Velké vytížení CPU, disku a paměti kvůli svchost.exe

[Rudy]

PC máte zcela čisté a bez virů.

[michal9102]

Já Vám za to děkuji, ale prosím Vás problém s blokováním/načítáním/nedostupnosti většiny stránek na všech prohlížečích jsem začal mít po provedení fixu přes FRSTLauncher. Nemohl jste tam něco zakázat co by mělo na svědomí tuto blokaci?

Abych mohl hledat řešení tohoto problému musím se připojovat vzdálenou plochou do práce

[Rudy]

Toto bylo mazáno:

Fix result of Farbar Recovery Scan Tool (x64) Version: 21-08-2016 01
Ran by Michal Svoboda (23-08-2016 09:55:10) Run:1
Running from C:\Users\Michal Svoboda\Desktop
Loaded Profiles: Michal Svoboda (Available Profiles: Michal Svoboda)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
ShellIconOverlayIdentifiers: [.QMDeskTopGCIcon] -> {B7667919-3765-4815-A66D-98A09BE662D6} => No File
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-2975559012-1733139113-1428487623-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKU\S-1-5-21-2975559012-1733139113-1428487623-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2975559012-1733139113-1428487623-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
S0 zhyq; C:\Windows\SysWOW64\drivers\ltpyb.sys [61440 2016-03-18] () [File not signed]
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
C:\Users\Michal Svoboda\AppData\Local\Temp
End
*****************

HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\.QMDeskTopGCIcon => key could not remove. Access Denied.
HKCR\CLSID\{B7667919-3765-4815-A66D-98A09BE662D6} => key not found.
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer => key could not remove. Access Denied.
HKU\S-1-5-21-2975559012-1733139113-1428487623-1001\SOFTWARE\Policies\Microsoft\Internet Explorer => key could not remove. Access Denied.

Kromě zbytečností
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value restored successfully
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => key could not remove. Access Denied.
HKCR\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value restored successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => key could not remove. Access Denied.
HKCR\Wow6432Node\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => key not found.
HKU\S-1-5-21-2975559012-1733139113-1428487623-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully
HKU\S-1-5-21-2975559012-1733139113-1428487623-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => key could not remove. Access Denied.
HKCR\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => key not found.
HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE => key could not remove. Access Denied.
HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE => key could not remove. Access Denied.
zhyq => service removed successfully
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => moved successfully
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => moved successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully

"C:\Users\Michal Svoboda\AppData\Local\Temp" folder move:

Could not move "C:\Users\Michal Svoboda\AppData\Local\Temp" => Scheduled to move on reboot.


Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 23-08-2016 09:58:14)

"C:\Users\Michal Svoboda\AppData\Local\Temp" => Could not move

Není tam nic, co by omezovalo/blokovalo přístup na některé weby. Kromě zbytečností jsem naopak odblokoval některé restrikce, smazal jeden rootkit, smazal některé zbytečné plánovače a obsah dočasnoé složky. Tento postup je běžný, a nikdy se nestalo, že by pak bylo něco nedostupné. Blokování jsem žádné neprovedl.