Zpomalený PC, občasný Blue Screen

[xrv]

Dobrý den,
prosím o kontrolu logu, poslední dobou je PC pomalejší a několikrát do týdne se objeví Blue Screen, většinou při práci v prohlížeči.
Děkuji.
Log FRST zde:

Kód: Vybrat vše

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 15-03-2017
Ran by Petr (administrator) on PETR-PC (19-03-2017 10:24:27)
Running from C:\Users\Petr\Desktop
Loaded Profiles: Petr (Available Profiles: Petr)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: "C:\Users\Petr\AppData\Local\Vivaldi\Application\vivaldi.exe" -- "%1")
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(Electronic Arts) C:\Program Files (x86)\Origin\Origin.exe
(VIA) C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
() C:\Windows\System32\PnkBstrA.exe
(VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe
(Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
() C:\Program Files (x86)\Origin\QtWebEngineProcess.exe
() C:\Program Files (x86)\Origin\QtWebEngineProcess.exe
(Vivaldi Technologies AS) C:\Users\Petr\AppData\Local\Vivaldi\Application\vivaldi.exe
(Vivaldi Technologies AS) C:\Users\Petr\AppData\Local\Vivaldi\Application\vivaldi.exe
(Vivaldi Technologies AS) C:\Users\Petr\AppData\Local\Vivaldi\Application\vivaldi.exe
(Vivaldi Technologies AS) C:\Users\Petr\AppData\Local\Vivaldi\Application\vivaldi.exe
(Vivaldi Technologies AS) C:\Users\Petr\AppData\Local\Vivaldi\Application\vivaldi.exe
(Vivaldi Technologies AS) C:\Users\Petr\AppData\Local\Vivaldi\Application\vivaldi.exe
(Vivaldi Technologies AS) C:\Users\Petr\AppData\Local\Vivaldi\Application\vivaldi.exe
(Vivaldi Technologies AS) C:\Users\Petr\AppData\Local\Vivaldi\Application\vivaldi.exe
(Vivaldi Technologies AS) C:\Users\Petr\AppData\Local\Vivaldi\Application\vivaldi.exe
(Vivaldi Technologies AS) C:\Users\Petr\AppData\Local\Vivaldi\Application\vivaldi.exe

==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [HDAudDeck] => C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [5199984 2011-06-24] (VIA)
HKU\S-1-5-21-9406264-3302193676-2679448835-1000\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3044848 2017-02-20] (Electronic Arts)
HKU\S-1-5-21-9406264-3302193676-2679448835-1000\...\MountPoints2: {398e94d0-3bba-11e6-b806-8c89a5884ead} - P:\Setup.exe
HKU\S-1-5-21-9406264-3302193676-2679448835-1000\...\MountPoints2: {87d27295-7d6a-11e6-b957-8c89a5884ead} - K:\setup.exe
HKU\S-1-5-18\...\Run: [script_fcbd] => "J:\Far Cry 3 Blood Dragon\fcbd.bat"
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\fcbd.bat [2016-12-16] ()

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{A7BA7EB9-0C8E-4161-A051-62BE833D8F7C}: [DhcpNameServer] 10.0.0.138

Internet Explorer:
==================
HKU\S-1-5-21-9406264-3302193676-2679448835-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://battlelog.battlefield.com/bf4/cs/
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll [2016-10-20] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll [2016-10-20] (Oracle Corporation)

FireFox:
========
FF Plugin: @java.com/DTPlugin,version=10.79.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll [2016-10-20] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.79.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2016-10-20] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50428.0\npctrl.dll [2016-04-27] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1224194.dll [2016-02-19] (Adobe Systems, Inc.)
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 -> C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll [2011-11-03] (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.3.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll [2013-09-16] (ESN Social Software AB)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50428.0\npctrl.dll [2016-04-27] ( Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-02-09] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-02-09] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-16] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-10-01] (Adobe Systems Inc.)

