winlogon.exe

Zpráva

Vojtěch Bednařík

Vše se vrátilo do normálu. Tak doufám že to tak i zůstane.

#17 Příspěvek od **Conder** » 03 lis 2019 18:29

Vojtěch Bednařík

Dobrý den, dnes se mi zaseklo PC tak jsem ho restartoval. Po restartu ze zase objevil problém že zbělala lišta, tak jsem chtěl napsat na fórum, ale v průběhu psaní se odpojil internet a sluchátka která která byla na USB, ale myš a klávesnice se neodpojili (mám je na USB hubu) při vypojení z USB se sluchátka ani internet nezapnuli. Internet mám přes wifi. Po chvilce jsem se zkusil připojit a objevilo se zadat heslo tak jsem zadal a napsalo to k síti se nelze připojit tak jsem přes telefon šel do nastavení wifi a heslo opsal ale stejná hláška se objevila. Nevíte co by mohlo být za problém?

Vojtěch Bednařík

Myslíte že by pomohla přeinstalace? Obnovil jsem automatickou zálohu a vše je zatím v normálu.

#20 Příspěvek od **Conder** » 03 lis 2019 19:38

Na inych zariadeniach (mobil, ine PC...) funguje internet bez problemov?

Skusime pozriet na HW.

Stiahni CrystalDiskInfo: https://crystalmark.info/redirect.php?p ... alDiskInfo

Rozbal cely archiv na plochu a spusti cez DiskInfo64.exe alebo DiskInfo32.exe
Hore klikni na Upravy (Edit) -> Kopirovat (Copy)
Skopiruje sa log, jeho obsah vloz (Ctrl+V) do dalsej odpovedi

Vojtěch Bednařík

Na telefonu a notebooku internet fungoval, jako by najednou vypadla komunikace na dvou USB portech.
----------------------------------------------------------------------------
CrystalDiskInfo 8.3.1 (C) 2008-2019 hiyohiyo
Crystal Dew World: https://crystalmark.info/
----------------------------------------------------------------------------

OS : Windows 7 Professional SP1 [6.1 Build 7601] (x64)
Date : 2019/11/04 16:52:03

-- Controller Map ----------------------------------------------------------
+ ATA Channel 1 (1) [ATA]
- TSSTcorp CDDVDW SH-222AB ATA Device
+ Řadič úložiště Intel(R) 82801GB/GR/GH (řada ICH7) s rozhraním Serial ATA - 27C0 [ATA]
+ ATA Channel 0 (0)
- WDC WD1600AAJS-75M0A0 ATA Device
- WDC WD10EZEX-08WN4A0 ATA Device
- ATA Channel 1 (1)

-- Disk List ---------------------------------------------------------------
(1) WDC WD10EZEX-08WN4A0 : 1000,2 GB [0/0/0, pd1] - wd
(2) WDC WD1600AAJS-75M0A0 : 160,0 GB [1/0/1, pd1] - wd

----------------------------------------------------------------------------
(1) WDC WD10EZEX-08WN4A0
----------------------------------------------------------------------------
Model : WDC WD10EZEX-08WN4A0
Firmware : 02.01A02
Serial Number : WD-WCC6Y1SSR8PY
Disk Size : 1000,2 GB (8,4/137,4/1000,2/1000,2)
Buffer Size : Neznámy údaj
Queue Depth : 32
# of Sectors : 1953525168
Rotation Rate : 7200 RPM
Interface : Serial ATA
Major Version : ACS-3
Minor Version : ACS-3 Revision 3b
Transfer Mode : SATA/300 | SATA/600
Power On Hours : 2611 hod.
Power On Count : 886 krát
Temperature : 26 C (78 F)
Health Status : Dobrý
Features : S.M.A.R.T., APM, 48bit LBA, NCQ
APM Level : 0080h [ON]
AAM Level : ----
Drive Letter : C:

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 200 200 _51 000000000000 Počet chyb čtení
03 178 172 _21 000000000823 Čas na roztočení ploten
04 100 100 __0 000000000378 Počet spuštění/zastavení
05 200 200 140 000000000000 Počet přemapovaných sektorů
07 200 200 __0 000000000000 Počet chybných hledání
09 _97 _97 __0 000000000A33 Hodin v činnosti
0A 100 100 __0 000000000000 Počet opakovaných pokusů o roztočení ploten
0B 100 100 __0 000000000000 Počet pokusů o překalibrování
0C 100 100 __0 000000000376 Počet cyklů zapnutí zařízení
C0 200 200 __0 00000000002C Počet vypnutí disku
C1 200 200 __0 000000000355 Počet cyklů načítání/vymazání
C2 117 103 __0 00000000001A Teplota
C4 200 200 __0 000000000000 Počet udalostí s číslem realokování sektorů
C5 200 200 __0 000000000000 Počet podezřelých sektorů
C6 200 200 __0 000000000000 Počet neopravitelných sektorů
C7 200 200 __0 000000000000 Počet chyb v kontrolním součtu UltraDMA
C8 200 200 __0 000000000000 Počet chyb při zápisu sektorů

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 427A 3FFF C837 0010 0000 0000 003F 0000 0000 0000
010: 2020 2020 2057 442D 5743 4336 5931 5353 5238 5059
020: 0000 0000 0000 3032 2E30 3141 3032 5744 4320 5744
030: 3130 455A 4558 2D30 3857 4E34 4130 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 4000 2F00
050: 4001 0000 0000 0006 3FFF 0010 003F FC10 00FB 0110
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0D00
070: 0000 0000 0000 0000 0000 001F 9D0E 0004 004C 0040
080: 07FE 001F 346B 7D09 6123 3469 BC09 6123 203F 803C
090: 803C 0080 FFFE 0000 0000 0000 0000 0000 0000 0000
100: 6DB0 7470 0000 0000 0000 0000 6003 0000 5001 4EE2
110: BAAA 47BE 0000 0000 0000 0000 0000 0000 0000 401C
120: 401C 0000 0000 0000 0000 0000 0000 0000 0029 0000
130: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
140: 0000 0000 0004 0000 0000 0000 0000 0000 0000 0000
150: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0002 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 3035 0000 0000 0000
210: 0000 0000 0000 0000 0000 0000 0000 1C20 0000 0000
220: 0000 0000 107E 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0001 1000 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 48A5

-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 2F 00 C8 C8 00 00 00 00 00 00 00 03 27
010: 00 B2 AC 23 08 00 00 00 00 00 04 32 00 64 64 78
020: 03 00 00 00 00 00 05 33 00 C8 C8 00 00 00 00 00
030: 00 00 07 2E 00 C8 C8 00 00 00 00 00 00 00 09 32
040: 00 61 61 33 0A 00 00 00 00 00 0A 32 00 64 64 00
050: 00 00 00 00 00 00 0B 32 00 64 64 00 00 00 00 00
060: 00 00 0C 32 00 64 64 76 03 00 00 00 00 00 C0 32
070: 00 C8 C8 2C 00 00 00 00 00 00 C1 32 00 C8 C8 55
080: 03 00 00 00 00 00 C2 22 00 75 67 1A 00 00 00 00
090: 00 00 C4 32 00 C8 C8 00 00 00 00 00 00 00 C5 32
0A0: 00 C8 C8 00 00 00 00 00 00 00 C6 30 00 C8 C8 00
0B0: 00 00 00 00 00 00 C7 32 00 C8 C8 00 00 00 00 00
0C0: 00 00 C8 08 00 C8 C8 00 00 00 00 00 00 00 00 00
0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 82 00 20 2B 01 7B
170: 03 00 01 00 02 72 05 00 00 00 00 00 00 00 00 00
180: 00 00 01 02 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 0D

