016 09:49:45]
C:\AdwCleaner\AdwCleaner[S0].txt - [5187 Bajtů] - [18/09/2016 09:48:53]

########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [5252 Bajtů] ##########

kacenkapc
Návštěvník
Návštěvník
Příspěvky: 7
Registrován: 17 zář 2016 21:50

Re: Vytížení disku na 100%

#5 Příspěvek od kacenkapc »

Výpis z MBAM:

Malwarebytes Anti-Malware
www.malwarebytes.org

Datum skenování: 18. 9. 2016
Čas skenování: 10:38
Protokol: mbam.txt
Správce: Ano

Verze: 2.2.1.1043
Databáze malwaru: v2016.09.18.03
Databáze rootkitů: v2016.08.15.01
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Ochrana programu: Vypnuto

OS: Windows 8
CPU: x64
Souborový systém: NTFS
Uživatel: KAČENKA

Typ skenu: Vlastní sken
Výsledek: Dokončeno
Prohledaných objektů: 585856
Uplynulý čas: 4 hod, 43 min, 21 sek

Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Zapnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto

Procesy: 0
(Nenalezeny žádné škodlivé položky)

Moduly: 0
(Nenalezeny žádné škodlivé položky)

Klíče registru: 9
PUP.Optional.MoviesToolBar, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{3444c3c5-6c56-4a16-a453-832b05bf6ea4}, , [bae1cba88b0f47efe51aa8e9f70be51b],
PUP.Optional.IFEO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\BITGUARD.EXE, , [8a1198db4a5091a535c65352cd363bc5],
PUP.Optional.IFEO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\BPROTECT.EXE, , [5744b3c0049626106a92d7cedf24dc24],
PUP.Optional.IFEO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\BROWSERDEFENDER.EXE, , [712a85ee2872f640f20dd1d4b0534cb4],
PUP.Optional.IFEO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\BROWSERPROTECT.EXE, , [613a3043a5f57eb87190d1d5788b37c9],
PUP.Optional.IFEO, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\BITGUARD.EXE, , [bae121520397ae8815e65550857e8080],
PUP.Optional.IFEO, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\BPROTECT.EXE, , [a4f7e78c693182b4bf3ddbca08fb9868],
PUP.Optional.IFEO, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\BROWSERDEFENDER.EXE, , [4754c5aefb9f1521609fb9ecbb48738d],
PUP.Optional.IFEO, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\BROWSERPROTECT.EXE, , [f0ab403378229a9caa570a9c7a893ec2],

Hodnoty registru: 8
PUP.Optional.IFEO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\BITGUARD.EXE|debugger, tasklist.exe, , [8a1198db4a5091a535c65352cd363bc5]
PUP.Optional.IFEO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\BPROTECT.EXE|debugger, tasklist.exe, , [5744b3c0049626106a92d7cedf24dc24]
PUP.Optional.IFEO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\BROWSERDEFENDER.EXE|debugger, tasklist.exe, , [712a85ee2872f640f20dd1d4b0534cb4]
PUP.Optional.IFEO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\BROWSERPROTECT.EXE|debugger, tasklist.exe, , [613a3043a5f57eb87190d1d5788b37c9]
PUP.Optional.IFEO, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\BITGUARD.EXE|debugger, tasklist.exe, , [bae121520397ae8815e65550857e8080]
PUP.Optional.IFEO, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\BPROTECT.EXE|debugger, tasklist.exe, , [a4f7e78c693182b4bf3ddbca08fb9868]
PUP.Optional.IFEO, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\BROWSERDEFENDER.EXE|debugger, tasklist.exe, , [4754c5aefb9f1521609fb9ecbb48738d]
PUP.Optional.IFEO, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\BROWSERPROTECT.EXE|debugger, tasklist.exe, , [f0ab403378229a9caa570a9c7a893ec2]

Data registru: 0
(Nenalezeny žádné škodlivé položky)

Složky: 1
PUP.Optional.MediaDrug, C:\Users\KAČENKA\Music\MediaDrug, , [4d4e80f31882fb3bff5bd2e512f054ac],

