Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Pomalý notebook

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Příspěvky: 138
Registrován: 26 kvě 2017 14:48

Re: Pomalý notebook

#16 Příspěvek od samsungs6edge »

Ještě se chci zeptat vím,že to tady nepatří.Když nainstaluji Ubuntu tak bude notebook rychlejší?

Uživatelský avatar
Site Admin
Site Admin
Příspěvky: 118352
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Pomalý notebook

#17 Příspěvek od Rudy »

To vám nepovím. Linuxem se nezabýváme a vzhledem k tomu, že existuje spoustu distribucí, ani nevíme . Koukněte sem: https://forum.ubuntu.cz/ .
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!

Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Příspěvky: 138
Registrován: 26 kvě 2017 14:48

Re: Pomalý notebook

#18 Příspěvek od samsungs6edge »

Zde ještě prosím o kontrolu logu.Děkuji

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 20.04.2019 01
Ran by Administrator (administrator) on ASUS-PC (ASUSTeK Computer Inc. K52De) (20-04-2019 19:27:11)
Running from C:\Users\Administrator\Desktop
Loaded Profiles: Administrator (Available Profiles: Administrator)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 8 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKU\S-1-5-19\...\Run: [Sidebar] => %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
HKU\S-1-5-20\...\Run: [Sidebar] => %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\73.0.3683.103\Installer\chrmstp.exe [2019-04-20] (Google LLC -> Google Inc.)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {1E9F5168-73D9-4F60-8B4D-2DFA99376DC1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google LLC)
Task: {28BB40E3-4A9C-44C0-8713-495125A977CB} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
Task: {43048B62-A6C6-41A1-BD89-154994BDDB02} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe (Piriform Software Ltd -> Piriform Software Ltd)
Task: {C382F37D-F7AE-4442-AB71-DA3EFE7A6F36} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google LLC)
Task: {D42200B9-1AD3-48A8-8A19-FC31BE372057} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
Task: {F3B8FCFD-98D8-484E-8751-60E080F87D13} - System32\Tasks\Update Checker => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer]
Tcpip\..\Interfaces\{CD47C9C2-C2A4-4782-B695-0D958DDE998D}: [DhcpNameServer]

Internet Explorer:
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-11-21] (Microsoft Windows -> Microsoft Corporation)
Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-21] (Microsoft Windows -> Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-11-21] (Microsoft Windows -> Microsoft Corporation)
Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-21] (Microsoft Windows -> Microsoft Corporation)

FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\\npGoogleUpdate3.dll [2019-04-20] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\\npGoogleUpdate3.dll [2019-04-20] (Google Inc -> Google LLC)

CHR HomePage: Default -> hxxp://www.seznam.cz/
CHR StartupUrls: Default -> "hxxp://www.seznam.cz/"
CHR Profile: C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default [2019-04-20]
CHR Extension: (Disk Google) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-04-20]
CHR Extension: (YouTube) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-04-20]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-04-20]
CHR Extension: (Gmail) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-20]
CHR Extension: (Chrome Media Router) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-04-20]