Chrome: 
=======
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR Profile: C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default [2017-03-08]
CHR Extension: (Dokumenty Google) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-07-07]
CHR Extension: (Disk Google) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-07-07]
CHR Extension: (YouTube) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-07-07]
CHR Extension: (Vyhledávání Google) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-07-06]
CHR Extension: (Dokumenty Google offline) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-07-07]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-02-01]
CHR Extension: (Gmail) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-07-07]
CHR Extension: (Chrome Media Router) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-03-06]

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1467072 2016-06-22] (Disc Soft Ltd)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2017-02-23] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2017-02-23] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [462784 2017-02-10] (NVIDIA Corporation)
R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [425408 2017-02-23] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2122248 2017-02-20] (Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [2184208 2017-02-20] (Electronic Arts)
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76152 2017-02-13] ()
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2016-12-17] ()
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27760 2011-06-14] (VIA Technologies, Inc.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
S2 NVIDIA Wireless Controller Service; "C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe" [X]

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2016-06-26] (Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [47672 2016-06-26] (Disc Soft Ltd)
R3 L1C; C:\Windows\System32\DRIVERS\L1C62x64.sys [104560 2012-04-25] (Qualcomm Atheros Co., Ltd.)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [27584 2017-02-23] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [46016 2017-01-20] (NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\DRIVERS\nvvhci.sys [57792 2017-01-20] (NVIDIA Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-03-19 10:24 - 2017-03-19 10:24 - 00011014 _____ C:\Users\Petr\Desktop\FRST.txt
2017-03-19 10:24 - 2017-03-19 10:24 - 00000000 ____D C:\FRST
2017-03-19 10:21 - 2017-03-19 10:21 - 02424832 _____ (Farbar) C:\Users\Petr\Desktop\FRST64.exe
2017-03-14 22:23 - 2017-03-14 22:23 - 00406528 _____ C:\Windows\Minidump\031417-9562-01.dmp
2017-03-14 14:03 - 2017-03-14 14:03 - 00406528 _____ C:\Windows\Minidump\031417-13338-01.dmp
2017-03-08 13:01 - 2017-03-08 18:44 - 00000000 ____D C:\Users\Petr\Documents\Syberia 2 Saves
2017-03-08 12:44 - 2017-03-08 12:44 - 00000639 _____ C:\Users\Public\Desktop\Syberia II.lnk
2017-03-08 12:44 - 2017-03-08 12:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Syberia II
2017-03-07 06:33 - 2017-03-07 06:33 - 00394328 _____ C:\Windows\Minidump\030717-19687-01.dmp
2017-02-24 14:35 - 2017-02-24 14:35 - 00000000 ____D C:\Users\Petr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bitcoin Core
2017-02-22 21:31 - 2017-02-22 21:31 - 00406552 _____ C:\Windows\Minidump\022217-14866-01.dmp
2017-02-21 12:23 - 2017-02-21 12:23 - 00406160 _____ C:\Windows\Minidump\022117-21325-01.dmp
2017-02-21 08:57 - 2017-02-21 08:57 - 00000000 ____D C:\Users\Petr\ansel
2017-02-20 17:54 - 2017-02-09 23:39 - 00134592 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2017-02-20 17:54 - 2017-01-26 01:13 - 00103936 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2017-02-20 17:54 - 2017-01-26 01:12 - 00326656 _____ C:\Windows\SysWOW64\vulkan-1.dll
2017-02-20 17:54 - 2017-01-26 01:09 - 00322560 _____ C:\Windows\system32\vulkan-1.dll
2017-02-20 17:54 - 2017-01-26 01:09 - 00118272 _____ C:\Windows\system32\vulkaninfo.exe
2017-02-20 17:51 - 2017-02-10 01:52 - 40192056 _____ C:\Windows\system32\nvcompiler.dll
2017-02-20 17:51 - 2017-02-10 01:52 - 35272760 _____ C:\Windows\SysWOW64\nvcompiler.dll
2017-02-20 17:51 - 2017-02-10 01:52 - 34937280 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2017-02-20 17:51 - 2017-02-10 01:52 - 28212280 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2017-02-20 17:51 - 2017-02-10 01:52 - 19110088 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2017-02-20 17:51 - 2017-02-10 01:52 - 19006832 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2017-02-20 17:51 - 2017-02-10 01:52 - 16510160 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2017-02-20 17:51 - 2017-02-10 01:52 - 16398896 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2017-02-20 17:51 - 2017-02-10 01:52 - 14674896 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2017-02-20 17:51 - 2017-02-10 01:52 - 14373824 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2017-02-20 17:51 - 2017-02-10 01:52 - 13377072 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2017-02-20 17:51 - 2017-02-10 01:52 - 11122912 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2017-02-20 17:51 - 2017-02-10 01:52 - 11019704 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler.dll
2017-02-20 17:51 - 2017-02-10 01:52 - 09305984 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2017-02-20 17:51 - 2017-02-10 01:52 - 08990072 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler.dll
2017-02-20 17:51 - 2017-02-10 01:52 - 03627064 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2017-02-20 17:51 - 2017-02-10 01:52 - 03187256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2017-02-20 17:51 - 2017-02-10 01:52 - 01983424 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6437866.dll
2017-02-20 17:51 - 2017-02-10 01:52 - 01589696 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6437866.dll
2017-02-20 17:51 - 2017-02-10 01:52 - 01051584 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2017-02-20 17:51 - 2017-02-10 01:52 - 00989120 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2017-02-20 17:51 - 2017-02-10 01:52 - 00961080 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2017-02-20 17:51 - 2017-02-10 01:52 - 00912440 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2017-02-20 17:51 - 2017-02-10 01:52 - 00687224 _____ (NVIDIA Corporation) C:\Windows\system32\nvfatbinaryLoader.dll
2017-02-20 17:51 - 2017-02-10 01:52 - 00611384 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2017-02-20 17:51 - 2017-02-10 01:52 - 00576192 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvfatbinaryLoader.dll
2017-02-20 17:51 - 2017-02-10 01:52 - 00504104 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2017-02-20 17:51 - 2017-02-10 01:52 - 00500792 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2017-02-20 17:51 - 2017-02-10 01:52 - 00425288 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2017-02-20 17:51 - 2017-02-10 01:52 - 00408272 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2017-02-20 17:51 - 2017-02-10 01:52 - 00170360 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2017-02-20 17:51 - 2017-02-10 01:52 - 00153184 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2017-02-20 17:51 - 2017-02-10 01:52 - 00148016 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2017-02-20 17:51 - 2017-02-10 01:52 - 00131720 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2017-02-17 16:26 - 2017-02-17 16:26 - 00000000 ____D C:\Users\Petr\Documents\Ubisoft
2017-02-17 15:56 - 2017-02-17 15:56 - 00000842 _____ C:\Users\Public\Desktop\Heroes of Might and Magic III - HD Edition.lnk
2017-02-17 11:08 - 2017-02-17 11:08 - 00000000 ____D C:\Users\Petr\AppData\Roaming\XRay Engine