Soubory: 2
PUP.Optional.MediaDrug, C:\AdwCleaner\quarantine\files\oexlkcbxsopvuermaeolhkawmhgftkqc\mediadrug.exe, , [19826013891150e678e0fc30b94804fc],
PUP.Optional.MediaDrug, C:\Users\KAČENKA\Music\MediaDrug\default.mdp, , [4d4e80f31882fb3bff5bd2e512f054ac],

Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)


(end)

Márty84
VIP
VIP
Příspěvky: 21679
Registrován: 05 pro 2009 20:08
Bydliště: Ostrava

Re: Vytížení disku na 100%

#6 Příspěvek od Márty84 »

Vsechny nalezy nechte odstranit. Po odstraneni a restartu pc test s MBAM zopakujte (tentokrat uz staci jen sken hrozeb, bude rychlejsi), at vime, jestli se to nevraci. Napiste vysledek testu a podle nej zvolim dalsi postup.
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz

Možnost podpořit naše fórum https://platba.viry.cz/payment/

Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).

kacenkapc
Návštěvník
Návštěvník
Příspěvky: 7
Registrován: 17 zář 2016 21:50

Re: Vytížení disku na 100%

#7 Příspěvek od kacenkapc »

Posílám výpis. Počítač je již o mnoho lepší, už se na něm nechá normálně pracovat. Děkuji mockrát.

Malwarebytes Anti-Malware
www.malwarebytes.org

Datum skenování: 20. 9. 2016
Čas skenování: 15:54
Protokol: mbam2.txt
Správce: Ano

Verze: 2.2.1.1043
Databáze malwaru: v2016.09.20.05
Databáze rootkitů: v2016.08.15.01
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Ochrana programu: Vypnuto

OS: Windows 8
CPU: x64
Souborový systém: NTFS
Uživatel: KAČENKA

Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 311534
Uplynulý čas: 22 min, 0 sek

Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto

Procesy: 0
(Nenalezeny žádné škodlivé položky)

Moduly: 0
(Nenalezeny žádné škodlivé položky)

Klíče registru: 0
(Nenalezeny žádné škodlivé položky)

Hodnoty registru: 0
(Nenalezeny žádné škodlivé položky)

Data registru: 0
(Nenalezeny žádné škodlivé položky)

Složky: 0
(Nenalezeny žádné škodlivé položky)

Soubory: 0
(Nenalezeny žádné škodlivé položky)

Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)


(end)

kacenkapc
Návštěvník
Návštěvník
Příspěvky: 7
Registrován: 17 zář 2016 21:50

Re: Vytížení disku na 100%

#8 Příspěvek od kacenkapc »