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [202752 2010-04-06] (Microsoft Windows Hardware Compatibility Publisher -> AMD)
S4 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-14] (Microsoft Windows -> Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 amdkmdag; C:\Windows\System32\DRIVERS\atikmdag.sys [6659072 2010-04-06] (Microsoft Windows Hardware Compatibility Publisher -> ATI Technologies Inc.)
R3 amdkmdap; C:\Windows\System32\DRIVERS\atikmpag.sys [195584 2010-04-06] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R3 athr; C:\Windows\System32\DRIVERS\athrx.sys [2753536 2011-06-27] (Microsoft Windows Hardware Compatibility Publisher -> Atheros Communications, Inc.)
S3 AtiHDAudioService; C:\Windows\System32\drivers\AtihdW76.sys [104976 2016-04-01] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
R3 bcbtums; C:\Windows\System32\drivers\bcbtums.sys [172760 2019-04-20] (Broadcom Corporation -> Broadcom Corporation.)
R3 btwampfl; C:\Windows\System32\DRIVERS\btwampfl.sys [600280 2019-04-20] (Broadcom Corporation -> Broadcom Corporation.)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2019-04-20] (Martin Malik - REALiX -> REALiX(tm))
R3 SNP2UVC; C:\Windows\System32\DRIVERS\snp2uvc.sys [1806400 2009-06-05] (SONIX TECHNOLOGY CO. , LTD -> )
S3 IntcAzAudAddService; system32\drivers\RTKVHD64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-04-20 19:27 - 2019-04-20 19:28 - 000009884 _____ C:\Users\Administrator\Desktop\FRST.txt
2019-04-20 19:27 - 2019-04-20 19:27 - 000000000 ____D C:\FRST
2019-04-20 19:27 - 2019-04-20 19:26 - 002434048 _____ (Farbar) C:\Users\Administrator\Desktop\FRST64.exe
2019-04-20 17:14 - 2019-04-20 17:15 - 000000000 ____D C:\ProgramData\ASUS
2019-04-20 17:13 - 2019-04-20 17:15 - 000003918 _____ C:\Windows\System32\Tasks\Update Checker
2019-04-20 17:12 - 2019-04-20 17:12 - 000000000 ____D C:\Windows\SysWOW64\XPSViewer
2019-04-20 17:12 - 2019-04-20 17:12 - 000000000 ____D C:\Program Files\Reference Assemblies
2019-04-20 17:12 - 2019-04-20 17:12 - 000000000 ____D C:\Program Files\MSBuild
2019-04-20 17:12 - 2019-04-20 17:12 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2019-04-20 17:12 - 2019-04-20 17:12 - 000000000 ____D C:\Program Files (x86)\MSBuild
2019-04-20 16:47 - 2019-04-20 16:48 - 000000000 ___HD C:\Program Files (x86)\Temp
2019-04-20 16:41 - 2019-04-20 16:42 - 000000000 ____D C:\Users\Administrator\Documents\GTA San Andreas User Files
2019-04-20 16:41 - 2019-04-20 16:41 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2019-04-20 16:40 - 2019-04-20 16:40 - 000001101 _____ C:\Users\Administrator\Desktop\GTA.lnk
2019-04-20 16:32 - 2019-04-20 16:32 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2019-04-20 16:32 - 2019-04-20 16:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rockstar Games
2019-04-20 16:32 - 2019-04-20 16:32 - 000000000 ____D C:\Program Files (x86)\Rockstar Games
2019-04-20 16:25 - 2019-04-20 16:33 - 000000000 ____D C:\Dokumenty
2019-04-20 16:13 - 2019-04-20 16:47 - 000000000 ____D C:\Windows\SysWOW64\RTCOM
2019-04-20 16:13 - 2019-04-20 16:37 - 000003182 _____ C:\Windows\System32\Tasks\RtHDVBg_ListenToDevice
2019-04-20 16:13 - 2019-04-20 16:13 - 000000000 ____D C:\Windows\system32\SRSLabs
2019-04-20 16:13 - 2019-04-20 16:13 - 000000000 ____D C:\Program Files\Realtek
2019-04-20 15:52 - 2019-04-20 15:54 - 000002824 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2019-04-20 15:52 - 2019-04-20 15:53 - 000000000 ____D C:\Program Files\CCleaner
2019-04-20 15:52 - 2019-04-20 15:52 - 000003870 _____ C:\Windows\System32\Tasks\CCleaner Update
2019-04-20 15:52 - 2019-04-20 15:52 - 000000822 _____ C:\Users\Public\Desktop\CCleaner.lnk
2019-04-20 15:52 - 2019-04-20 15:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2019-04-20 15:30 - 2019-04-20 15:30 - 000000000 ____D C:\AdwCleaner
2019-04-20 15:30 - 2019-04-19 20:58 - 007025360 _____ (Malwarebytes) C:\Users\Administrator\Desktop\adwcleaner_7.3.exe
2019-04-20 15:24 - 2019-04-20 15:24 - 000001306 _____ C:\Users\Public\Desktop\Skype.lnk
2019-04-20 15:24 - 2019-04-20 15:24 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\Skype
2019-04-20 15:24 - 2019-04-20 15:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2019-04-20 15:20 - 2019-04-20 16:05 - 000000000 ____D C:\Windows\Panther
2019-04-20 15:20 - 2019-04-20 15:20 - 000008192 __RSH C:\BOOTSECT.BAK
2019-04-20 15:20 - 2010-11-21 05:23 - 000383786 __RSH C:\bootmgr
2019-04-20 15:08 - 2019-04-20 15:08 - 000600280 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwampfl.sys
2019-04-20 15:08 - 2019-04-20 15:08 - 000172760 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\bcbtums.sys
2019-04-20 15:06 - 2019-04-20 15:06 - 000203352 _____ (JMicron Technology Corporation) C:\Windows\SysWOW64\jmcricon.dll
2019-04-20 15:06 - 2019-04-20 15:06 - 000203352 _____ (JMicron Technology Corporation) C:\Windows\system32\jmcricon.dll
2019-04-20 15:06 - 2019-04-20 15:06 - 000176880 _____ (JMicron Technology Corporation) C:\Windows\system32\Drivers\jmcr.sys
2019-04-20 15:06 - 2019-04-20 15:06 - 000145424 _____ (JMicron Technology Corp.) C:\Windows\system32\Drivers\JME.sys
2019-04-20 15:03 - 2019-04-20 15:03 - 000015928 _____ (ASUS) C:\Windows\system32\Drivers\ATK64AMD.sys
2019-04-20 14:59 - 2019-04-20 15:14 - 000000000 ____D C:\ProgramData\ProductData
2019-04-20 14:57 - 2019-04-20 14:57 - 000027552 _____ (REALiX(tm)) C:\Windows\SysWOW64\Drivers\HWiNFO64A.SYS
2019-04-20 14:56 - 2019-04-20 15:30 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\IObit
2019-04-20 14:55 - 2019-04-20 14:55 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\WinRAR
2019-04-20 14:54 - 2019-04-20 14:55 - 000000000 ____D C:\Program Files\WinRAR
2019-04-20 14:54 - 2019-04-20 14:54 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2019-04-20 14:54 - 2019-04-20 14:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2019-04-20 14:51 - 2014-05-14 18:23 - 002477536 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2019-04-20 14:51 - 2014-05-14 18:23 - 000058336 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2019-04-20 14:51 - 2014-05-14 18:23 - 000044512 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2019-04-20 14:51 - 2014-05-14 18:21 - 002620928 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2019-04-20 14:50 - 2014-05-14 09:23 - 000198600 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2019-04-20 14:50 - 2014-05-14 09:23 - 000179656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2019-04-20 14:50 - 2014-05-14 09:20 - 000036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2019-04-20 14:50 - 2014-05-14 09:17 - 000033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2019-04-20 14:48 - 2019-04-20 14:48 - 000000753 _____ C:\Users\Administrator\Desktop\Stažené soubory.lnk
2019-04-20 14:42 - 2019-04-20 14:42 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\Google
2019-04-20 14:41 - 2019-04-20 14:58 - 000000000 ____D C:\Users\Administrator\AppData\Local\Google
2019-04-20 14:41 - 2019-04-20 14:41 - 000002296 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-04-20 14:41 - 2019-04-20 14:41 - 000002255 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2019-04-20 14:40 - 2019-04-20 15:54 - 000003386 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2019-04-20 14:40 - 2019-04-20 15:54 - 000003258 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2019-04-20 14:40 - 2019-04-20 14:41 - 000000000 ____D C:\Program Files (x86)\Google
2019-04-20 14:39 - 2019-04-20 14:39 - 000057560 _____ C:\Users\Administrator\AppData\Local\GDIPFONTCACHEV1.DAT
2019-04-20 14:38 - 2019-04-20 14:38 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\ATI
2019-04-20 14:38 - 2019-04-20 14:38 - 000000000 ____D C:\Users\Administrator\AppData\Local\ATI
2019-04-20 14:38 - 2019-04-20 14:38 - 000000000 ____D C:\ProgramData\ATI
2019-04-20 14:38 - 2019-04-20 14:38 - 000000000 _____ C:\Windows\ativpsrm.bin
2019-04-20 14:36 - 2019-04-20 14:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Catalyst Control Center
2019-04-20 14:35 - 2019-04-20 14:35 - 000000000 ____D C:\Program Files (x86)\ATI Technologies
2019-04-20 14:34 - 2019-04-20 14:36 - 000000000 ____D C:\Program Files\ATI Technologies
2019-04-20 14:34 - 2019-04-20 14:34 - 000000000 ____D C:\Program Files\ATI
2019-04-20 14:32 - 2019-04-20 14:32 - 000000020 ___SH C:\Users\Administrator\ntuser.ini
2019-04-20 14:32 - 2019-04-20 14:32 - 000000000 _SHDL C:\Users\Administrator\Šablony
2019-04-20 14:32 - 2019-04-20 14:32 - 000000000 _SHDL C:\Users\Administrator\Soubory cookie
2019-04-20 14:32 - 2019-04-20 14:32 - 000000000 _SHDL C:\Users\Administrator\Poslední
2019-04-20 14:32 - 2019-04-20 14:32 - 000000000 _SHDL C:\Users\Administrator\Okolní tiskárny
2019-04-20 14:32 - 2019-04-20 14:32 - 000000000 _SHDL C:\Users\Administrator\Okolní síť
2019-04-20 14:32 - 2019-04-20 14:32 - 000000000 _SHDL C:\Users\Administrator\Nabídka Start
2019-04-20 14:32 - 2019-04-20 14:32 - 000000000 _SHDL C:\Users\Administrator\Dokumenty
2019-04-20 14:32 - 2019-04-20 14:32 - 000000000 _SHDL C:\Users\Administrator\Documents\Obrázky
2019-04-20 14:32 - 2019-04-20 14:32 - 000000000 _SHDL C:\Users\Administrator\Documents\Hudba
2019-04-20 14:32 - 2019-04-20 14:32 - 000000000 _SHDL C:\Users\Administrator\Documents\Filmy
2019-04-20 14:32 - 2019-04-20 14:32 - 000000000 _SHDL C:\Users\Administrator\Data aplikací
2019-04-20 14:32 - 2019-04-20 14:32 - 000000000 _SHDL C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2019-04-20 14:32 - 2019-04-20 14:32 - 000000000 _SHDL C:\Users\Administrator\AppData\Local\Data aplikací
2019-04-20 14:32 - 2019-04-20 14:32 - 000000000 ____D C:\Users\Administrator
2019-04-20 14:32 - 2011-04-12 10:45 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\Media Center Programs
2019-04-20 14:32 - 2009-07-14 06:49 - 000000262 _____ C:\Users\Administrator\Desktop\Run.lnk
2019-04-20 14:28 - 2019-04-20 14:28 - 000000000 _SHDL C:\Users\Public\Documents\Obrázky
2019-04-20 14:28 - 2019-04-20 14:28 - 000000000 _SHDL C:\Users\Public\Documents\Hudba
2019-04-20 14:28 - 2019-04-20 14:28 - 000000000 _SHDL C:\Users\Public\Documents\Filmy
2019-04-20 14:28 - 2019-04-20 14:28 - 000000000 _SHDL C:\Users\Default\Šablony
2019-04-20 14:28 - 2019-04-20 14:28 - 000000000 _SHDL C:\Users\Default\Soubory cookie
2019-04-20 14:28 - 2019-04-20 14:28 - 000000000 _SHDL C:\Users\Default\Poslední
2019-04-20 14:28 - 2019-04-20 14:28 - 000000000 _SHDL C:\Users\Default\Okolní tiskárny
2019-04-20 14:28 - 2019-04-20 14:28 - 000000000 _SHDL C:\Users\Default\Okolní síť
2019-04-20 14:28 - 2019-04-20 14:28 - 000000000 _SHDL C:\Users\Default\Nabídka Start
2019-04-20 14:28 - 2019-04-20 14:28 - 000000000 _SHDL C:\Users\Default\Dokumenty
2019-04-20 14:28 - 2019-04-20 14:28 - 000000000 _SHDL C:\Users\Default\Documents\Obrázky
2019-04-20 14:28 - 2019-04-20 14:28 - 000000000 _SHDL C:\Users\Default\Documents\Hudba
2019-04-20 14:28 - 2019-04-20 14:28 - 000000000 _SHDL C:\Users\Default\Documents\Filmy
2019-04-20 14:28 - 2019-04-20 14:28 - 000000000 _SHDL C:\Users\Default\Data aplikací
2019-04-20 14:28 - 2019-04-20 14:28 - 000000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2019-04-20 14:28 - 2019-04-20 14:28 - 000000000 _SHDL C:\Users\Default\AppData\Local\Data aplikací
2019-04-20 14:28 - 2019-04-20 14:28 - 000000000 _SHDL C:\Users\Default User\Documents\Obrázky
2019-04-20 14:28 - 2019-04-20 14:28 - 000000000 _SHDL C:\Users\Default User\Documents\Hudba
2019-04-20 14:28 - 2019-04-20 14:28 - 000000000 _SHDL C:\Users\Default User\Documents\Filmy
2019-04-20 14:28 - 2019-04-20 14:28 - 000000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2019-04-20 14:28 - 2019-04-20 14:28 - 000000000 _SHDL C:\Users\Default User\AppData\Local\Data aplikací
2019-04-20 14:28 - 2019-04-20 14:28 - 000000000 _SHDL C:\ProgramData\Šablony
2019-04-20 14:28 - 2019-04-20 14:28 - 000000000 _SHDL C:\ProgramData\Plocha
2019-04-20 14:28 - 2019-04-20 14:28 - 000000000 _SHDL C:\ProgramData\Oblíbené položky
2019-04-20 14:28 - 2019-04-20 14:28 - 000000000 _SHDL C:\ProgramData\Nabídka Start
2019-04-20 14:28 - 2019-04-20 14:28 - 000000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programy
2019-04-20 14:28 - 2019-04-20 14:28 - 000000000 _SHDL C:\ProgramData\Dokumenty
2019-04-20 14:28 - 2019-04-20 14:28 - 000000000 _SHDL C:\ProgramData\Data aplikací
2019-04-20 14:24 - 2019-04-20 14:24 - 000000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-04-20 19:27 - 2009-07-14 06:45 - 000021648 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2019-04-20 19:27 - 2009-07-14 06:45 - 000021648 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2019-04-20 19:25 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2019-04-20 17:40 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf
2019-04-20 17:13 - 2011-04-12 10:34 - 000601770 _____ C:\Windows\system32\perfh005.dat
2019-04-20 17:13 - 2011-04-12 10:34 - 000110620 _____ C:\Windows\system32\perfc005.dat
2019-04-20 15:20 - 2009-07-14 07:32 - 000028672 _____ C:\Windows\system32\config\BCD-Template
2019-04-20 15:08 - 2009-07-14 07:13 - 001299330 _____ C:\Windows\system32\PerfStringBackup.INI
2019-04-20 14:45 - 2009-07-14 07:32 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2019-04-20 14:45 - 2009-07-14 07:32 - 000000000 ____D C:\Program Files\DVD Maker
2019-04-20 14:45 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\system32\spool
2019-04-20 14:45 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\PolicyDefinitions
2019-04-20 14:34 - 2009-07-14 05:20 - 000000000 ____D C:\Program Files\Common Files\Microsoft Shared
2019-04-20 14:28 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\rescache
2019-04-20 14:28 - 2009-07-14 05:20 - 000000000 ____D C:\Program Files\Windows NT
2019-04-20 14:25 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\system32\sysprep
2019-04-20 14:21 - 2009-07-14 06:45 - 000274736 _____ C:\Windows\system32\FNTCACHE.DAT