-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 33 C8 C8 00 00 00 00 00 00 00 00 03 15
010: 00 00 00 00 00 00 00 00 00 00 04 00 00 00 00 00
020: 00 00 00 00 00 00 05 8C 00 00 00 00 00 00 00 00
030: 00 00 07 00 C8 C8 00 00 00 00 00 00 00 00 09 00
040: 00 00 00 00 00 00 00 00 00 00 0A 00 00 00 00 00
050: 00 00 00 00 00 00 0B 00 00 00 00 00 00 00 00 00
060: 00 00 0C 00 00 00 00 00 00 00 00 00 00 00 C0 00
070: 00 00 00 00 00 00 00 00 00 00 C1 00 00 00 00 00
080: 00 00 00 00 00 00 C2 00 00 00 00 00 00 00 00 00
090: 00 00 C4 00 00 00 00 00 00 00 00 00 00 00 C5 00
0A0: 00 00 00 00 00 00 00 00 00 00 C6 00 00 00 00 00
0B0: 00 00 00 00 00 00 C7 00 00 00 00 00 00 00 00 00
0C0: 00 00 C8 00 C8 C8 00 00 00 00 00 00 00 00 00 00
0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 82 00 20 2B 01 7B
170: 03 00 01 00 02 72 05 00 00 00 00 00 00 00 00 00
180: 00 00 01 02 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 44

----------------------------------------------------------------------------
(2) WDC WD1600AAJS-75M0A0
----------------------------------------------------------------------------
Model : WDC WD1600AAJS-75M0A0
Firmware : 02.03E02
Serial Number : WD-WMAV3H219124
Disk Size : 160,0 GB (8,4/137,4/160,0/159,9)
Buffer Size : 8192 KB
Queue Depth : 32
# of Sectors : 312500000
Rotation Rate : Neznámy údaj
Interface : Serial ATA
Major Version : ATA8-ACS
Minor Version : ----
Transfer Mode : ---- | SATA/300
Power On Hours : 8655 hod.
Power On Count : 2429 krát
Host Reads : 11252 GB
Host Writes : 3227 GB
Temperature : 25 C (77 F)
Health Status : Dobrý
Features : S.M.A.R.T., AAM, 48bit LBA, NCQ
APM Level : ----
AAM Level : 8080h [ON]
Drive Letter : E:

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 200 200 _51 000000000000 Počet chyb čtení
03 137 135 _21 00000000102D Čas na roztočení ploten
04 _96 _96 __0 000000001074 Počet spuštění/zastavení
05 200 200 140 000000000000 Počet přemapovaných sektorů
07 200 200 __0 000000000000 Počet chybných hledání
09 _89 _89 __0 0000000021CF Hodin v činnosti
0A 100 100 __0 000000000000 Počet opakovaných pokusů o roztočení ploten
0B 100 100 __0 000000000000 Počet pokusů o překalibrování
0C _98 _98 __0 00000000097D Počet cyklů zapnutí zařízení
C0 200 200 __0 000000000053 Počet vypnutí disku
C1 199 199 __0 000000001074 Počet cyklů načítání/vymazání
C2 118 101 __0 000000000019 Teplota
C4 200 200 __0 000000000000 Počet udalostí s číslem realokování sektorů
C5 200 200 __0 000000000000 Počet podezřelých sektorů
C6 200 200 __0 000000000000 Počet neopravitelných sektorů
C7 200 200 __0 000000000000 Počet chyb v kontrolním součtu UltraDMA
C8 200 200 __0 000000000000 Počet chyb při zápisu sektorů
F0 _91 _91 __0 000000001B8B Čas nastavování hlaviček - v hodinách
F1 200 200 __0 000193695755 Total Host Writes
F2 200 200 __0 00057E904A83 Total Host Reads