Pro jistotu posílám ještě jednou log z FRST.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 18-09-2016
Ran by KAČENKA (administrator) on KACENKA (20-09-2016 16:20:31)
Running from C:\Users\KAČENKA\Desktop
Loaded Profiles: KAČENKA (Available Profiles: KAČENKA)
Platform: Windows 8 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 10 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(DigitalPersona, Inc.) C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(PDF Complete Inc) C:\Program Files (x86)\PDF Complete\pdfsvc.exe
(HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(DigitalPersona, Inc.) C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe
(DigitalPersona, Inc.) C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpAgent.exe
(Qualcomm®Atheros®) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
() C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1425408 2012-08-06] (IDT, Inc.)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Smart Security\egui.exe [6330568 2013-03-21] (ESET)
HKLM\...\Run: [SpywareTerminatorUpdater] => C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe [3684488 2013-08-29] (Crawler.com)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [169768 2015-01-27] (Apple Inc.)
HKLM-x32\...\Run: [CLMLServer_For_P2G8] => c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [111120 2012-06-08] (CyberLink)
HKLM-x32\...\Run: [CLVirtualDrive] => c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [491120 2012-07-24] (CyberLink Corp.)
HKLM-x32\...\Run: [RemoteControl10] => c:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [91432 2012-03-29] (CyberLink Corp.)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [60712 2015-01-20] (Apple Inc.)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642216 2012-09-18] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [QLBController] => C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe [337184 2013-10-16] (Hewlett-Packard Company)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [IrSoftImportAssistantStarter] => C:\Program Files (x86)\Testo\IRSoft\ImportAssistantStarter.exe [13312 2012-10-01] (Hewlett-Packard Company)
HKLM-x32\...\Run: [PDF Complete] => C:\Program Files (x86)\PDF Complete\pdfsty.exe [1193728 2016-08-10] (PDF Complete Inc)
HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe,C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe,
Winlogon\Notify\DeviceNP-x32: DeviceNP.dll [X]
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [132736 2013-09-25] (Qualcomm®Atheros®)
HKU\S-1-5-21-4294006856-1665788878-3267595846-1002\...\Run: [] => [X]
HKU\S-1-5-21-4294006856-1665788878-3267595846-1002\...\Run: [NokiaSuite.exe] => C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe [1092448 2014-11-19] (Nokia)
Lsa: [Notification Packages] DPPassFilter scecli
BootExecute: autocheck autochk * sdnclean64.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{BF1787E7-55A1-4635-83E2-E3A2C7F66349}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{F6F63C25-8CB7-47AA-86B5-A5D092D9FEA5}: [DhcpNameServer] 10.77.0.1 10.77.1.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=CMNTDFJS
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=CMNTDFJS
HKU\S-1-5-21-4294006856-1665788878-3267595846-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.seznam.cz/?clid=2
HKU\S-1-5-21-4294006856-1665788878-3267595846-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.seznam.cz/?clid=2
SearchScopes: HKU\S-1-5-21-4294006856-1665788878-3267595846-1002 -> DefaultScope {42E7742F-2E6D-4C9B-811B-E0D7048FC92D} URL = hxxp://search.seznam.cz/?q={searchTerms}&sourceid=Quicksearch_2
SearchScopes: HKU\S-1-5-21-4294006856-1665788878-3267595846-1002 -> {42E7742F-2E6D-4C9B-811B-E0D7048FC92D} URL = hxxp://search.seznam.cz/?q={searchTerms}&sourceid=Quicksearch_2
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2016-07-21] (HP Inc.)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2016-07-21] (HP Inc.)