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

LastRegBack: 2019-04-20 14:21
==================== End of FRST.txt ============================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 20.04.2019 01
Ran by Administrator (20-04-2019 19:28:43)
Running from C:\Users\Administrator\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2019-04-20 12:28:17)
Boot Mode: Normal

==================== Accounts: =============================

Administrator (S-1-5-21-4261021004-3841110628-728329883-500 - Administrator - Enabled) => C:\Users\Administrator
Guest (S-1-5-21-4261021004-3841110628-728329883-501 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

ATI Catalyst Install Manager (HKLM\...\{401D3422-5349-F819-D294-01CA297CB9E0}) (Version: 3.0.769.0 - ATI Technologies, Inc.)
ccc-core-static (HKLM-x32\...\{F7E4CA44-6117-E28D-A93D-7CE7CEB7E54F}) (Version: 2010.0406.2133.36843 - Název společnosti:) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.56 - Piriform)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 73.0.3683.103 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: - Google LLC) Hidden
GTA San Andreas (HKLM-x32\...\{D417C96A-FCC7-4590-A1BB-FAF73F5BC98E}) (Version: 1.00.00001 - Rockstar Games)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Skype verze 8.43 (HKLM-x32\...\Skype_is1) (Version: 8.43 - Skype Technologies S.A.)
USB 2.0 VGA UVC WebCam (HKLM\...\USB 2.0 VGA UVC WebCam) (Version: - )
WinRAR 5.70 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2010-04-06] (Advanced Micro Devices, Inc.) [File not signed]
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]

==================== Loaded Modules (Whitelisted) ==============

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2009-06-10 23:00 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-4261021004-3841110628-728329883-500\Control Panel\Desktop\\Wallpaper -> C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
mpsdrv => Firewall Service is not running.
MpsSvc => Firewall Service is not running.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{555B41CE-F5E0-4B46-8ACA-B16997E4C3E7}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.)
FirewallRules: [{41E1F999-8DE3-42EA-80D3-B4A03FEB9F31}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{67AE6BB9-FC13-4F86-860F-6A217489C54C}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)

==================== Restore Points =========================

ATTENTION: System Restore is disabled

==================== Faulty Device Manager Devices =============

==================== Event log errors: =========================

Application errors:
Error: (04/20/2019 07:26:59 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

System errors:


Date: 2019-04-20 16:30:59.484
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\AtihdW76.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-04-20 16:30:59.484
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\AtihdW76.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-04-20 16:16:41.812
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\AtihdW76.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-04-20 16:16:41.797
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\AtihdW76.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-04-20 16:14:08.681
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\AtihdW76.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-04-20 16:14:08.680
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\AtihdW76.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

==================== Memory info ===========================

Processor: AMD Athlon(tm) II P360 Dual-Core Processor
Percentage of memory in use: 87%
Total physical RAM: 4093.82 MB
Available physical RAM: 517.34 MB
Total Virtual: 8185.85 MB
Available Virtual: 4484.36 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:97.08 GB) (Free:75.46 GB) NTFS ==>[drive with boot components (obtained from BCD)]
Drive d: (DOKUMENTY) (Fixed) (Total:498.51 GB) (Free:458.91 GB) NTFS

==================== MBR & Partition Table ==================

Disk: 0 (MBR Code: Windows 7/8/10) (Size: 596.2 GB) (Disk ID: 1B64FBCC)
Partition 1: (Active) - (Size=97.1 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=498.5 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================

Příspěvky: 138
Registrován: 26 kvě 2017 14:48

Re: Pomalý notebook

#19 Příspěvek od samsungs6edge »

# -------------------------------
# Malwarebytes AdwCleaner
# -------------------------------
# Build: 04-04-2019
# Database: 2019-04-18.2 (Cloud)
# Support: https://www.malwarebytes.com/support
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 04-20-2019
# Duration: 00:00:09
# OS: Windows 7 Home Premium
# Scanned: 27356
# Detected: 0

***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

No malicious folders found.

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

No malicious registry entries found.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries found.

***** [ Chromium URLs ] *****

No malicious Chromium URLs found.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.

AdwCleaner[S00].txt - [1432 octets] - [20/04/2019 15:30:23]
AdwCleaner[C00].txt - [1560 octets] - [20/04/2019 15:30:38]
AdwCleaner[S01].txt - [1379 octets] - [20/04/2019 15:32:34]
AdwCleaner[S02].txt - [1440 octets] - [20/04/2019 16:03:20]
AdwCleaner[S03].txt - [1501 octets] - [20/04/2019 16:18:02]
AdwCleaner[S04].txt - [1562 octets] - [20/04/2019 17:16:50]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S05].txt ##########

Uživatelský avatar
Site Admin
Site Admin
Příspěvky: 118352
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Pomalý notebook

#20 Příspěvek od Rudy »

Log je OK.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!

Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Příspěvky: 138
Registrován: 26 kvě 2017 14:48

Re: Pomalý notebook

#21 Příspěvek od samsungs6edge »

Takže už nic nemusím provádět?Provedl jsem i defragmentaci disku takže snad to už bude ok.Ty aktualizace zatím nebudu instalovat.Děkuji

Uživatelský avatar
Site Admin
Site Admin
Příspěvky: 118352
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Pomalý notebook

#22 Příspěvek od Rudy »

Mělo by to být vše. Nemáte zač! :)
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!

Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Příspěvky: 138
Registrován: 26 kvě 2017 14:48

Re: Pomalý notebook

#23 Příspěvek od samsungs6edge »

Můžu ještě prosím znovu o kontrolu logu?Nainstaloval jsem i Windows update.Děkuji

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 21.04.2019 01
Ran by Administrator (administrator) on ASUS-PC (ASUSTeK Computer Inc. K52De) (22-04-2019 11:05:17)
Running from C:\Users\Administrator\Desktop
Loaded Profiles: Administrator (Available Profiles: Administrator)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Microsoft Dynamic Code Publisher -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
(Microsoft Dynamic Code Publisher -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\regedit.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKU\S-1-5-19\...\Run: [Sidebar] => %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
HKU\S-1-5-20\...\Run: [Sidebar] => %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\73.0.3683.103\Installer\chrmstp.exe [2019-04-22] (Google LLC -> Google Inc.)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {A8E12C9F-2C79-4CFA-A049-13F4C41106E8} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe (Piriform Software Ltd -> Piriform Software Ltd)
Task: {D03841C3-9AE9-4916-AB57-ABEBFEF228EA} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google LLC)
Task: {DE57E5A1-3F88-4C3D-869A-180DA0D34E0A} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
Task: {FA1C5E65-4FB0-4F8D-A6F2-C3EEBABD6498} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google LLC)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer]
Tcpip\..\Interfaces\{C3F33AB2-0880-44DC-937E-1269C63094B2}: [DhcpNameServer]

Internet Explorer:
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =

FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\\npGoogleUpdate3.dll [2019-04-22] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\\npGoogleUpdate3.dll [2019-04-22] (Google Inc -> Google LLC)

CHR HomePage: Default -> hxxp://www.seznam.cz/
CHR StartupUrls: Default -> "hxxp://www.seznam.cz/"
CHR Profile: C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default [2019-04-22]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-04-22]
CHR Extension: (Chrome Media Router) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-04-22]