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 427A 3FFF C837 0010 0000 0000 003F 0000 0000 0000
010: 2020 2020 2057 442D 574D 4156 3348 3231 3931 3234
020: 0000 4000 0032 3032 2E30 3345 3032 5744 4320 5744
030: 3136 3030 4141 4A53 2D37 354D 3041 3020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 0000 2F00
050: 4001 0000 0000 0007 3FFF 0010 003F FC10 00FB 0110
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 001F 0706 0000 004C 0040
080: 01FE 0000 746B 7F61 4123 7469 BE41 4123 207F 000E
090: 000E 0000 FFFE 0000 8080 0000 0000 0000 0000 0000
100: 5F20 12A0 0000 0000 0000 0000 0000 0000 5001 4EE0
110: AD15 CA31 0000 0000 0000 0000 0000 0000 0000 4010
120: 4010 0000 0000 0000 0000 0000 0000 0000 0029 0000
130: 0000 0000 0000 16CB 0000 0000 0000 0000 0000 0000
140: 0000 0000 0004 0000 0000 0000 0000 0000 0000 0000
150: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 3037 0000 0000 0000
210: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
220: 0000 0000 100E 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0001 1000 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 2BA5

-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 2F 00 C8 C8 00 00 00 00 00 00 00 03 27
010: 00 89 87 2D 10 00 00 00 00 00 04 32 00 60 60 74
020: 10 00 00 00 00 00 05 33 00 C8 C8 00 00 00 00 00
030: 00 00 07 2E 00 C8 C8 00 00 00 00 00 00 00 09 32
040: 00 59 59 CF 21 00 00 00 00 00 0A 32 00 64 64 00
050: 00 00 00 00 00 00 0B 32 00 64 64 00 00 00 00 00
060: 00 00 0C 32 00 62 62 7D 09 00 00 00 00 00 C0 32
070: 00 C8 C8 53 00 00 00 00 00 00 C1 32 00 C7 C7 74
080: 10 00 00 00 00 00 C2 22 00 76 65 19 00 00 00 00
090: 00 00 C4 32 00 C8 C8 00 00 00 00 00 00 00 C5 32
0A0: 00 C8 C8 00 00 00 00 00 00 00 C6 30 00 C8 C8 00
0B0: 00 00 00 00 00 00 C7 32 00 C8 C8 00 00 00 00 00
0C0: 00 00 C8 08 00 C8 C8 00 00 00 00 00 00 00 F0 32
0D0: 00 5B 5B 8B 1B 00 00 00 00 00 F1 32 00 C8 C8 55
0E0: 57 69 93 01 00 00 F2 32 00 C8 C8 83 4A 90 7E 05
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 82 00 40 0B 01 7B
170: 03 00 01 00 02 26 05 00 00 00 00 00 00 00 00 00
180: 00 00 01 01 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 2C

-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 33 C8 00 00 00 00 00 00 00 00 00 03 15
010: 00 00 00 00 00 00 00 00 00 00 04 00 00 00 00 00
020: 00 00 00 00 00 00 05 8C 00 00 00 00 00 00 00 00
030: 00 00 07 00 C8 00 00 00 00 00 00 00 00 00 09 00
040: 00 00 00 00 00 00 00 00 00 00 0A 00 00 00 00 00
050: 00 00 00 00 00 00 0B 00 00 00 00 00 00 00 00 00
060: 00 00 0C 00 00 00 00 00 00 00 00 00 00 00 C0 00
070: 00 00 00 00 00 00 00 00 00 00 C1 00 00 00 00 00
080: 00 00 00 00 00 00 C2 00 00 00 00 00 00 00 00 00
090: 00 00 C4 00 00 00 00 00 00 00 00 00 00 00 C5 00
0A0: 00 00 00 00 00 00 00 00 00 00 C6 00 00 00 00 00
0B0: 00 00 00 00 00 00 C7 00 00 00 00 00 00 00 00 00
0C0: 00 00 C8 00 C8 00 00 00 00 00 00 00 00 00 F0 00
0D0: 00 00 00 00 00 00 00 00 00 00 F1 00 00 00 00 00
0E0: 00 00 00 00 00 00 F2 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 92

#22 Příspěvek od **Conder** » 05 lis 2019 16:33

Disky vyzeraju OK- Este pre kontrolu poprosim o obidva nove logy z FRST.