FireFox:
========
FF ProfilePath: C:\Users\KAČENKA\AppData\Roaming\Mozilla\Firefox\Profiles\0t7fdfh3.default
FF Homepage: about:home
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_18_0_0_194.dll [2015-07-02] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_194.dll [2015-07-02] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-10-30] ()
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2013-04-02] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2013-04-02] (Foxit Corporation)
FF Plugin-x32: @nokia.com/EnablerPlugin -> C:\Program Files (x86)\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll [2014-11-19] ( )
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: digitalpersona.com/ChromeDPAgent -> C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\ChromeExt\components\npChromeDPAgent.dll [2012-10-26] (DigitalPersona, Inc.)
FF Extension: (FireGestures) - C:\Users\KAČENKA\AppData\Roaming\Mozilla\Firefox\Profiles\0t7fdfh3.default\extensions\firegestures@xuldev.org.xpi [2016-05-19]
FF Extension: (NewScrollbars (aka NoiaScrollbars)) - C:\Users\KAČENKA\AppData\Roaming\Mozilla\Firefox\Profiles\0t7fdfh3.default\extensions\NoiaScrollbars@ArisT2_Noia4dev.xpi [2016-06-18]
FF Extension: (Screengrab (fix version)) - C:\Users\KAČENKA\AppData\Roaming\Mozilla\Firefox\Profiles\0t7fdfh3.default\extensions\{02450914-cdd9-410f-b1da-db004e18c671}.xpi [2016-09-12]
FF Extension: (Český slovník pro kontrolu pravopisu (bez diakritiky)) - C:\Users\KAČENKA\AppData\Roaming\Mozilla\Firefox\Profiles\0t7fdfh3.default\Extensions\cs2@dictionaries.addons.mozilla.org [2016-08-14]
FF Extension: (Český slovník pro kontrolu pravopisu) - C:\Users\KAČENKA\AppData\Roaming\Mozilla\Firefox\Profiles\0t7fdfh3.default\Extensions\cs@dictionaries.addons.mozilla.org [2016-08-14]
FF Extension: (Autofill) - C:\Users\KAČENKA\AppData\Roaming\Mozilla\Firefox\Profiles\0t7fdfh3.default\Extensions\firefox-autofill@googlegroups.com.xpi [2016-04-27]
FF Extension: (Personas Plus) - C:\Users\KAČENKA\AppData\Roaming\Mozilla\Firefox\Profiles\0t7fdfh3.default\Extensions\personas@christopher.beard.xpi [2016-07-28]
FF Extension: (Firefox Synchronisation Extension) - C:\Users\KAČENKA\AppData\Roaming\Mozilla\Firefox\Profiles\0t7fdfh3.default\Extensions\synchronize@nokia.suite [2013-09-05] [not signed]
FF Extension: (Password Exporter) - C:\Users\KAČENKA\AppData\Roaming\Mozilla\Firefox\Profiles\0t7fdfh3.default\Extensions\{B17C1C5A-04B1-11DB-9804-B622A1EF5492}.xpi [2016-04-05]
FF Extension: (Adblock Plus) - C:\Users\KAČENKA\AppData\Roaming\Mozilla\Firefox\Profiles\0t7fdfh3.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-04-28]
FF Extension: (Bitdefender QuickScan) - C:\Users\KAČENKA\AppData\Roaming\Mozilla\Firefox\Profiles\0t7fdfh3.default\Extensions\{e001c731-5e37-4538-a5cb-8168736a2360} [2016-09-17]
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF Extension: (ESET Smart Security Extension) - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2013-05-24] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [otis@digitalpersona.com] - C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\FirefoxExt
FF Extension: (DigitalPersona Extension) - C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\FirefoxExt [2016-08-07] [not signed]
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird

Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [ncffjdbbodifgldkcbhmiiljfcnbgjab] - C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\ChromeExt\dpchrome.crx [2012-10-26]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S4 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [172344 2016-09-17] (SUPERAntiSpyware.com)
S4 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-01-20] (Apple Inc.)
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [312448 2013-09-25] (Windows (R) Win 7 DDK provider) [File not signed]
R2 DpHost; C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [488824 2012-10-26] (DigitalPersona, Inc.)
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [1341664 2013-03-21] (ESET)
S4 FLCDLOCK; c:\Windows\SysWOW64\flcdlock.exe [477088 2012-08-01] (Hewlett-Packard Company)
S4 hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe [681760 2013-10-16] (Hewlett-Packard Company)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [29728 2016-08-15] (HP Inc.)
R2 pdfcDispatcher; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [1719040 2016-08-10] (PDF Complete Inc)
S4 ST2012_Svc; C:\Program Files (x86)\Spyware Terminator\st_rsser64.exe [1149104 2013-08-29] (Crawler.com)
S4 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [321536 2012-08-06] (IDT, Inc.) [File not signed]
S4 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5419792 2014-11-28] (TeamViewer GmbH)
S3 vmicvss; C:\Windows\System32\ICSvc.dll [336384 2012-07-26] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16056 2015-07-06] (Microsoft Corporation)
S4 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2013-09-25] (Atheros) [File not signed]