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-03-19 10:21 - 2016-06-26 18:17 - 00000000 ____D C:\Users\Petr\AppData\Roaming\Origin
2017-03-19 07:27 - 2009-07-14 05:45 - 00014240 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-03-19 07:27 - 2009-07-14 05:45 - 00014240 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-03-19 07:22 - 2009-07-14 16:18 - 00668866 _____ C:\Windows\system32\perfh005.dat
2017-03-19 07:22 - 2009-07-14 16:18 - 00141526 _____ C:\Windows\system32\perfc005.dat
2017-03-19 07:22 - 2009-07-14 06:13 - 01584554 _____ C:\Windows\system32\PerfStringBackup.INI
2017-03-19 07:18 - 2016-06-26 18:16 - 00000000 ____D C:\ProgramData\Origin
2017-03-19 07:15 - 2016-06-26 17:12 - 00000000 ____D C:\ProgramData\NVIDIA
2017-03-19 07:15 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-03-18 08:59 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf
2017-03-18 00:33 - 2016-06-28 21:52 - 00000000 ____D C:\Users\Petr\AppData\Roaming\vlc
2017-03-15 00:20 - 2016-07-07 10:59 - 00802904 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2017-03-15 00:20 - 2016-07-07 10:59 - 00144472 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2017-03-15 00:20 - 2016-07-07 10:59 - 00004512 _____ C:\Windows\System32\Tasks\Adobe Flash Player PPAPI Notifier
2017-03-15 00:20 - 2016-07-07 10:59 - 00004396 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2017-03-15 00:20 - 2016-07-07 10:59 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2017-03-15 00:20 - 2016-07-07 10:59 - 00000000 ____D C:\Windows\system32\Macromed
2017-03-14 22:23 - 2016-10-16 09:35 - 00000000 ____D C:\Windows\Minidump
2017-03-13 12:09 - 2009-07-14 06:08 - 00032578 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2017-03-10 17:43 - 2017-02-12 21:58 - 00004146 _____ C:\Windows\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-03-10 17:43 - 2016-12-12 21:39 - 00003852 _____ C:\Windows\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-03-10 17:43 - 2016-12-12 21:39 - 00003738 _____ C:\Windows\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-03-10 17:43 - 2016-12-12 21:39 - 00003738 _____ C:\Windows\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-03-10 17:43 - 2016-12-12 21:39 - 00003730 _____ C:\Windows\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-03-10 17:43 - 2016-12-12 21:39 - 00003554 _____ C:\Windows\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-03-10 17:43 - 2016-12-12 21:39 - 00003494 _____ C:\Windows\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-03-10 17:43 - 2016-12-12 21:39 - 00001408 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2017-03-10 17:43 - 2016-06-26 16:43 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2017-03-10 17:43 - 2016-06-26 16:43 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2017-03-10 17:43 - 2016-06-26 16:43 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2017-03-08 13:01 - 2017-01-06 16:52 - 00000000 ____D C:\Users\Petr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2017-02-24 17:52 - 2016-06-26 18:38 - 00226168 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2017-02-23 19:35 - 2016-12-12 21:39 - 01880512 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2017-02-23 19:35 - 2016-12-12 21:39 - 01755072 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll
2017-02-23 19:35 - 2016-12-12 21:39 - 01468864 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2017-02-23 19:35 - 2016-12-12 21:39 - 01317312 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll
2017-02-23 19:35 - 2016-12-12 21:39 - 00120256 _____ C:\Windows\system32\NvRtmpStreamer64.dll
2017-02-23 15:32 - 2016-10-30 09:07 - 00001951 _____ C:\Windows\NvContainerRecovery.bat
2017-02-23 15:30 - 2017-02-12 21:58 - 00001951 _____ C:\Windows\NvTelemetryContainerRecovery.bat
2017-02-22 21:27 - 2016-06-26 18:38 - 00226168 _____ C:\Windows\SysWOW64\PnkBstrB.ex0
2017-02-21 08:57 - 2016-06-26 16:34 - 00000000 ____D C:\Users\Petr
2017-02-20 21:54 - 2016-06-26 18:16 - 00000000 ____D C:\Program Files (x86)\Origin
2017-02-20 17:54 - 2017-02-12 22:07 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2017-02-20 17:54 - 2016-06-28 21:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2017-02-17 16:26 - 2016-06-26 17:31 - 00000000 ____D C:\ProgramData\Steam
2017-02-17 12:15 - 2016-09-19 19:58 - 00000000 ____D C:\Users\Petr\AppData\Local\CrashDumps