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S4 AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [202752 2010-04-06] (Microsoft Windows Hardware Compatibility Publisher -> AMD)
S4 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2019-01-17] (Microsoft Windows -> Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 amdhub3; C:\Windows\system32\drivers\amdhub3.sys [161096 2017-12-13] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc)
S3 amdhub30; C:\Windows\system32\drivers\amdhub30.sys [117608 2017-05-17] (Advanced Micro Devices Inc. -> Advanced Micro Devices, INC.)
S3 amdhub31; C:\Windows\system32\drivers\amdhub31.sys [154464 2018-01-27] (ASMedia Technology Inc. -> Advanced Micro Devices, Inc.)
R3 amdkmdag; C:\Windows\System32\DRIVERS\atikmdag.sys [6659072 2010-04-06] (Microsoft Windows Hardware Compatibility Publisher -> ATI Technologies Inc.)
R3 amdkmdap; C:\Windows\System32\DRIVERS\atikmpag.sys [195584 2010-04-06] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
S3 amdxhc; C:\Windows\system32\drivers\amdxhc.sys [237416 2017-05-17] (Advanced Micro Devices Inc. -> Advanced Micro Devices, INC.)
S3 amdxhc31; C:\Windows\system32\drivers\amdxhc31.sys [465248 2018-01-27] (ASMedia Technology Inc. -> Advanced Micro Devices, Inc.)
S3 amdxhci; C:\Windows\system32\drivers\amdxhci.sys [346952 2017-12-13] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc)
R3 athr; C:\Windows\System32\DRIVERS\athrx.sys [4162560 2019-04-22] (Microsoft Windows Hardware Compatibility Publisher -> Qualcomm Atheros Communications, Inc.)
S3 EtronHub3; C:\Windows\System32\Drivers\EtronHub3.sys [65408 2014-02-12] (Microsoft Windows Hardware Compatibility Publisher -> Etron Technology Inc)
S3 EtronSTOR; C:\Windows\System32\Drivers\EtronSTOR.sys [39296 2014-02-12] (Microsoft Windows Hardware Compatibility Publisher -> Etron Technology Inc)
S3 EtronXHCI; C:\Windows\System32\Drivers\EtronXHCI.sys [94208 2014-02-12] (Microsoft Windows Hardware Compatibility Publisher -> Etron Technology Inc)
S3 FLxHCIh; C:\Windows\system32\drivers\FLxHCIh.sys [146336 2018-05-31] (Fresco Logic Inc -> Fresco Logic)
S3 IaNVMe; C:\Windows\system32\drivers\IaNVMe.sys [151624 2018-11-07] (Intel Corporation -> Intel Corporation)
R0 IaNVMeF; C:\Windows\System32\drivers\IaNVMeF.sys [32840 2018-11-07] (Intel Corporation -> Intel Corporation)
S3 nvme; C:\Windows\system32\drivers\nvme.sys [77488 2016-08-17] (Lite-On Technology Corporation -> Windows (R) Win 7 DDK provider)
S3 ocznvme; C:\Windows\system32\drivers\ocznvme.sys [99592 2016-06-10] (Toshiba America Electronic Components, Inc. -> TOSHIBA CORPORATION)
R0 ocztrimfilter; C:\Windows\System32\drivers\ocztrimfilter.sys [29064 2016-06-10] (Toshiba America Electronic Components, Inc. -> TOSHIBA CORPORATION)
S3 rusb3hub; C:\Windows\system32\drivers\rusb3hub.sys [114568 2012-08-27] (Renesas Electronics Corporation -> Renesas Electronics Corporation)
S3 rusb3xhc; C:\Windows\system32\drivers\rusb3xhc.sys [230280 2012-08-27] (Renesas Electronics Corporation -> Renesas Electronics Corporation)
S3 secnvme; C:\Windows\system32\drivers\secnvme.sys [91352 2018-02-13] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd)
R0 secnvmeF; C:\Windows\System32\drivers\secnvmeF.sys [30624 2018-02-13] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd)
R3 SNP2UVC; C:\Windows\System32\DRIVERS\snp2uvc.sys [1806400 2009-06-05] (SONIX TECHNOLOGY CO. , LTD -> )
R3 usbfilter; C:\Windows\System32\DRIVERS\usbfilter.sys [38456 2009-12-22] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-04-22 11:05 - 2019-04-22 11:06 - 000010620 _____ C:\Users\Administrator\Desktop\FRST.txt
2019-04-22 11:05 - 2019-04-22 11:05 - 002435072 _____ (Farbar) C:\Users\Administrator\Desktop\FRST64.exe
2019-04-22 11:05 - 2019-04-22 11:05 - 000000000 ____D C:\FRST
2019-04-22 10:53 - 2019-04-22 10:23 - 000000753 _____ C:\Users\Administrator\Stažené soubory.lnk
2019-04-22 10:43 - 2019-04-22 10:43 - 000000017 _____ C:\Windows\Model.txt
2019-04-22 10:35 - 2019-04-22 10:35 - 000001313 _____ C:\Users\Public\Desktop\Skype.lnk
2019-04-22 10:35 - 2019-04-22 10:35 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\Skype
2019-04-22 10:35 - 2019-04-22 10:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2019-04-22 10:31 - 2019-04-22 10:31 - 000000000 ____D C:\Program Files (x86)\ASUS
2019-04-22 10:26 - 2019-04-22 10:26 - 000000000 ____D C:\Users\Administrator\AppData\Local\SRS Labs
2019-04-22 10:25 - 2019-04-22 10:26 - 000000000 ___HD C:\Program Files (x86)\Temp
2019-04-22 10:25 - 2019-04-22 10:25 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2019-04-22 10:25 - 2019-04-22 10:25 - 000000000 ____D C:\Windows\SysWOW64\RTCOM
2019-04-22 10:25 - 2019-04-22 10:25 - 000000000 ____D C:\Windows\system32\SRSLabs
2019-04-22 10:25 - 2019-04-22 10:25 - 000000000 ____D C:\Program Files\Realtek
2019-04-22 10:25 - 2019-04-22 10:25 - 000000000 ____D C:\Program Files (x86)\Realtek
2019-04-22 10:25 - 2010-05-13 20:23 - 002368160 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2019-04-22 10:25 - 2010-05-13 17:58 - 002603040 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO64.dll
2019-04-22 10:25 - 2010-05-13 17:58 - 001964576 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2019-04-22 10:25 - 2010-05-13 17:58 - 001215520 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2019-04-22 10:25 - 2010-05-13 17:58 - 001146912 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2019-04-22 10:25 - 2010-05-13 17:58 - 000476192 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2019-04-22 10:25 - 2010-05-13 17:58 - 000332320 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2019-04-22 10:25 - 2010-05-13 17:58 - 000149536 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2019-04-22 10:25 - 2010-05-13 17:58 - 000070176 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInst64.dll
2019-04-22 10:25 - 2010-04-28 18:45 - 001251872 _____ (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll
2019-04-22 10:25 - 2010-04-27 13:50 - 000330656 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2019-04-22 10:25 - 2010-01-26 12:38 - 000168288 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2019-04-22 10:25 - 2009-12-15 19:26 - 000372936 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2019-04-22 10:25 - 2009-12-15 19:26 - 000201928 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2019-04-22 10:25 - 2009-12-15 19:26 - 000099016 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2019-04-22 10:25 - 2009-12-15 19:26 - 000076488 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2019-04-22 10:25 - 2009-12-11 10:55 - 000307920 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2019-04-22 10:25 - 2009-12-11 10:55 - 000307920 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2019-04-22 10:25 - 2009-11-17 19:12 - 000108960 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2019-04-22 10:25 - 2009-04-02 16:43 - 000000520 _____ C:\Windows\system32\Drivers\SamSfPa.dat
2019-04-22 10:23 - 2019-04-22 10:23 - 000000753 _____ C:\Users\Administrator\Desktop\Stažené soubory.lnk
2019-04-22 10:16 - 2019-04-22 10:16 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\Google
2019-04-22 10:15 - 2019-04-22 10:35 - 000000000 ____D C:\Users\Administrator\AppData\Local\Google
2019-04-22 10:15 - 2019-04-22 10:15 - 000002296 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-04-22 10:15 - 2019-04-22 10:15 - 000002255 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2019-04-22 10:14 - 2019-04-22 10:14 - 000003386 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2019-04-22 10:14 - 2019-04-22 10:14 - 000003258 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2019-04-22 10:13 - 2019-04-22 10:14 - 000002824 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2019-04-22 10:13 - 2019-04-22 10:13 - 000003870 _____ C:\Windows\System32\Tasks\CCleaner Update