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 amdkmpfd; C:\Windows\System32\drivers\amdkmpfd.sys [35496 2012-07-09] (Advanced Micro Devices, Inc.)
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdW86.sys [91648 2014-04-10] (Advanced Micro Devices)
S3 BCM43XX; C:\Windows\system32\DRIVERS\bcmwl63a.sys [5139968 2012-06-02] (Broadcom Corporation)
S3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2013-09-25] (Qualcomm Atheros)
S3 BthMtpEnum; C:\Windows\system32\DRIVERS\BthMtpEnum.sys [64512 2012-07-26] (Microsoft Corporation)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
S3 DAMDrv; C:\Windows\system32\DRIVERS\DAMDrv64.sys [64832 2012-07-25] (Hewlett-Packard Company)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [213416 2013-02-14] (ESET)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3265256 2012-09-20] (Broadcom Corporation)
R1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [150616 2013-01-10] (ESET)
R2 epfw; C:\Windows\system32\DRIVERS\epfw.sys [190232 2013-01-10] (ESET)
R1 EpfwLWF; C:\Windows\system32\DRIVERS\EpfwLWF.sys [59440 2013-01-10] (ESET)
R0 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [58416 2013-02-14] (ESET)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [192216 2016-09-20] (Malwarebytes)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R3 SensorsServiceDriver; C:\Windows\system32\DRIVERS\WUDFRd.sys [198656 2012-07-26] (Microsoft Corporation)
S3 SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [41272 2012-08-15] (Synaptics Incorporated)
S3 SmbDrvI; C:\Windows\System32\drivers\Smb_driver_Intel.sys [43832 2012-08-15] (Synaptics Incorporated)
R3 SNP2UVC; C:\Windows\system32\DRIVERS\snp2uvc.sys [1862536 2012-07-28] ()
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44560 2015-07-06] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [281944 2015-07-06] (Microsoft Corporation)
R3 WinDriver6; C:\Windows\system32\drivers\windrvr6.sys [254976 2011-05-09] (Jungo)
R3 WirelessButtonDriver; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [20800 2013-06-27] (Hewlett-Packard Development Company, L.P.)
R3 WUDFWpdComp; C:\Windows\system32\DRIVERS\WUDFRd.sys [198656 2012-07-26] (Microsoft Corporation)
S3 cpuz136; \??\C:\Windows\TEMP\cpuz136\cpuz136_x64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-09-20 16:20 - 2016-09-20 16:20 - 00000000 ____D C:\Users\KAČENKA\Desktop\FRST-OlderVersion
2016-09-20 16:17 - 2016-09-20 16:17 - 00001138 _____ C:\Users\KAČENKA\Desktop\mbam2.txt
2016-09-19 22:25 - 2016-09-19 22:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF Complete
2016-09-19 22:25 - 2016-08-10 22:31 - 00027368 _____ (PDF Complete, Inc.) C:\Windows\system32\pdfc_port.dll
2016-09-18 19:40 - 2016-09-18 19:40 - 00004286 _____ C:\Users\KAČENKA\Desktop\mbam.txt
2016-09-18 10:34 - 2016-09-20 15:54 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-09-18 10:34 - 2016-09-18 10:34 - 00001118 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2016-09-18 10:34 - 2016-09-18 10:34 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-09-18 10:34 - 2016-09-18 10:34 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2016-09-18 10:34 - 2016-03-10 14:09 - 00065408 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2016-09-18 10:34 - 2016-03-10 14:08 - 00140672 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2016-09-18 10:34 - 2016-03-10 14:08 - 00027008 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2016-09-18 10:30 - 2016-09-18 10:32 - 22851472 _____ (Malwarebytes ) C:\Users\KAČENKA\Desktop\mbam-setup-2.2.1.1043.exe
2016-09-18 09:45 - 2016-09-18 09:45 - 00008323 _____ C:\Users\KAČENKA\Desktop\Nový textový dokument.txt
2016-09-18 09:42 - 2016-09-18 09:42 - 00001216 _____ C:\Users\KAČENKA\Desktop\CrystalDiskInfo.lnk
2016-09-18 09:42 - 2016-09-18 09:42 - 00000000 ____D C:\Program Files (x86)\CrystalDiskInfo
2016-09-18 09:41 - 2016-09-18 09:41 - 11407001 _____ C:\Users\KAČENKA\Desktop\CrystalDiskInfo7_0_3-en.exe
2016-09-17 23:13 - 2016-09-20 15:43 - 00003348 _____ C:\Windows\System32\Tasks\ESET Windows 10 upgrade – Refresh settings
2016-09-17 22:38 - 2016-09-17 22:42 - 00033827 _____ C:\Users\KAČENKA\Desktop\Addition.txt
2016-09-17 22:37 - 2016-09-20 16:20 - 00016938 _____ C:\Users\KAČENKA\Desktop\FRST.txt
2016-09-17 22:35 - 2016-09-20 16:20 - 00000000 ____D C:\FRST
2016-09-17 22:33 - 2016-09-20 16:20 - 02400256 _____ (Farbar) C:\Users\KAČENKA\Desktop\FRST64.exe
2016-09-17 22:31 - 2016-09-19 18:24 - 00000000 ____D C:\AdwCleaner
2016-09-17 22:30 - 2016-09-18 09:46 - 03861056 _____ C:\Users\KAČENKA\Desktop\adwcleaner_6.020.exe
2016-09-17 21:53 - 2016-09-17 21:53 - 06760064 _____ (ESET spol. s r.o.) C:\Users\KAČENKA\Desktop\ESETOnlineScanner_CSY.exe
2016-09-17 21:52 - 2016-09-17 21:52 - 00000000 ____D C:\Users\KAČENKA\AppData\Roaming\QuickScan