Some files in TEMP:
====================
2016-10-19 06:54 - 2016-10-19 06:54 - 0737856 _____ (Oracle Corporation) C:\Users\Petr\AppData\Local\Temp\jre-8u111-windows-au.exe
2016-06-26 17:11 - 2016-09-16 23:31 - 0746088 _____ (NVIDIA Corporation) C:\Users\Petr\AppData\Local\Temp\nvSCPAPI.dll
2016-06-28 21:23 - 2017-01-20 15:07 - 0352704 _____ (NVIDIA Corporation) C:\Users\Petr\AppData\Local\Temp\nvStInst.exe
2016-12-12 21:39 - 2016-11-17 14:46 - 1137208 _____ (NVIDIA Corporation) C:\Users\Petr\AppData\Local\Temp\NvTelemetry.dll
2016-12-12 21:39 - 2016-11-17 14:46 - 0218680 _____ (NVIDIA Corporation) C:\Users\Petr\AppData\Local\Temp\NvTelemetryAPI32.dll
2016-12-12 21:39 - 2016-11-17 14:46 - 0270392 _____ (NVIDIA Corporation) C:\Users\Petr\AppData\Local\Temp\NvTelemetryAPI64.dll
2011-11-03 15:13 - 2011-11-03 15:13 - 1786688 _____ () C:\Users\Petr\AppData\Local\Temp\sonarinst.exe

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2017-03-14 11:32

==================== End of FRST.txt ============================

[Rudy]

Zdravím!
Spusťte tuto utilitu:

Stáhněte AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan<(hledání) a pak na >Clean< (mazání).
Proběhne skenováni a pak se objeví log, který sem vložte.