Vojtěch Bednařík

Tady jde spíše o hlášku "Nepodařilo se připojení ke službě systému Windows" zase mi vyskočila.

#24 Příspěvek od **Conder** » 06 lis 2019 19:43

Urob v Malwarebytes uplny sken

Stiahni a nainstaluj Malwarebytes (MB/MBAM): https://www.malwarebytes.com/mwb-download/thankyou/
Ignoruj skusobnu trial verziu
Otvor Malwarebytes a vlavo klikni na "Skenovat"
Klikni na "Vlastne skenovanie" a potom na "Nakonfigurovat skenovanie" (Nastavit sken)
Vpravo oznac vsetky disky v PC a vlavo oznac moznost "Vyhladavat rootkity"
Klikni na Skenovat teraz a pockaj na dokoncenie
Po dokonceni klikni na Exportovat zhrnutie -> Skopirovat do schranky
Skopirovany log vloz do dalsej odpovede
Obrazkovy navod (bohuzial pre starsiu verziu): https://forum.viry.cz/viewtopic.php?f=29&t=144868

Vojtěch Bednařík

Malwarebytes
www.malwarebytes.com

-Podrobnosti logovacího souboru-
Datum skenování: 07.11.19
Čas skenování: 17:24
Logovací soubor: 19ef5e26-017b-11ea-bc61-00ffeb39a3ac.json

-Informace o softwaru-
Verze: 3.8.3.2965
Verze komponentů: 1.0.625
Aktualizovat verzi balíku komponent: 1.0.13217
Licence: Vypršelo

-Systémová informace-
OS: Windows 7 Service Pack 1
CPU: x64
Systém souborů: NTFS
Uživatel: Vojta-PC\Vojta

-Shrnutí skenování-
Typ skenování: Vlastní skenování
Spuštění skenování: Ruční
Výsledek: Dokončeno
Skenované objekty: 729887
Zjištěné hrozby: 2
Hrozby umístěné do karantény: 0
Uplynulý čas: 28 hod, 18 min, 29 sek

-Možnosti skenování-
Paměť: Povoleno
Start: Povoleno
Systém souborů: Povoleno
Archivy: Povoleno
Rootkity: Povoleno
Heuristika: Povoleno
Potenciálně nežádoucí program: Detekovat
Potenciálně nežádoucí modifikace: Detekovat

-Podrobnosti skenování-
Proces: 0
(Nebyly zjištěny žádné škodlivé položky)

Modul: 0
(Nebyly zjištěny žádné škodlivé položky)

Klíč registru: 0
(Nebyly zjištěny žádné škodlivé položky)

Hodnota v registru: 0
(Nebyly zjištěny žádné škodlivé položky)

Data registrů: 0
(Nebyly zjištěny žádné škodlivé položky)

Datové proudy: 0
(Nebyly zjištěny žádné škodlivé položky)

Adresář: 0
(Nebyly zjištěny žádné škodlivé položky)

Soubor: 2
PUP.Optional.DriverPack, C:\USERS\VOJTA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\CACHE\F_001D73, Žádná uživatelská akce, [586], [758707],1.0.13217
PUP.Optional.DriverPack, C:\USERS\VOJTA\DOWNLOADS\DRIVERPACK-17-ONLINE_1276905686.1573146432.EXE, Žádná uživatelská akce, [586], [758707],1.0.13217

Fyzický sektor: 0
(Nebyly zjištěny žádné škodlivé položky)

WMI: 0
(Nebyly zjištěny žádné škodlivé položky)

(end)

#26 Příspěvek od **Conder** » 09 lis 2019 15:24

Tieto nalezy mozes zmazat, jedna sa o program na automaticke instalacie ovladacov. Podobne programy sa neodporuca pouzivat, ovladace by sa mali stahovat zo stranky vyrobcu HW.