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-09-20 16:08 - 2014-11-22 00:02 - 00000000 ___HD C:\$Windows.~BT
2016-09-20 16:02 - 2012-09-11 07:34 - 00000000 ____D C:\ProgramData\PDFC
2016-09-20 15:49 - 2013-01-25 20:32 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-09-20 06:45 - 2013-01-24 11:12 - 00000000 ____D C:\Users\KAČENKA\AppData\Local\CrashDumps
2016-09-19 22:25 - 2012-09-11 07:35 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Productivity and Tools
2016-09-19 22:25 - 2012-09-11 07:34 - 00000000 ____D C:\Program Files (x86)\PDF Complete
2016-09-19 22:24 - 2012-07-26 09:22 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-09-19 19:55 - 2015-02-08 15:03 - 00000000 ____D C:\On Style
2016-09-18 10:32 - 2016-07-11 23:20 - 00007596 _____ C:\Users\KAČENKA\AppData\Local\Resmon.ResmonCfg
2016-09-18 00:35 - 2013-01-24 02:52 - 00000000 ____D C:\Users\KAČENKA\Documents\Bluetooth Folder
2016-09-17 22:18 - 2012-07-26 07:26 - 00262144 ___SH C:\Windows\system32\config\BBI
2016-09-17 21:38 - 2012-07-26 10:12 - 00000000 ___HD C:\Program Files\WindowsApps
2016-09-17 21:38 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\AUInstallAgent
2016-09-17 21:33 - 2014-02-18 22:16 - 00000356 _____ C:\Windows\Tasks\HPCeeScheduleForKAČENKA.job
2016-09-17 21:32 - 2013-10-05 09:00 - 00000000 ____D C:\Program Files\SUPERAntiSpyware
2016-09-17 21:25 - 2014-02-18 22:16 - 00003174 _____ C:\Windows\System32\Tasks\HPCeeScheduleForKAČENKA
2016-09-17 21:25 - 2013-01-24 02:49 - 00000000 ____D C:\Users\KAČENKA
2016-09-17 20:06 - 2012-09-11 07:37 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-09-17 20:02 - 2013-01-24 10:13 - 00000000 ____D C:\obchůdek
2016-09-17 19:55 - 2013-07-24 19:14 - 00000000 ____D C:\Users\KAČENKA\AppData\Roaming\FileZilla
2016-09-17 19:53 - 2012-07-26 07:37 - 00000000 ____D C:\Windows\Inf
2016-09-17 19:52 - 2013-02-18 07:58 - 00000000 ____D C:\Windows\Minidump
2016-09-17 19:35 - 2013-07-14 08:14 - 00000000 ____D C:\Windows\system32\MRT
2016-09-17 19:10 - 2013-01-24 10:54 - 144199024 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe

==================== Files in the root of some directories =======

2016-04-06 21:32 - 2016-04-06 21:32 - 0000822 _____ () C:\Users\KAČENKA\AppData\Local\recently-used.xbel
2016-07-11 23:20 - 2016-09-18 10:32 - 0007596 _____ () C:\Users\KAČENKA\AppData\Local\Resmon.ResmonCfg

Files to move or delete:
====================
C:\Users\KAČENKA\install_flashplayer11x32au_mssa_aih.exe


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2016-09-12 13:29

==================== End of FRST.txt ============================

Márty84
VIP
VIP
Příspěvky: 21679
Registrován: 05 pro 2009 20:08
Bydliště: Ostrava

Re: Vytížení disku na 100%

#9 Příspěvek od Márty84 »

:arrow: Napiste mi velikost adresare plochy (C:\Users\KAČENKA\Plocha)


:arrow: Odinstalujte Spyware Terminatora. Uz davno neni co byval a hlavne muze byt v kolizi s Esetem.


:arrow: Otevrete si poznamkovy blok a zkopirujte do nej tento skript

Kód: Vybrat vše

Start
CloseProcesses:
CreateRestorePoint:

HKLM\...\Run: [SpywareTerminatorUpdater] => C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe [3684488 2013-08-29] (Crawler.com)
HKLM-x32\...\Run: [RemoteControl10] => c:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [91432 2012-03-29] (CyberLink Corp.)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [PDF Complete] => C:\Program Files (x86)\PDF Complete\pdfsty.exe [1193728 2016-08-10] (PDF Complete Inc)
HKU\S-1-5-21-4294006856-1665788878-3267595846-1002\...\Run: [] => [X]
HKU\S-1-5-21-4294006856-1665788878-3267595846-1002\...\Run: [NokiaSuite.exe] => C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe [1092448 2014-11-19] (Nokia)
BootExecute: autocheck autochk * sdnclean64.exe

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=CMNTDFJS
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=CMNTDFJS

Hosts:
EmptyTemp:
Reboot:
End
Vlevo nahore kliknete na napis Soubor
Kliknete na napis Ulozit jako...
Napiste spravne ten cerveny nazev fixlist a ulozte na plochu.
Vypnete antivir i dalsi pripadne zabezpeceni.
Spustte FRST jako spravce, kliknete na napis Fix a program vykona prikazy.
Po restartu pc by se mel objevit novy log - s nazvem fixlog, ten mi sem zase zkopirujte.
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz

Možnost podpořit naše fórum https://platba.viry.cz/payment/

Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).

kacenkapc
Návštěvník
Návštěvník
Příspěvky: 7
Registrován: 17 zář 2016 21:50

Re: Vytížení disku na 100%

#10 Příspěvek od kacenkapc »

- Velikost adresáře: 8,54 GB
- Spyware Terminator odinstalován
- výpis FRST:

Fix result of Farbar Recovery Scan Tool (x64) Version: 21-09-2016
Ran by KAČENKA (24-09-2016 09:17:39) Run:1
Running from C:\Users\KAČENKA\Desktop
Loaded Profiles: KAČENKA (Available Profiles: KAČENKA)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CloseProcesses:
CreateRestorePoint:

HKLM\...\Run: [SpywareTerminatorUpdater] => C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe [3684488 2013-08-29] (Crawler.com)
HKLM-x32\...\Run: [RemoteControl10] => c:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [91432 2012-03-29] (CyberLink Corp.)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [PDF Complete] => C:\Program Files (x86)\PDF Complete\pdfsty.exe [1193728 2016-08-10] (PDF Complete Inc)
HKU\S-1-5-21-4294006856-1665788878-3267595846-1002\...\Run: [] => [X]
HKU\S-1-5-21-4294006856-1665788878-3267595846-1002\...\Run: [NokiaSuite.exe] => C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe [1092448 2014-11-19] (Nokia)
BootExecute: autocheck autochk * sdnclean64.exe

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=CMNTDFJS
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=CMNTDFJS