2019-04-22 10:13 - 2019-04-22 10:13 - 000000822 _____ C:\Users\Public\Desktop\CCleaner.lnk
2019-04-22 10:13 - 2019-04-22 10:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2019-04-22 10:13 - 2019-04-22 10:13 - 000000000 ____D C:\Program Files\CCleaner
2019-04-22 10:11 - 2019-04-22 10:11 - 000058128 _____ C:\Users\Administrator\AppData\Local\GDIPFONTCACHEV1.DAT
2019-04-22 10:11 - 2019-04-22 10:11 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\ATI
2019-04-22 10:11 - 2019-04-22 10:11 - 000000000 ____D C:\Users\Administrator\AppData\Local\ATI
2019-04-22 10:11 - 2019-04-22 10:11 - 000000000 ____D C:\ProgramData\ATI
2019-04-22 10:10 - 2019-04-22 10:10 - 000000000 _____ C:\Windows\ativpsrm.bin
2019-04-22 10:09 - 2019-04-22 10:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Catalyst Control Center
2019-04-22 10:05 - 2019-04-22 10:05 - 000000000 ____D C:\Program Files (x86)\ATI Technologies
2019-04-22 10:04 - 2019-04-22 10:08 - 000000000 ____D C:\Program Files\ATI Technologies
2019-04-22 10:04 - 2019-04-22 10:04 - 000000000 ____D C:\Program Files\ATI
2019-04-22 09:59 - 2019-04-22 09:59 - 000000000 ____D C:\Program Files\DIFX
2019-04-22 09:59 - 2019-04-22 09:59 - 000000000 ____D C:\Program Files (x86)\AMD
2019-04-22 09:59 - 2009-12-22 02:26 - 000038456 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\usbfilter.sys
2019-04-22 09:58 - 2019-04-22 10:50 - 000000000 ____D C:\Windows\Panther
2019-04-22 09:58 - 2019-04-22 09:58 - 000008192 __RSH C:\BOOTSECT.BAK
2019-04-22 09:58 - 2019-01-17 20:40 - 000399860 __RSH C:\bootmgr
2019-04-22 09:55 - 2019-04-22 10:39 - 000000000 ____D C:\Program Files (x86)\JMicron
2019-04-22 09:52 - 2019-04-22 09:52 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\Adobe
2019-04-22 09:51 - 2019-04-22 10:53 - 000000000 ____D C:\Users\Administrator
2019-04-22 09:51 - 2019-04-22 09:51 - 000000020 ___SH C:\Users\Administrator\ntuser.ini
2019-04-22 09:51 - 2019-04-22 09:51 - 000000000 _SHDL C:\Users\Administrator\Šablony
2019-04-22 09:51 - 2019-04-22 09:51 - 000000000 _SHDL C:\Users\Administrator\Soubory cookie
2019-04-22 09:51 - 2019-04-22 09:51 - 000000000 _SHDL C:\Users\Administrator\Poslední
2019-04-22 09:51 - 2019-04-22 09:51 - 000000000 _SHDL C:\Users\Administrator\Okolní tiskárny
2019-04-22 09:51 - 2019-04-22 09:51 - 000000000 _SHDL C:\Users\Administrator\Okolní síť
2019-04-22 09:51 - 2019-04-22 09:51 - 000000000 _SHDL C:\Users\Administrator\Nabídka Start
2019-04-22 09:51 - 2019-04-22 09:51 - 000000000 _SHDL C:\Users\Administrator\Dokumenty
2019-04-22 09:51 - 2019-04-22 09:51 - 000000000 _SHDL C:\Users\Administrator\Documents\Obrázky
2019-04-22 09:51 - 2019-04-22 09:51 - 000000000 _SHDL C:\Users\Administrator\Documents\Hudba
2019-04-22 09:51 - 2019-04-22 09:51 - 000000000 _SHDL C:\Users\Administrator\Documents\Filmy
2019-04-22 09:51 - 2019-04-22 09:51 - 000000000 _SHDL C:\Users\Administrator\Data aplikací
2019-04-22 09:51 - 2019-04-22 09:51 - 000000000 _SHDL C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2019-04-22 09:51 - 2019-04-22 09:51 - 000000000 _SHDL C:\Users\Administrator\AppData\Local\Data aplikací
2019-04-22 09:51 - 2011-04-12 10:45 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\Media Center Programs
2019-04-22 09:44 - 2019-04-22 10:14 - 000000000 ____D C:\Program Files (x86)\Google
2019-04-22 09:29 - 2019-04-22 09:29 - 001526318 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2019-04-22 09:19 - 2019-04-22 09:19 - 000000000 _SHDL C:\Users\Public\Documents\Obrázky
2019-04-22 09:19 - 2019-04-22 09:19 - 000000000 _SHDL C:\Users\Public\Documents\Hudba
2019-04-22 09:19 - 2019-04-22 09:19 - 000000000 _SHDL C:\Users\Public\Documents\Filmy
2019-04-22 09:19 - 2019-04-22 09:19 - 000000000 _SHDL C:\Users\Default\Šablony
2019-04-22 09:19 - 2019-04-22 09:19 - 000000000 _SHDL C:\Users\Default\Soubory cookie
2019-04-22 09:19 - 2019-04-22 09:19 - 000000000 _SHDL C:\Users\Default\Poslední
2019-04-22 09:19 - 2019-04-22 09:19 - 000000000 _SHDL C:\Users\Default\Okolní tiskárny
2019-04-22 09:19 - 2019-04-22 09:19 - 000000000 _SHDL C:\Users\Default\Okolní síť
2019-04-22 09:19 - 2019-04-22 09:19 - 000000000 _SHDL C:\Users\Default\Nabídka Start
2019-04-22 09:19 - 2019-04-22 09:19 - 000000000 _SHDL C:\Users\Default\Dokumenty
2019-04-22 09:19 - 2019-04-22 09:19 - 000000000 _SHDL C:\Users\Default\Documents\Obrázky
2019-04-22 09:19 - 2019-04-22 09:19 - 000000000 _SHDL C:\Users\Default\Documents\Hudba
2019-04-22 09:19 - 2019-04-22 09:19 - 000000000 _SHDL C:\Users\Default\Documents\Filmy
2019-04-22 09:19 - 2019-04-22 09:19 - 000000000 _SHDL C:\Users\Default\Data aplikací
2019-04-22 09:19 - 2019-04-22 09:19 - 000000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2019-04-22 09:19 - 2019-04-22 09:19 - 000000000 _SHDL C:\Users\Default\AppData\Local\Data aplikací
2019-04-22 09:19 - 2019-04-22 09:19 - 000000000 _SHDL C:\Users\Default User\Documents\Obrázky
2019-04-22 09:19 - 2019-04-22 09:19 - 000000000 _SHDL C:\Users\Default User\Documents\Hudba
2019-04-22 09:19 - 2019-04-22 09:19 - 000000000 _SHDL C:\Users\Default User\Documents\Filmy
2019-04-22 09:19 - 2019-04-22 09:19 - 000000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2019-04-22 09:19 - 2019-04-22 09:19 - 000000000 _SHDL C:\Users\Default User\AppData\Local\Data aplikací
2019-04-22 09:19 - 2019-04-22 09:19 - 000000000 _SHDL C:\ProgramData\Šablony
2019-04-22 09:19 - 2019-04-22 09:19 - 000000000 _SHDL C:\ProgramData\Plocha
2019-04-22 09:19 - 2019-04-22 09:19 - 000000000 _SHDL C:\ProgramData\Oblíbené položky
2019-04-22 09:19 - 2019-04-22 09:19 - 000000000 _SHDL C:\ProgramData\Nabídka Start
2019-04-22 09:19 - 2019-04-22 09:19 - 000000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programy
2019-04-22 09:19 - 2019-04-22 09:19 - 000000000 _SHDL C:\ProgramData\Dokumenty
2019-04-22 09:19 - 2019-04-22 09:19 - 000000000 _SHDL C:\ProgramData\Data aplikací
2019-04-22 09:08 - 2019-04-22 09:08 - 000000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-04-22 11:04 - 2009-07-14 06:45 - 000021648 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2019-04-22 11:04 - 2009-07-14 06:45 - 000021648 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2019-04-22 10:54 - 2011-04-12 10:34 - 000647486 _____ C:\Windows\system32\perfh005.dat
2019-04-22 10:54 - 2011-04-12 10:34 - 000132814 _____ C:\Windows\system32\perfc005.dat
2019-04-22 10:54 - 2009-07-14 07:13 - 001523392 _____ C:\Windows\system32\PerfStringBackup.INI
2019-04-22 10:54 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf
2019-04-22 10:48 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2019-04-22 10:46 - 2009-07-14 07:32 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2019-04-22 10:46 - 2009-07-14 07:32 - 000000000 ____D C:\Program Files\DVD Maker
2019-04-22 10:46 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\PolicyDefinitions
2019-04-22 10:45 - 2015-09-08 09:00 - 004162560 _____ (Qualcomm Atheros Communications, Inc.) C:\Windows\system32\Drivers\athrx.sys
2019-04-22 10:38 - 2009-08-19 07:23 - 000143472 _____ (JMicron Technology Corporation) C:\Windows\system32\Drivers\jmcr.sys
2019-04-22 10:38 - 2008-05-15 10:53 - 000110080 _____ (JMicron Technology Corporation) C:\Windows\system32\jmcricon.dll
2019-04-22 10:04 - 2009-07-14 05:20 - 000000000 ____D C:\Program Files\Common Files\Microsoft Shared
2019-04-22 09:58 - 2009-07-14 07:32 - 000028672 _____ C:\Windows\system32\config\BCD-Template
2019-04-22 09:41 - 2009-07-14 06:45 - 000000000 ____D C:\Windows\Setup
2019-04-22 09:20 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\rescache
2019-04-22 09:19 - 2009-07-14 05:20 - 000000000 ____D C:\Program Files\Windows NT
2019-04-22 09:12 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\system32\sysprep
2019-04-22 08:59 - 2009-07-14 06:45 - 000270032 _____ C:\Windows\system32\FNTCACHE.DAT