Takisto v PC boli zrejme nainstalovane nejake programy od IObit - tieto programy su smejdy a mozu poskodit system, preto odporucame sa im vyhnut.

Otvor poznamkovy blok (Win+R -> notepad -> enter)

Skopiruj nasledujuci text a vloz ho do poznamkoveho bloku:

Kód: Vybrat vše

Start
CloseProcesses:
CreateRestorePoint:

HKU\S-1-5-21-1798616249-510404611-1270143056-1000\...\MountPoints2: {a2a5ba77-4784-11e9-bb83-50e5492054f9} - C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL F:\autorun.exe /auto
HKU\S-1-5-21-1798616249-510404611-1270143056-1000\...\MountPoints2: {b11c49c7-e1d2-11e8-a0bd-50e5492054f9} - F:\PMCsetup.exe
Task: {114D49F2-0E8F-4014-AC90-EBDEBDA4D4A4} - System32\Tasks\{1A71BEB6-DBC1-4415-80D8-FF8C3B44F494} => C:\Windows\system32\pcalua.exe -a C:\Users\Vojta\Downloads\KM_Extended_Driver-Win2k_XP-V2.0.0414-EN.exe -d C:\Users\Vojta\Downloads
Task: {6E004A03-FBD7-400C-AFF4-567A600DCFBE} - System32\Tasks\{DFBCF615-2F46-4F4D-BF50-12872A4E62FA} => C:\Windows\system32\pcalua.exe -a "C:\Users\Vojta\Downloads\Kyocera KX UPD\Setup.exe" -d "C:\Users\Vojta\Downloads\Kyocera KX UPD"
HKU\S-1-5-21-1798616249-510404611-1270143056-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
2019-10-19 12:58 - 2019-10-05 17:56 - 000000000 ____D C:\Users\Vojta\AppData\Roaming\IObit
cmd: netsh winsock reset

Hosts:
EmptyTemp:
End

Uloz na plochu s nazvom fixlist.txt
Spusti znovu FRST a klikni na Fix
Po dokonceni si FRST vyziada restart PC, potvrd kliknutim na OK
Po restartovani PC bude na ploche subor Fixlog.txt, jeho obsah sem skopiruj

Vojtěch Bednařík

Fix result of Farbar Recovery Scan Tool (x64) Version: 09-11-2019 01
Ran by Vojta (09-11-2019 17:28:46) Run:1
Running from C:\Users\Vojta\Desktop
Loaded Profiles: Vojta (Available Profiles: Vojta)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CloseProcesses:
CreateRestorePoint:

HKU\S-1-5-21-1798616249-510404611-1270143056-1000\...\MountPoints2: {a2a5ba77-4784-11e9-bb83-50e5492054f9} - C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL F:\autorun.exe /auto
HKU\S-1-5-21-1798616249-510404611-1270143056-1000\...\MountPoints2: {b11c49c7-e1d2-11e8-a0bd-50e5492054f9} - F:\PMCsetup.exe
Task: {114D49F2-0E8F-4014-AC90-EBDEBDA4D4A4} - System32\Tasks\{1A71BEB6-DBC1-4415-80D8-FF8C3B44F494} => C:\Windows\system32\pcalua.exe -a C:\Users\Vojta\Downloads\KM_Extended_Driver-Win2k_XP-V2.0.0414-EN.exe -d C:\Users\Vojta\Downloads
Task: {6E004A03-FBD7-400C-AFF4-567A600DCFBE} - System32\Tasks\{DFBCF615-2F46-4F4D-BF50-12872A4E62FA} => C:\Windows\system32\pcalua.exe -a "C:\Users\Vojta\Downloads\Kyocera KX UPD\Setup.exe" -d "C:\Users\Vojta\Downloads\Kyocera KX UPD"
HKU\S-1-5-21-1798616249-510404611-1270143056-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=i ... ar=msnhome
2019-10-19 12:58 - 2019-10-05 17:56 - 000000000 ____D C:\Users\Vojta\AppData\Roaming\IObit
cmd: netsh winsock reset