Hosts:
EmptyTemp:
Reboot:
End
*****************

Processes closed successfully.
Restore point was successfully created.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\SpywareTerminatorUpdater => value removed successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\RemoteControl10 => value not found.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ => value removed successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\PDF Complete => value removed successfully
HKU\S-1-5-21-4294006856-1665788878-3267595846-1002\Software\Microsoft\Windows\CurrentVersion\Run\\ => value not found.
HKU\S-1-5-21-4294006856-1665788878-3267595846-1002\Software\Microsoft\Windows\CurrentVersion\Run\\NokiaSuite.exe => value not found.
hklm\System\CurrentControlSet\Control\Session Manager\\BootExecute => value restored successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\Start Page => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Start Page => value restored successfully
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

=========== EmptyTemp: ==========

BITS transfer queue => 12582912 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 10671508 B
Java, Flash, Steam htmlcache => 1254 B
Windows/system/drivers => 1609856 B
Edge => 0 B
Chrome => 0 B
Firefox => 382220227 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 11764 B
ProgramData => 0 B
Public => 0 B
systemprofile => 128 B
systemprofile32 => 128 B
LocalService => 3990 B
NetworkService => 0 B
KAČENKA => 15179555 B

RecycleBin => 116873568 B
EmptyTemp: => 514.2 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 09:23:42 ====

Márty84
VIP
VIP
Příspěvky: 21679
Registrován: 05 pro 2009 20:08
Bydliště: Ostrava

Re: Vytížení disku na 100%

#11 Příspěvek od Márty84 »

kacenkapc píše:- Velikost adresáře: 8,54 GB
:arrow: Velikost plochy by nemela presahovat 200 - 300 MB! Brzdi to chod pc. Cili ji trosku uklidte a na plochu dejte jen zastupce. Jen pozor na obcasnou chybu, ze uzivatele maji na plose slozku, v ni dalsi a v ni dalsi a do te to schovaji. To je sice hezke, ale plochu to nezmensi, jen je to v jinem supliku :)



:!: Vsechny tyto programy - vcetne pripadne instalace - spoustejte jako spravce (kliknete na ne pravym mysidlem a zvolte - Spustit jako spravce)

:arrow:
vyosek píše: :arrow: DelFix https://toolslib.net/downloads/finish/2/
  • Stahnete a spustte
  • Ponechte zatrzitkou pouze u volby Remove disinfection tools
  • Kliknete na Run
:arrow: Stahnete Ccleaner http://www.filehippo.com/download_ccleaner a spustte.
Pri instalaci pozor na toolbar (ci jine doplnky), jestli vam nabidne jeho instalaci, tak zruste zatrzitko.
Po spusteni se ocitnete ve funkci Cistic. Vlevo je spousta zatrzitek. Pozor dejte hlavne na kos, pokud nechate zatrzene, vzdy ho vysype.
Dale, podle toho jak je nastaven, smaze vsechna hesla ulozena na netu!!! Takze jestli mate nastavene, at si pocitac hesla pamatuje (coz neni pro bezpecnost dobre), budete je muset pak napsat znova rucne (napr mail, facebook, ruzna fora atd.)
Kliknete na Analyzovat a az dokonci analyzu, kliknete na Spustit Cleaner.
Potom kliknete vlevo na funkci Registry
Kliknete na Hledej problemy, kdyz najde, kliknete na Opravit problemy. Nabidne Vam zalohu, tu udelejte a ulozte ji tak, at ji v pripade potreby najdete.
Funkce Nastroje umoznuje odinstalovani programu. Je dukladnejsi nez samotny windows!
(Pokud je v pc vice uzivatelskych uctu, pouzijte program i v nich)

:arrow: Defragmentujte disk(y) (SSD Disky ne!)
Stahnete program Defraggler https://www.piriform.com/defraggler/download/standard
Pri instalaci opet pozor na toolbar a dalsi nesmysly.
Po nainstalovani program spustte a kliknete na Analyzovat, po analyze kliknete na Defragmentovat a programek odvede svou praci.




:arrow: Pak napiste, jak to s pc vypada :-)
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz

Možnost podpořit naše fórum https://platba.viry.cz/payment/

Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).

Odpovědět