Some files in TEMP:
2019-04-22 10:43 - 2010-06-20 22:42 - 000046456 _____ (Sony Electronics, Inc) C:\Users\Administrator\AppData\Local\Temp\GLFA24C.EXE
2019-04-22 10:43 - 2003-05-02 15:13 - 000151552 _____ () C:\Users\Administrator\AppData\Local\Temp\GLFA4CD.EXE

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ============================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 21.04.2019 01
Ran by Administrator (22-04-2019 11:06:30)
Running from C:\Users\Administrator\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2019-04-22 07:41:35)
Boot Mode: Normal

==================== Accounts: =============================

Administrator (S-1-5-21-2543129151-4168280162-4190564750-500 - Administrator - Enabled) => C:\Users\Administrator
Guest (S-1-5-21-2543129151-4168280162-4190564750-501 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

AMD USB Filter Driver (HKLM-x32\...\{987B04C4-B5AC-4AD6-A7E9-8D681085B850}) (Version: - Advanced Micro Devices, Inc.)
ATI Catalyst Install Manager (HKLM\...\{401D3422-5349-F819-D294-01CA297CB9E0}) (Version: 3.0.769.0 - ATI Technologies, Inc.)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0005 - ASUS)
ccc-core-static (HKLM-x32\...\{F7E4CA44-6117-E28D-A93D-7CE7CEB7E54F}) (Version: 2010.0406.2133.36843 - Název společnosti:) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.56 - Piriform)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 73.0.3683.103 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: - Google LLC) Hidden
JMicron Ethernet Adapter NDIS Driver (HKLM-x32\...\{96DCEE2F-98EE-4F80-8C0F-7C04D1FB9D7F}) (Version: - JMicron Technology Corp.)
JMicron Flash Media Controller Driver (HKLM-x32\...\{26604C7E-A313-4D12-867F-7C6E7820BE4C}) (Version: - JMicron Technology Corp.)
Microsoft .NET Framework 4.7.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: - Realtek Semiconductor Corp.)
Skype verze 8.43 (HKLM-x32\...\Skype_is1) (Version: 8.43 - Skype Technologies S.A.)
USB 2.0 VGA UVC WebCam (HKLM\...\USB 2.0 VGA UVC WebCam) (Version: - )

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2010-04-06] (Advanced Micro Devices, Inc.) [File not signed]

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]

==================== Loaded Modules (Whitelisted) ==============

2010-04-06 21:26 - 2010-04-06 21:26 - 000873984 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll
2010-04-06 21:26 - 2010-04-06 21:26 - 000003584 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiamcsy.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2009-06-10 23:00 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2543129151-4168280162-4190564750-500\Control Panel\Desktop\\Wallpaper -> C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
mpsdrv => Firewall Service is not running.
MpsSvc => Firewall Service is not running.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.

MSCONFIG\startupreg: ATKMEDIA => C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
MSCONFIG\startupreg: ATKOSD2 => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
MSCONFIG\startupreg: CCleaner Smart Cleaning => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: HControlUser => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
MSCONFIG\startupreg: RtHDVCpl => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
MSCONFIG\startupreg: StartCCC => "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{53F5B73F-F6D9-4B72-B003-B650896C1AE4}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.)

==================== Restore Points =========================

ATTENTION: System Restore is disabled

==================== Faulty Device Manager Devices =============

==================== Event log errors: =========================

Application errors:

System errors:

==================== Memory info ===========================

Processor: AMD Athlon(tm) II P360 Dual-Core Processor
Percentage of memory in use: 68%
Total physical RAM: 4093.82 MB
Available physical RAM: 1277.53 MB
Total Virtual: 8185.79 MB
Available Virtual: 5196.32 MB

==================== Drives ================================

Drive c: (WINDOWS) (Fixed) (Total:97.08 GB) (Free:75.5 GB) NTFS ==>[drive with boot components (obtained from BCD)]
Drive d: (DOKUMENTY) (Fixed) (Total:498.51 GB) (Free:458 GB) NTFS

==================== MBR & Partition Table ==================

Disk: 0 (MBR Code: Windows 7/8/10) (Size: 596.2 GB) (Disk ID: 1B64FBCC)
Partition 1: (Active) - (Size=97.1 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=498.5 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================

Příspěvky: 138
Registrován: 26 kvě 2017 14:48

Re: Pomalý notebook

#24 Příspěvek od samsungs6edge »

A zde ještě

# -------------------------------
# Malwarebytes AdwCleaner
# -------------------------------
# Build: 04-04-2019
# Database: 2019-04-18.2 (Cloud)
# Support: https://www.malwarebytes.com/support
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 04-22-2019
# Duration: 00:00:09
# OS: Windows 7 Home Premium
# Scanned: 27356
# Detected: 0

***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

No malicious folders found.

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

No malicious registry entries found.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries found.

***** [ Chromium URLs ] *****

No malicious Chromium URLs found.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S00].txt ##########

Uživatelský avatar
Site Admin
Site Admin
Příspěvky: 118352
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Pomalý notebook

#25 Příspěvek od Rudy »

Stále OK. Co tím sledujete?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!

Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Příspěvky: 138
Registrován: 26 kvě 2017 14:48

Re: Pomalý notebook

#26 Příspěvek od samsungs6edge »

Po instalaci aktualizací se mě zdá,že se zasekává systém.

Uživatelský avatar
Site Admin
Site Admin
Příspěvky: 118352
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Pomalý notebook

#27 Příspěvek od Rudy »

Tak je známo, že se dubnová aktualizace nepovedla. Zkuste jí odinstalovat.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!

Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Příspěvky: 138
Registrován: 26 kvě 2017 14:48

Re: Pomalý notebook

#28 Příspěvek od samsungs6edge »

Ty dubnové tam právě nemám

Uživatelský avatar
Site Admin
Site Admin
Příspěvky: 118352
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Pomalý notebook

#29 Příspěvek od Rudy »

Tak to nechápu. Březnové byly OK, jen ta dubnová se nepovedla. Koukneme se na disk. Stáhněte, nainstalujte a spusťte CrystalDiskInfo: https://www.stahuj.cz/utility_a_ostatni ... ldiskinfo/ a přes Úpravy>Kopírovat sem dejte log.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!

Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Příspěvky: 138
Registrován: 26 kvě 2017 14:48

Re: Pomalý notebook

#30 Příspěvek od samsungs6edge »

Zde je log

CrystalDiskInfo 8.0.0 (C) 2008-2018 hiyohiyo
Crystal Dew World : https://crystalmark.info/

OS : Windows 7 Home Premium SP1 [6.1 Build 7601] (x64)
Date : 2019/04/22 19:01:18

-- Controller Map ----------------------------------------------------------
- ATA Channel 3 (3) [ATA]
+ Standardní řadič AHCI 1.0 s rozhraním Serial ATA [ATA]
+ ATA Channel 0 (0)
- WDC WD6400BEVT-80A0RT1 ATA Device
+ ATA Channel 1 (1)
- ATA Channel 2 (2)
- ATA Channel 3 (3)

-- Disk List ---------------------------------------------------------------
(1) WDC WD6400BEVT-80A0RT1 : 640,1 GB [0/0/0, pd1] - wd

(1) WDC WD6400BEVT-80A0RT1
Model : WDC WD6400BEVT-80A0RT1
Firmware : 01.01A01
Serial Number : WD-WXG1AC063924
Disk Size : 640,1 GB (8,4/137,4/640,1/640,1)
Buffer Size : 8192 KB
Queue Depth : 32
# of Sectors : 1250263728
Rotation Rate : 5400 RPM
Interface : Serial ATA
Major Version : ATA8-ACS
Minor Version : ----
Transfer Mode : ---- | SATA/300
Power On Hours : 9678 hod.
Power On Count : 6581 krát
Temperature : 26 C (78 F)
Health Status : Dobrý
Features : S.M.A.R.T., APM, AAM, 48bit LBA, NCQ
APM Level : 0060h [ON]
AAM Level : 8080h [ON]
Drive Letter : C: D:

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 200 200 _51 000000000000 Počet chyb čtení
03 186 148 _21 00000000068B Čas na roztočení ploten
04 __4 __4 __0 0000000178C7 Počet spuštění/zastavení
05 200 200 140 000000000000 Počet přemapovaných sektorů
07 100 253 __0 000000000000 Počet chybných hledání
09 _87 _87 __0 0000000025CE Hodin v činnosti
0A 100 100 _51 000000000000 Počet opakovaných pokusů o roztočení ploten
0B 100 100 __0 000000000000 Počet pokusů o překalibrování
0C _94 _94 __0 0000000019B5 Počet cyklů zapnutí zařízení
BF __1 __1 __0 000000001034 Počet udalostí zaznamenaných otřesovým senzorem
C0 200 200 __0 000000000108 Počet vypnutí disku
C1 __1 __1 __0 0000000CD622 Počet cyklů načítání/vymazání
C2 121 _91 __0 00000000001A Teplota
C4 200 200 __0 000000000000 Počet udalostí s číslem realokování sektorů
C5 200 200 __0 000000000000 Počet podezřelých sektorů
C6 100 253 __0 000000000000 Počet neopravitelných sektorů
C7 200 200 __0 000000000000 Počet chyb v kontrolním součtu UltraDMA
C8 100 253 _51 000000000000 Počet chyb při zápisu sektorů

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 427A 3FFF C837 0010 0000 0000 003F 0000 0000 0000
010: 2020 2020 2057 442D 5758 4731 4143 3036 3339 3234
020: 0000 4000 0032 3031 2E30 3141 3031 5744 4320 5744
030: 3634 3030 4245 5654 2D38 3041 3052 5431 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 0000 2F00
050: 4001 0000 0000 0007 3FFF 0010 003F FC10 00FB 0110
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 001F 1F06 0000 004C 0040
080: 01FE 0000 746B 7F09 6163 7469 BE09 6163 407F 0051
090: 0051 0060 FFFE 0000 8080 0000 0000 0000 0000 0000
100: 82B0 4A85 0000 0000 0000 0000 0000 0000 5001 4EE6
110: 562A 13B4 0000 0000 0000 0000 0000 0000 0000 4018
120: 4018 0000 0000 0000 0000 0000 0000 0000 0029 0000
130: 0000 0000 0000 16D3 0000 0000 0000 0000 0000 0000
140: 0000 0000 0004 0000 0000 0000 0000 0000 0000 0000
150: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 7037 0000 0000 0000
210: 0000 0000 0000 0000 0000 0000 0000 1518 0000 0000
220: 0000 0000 101E 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0001 1000 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 ABA5

-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 2F 00 C8 C8 00 00 00 00 00 00 00 03 27
010: 00 BA 94 8B 06 00 00 00 00 00 04 32 00 04 04 C7
020: 78 01 00 00 00 00 05 33 00 C8 C8 00 00 00 00 00
030: 00 00 07 2E 00 64 FD 00 00 00 00 00 00 00 09 32
040: 00 57 57 CE 25 00 00 00 00 00 0A 32 00 64 64 00
050: 00 00 00 00 00 00 0B 32 00 64 64 00 00 00 00 00
060: 00 00 0C 32 00 5E 5E B5 19 00 00 00 00 00 BF 32
070: 00 01 01 34 10 00 00 00 00 00 C0 32 00 C8 C8 08
080: 01 00 00 00 00 00 C1 32 00 01 01 22 D6 0C 00 00
090: 00 00 C2 22 00 79 5B 1A 00 00 00 00 00 00 C4 32
0A0: 00 C8 C8 00 00 00 00 00 00 00 C5 32 00 C8 C8 00
0B0: 00 00 00 00 00 00 C6 30 00 64 FD 00 00 00 00 00
0C0: 00 00 C7 32 00 C8 C8 00 00 00 00 00 00 00 C8 08
0D0: 00 64 FD 00 00 00 00 00 00 00 00 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 58 3E 01 7B
170: 03 00 01 00 02 B9 05 00 00 00 00 00 00 00 00 00
180: 00 00 01 04 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 18

-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 33 C8 C8 C8 C8 00 00 00 00 00 00 03 15
010: 00 00 00 00 00 00 00 00 00 00 04 00 00 00 00 00
020: 00 00 00 00 00 00 05 8C 00 00 00 00 00 00 00 00
030: 00 00 07 00 64 64 64 64 00 00 00 00 00 00 09 00
040: 00 00 00 00 00 00 00 00 00 00 0A 33 00 00 00 00
050: 00 00 00 00 00 00 0B 00 00 00 00 00 00 00 00 00
060: 00 00 0C 00 00 00 00 00 00 00 00 00 00 00 BF 00
070: 00 00 00 00 00 00 00 00 00 00 C0 00 00 00 00 00
080: 00 00 00 00 00 00 C1 00 00 00 00 00 00 00 00 00
090: 00 00 C2 00 00 00 00 00 00 00 00 00 00 00 C4 00
0A0: 00 00 00 00 00 00 00 00 00 00 C5 00 00 00 00 00
0B0: 00 00 00 00 00 00 C6 00 00 00 00 00 00 00 00 00
0C0: 00 00 C7 00 00 00 00 00 00 00 00 00 00 00 C8 33
0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 E8