[xrv]

ADW zde:

Kód: Vybrat vše

# AdwCleaner v6.044 - Log vytvořen 19/03/2017 v 11:17:47
# Aktualizováno dne 28/02/2017 z Malwarebytes
# Databáze : 2017-03-18.1 [Server]
# Operační systém : Windows 7 Home Premium Service Pack 1 (X64)
# Uživatelské jméno : Petr - PETR-PC
# Spuštěno z : C:\Users\Petr\Desktop\adwcleaner_6.044.exe
# Mod: Čištění
# Podpora : https://www.malwarebytes.com/support



***** [ Služby ] *****



***** [ Složky ] *****



***** [ Soubory ] *****



***** [ DLL ] *****



***** [ WMI ] *****



***** [ Zástupci ] *****



***** [ Naplánované úlohy ] *****



***** [ Registry ] *****



***** [ Prohlížeče ] *****



*************************

:: "Tracing" klíče smazány
:: Winsock nastavení vyčištěno

*************************

C:\AdwCleaner\AdwCleaner[C0].txt - [810 Bajty] - [19/03/2017 11:17:47]
C:\AdwCleaner\AdwCleaner[S0].txt - [1381 Bajty] - [19/03/2017 11:17:39]

########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [955 Bajty] ##########

[Rudy]

Toto je OK. Otevřte poznámkový blok a zkopírujte do něj:

Start
HKU\S-1-5-21-9406264-3302193676-2679448835-1000\...\MountPoints2: {398e94d0-3bba-11e6-b806-8c89a5884ead} - P:\Setup.exe
HKU\S-1-5-21-9406264-3302193676-2679448835-1000\...\MountPoints2: {87d27295-7d6a-11e6-b957-8c89a5884ead} - K:\setup.exe
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
C:\Users\Petr\AppData\Local\Temp
Task: {420B055E-F65F-479D-9A84-01AFDA3AF109} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-07-06] (Google Inc.)
Task: {A860753F-E7A4-4EAE-9F7A-29D47C97BBB7} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-07-06] (Google Inc.)

EmptyTemp:
End

Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

[xrv]

Fixlog zde:

Kód: Vybrat vše

Fix result of Farbar Recovery Scan Tool (x64) Version: 15-03-2017
Ran by Petr (19-03-2017 11:34:23) Run:1
Running from C:\Users\Petr\Desktop
Loaded Profiles: Petr (Available Profiles: Petr)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
HKU\S-1-5-21-9406264-3302193676-2679448835-1000\...\MountPoints2: {398e94d0-3bba-11e6-b806-8c89a5884ead} - P:\Setup.exe
HKU\S-1-5-21-9406264-3302193676-2679448835-1000\...\MountPoints2: {87d27295-7d6a-11e6-b957-8c89a5884ead} - K:\setup.exe
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
C:\Users\Petr\AppData\Local\Temp
Task: {420B055E-F65F-479D-9A84-01AFDA3AF109} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-07-06] (Google Inc.)
Task: {A860753F-E7A4-4EAE-9F7A-29D47C97BBB7} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-07-06] (Google Inc.)

EmptyTemp:
End
*****************

HKU\S-1-5-21-9406264-3302193676-2679448835-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{398e94d0-3bba-11e6-b806-8c89a5884ead} => key removed successfully
HKCR\CLSID\{398e94d0-3bba-11e6-b806-8c89a5884ead} => key not found. 
HKU\S-1-5-21-9406264-3302193676-2679448835-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{87d27295-7d6a-11e6-b957-8c89a5884ead} => key removed successfully
HKCR\CLSID\{87d27295-7d6a-11e6-b957-8c89a5884ead} => key not found. 
HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE => key removed successfully
HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE => key removed successfully

"C:\Users\Petr\AppData\Local\Temp" folder move:

Could not move "C:\Users\Petr\AppData\Local\Temp" => Scheduled to move on reboot.

HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{420B055E-F65F-479D-9A84-01AFDA3AF109} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{420B055E-F65F-479D-9A84-01AFDA3AF109} => key removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{A860753F-E7A4-4EAE-9F7A-29D47C97BBB7} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A860753F-E7A4-4EAE-9F7A-29D47C97BBB7} => key removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore => key removed successfully

=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 181798624 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 10377942934 B
Edge => 0 B
Chrome => 273114236 B
Firefox => 0 B
Opera => 19670714 B

Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 66356 B
systemprofile32 => 66356 B
LocalService => 0 B
NetworkService => 236160 B
Petr => 31808513631 B

RecycleBin => 0 B
EmptyTemp: => 39.7 GB temporary data Removed.

================================

Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 19-03-2017 11:36:14)

C:\Users\Petr\AppData\Local\Temp => moved successfully

==== End of Fixlog 11:36:14 ====

[Rudy]

Smazáno. Nastala nějaká změna?

[xrv]

Pc běhá znatelně lépe, myslím že už bude vše ok.
Moc děkuji za Váš čas a pomoc.
Přeji pěkný den.

[Rudy]

Hezký den i vám a nemáte zač!