Hosts:
EmptyTemp:
End
*****************

Processes closed successfully.
Restore point was successfully created.
HKU\S-1-5-21-1798616249-510404611-1270143056-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a2a5ba77-4784-11e9-bb83-50e5492054f9} => removed successfully
HKU\S-1-5-21-1798616249-510404611-1270143056-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{b11c49c7-e1d2-11e8-a0bd-50e5492054f9} => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{114D49F2-0E8F-4014-AC90-EBDEBDA4D4A4}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{114D49F2-0E8F-4014-AC90-EBDEBDA4D4A4}" => removed successfully
C:\Windows\System32\Tasks\{1A71BEB6-DBC1-4415-80D8-FF8C3B44F494} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{1A71BEB6-DBC1-4415-80D8-FF8C3B44F494}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{6E004A03-FBD7-400C-AFF4-567A600DCFBE}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6E004A03-FBD7-400C-AFF4-567A600DCFBE}" => removed successfully
C:\Windows\System32\Tasks\{DFBCF615-2F46-4F4D-BF50-12872A4E62FA} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{DFBCF615-2F46-4F4D-BF50-12872A4E62FA}" => removed successfully
HKU\S-1-5-21-1798616249-510404611-1270143056-1000\Software\Microsoft\Internet Explorer\Main\\Start Page => value restored successfully
C:\Users\Vojta\AppData\Roaming\IObit => moved successfully

========= netsh winsock reset =========

netsh nenˇ n zvem vnitýnˇho ani vnŘjçˇho pýˇkazu,
spustiteln‚ho programu nebo d vkov‚ho souboru.

========= End of CMD: =========

C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 16357059 B
Java, Flash, Steam htmlcache => 412843930 B
Windows/system/drivers => 8083633 B
Edge => 0 B
Chrome => 430392881 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 0 B
systemprofile32 => 128 B
LocalService => 128 B
NetworkService => 128 B
Vojta => 91101619 B

RecycleBin => 1619456 B
EmptyTemp: => 923.9 MB temporary data Removed.

================================

The system needed a reboot.

==== End of Fixlog 17:30:45 ====

#28 Příspěvek od **Conder** » 09 lis 2019 21:01

Poprosim o obidva nove logy z FRST.

Vojtěch Bednařík

IObit už mi dvakrát rozbil ovladač na wifi adaptér, ale jinak vše bylo v pohodě, ale raději jsem ho odinstaloval.

#30 Příspěvek od **Conder** » 10 lis 2019 04:18

Spusti este raz kontrolu integrity

Otvor Start, napis "cmd" (bez uvodzoviek), klikni pravym tlacitkom mysi na Prikazovy riadok a klikni na Spustit ako spravca
Skopiruj a spusti prikaz:
Kód: Vybrat vše
```
sfc /scannow
```

Po dokonceni skopiruj a spusti tento prikaz:

Kód: Vybrat vše

findstr /c:"[SR]" %windir%\logs\cbs\cbs.log >> "%userprofile%\desktop\sfcdetails.txt"

Na ploche sa vytvori subor sfcdetails.txt, zabal ho do archivu RAR alebo ZIP a posli ako prilohu k dalsiemu prispevku
Restartuj PC

VIRY.CZ

winlogon.exe

Re: winlogon.exe

Re: winlogon.exe

Re: winlogon.exe

Re: winlogon.exe

Re: winlogon.exe

Re: winlogon.exe

Re: winlogon.exe

Re: winlogon.exe

Re: winlogon.exe

Re: winlogon.exe

Re: winlogon.exe

Re: winlogon.exe

Re: winlogon.exe

Re: winlogon.exe

Re: winlogon.exe